$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3130332e3234382e3135322e302f32322d3232203d3e20313331353136.roa File: 3130332e3234382e3135322e302f32322d3232203d3e20313331353136.roa (raw, json) Hash identifier: BEPDI9JjyhWXovz7qdW56OXAxRKMxAl3iJ8iWpozrBs= Subject key identifier: B1:AF:3E:31:8A:BF:13:84:18:27:2D:C6:F4:B3:6D:38:F9:E4:F0:A5 Certificate issuer: /CN=25C6596195B162409A5AFAA92570F258BAD3C42D Certificate serial: 41911780009C67012B7E368ABE4EB3349CFD2C8C Authority key identifier: 25:C6:59:61:95:B1:62:40:9A:5A:FA:A9:25:70:F2:58:BA:D3:C4:2D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3130332e3234382e3135322e302f32322d3232203d3e20313331353136.roa Signing time: Thu 30 Apr 2026 02:51:10 +0000 ROA not before: Thu 30 Apr 2026 02:46:10 +0000 ROA not after: Thu 29 Apr 2027 02:51:10 +0000 asID: 131516 IP address blocks: 103.248.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:91:17:80:00:9c:67:01:2b:7e:36:8a:be:4e:b3:34:9c:fd:2c:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25C6596195B162409A5AFAA92570F258BAD3C42D Validity Not Before: Apr 30 02:46:10 2026 GMT Not After : Apr 29 02:51:10 2027 GMT Subject: CN=B1AF3E318ABF138418272DC6F4B36D38F9E4F0A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:37:aa:93:05:2f:d8:ce:01:6c:d9:93:b5:4c: 1a:0c:ce:88:a2:8c:e0:08:fd:75:f2:7b:c0:ef:56: b0:b5:da:23:cb:1d:d9:bb:86:ec:26:bb:a7:0c:ec: 53:36:0a:be:14:82:60:02:b1:8c:79:45:d4:0b:15: df:6c:bc:76:63:0d:5f:b8:43:43:36:f1:fd:7e:1d: 2b:be:a2:9b:83:24:eb:04:e9:85:5c:4f:5d:6c:a7: f2:11:9c:e9:3e:48:e2:b5:ff:6b:a6:a0:dd:c7:71: b7:01:e1:39:73:36:3d:21:7f:fa:90:bb:66:73:c9: 37:cf:34:f5:65:b4:89:29:66:e3:fa:cd:8e:d3:6f: 2f:87:dc:5d:01:1e:6b:01:de:7a:6b:b9:1b:5f:96: 3c:da:93:18:a6:3b:ef:85:4d:45:47:54:78:ab:c4: 69:23:3d:93:1f:83:b7:f6:fe:ff:75:ee:57:57:d3: e2:3b:64:e2:d6:ec:2b:3c:7b:07:95:43:1d:a2:b8: bf:ed:20:15:8e:13:f4:93:e2:7d:62:ab:8f:47:d0: e3:af:e8:2d:a1:38:76:3a:b5:28:a9:d6:38:f4:51: 19:1c:e6:b9:2f:bd:70:70:1a:5e:74:fb:ea:ff:35: 2e:a5:cf:be:a2:4c:fc:f9:b8:94:57:b7:de:91:e5: b5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AF:3E:31:8A:BF:13:84:18:27:2D:C6:F4:B3:6D:38:F9:E4:F0:A5 X509v3 Authority Key Identifier: keyid:25:C6:59:61:95:B1:62:40:9A:5A:FA:A9:25:70:F2:58:BA:D3:C4:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3130332e3234382e3135322e302f32322d3232203d3e20313331353136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.152.