$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3234392e3139322e302f32322d3232203d3e2032393134.roa File: 3130332e3234392e3139322e302f32322d3232203d3e2032393134.roa (raw, json) Hash identifier: 6Dd6bY/19hb8Fb1XB6oGcDAKn2zllhJNly+dgxbJ3ks= Subject key identifier: C9:8A:35:82:69:FB:B3:3D:42:D5:DD:5F:52:0D:AF:B4:D4:ED:9D:42 Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 6800180BCD97921569657691A6F0FAE0C4EE82E1 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3234392e3139322e302f32322d3232203d3e2032393134.roa Signing time: Sat 09 May 2026 01:20:09 +0000 ROA not before: Sat 09 May 2026 01:15:09 +0000 ROA not after: Sat 08 May 2027 01:20:09 +0000 asID: 2914 IP address blocks: 103.249.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:00:18:0b:cd:97:92:15:69:65:76:91:a6:f0:fa:e0:c4:ee:82:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: May 9 01:15:09 2026 GMT Not After : May 8 01:20:09 2027 GMT Subject: CN=C98A358269FBB33D42D5DD5F520DAFB4D4ED9D42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:45:4e:be:82:7b:97:3c:dc:dc:99:a5:dc:52: 0c:ce:a2:1d:11:59:1a:9a:d2:c5:61:89:8c:2d:2e: cd:24:41:38:f5:97:22:a5:07:0a:91:a1:23:50:3b: 90:a9:e0:53:fe:40:c8:c1:78:f7:2c:92:04:02:44: 79:4c:43:38:d1:2f:41:10:1b:ba:97:02:f9:e1:ec: da:6e:45:d5:9d:5c:33:23:68:dc:21:20:c1:1d:88: 79:1f:7e:75:64:15:6f:c2:86:ac:c1:59:8d:a7:0c: 58:ca:9e:0d:d0:a2:70:99:f1:38:e8:8b:5d:17:88: 58:a7:63:2e:2d:7a:9b:9e:c8:ed:cf:a1:07:32:8c: 60:70:f0:75:87:4b:53:45:77:87:ec:02:0a:36:c3: a0:3c:4f:c2:23:79:f5:42:c0:3a:b0:c7:a9:10:31: 9e:ce:ba:3a:d7:d4:5e:3d:62:18:7f:68:2d:07:c1: 7e:01:6c:d1:e0:ac:4e:3a:a7:97:65:81:1f:95:82: 9e:43:6e:ca:0e:99:36:e5:25:e8:e9:f3:69:cc:d8: c5:0c:80:d9:68:f2:39:a6:ec:10:8d:7f:a0:d0:25: 3f:b4:98:05:67:ce:7c:b0:b8:f9:a7:27:10:49:40: ba:57:b3:6e:4b:8a:07:dc:36:85:a5:5d:20:43:80: 6f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:8A:35:82:69:FB:B3:3D:42:D5:DD:5F:52:0D:AF:B4:D4:ED:9D:42 X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3234392e3139322e302f32322d3232203d3e2032393134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.249.192.0/22 Signature Algorithm: sha256WithRSAEncryption 49:86:69:b3:9c:c5:98:68:8b:aa:3e:91:c4:94:56:9c:3a:7c: 8d:83:d7:fa:e7:bd:27:9e:7c:e1:34:f6:25:83:27:61:7f:df: fb:a4:6a:c3:2d:fc:f2:76:d8:4b:58:12:de:48:0f:40:9e:c4: 2e:e9:21:a1:86:81:11:ae:29:87:5a:e1:1f:9c:94:bc:75:f7: e0:e1:8f:3e:33:15:e3:2d:0e:18:33:7e:9a:0a:14:63:82:d3: a5:76:a1:5c:ad:a5:76:2d:39:c4:62:57:82:f6:50:85:be:22: ce:7e:9a:7c:95:5d:a4:c0:05:d5:2d:a2:9c:47:7f:28:cc:d1: 9a:39:2f:39:5a:a2:a4:e3:cd:20:d8:9a:2a:71:ea:b2:eb:af: 59:0d:3e:0d:ce:99:bb:01:38:20:74:1c:6c:49:33:e6:bd:31: a1:77:8f:9c:01:fb:12:2b:41:af:6e:a7:04:96:9a:f3:04:61: 55:d8:39:a1:5a:cc:99:6a:96:6b:70:3f:0d:34:a4:32:69:a2: 06:b7:fa:36:f4:47:45:f1:14:51:7f:fb:5b:ac:3d:e2:a8:60: 3b:aa:9a:29:7e:d6:0d:ee:8a:bc:9c:02:8f:49:ae:43:62:c3: 56:aa:6e:ed:97:0d:26:a0:ac:42:42:f5:92:a6:e5:8e:f4:93: da:f9:73:c7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUaAAYC82XkhVpZXaRpvD64MTuguEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA1MDkwMTE1MDlaFw0yNzA1MDgwMTIwMDlaMDMxMTAvBgNV BAMTKEM5OEEzNTgyNjlGQkIzM0Q0MkQ1REQ1RjUyMERBRkI0RDRFRDlENDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGRU6+gnuXPNzcmaXcUgzOoh0R WRqa0sVhiYwtLs0kQTj1lyKlBwqRoSNQO5Cp4FP+QMjBePcskgQCRHlMQzjRL0EQ G7qXAvnh7NpuRdWdXDMjaNwhIMEdiHkffnVkFW/ChqzBWY2nDFjKng3QonCZ8Tjo i10XiFinYy4tepueyO3PoQcyjGBw8HWHS1NFd4fsAgo2w6A8T8IjefVCwDqwx6kQ MZ7OujrX1F49Yhh/aC0HwX4BbNHgrE46p5dlgR+Vgp5DbsoOmTblJejp82nM2MUM gNlo8jmm7BCNf6DQJT+0mAVnznywuPmnJxBJQLpXs25LigfcNoWlXSBDgG+xAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUyYo1gmn7sz1C1d1fUg2vtNTtnUIwHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4NTM4OTI2NTQyMDI4OS8wLzMxMzAzMzJlMzIz NDM5MmUzMTM5MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMjM5MzEzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmf5wDANBgkqhkiG9w0BAQsFAAOCAQEASYZps5zFmGiLqj6RxJRWnDp8 jYPX+ue9J5584TT2JYMnYX/f+6Rqwy388nbYS1gS3kgPQJ7ELukhoYaBEa4ph1rh H5yUvHX34OGPPjMV4y0OGDN+mgoUY4LTpXahXK2ldi05xGJXgvZQhb4izn6afJVd pMAF1S2inEd/KMzRmjkvOVqipOPNINiaKnHqsuuvWQ0+Dc6ZuwE4IHQcbEkz5r0x oXePnAH7EitBr26nBJaa8wRhVdg5oVrMmWqWa3A/DTSkMmmiBrf6NvRHRfEUUX/7 W6w94qhgO6qaKX7WDe6KvJwCj0muQ2LDVqpu7ZcNJqCsQkL1kqbljvST2vlzxw== -----END CERTIFICATE-----Generated at Wed May 13 15:03:00 2026 by rpki-client