$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3130332e32302e34352e302f32342d3234203d3e20313334373030.roa File: 3130332e32302e34352e302f32342d3234203d3e20313334373030.roa (raw, json) Hash identifier: rIstrkT87fdp0wtxjRupmhJeeERGmKAjq11MMup2jig= Subject key identifier: D2:B9:55:9F:64:DE:A7:27:35:C3:20:D3:5D:FF:DC:A6:A1:F8:C8:1C Certificate issuer: /CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Certificate serial: 5DB08A732B72E276E02FEB6732528E582AB94D53 Authority key identifier: FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3130332e32302e34352e302f32342d3234203d3e20313334373030.roa Signing time: Mon 27 Apr 2026 10:24:23 +0000 ROA not before: Mon 27 Apr 2026 10:19:23 +0000 ROA not after: Mon 26 Apr 2027 10:24:23 +0000 asID: 134700 IP address blocks: 103.20.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:b0:8a:73:2b:72:e2:76:e0:2f:eb:67:32:52:8e:58:2a:b9:4d:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF4E68ED10AAB07D8F4EEC05FD03457953F937E1 Validity Not Before: Apr 27 10:19:23 2026 GMT Not After : Apr 26 10:24:23 2027 GMT Subject: CN=D2B9559F64DEA72735C320D35DFFDCA6A1F8C81C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4d:bd:8e:70:bf:10:eb:d6:61:2a:3f:71:76: 8a:66:9c:8e:c8:52:d5:79:3c:9a:cd:16:29:fb:e4: 09:58:a2:46:f5:77:51:9c:77:9a:38:27:20:a7:3a: 7b:b8:83:33:ac:72:5e:bf:b8:10:ea:a2:80:25:fd: c3:bb:d3:bc:a8:49:73:7d:d3:ee:eb:d8:47:ae:e1: 60:d5:01:f5:90:da:68:69:2b:28:6c:60:c9:63:cd: 63:df:fd:0c:14:f3:91:d7:62:9a:85:70:46:90:e7: 33:ea:41:c2:54:cf:aa:e8:79:76:17:ad:0e:22:d0: b4:e2:b9:67:55:cb:5f:62:a6:39:45:5b:a9:bf:10: 09:ba:53:bc:16:8a:e1:4f:f8:3c:14:0b:c0:05:7f: 6c:15:50:d9:51:bf:23:75:51:88:d1:3d:75:c5:82: 8a:0e:0e:e3:86:c9:34:dd:d4:20:9a:d0:35:44:f8: 2a:35:ea:1d:d3:37:3a:b6:33:c6:d2:74:ec:44:c6: 3e:34:04:aa:5f:96:2c:69:19:5f:3c:22:4c:3d:c4: 0c:b9:49:27:aa:5c:2f:6a:17:2a:13:ef:a6:1d:aa: 8a:a8:7f:36:8a:50:ec:89:f0:d2:ed:6e:bb:73:a3: eb:35:50:74:41:fc:46:3d:91:12:a5:b8:d3:95:4d: 08:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B9:55:9F:64:DE:A7:27:35:C3:20:D3:5D:FF:DC:A6:A1:F8:C8:1C X509v3 Authority Key Identifier: keyid:FF:4E:68:ED:10:AA:B0:7D:8F:4E:EC:05:FD:03:45:79:53:F9:37:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FF4E68ED10AAB07D8F4EEC05FD03457953F937E1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129590787/0/3130332e32302e34352e302f32342d3234203d3e20313334373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.45.0/24 Signature Algorithm: sha256WithRSAEncryption 