$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e38352e302f32342d3234203d3e20313436373732.roa File: 3130332e3231392e38352e302f32342d3234203d3e20313436373732.roa (raw, json) Hash identifier: bfPR+n8MVZYvIWDo9z+iW70WBR828zNBS45aog4V7kE= Subject key identifier: 5F:35:5D:A9:C6:F5:D3:B0:CF:F7:6A:90:D9:D7:3E:E3:12:12:AE:4F Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 24633B136C24E668D3DBB243BD6288F37FACDDD1 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e38352e302f32342d3234203d3e20313436373732.roa Signing time: Fri 24 Apr 2026 07:34:55 +0000 ROA not before: Fri 24 Apr 2026 07:29:55 +0000 ROA not after: Fri 23 Apr 2027 07:34:55 +0000 asID: 146772 IP address blocks: 103.219.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:63:3b:13:6c:24:e6:68:d3:db:b2:43:bd:62:88:f3:7f:ac:dd:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 24 07:29:55 2026 GMT Not After : Apr 23 07:34:55 2027 GMT Subject: CN=5F355DA9C6F5D3B0CFF76A90D9D73EE31212AE4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:29:42:69:5c:bc:69:ba:9c:d9:42:1a:44:6e: b2:f2:33:89:c1:41:a2:a2:e7:5b:65:d3:dd:18:e2: 77:64:d4:1a:65:f1:ba:a1:44:61:48:53:92:3c:5c: bf:b2:f3:9d:a2:b5:ba:6e:16:c2:30:ce:94:91:28: 37:8c:45:04:2b:eb:77:09:f3:3b:57:a4:f9:68:e7: 01:ee:f8:c2:b0:7b:53:db:df:86:11:1b:95:42:fd: 3e:78:f3:a2:8e:e6:c7:9a:14:8e:d6:a3:fd:f1:24: 11:ea:7d:2c:bd:7f:e9:db:7e:7e:74:bf:19:41:16: e2:9d:d2:62:83:bc:ae:dd:36:cf:01:a0:10:26:c0: 86:d0:47:99:c9:ed:7b:35:d5:41:98:26:15:8e:bb: 8b:35:1e:8e:a9:46:4e:e8:a6:ad:54:19:67:59:3c: 63:c1:45:ce:34:99:42:05:15:49:31:83:92:01:77: c9:98:29:8b:62:a6:5f:70:3d:84:31:ad:43:9f:29: 65:e2:2a:9f:9b:e6:f0:71:96:00:66:f6:82:92:90: 22:e7:d4:4c:34:64:16:70:12:46:d1:a6:69:d8:42: dc:01:c2:98:be:da:a2:5d:fc:02:5b:b4:0c:1a:21: 0b:b1:c1:65:ec:84:34:3f:5e:4e:54:01:52:7c:28: 26:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:35:5D:A9:C6:F5:D3:B0:CF:F7:6A:90:D9:D7:3E:E3:12:12:AE:4F X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e38352e302f32342d3234203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.85.0/24 Signature Algorithm: sha256WithRSAEncryption 27:f4:12:32:7c:e9:c8:28:cd:08:47:94:95:5e:b6:19:0f:8f: 45:e4:89:a5:c0:5b:34:94:6d:82:03:3b:89:40:df:18:68:1b: 8b:74:bd:96:0e:33:a9:04:0a:50:c4:d2:5f:c0:71:a1:e8:5d: cc:c6:7d:17:e5:ba:ef:0e:74:52:5f:d0:53:2e:bb:18:10:1e: b3:6e:44:10:89:37:b2:25:5e:e3:a1:f6:fb:7e:ac:f9:c7:63: c3:b9:59:a3:a7:a6:5c:ff:7e:7d:2b:f7:85:43:8b:92:3e:dc: 6d:23:e4:d8:3b:e8:e7:73:37:26:17:4c:82:a2:8c:ca:a3:fd: 2f:ee:c4:5b:41:00:ae:51:f6:0f:aa:0e:dc:e5:9f:c1:b1:dc: 2f:50:4b:52:2d:8c:b0:b4:44:f5:0c:0b:c3:87:1d:6d:0d:69: 97:39:46:88:18:14:82:74:bb:4b:c9:ec:14:5e:c5:45:90:ff: eb:0e:c4:e7:5d:9b:49:93:ab:1e:4c:c6:93:60:84:41:6b:62: 7b:2c:36:7f:04:ef:bf:0e:51:55:03:ea:28:f0:c5:ca:1f:4b: 6f:dd:88:f2:ac:fb:f0:a1:9b:9a:fa:14:84:78:0d:a7:a6:46: c0:c5:79:44:d4:f5:ed:4a:87:66:bb:d1:d0:9b:96:c7:7c:fb: 47:c2:8b:c9 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJGM7E2wk5mjT27JDvWKI83+s3dEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjQwNzI5NTVaFw0yNzA0MjMwNzM0NTVaMDMxMTAvBgNV BAMTKDVGMzU1REE5QzZGNUQzQjBDRkY3NkE5MEQ5RDczRUUzMTIxMkFFNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVKUJpXLxpupzZQhpEbrLyM4nB QaKi51tl090Y4ndk1Bpl8bqhRGFIU5I8XL+y852itbpuFsIwzpSRKDeMRQQr63cJ 8ztXpPlo5wHu+MKwe1Pb34YRG5VC/T5486KO5seaFI7Wo/3xJBHqfSy9f+nbfn50 vxlBFuKd0mKDvK7dNs8BoBAmwIbQR5nJ7Xs11UGYJhWOu4s1Ho6pRk7opq1UGWdZ PGPBRc40mUIFFUkxg5IBd8mYKYtipl9wPYQxrUOfKWXiKp+b5vBxlgBm9oKSkCLn 1Ew0ZBZwEkbRpmnYQtwBwpi+2qJd/AJbtAwaIQuxwWXshDQ/Xk5UAVJ8KCYnAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUXzVdqcb107DP92qQ2dc+4xISrk8wHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU0MjAyODkvMC8zMTMwMzMyZTMy MzEzOTJlMzgzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNjM3MzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfbVTANBgkqhkiG9w0BAQsFAAOCAQEAJ/QSMnzpyCjNCEeUlV62 GQ+PReSJpcBbNJRtggM7iUDfGGgbi3S9lg4zqQQKUMTSX8BxoehdzMZ9F+W67w50 Ul/QUy67GBAes25EEIk3siVe46H2+36s+cdjw7lZo6emXP9+fSv3hUOLkj7cbSPk 2Dvo53M3JhdMgqKMyqP9L+7EW0EArlH2D6oO3OWfwbHcL1BLUi2MsLRE9QwLw4cd bQ1plzlGiBgUgnS7S8nsFF7FRZD/6w7E512bSZOrHkzGk2CEQWtieyw2fwTvvw5R VQPqKPDFyh9Lb92I8qz78KGbmvoUhHgNp6ZGwMV5RNT17UqHZrvR0JuWx3z7R8KL yQ== -----END CERTIFICATE-----Generated at Wed May 13 14:27:51 2026 by rpki-client