$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130302e302f32342d3234203d3e20313436373732.roa File: 3130332e3231392e3130302e302f32342d3234203d3e20313436373732.roa (raw, json) Hash identifier: 219OtlcRCl/vPh6STNR1SQotbaKdym/A4i7C6d7LCR4= Subject key identifier: A6:EB:55:F6:90:2D:DB:BA:6B:72:E8:77:76:5D:E1:78:DF:07:73:EE Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 33465355FC618F0AAE6F08E08CE75F4BAC47C290 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130302e302f32342d3234203d3e20313436373732.roa Signing time: Fri 24 Apr 2026 07:34:55 +0000 ROA not before: Fri 24 Apr 2026 07:29:55 +0000 ROA not after: Fri 23 Apr 2027 07:34:55 +0000 asID: 146772 IP address blocks: 103.219.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:46:53:55:fc:61:8f:0a:ae:6f:08:e0:8c:e7:5f:4b:ac:47:c2:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 24 07:29:55 2026 GMT Not After : Apr 23 07:34:55 2027 GMT Subject: CN=A6EB55F6902DDBBA6B72E877765DE178DF0773EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:58:d0:16:00:d7:38:fb:f6:be:f5:43:d5:85: c7:1c:87:01:cb:4f:91:fc:ea:fd:0c:60:35:f7:13: 78:67:5f:62:85:df:1d:e7:44:42:d1:e3:c2:81:ec: c3:25:b1:94:36:97:86:15:46:06:aa:33:81:83:07: 9c:4a:b5:b4:e4:81:56:74:54:89:c3:34:66:79:27: 8b:3b:86:dd:1e:ff:27:ca:09:79:d1:08:cd:d7:63: 74:f7:82:76:94:f2:bf:92:e3:28:ad:05:c8:1d:3e: 6d:11:3e:fa:f5:8b:29:c5:58:e0:cf:38:fa:e9:71: 3e:64:9a:c2:f8:5a:8d:41:ac:fd:d7:3b:0c:31:c4: 72:49:0d:51:f7:6f:9d:6a:3e:c5:ab:02:b8:0a:f8: ae:d8:fa:a0:1d:d8:45:79:14:41:82:20:97:1a:9a: 55:20:c5:9a:41:00:5f:4e:a0:4b:34:e3:7a:27:43: 8a:ea:1c:25:ae:84:1d:ab:09:81:f6:d9:ed:c2:be: 53:1c:a3:ed:f5:b9:66:33:0b:cb:d7:0d:2c:6e:0e: 59:e2:d4:8f:fd:f7:e9:bc:19:1d:13:a9:d4:43:bf: ad:84:88:02:1f:b3:9f:2d:17:09:b6:75:71:ef:a7: 69:e7:91:cb:3d:be:55:0f:77:d4:d4:e6:4d:d4:79: b6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:EB:55:F6:90:2D:DB:BA:6B:72:E8:77:76:5D:E1:78:DF:07:73:EE X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130302e302f32342d3234203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.100.0/24 Signature Algorithm: sha256WithRSAEncryption 52:7e:75:63:f4:14:e0:7f:10:fb:4c:05:e2:86:1e:80:85:78: 0e:b5:0f:af:ff:05:44:63:1a:5c:d5:58:8b:b4:50:45:cf:36: e6:e4:a2:fc:f1:c9:11:98:98:d2:4f:50:ea:fc:fc:b4:9e:59: 33:c7:a6:4f:1b:08:0c:63:4d:e8:9f:4c:a6:9b:b5:b6:d3:e6: 87:48:14:76:61:7c:4e:f2:41:ac:4a:93:d2:31:ab:f5:ee:e5: 88:74:1f:95:d0:8b:61:19:4d:c0:6e:81:d3:e0:d4:39:c1:15: 3f:ae:5c:83:a2:88:21:7f:5c:20:e5:96:5f:65:1a:03:73:7f: 83:1b:ed:a5:00:3b:e3:06:31:04:80:f3:11:7e:fb:36:30:79: bc:c9:a4:59:49:60:7a:38:ae:37:fa:06:3e:8c:0c:e4:90:82: 00:eb:60:cb:41:0a:9f:04:27:14:91:2a:38:ce:85:f1:b3:0e: bc:84:b0:1a:b3:1e:ce:85:08:e8:92:cc:b8:84:d9:ee:e3:aa: f0:ed:44:fb:32:f4:5b:bb:d8:42:6e:73:01:bd:00:51:95:0c: 6a:fb:db:ba:9c:8c:4f:9a:b3:99:55:a1:f3:59:73:cd:12:37: 01:88:b6:e3:16:bd:ee:aa:03:22:a7:c1:ad:76:8e:da:ad:fe: c7:25:11:d5 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUM0ZTVfxhjwqubwjgjOdfS6xHwpAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjQwNzI5NTVaFw0yNzA0MjMwNzM0NTVaMDMxMTAvBgNV BAMTKEE2RUI1NUY2OTAyRERCQkE2QjcyRTg3Nzc2NURFMTc4REYwNzczRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsWNAWANc4+/a+9UPVhccchwHL T5H86v0MYDX3E3hnX2KF3x3nRELR48KB7MMlsZQ2l4YVRgaqM4GDB5xKtbTkgVZ0 VInDNGZ5J4s7ht0e/yfKCXnRCM3XY3T3gnaU8r+S4yitBcgdPm0RPvr1iynFWODP OPrpcT5kmsL4Wo1BrP3XOwwxxHJJDVH3b51qPsWrArgK+K7Y+qAd2EV5FEGCIJca mlUgxZpBAF9OoEs043onQ4rqHCWuhB2rCYH22e3CvlMco+31uWYzC8vXDSxuDlni 1I/99+m8GR0TqdRDv62EiAIfs58tFwm2dXHvp2nnkcs9vlUPd9TU5k3UebbVAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUputV9pAt27prcuh3dl3heN8Hc+4wHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDIwMjg5LzAvMzEzMDMzMmUz MjMxMzkyZTMxMzAzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNjM3Mzcz Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfbZDANBgkqhkiG9w0BAQsFAAOCAQEAUn51Y/QU4H8Q+0wF 4oYegIV4DrUPr/8FRGMaXNVYi7RQRc825uSi/PHJEZiY0k9Q6vz8tJ5ZM8emTxsI DGNN6J9Mppu1ttPmh0gUdmF8TvJBrEqT0jGr9e7liHQfldCLYRlNwG6B0+DUOcEV P65cg6KIIX9cIOWWX2UaA3N/gxvtpQA74wYxBIDzEX77NjB5vMmkWUlgejiuN/oG PowM5JCCAOtgy0EKnwQnFJEqOM6F8bMOvISwGrMezoUI6JLMuITZ7uOq8O1E+zL0 W7vYQm5zAb0AUZUMavvbupyMT5qzmVWh81lzzRI3AYi24xa97qoDIqfBrXaO2q3+ xyUR1Q== -----END CERTIFICATE-----Generated at Wed May 13 15:35:46 2026 by rpki-client