33:16:b5:ad:e8:e7:3d:28:e1:6a:bc:37:c2:4a:1c:9a:fd:f9: 36:23:87:da:a8:68:89:88:d3:dd:1b:5d:25:3a:81:49:bd:8f: de:83:da:95:0d:3e:59:ec:43:99:68:13:8d:31:db:47:7b:1b: 51:f0:f9:3e:fd:05:f7:2d:b9:e8:16:b3:e7:7a:aa:b8:1a:ff: da:23:00:84:ea:b4:2e:b0:ee:15:97:fd:34:56:03:f2:f6:c8: 44:9f:1f:cf:55:63:8a:32:c1:8c:69:db:b0:6e:f1:3d:e6:34: 63:38:6a:10:f1:e8:53:be:48:71:aa:25:2f:c9:ac:83:29:20: 2c:70:b0:45:a6:46:b5:8f:11:b4:3b:3b:df:39:8c:78:92:ec: 10:8e:b1:bb:a5:e9:5f:cd:99:bd:f7:4c:25:45:69:e4:32:93: 77:da:af:ab:b0:8b:28:95:86:b5:bd:7f:a2:6c:e5:76:8d:4f: 08:10:05:9c:45:f9:d5:d7:80:fa:3d:84:b2:fd:06:62:18:5b: 2b:a4:9d:ab:4a:61:40:aa:a3:64:67:b8:50:15:67:05:7b:81: 6a:96:65:1e:65:ce:2d:4f:ae:2b:23:6c:a2:6e:0d:3c:07:d8: b9:f2:a5:c5:e7:6f:a6:db:24:bc:f4:b2:77:d1:88:d6:ef:25: 85:1e:27:72 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUXbCKcyty4nbgL+tnMlKOWCq5TVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1 M0Y5MzdFMTAeFw0yNjA0MjcxMDE5MjNaFw0yNzA0MjYxMDI0MjNaMDMxMTAvBgNV BAMTKEQyQjk1NTlGNjRERUE3MjczNUMzMjBEMzVERkZEQ0E2QTFGOEM4MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClTb2OcL8Q69ZhKj9xdopmnI7I UtV5PJrNFin75AlYokb1d1Gcd5o4JyCnOnu4gzOscl6/uBDqooAl/cO707yoSXN9 0+7r2Eeu4WDVAfWQ2mhpKyhsYMljzWPf/QwU85HXYpqFcEaQ5zPqQcJUz6roeXYX rQ4i0LTiuWdVy19ipjlFW6m/EAm6U7wWiuFP+DwUC8AFf2wVUNlRvyN1UYjRPXXF gooODuOGyTTd1CCa0DVE+Co16h3TNzq2M8bSdOxExj40BKpflixpGV88Ikw9xAy5 SSeqXC9qFyoT76YdqoqofzaKUOyJ8NLtbrtzo+s1UHRB/EY9kRKluNOVTQjLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU0rlVn2Tepyc1wyDTXf/cpqH4yBwwHwYDVR0j BBgwFoAU/05o7RCqsH2PTuwF/QNFeVP5N+EwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTU5MDc4Ny8wL0ZGNEU2OEVEMTBBQUIwN0Q4RjRFRUMwNUZEMDM0 NTc5NTNGOTM3RTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkY0RTY4RUQxMEFBQjA3RDhGNEVFQzA1RkQwMzQ1Nzk1M0Y5MzdFMS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4ODU1MzEyOTU5MDc4Ny8wLzMxMzAzMzJlMzIz MDJlMzQzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3MzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGcULTANBgkqhkiG9w0BAQsFAAOCAQEAMxa1rejnPSjharw3wkocmv35 NiOH2qhoiYjT3RtdJTqBSb2P3oPalQ0+WexDmWgTjTHbR3sbUfD5Pv0F9y256Baz 53qquBr/2iMAhOq0LrDuFZf9NFYD8vbIRJ8fz1VjijLBjGnbsG7xPeY0YzhqEPHo U75IcaolL8msgykgLHCwRaZGtY8RtDs73zmMeJLsEI6xu6XpX82ZvfdMJUVp5DKT d9qvq7CLKJWGtb1/omzldo1PCBAFnEX51deA+j2Esv0GYhhbK6Sdq0phQKqjZGe4 UBVnBXuBapZlHmXOLU+uKyNsom4NPAfYufKlxedvptskvPSyd9GI1u8lhR4ncg== -----END CERTIFICATE-----Generated at Wed May 13 15:56:57 2026 by rpki-client