$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130322e302f32332d3233203d3e20313436373732.roa File: 3130332e3231392e3130322e302f32332d3233203d3e20313436373732.roa (raw, json) Hash identifier: upd/xRwcRMOyUggBsC8+yLpqU4saiLo05+rOh4II0kI= Subject key identifier: BB:62:43:2D:04:F2:DF:D8:6A:B4:1F:77:9E:FD:35:88:29:3A:A6:B0 Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 307786DCC6385857B05B25902C3521E1D2DC8E99 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130322e302f32332d3233203d3e20313436373732.roa Signing time: Fri 24 Apr 2026 07:34:54 +0000 ROA not before: Fri 24 Apr 2026 07:29:54 +0000 ROA not after: Fri 23 Apr 2027 07:34:54 +0000 asID: 146772 IP address blocks: 103.219.102.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:77:86:dc:c6:38:58:57:b0:5b:25:90:2c:35:21:e1:d2:dc:8e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 24 07:29:54 2026 GMT Not After : Apr 23 07:34:54 2027 GMT Subject: CN=BB62432D04F2DFD86AB41F779EFD3588293AA6B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d1:fe:86:b5:d9:a7:1a:fe:9a:b2:c0:cd:83: 96:ff:60:87:17:27:24:17:87:16:3d:46:85:11:7c: ce:b0:d2:57:d5:38:42:3f:56:51:dd:11:e2:41:f6: 23:48:7f:86:d6:c3:a8:42:bd:87:43:3e:74:f2:08: fa:98:ea:60:85:47:fa:f4:34:bb:6a:df:b2:cb:0d: 2f:ed:25:e9:56:73:a2:7d:4e:fb:52:f6:9f:08:1d: 17:40:70:9a:6b:2f:10:8e:cc:d1:85:6a:4e:85:48: e5:03:ff:eb:02:58:04:8a:cd:9b:3a:5d:49:99:d2: aa:39:1a:8e:92:ef:e9:83:0e:f6:20:4b:88:d3:0c: b2:13:9e:27:e1:76:b4:06:9f:b4:54:49:c0:bb:bf: bf:47:70:75:9f:c7:c5:72:d8:55:8b:68:0d:f5:92: bc:26:0e:88:9b:3d:83:d4:27:fe:7f:18:29:c3:13: eb:70:e9:5a:fc:f9:ae:c0:94:ba:60:60:a1:cc:9a: 55:8e:d6:b1:2a:40:1a:97:f2:94:30:73:9f:e6:74: 7b:c1:8c:c5:a4:5d:7f:6d:dc:eb:a7:80:5f:97:8e: 4e:88:ff:01:d9:21:37:20:3e:e2:fe:1d:78:45:4e: 49:45:a9:45:9e:dd:3e:8e:83:98:e9:43:25:12:08: 2b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:62:43:2D:04:F2:DF:D8:6A:B4:1F:77:9E:FD:35:88:29:3A:A6:B0 X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130322e302f32332d3233203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.102.0/23 Signature Algorithm: sha256WithRSAEncryption 12:82:34:bc:fa:8a:6c:43:d3:f8:3f:39:01:93:b8:8d:b1:ae: 5b:fa:d0:4c:22:4c:7b:85:67:83:a0:95:10:16:b3:b5:84:eb: 4b:a0:47:eb:41:c1:a7:36:1d:27:87:08:e5:6b:5e:1b:07:79: f6:94:77:99:99:e2:df:6c:1b:99:25:b4:b6:b7:8c:4c:fc:08: 8a:ae:4b:5e:fc:a1:7d:5e:10:8a:a7:17:b8:d1:9a:c9:3b:84: ca:3d:af:9c:20:a8:e2:f5:e6:3c:5a:f8:30:6e:97:01:92:de: 39:7a:ad:5c:7f:d5:d4:a1:f8:3e:83:c1:7b:c8:30:86:3a:88: fe:ca:7d:58:67:70:21:e4:0f:52:30:24:05:ce:37:3f:4a:19: fd:0b:0f:f2:47:d7:37:bd:30:c3:58:62:1c:a4:d0:36:7b:7d: fd:f2:46:66:38:cc:78:53:d3:d3:da:fc:48:03:9a:d8:8f:80: 4b:3b:bc:92:af:6a:67:8a:5e:13:16:6a:14:5c:1e:e7:c0:e2: 36:7b:72:08:56:65:d9:78:d4:d5:12:ac:6e:f9:fe:44:0f:c9: 59:37:b5:4c:a9:21:12:34:ad:07:63:1c:b0:b4:53:2a:0a:f9: 7a:21:08:97:6b:f1:df:93:76:5d:cc:f5:7a:f8:3f:29:aa:e7: 19:a2:5e:f5 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUMHeG3MY4WFewWyWQLDUh4dLcjpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjQwNzI5NTRaFw0yNzA0MjMwNzM0NTRaMDMxMTAvBgNV BAMTKEJCNjI0MzJEMDRGMkRGRDg2QUI0MUY3NzlFRkQzNTg4MjkzQUE2QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl0f6GtdmnGv6assDNg5b/YIcX JyQXhxY9RoURfM6w0lfVOEI/VlHdEeJB9iNIf4bWw6hCvYdDPnTyCPqY6mCFR/r0 NLtq37LLDS/tJelWc6J9TvtS9p8IHRdAcJprLxCOzNGFak6FSOUD/+sCWASKzZs6 XUmZ0qo5Go6S7+mDDvYgS4jTDLITnifhdrQGn7RUScC7v79HcHWfx8Vy2FWLaA31 krwmDoibPYPUJ/5/GCnDE+tw6Vr8+a7AlLpgYKHMmlWO1rEqQBqX8pQwc5/mdHvB jMWkXX9t3OungF+Xjk6I/wHZITcgPuL+HXhFTklFqUWe3T6Og5jpQyUSCCs/AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUu2JDLQTy39hqtB93nv01iCk6prAwHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDIwMjg5LzAvMzEzMDMzMmUz MjMxMzkyZTMxMzAzMjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzQzNjM3Mzcz Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfbZjANBgkqhkiG9w0BAQsFAAOCAQEAEoI0vPqKbEPT+D85 AZO4jbGuW/rQTCJMe4Vng6CVEBaztYTrS6BH60HBpzYdJ4cI5WteGwd59pR3mZni 32wbmSW0treMTPwIiq5LXvyhfV4QiqcXuNGayTuEyj2vnCCo4vXmPFr4MG6XAZLe OXqtXH/V1KH4PoPBe8gwhjqI/sp9WGdwIeQPUjAkBc43P0oZ/QsP8kfXN70ww1hi HKTQNnt9/fJGZjjMeFPT09r8SAOa2I+ASzu8kq9qZ4peExZqFFwe58DiNntyCFZl 2XjU1RKsbvn+RA/JWTe1TKkhEjStB2McsLRTKgr5eiEIl2vx35N2Xcz1evg/Karn GaJe9Q== -----END CERTIFICATE-----Generated at Wed May 13 13:54:21 2026 by rpki-client