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:ad:19:80:34:06:8a:08:ad:75:46:f8:a2:08:02:71:58:8b: 3a:5c:f5:22:5c:b0:45:19:24:bf:06:bf:0d:3a:c0:57:97:e3: 3e:ac:21:13:fe:3d:83:25:c0:dc:c0:f3:a9:ae:e8:3e:19:3d: aa:2e:af:6d:a1:1f:cb:c4:39:2b:3c:6c:09:14:0a:16:cf:16: 86:a1:49:8b:05:29:7e:c1:dc:9d:b5:fc:cf:08:f4:8a:cf:a2: e4:c7:f5:bb:18:b3:4e:3b:55:15:4b:eb:b4:89:5b:cd:fa:4e: f1:59:07:40:9d:fa:e1:a7:ef:05:82:52:4c:5d:58:a5:be:48: 97:46:bc:30:74:e6:46:6e:27:df:5a:89:a8:ba:78:63:cc:f3: 86:70:2a:bb:f3:85:15:dd:10:81:28:7e:48:c4:59:69:36:16: 21:04:d7:17:7a:14:2a:b7:74:0b:10:2e:b7:c5:c1:46:1b:c0: 04:ce:7b:7d:52:7c:61:1f:c9:48:1c:3d:15:36:67:46:db:d1: 7b:cc:b1:ea:5e:4c:b4:81:ce:6b:5c:03:f4:aa:f7:79:a0:1a: 1f:51:3f:37:ea:dd:9d:6c:aa:5f:b4:ed:f7:d4:21:d9:c3:9c: a3:ec:d0:db:3a:de:ad:56:7e:2c:e0:b4:fb:82:a0:f6:b2:e8: 2c:ed:0c:57 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUQZEXgACcZwErfjaKvk6zNJz9LIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDNjU5NjE5NUIxNjI0MDlBNUFGQUE5MjU3MEYyNThC QUQzQzQyRDAeFw0yNjA0MzAwMjQ2MTBaFw0yNzA0MjkwMjUxMTBaMDMxMTAvBgNV BAMTKEIxQUYzRTMxOEFCRjEzODQxODI3MkRDNkY0QjM2RDM4RjlFNEYwQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIN6qTBS/YzgFs2ZO1TBoMzoii jOAI/XXye8DvVrC12iPLHdm7huwmu6cM7FM2Cr4UgmACsYx5RdQLFd9svHZjDV+4 Q0M28f1+HSu+opuDJOsE6YVcT11sp/IRnOk+SOK1/2umoN3HcbcB4TlzNj0hf/qQ u2ZzyTfPNPVltIkpZuP6zY7Tby+H3F0BHmsB3npruRtfljzakximO++FTUVHVHir xGkjPZMfg7f2/v917ldX0+I7ZOLW7Cs8eweVQx2iuL/tIBWOE/ST4n1iq49H0OOv 6C2hOHY6tSip1jj0URkc5rkvvXBwGl50++r/NS6lz76iTPz5uJRXt96R5bVVAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUsa8+MYq/E4QYJy3G9LNtOPnk8KUwHwYDVR0j BBgwFoAUJcZZYZWxYkCaWvqpJXDyWLrTxC0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNjk5NjM1NS8wLzI1QzY1OTYxOTVCMTYyNDA5QTVBRkFBOTI1NzBG MjU4QkFEM0M0MkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjVDNjU5NjE5NUIxNjI0MDlBNUFGQUE5MjU3MEYyNThCQUQzQzQyRC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg1OTExMjE2OTk2MzU1LzAvMzEzMDMzMmUz MjM0MzgyZTMxMzUzMjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzMTM1MzEz Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmf4mDANBgkqhkiG9w0BAQsFAAOCAQEAbq0ZgDQGigitdUb4 oggCcViLOlz1IlywRRkkvwa/DTrAV5fjPqwhE/49gyXA3MDzqa7oPhk9qi6vbaEf y8Q5KzxsCRQKFs8WhqFJiwUpfsHcnbX8zwj0is+i5Mf1uxizTjtVFUvrtIlbzfpO 8VkHQJ364afvBYJSTF1Ypb5Il0a8MHTmRm4n31qJqLp4Y8zzhnAqu/OFFd0QgSh+ SMRZaTYWIQTXF3oUKrd0CxAut8XBRhvABM57fVJ8YR/JSBw9FTZnRtvRe8yx6l5M tIHOa1wD9Kr3eaAaH1E/N+rdnWyqX7Tt99Qh2cOco+zQ2zrerVZ+LOC0+4Kg9rLo LO0MVw== -----END CERTIFICATE-----Generated at Wed May 13 13:41:44 2026 by rpki-client