$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3133392e39322e302f32332d3234203d3e20313534333231.roa File: 3130332e3133392e39322e302f32332d3234203d3e20313534333231.roa (raw, json) Hash identifier: MYZCf4PNOWzqElmrRXg430VY4rTe8Gvz2xJ1eEg6fPM= Subject key identifier: C7:EC:5C:EB:3D:2B:46:11:BE:A7:F8:CC:17:13:AB:94:CC:1F:89:5B Certificate issuer: /CN=09F7B3237C248B53A3ADBB771E63C783610963AB Certificate serial: 1896F0B6C47672BA25A65598BE535BB7A8008BBC Authority key identifier: 09:F7:B3:23:7C:24:8B:53:A3:AD:BB:77:1E:63:C7:83:61:09:63:AB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3133392e39322e302f32332d3234203d3e20313534333231.roa Signing time: Tue 10 Mar 2026 04:38:02 +0000 ROA not before: Tue 10 Mar 2026 04:33:02 +0000 ROA not after: Tue 09 Mar 2027 04:38:02 +0000 asID: 154321 IP address blocks: 103.139.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.crl rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 14:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:96:f0:b6:c4:76:72:ba:25:a6:55:98:be:53:5b:b7:a8:00:8b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09F7B3237C248B53A3ADBB771E63C783610963AB Validity Not Before: Mar 10 04:33:02 2026 GMT Not After : Mar 9 04:38:02 2027 GMT Subject: CN=C7EC5CEB3D2B4611BEA7F8CC1713AB94CC1F895B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:39:fd:7c:be:4a:1b:62:53:f6:a0:2a:52:89: 24:e7:77:2b:24:aa:d3:27:93:73:43:2e:7c:df:75: 7b:a2:ce:8c:18:09:f9:ea:cb:49:d9:88:59:fa:76: 55:f5:ae:a1:48:5e:99:66:ed:86:24:a5:34:57:a8: 65:bd:ac:2f:1f:bd:e8:29:87:bf:b4:b4:c5:d0:44: f0:3e:22:7a:77:20:d5:e5:a9:9c:9c:ee:fe:d6:de: 41:57:9e:3b:ce:10:72:50:99:92:a2:39:81:64:a5: 5c:bc:77:21:b4:1e:0e:5a:db:72:92:89:15:26:79: 93:65:ec:63:18:79:a8:72:1f:3b:3a:9f:1e:a6:1d: 33:26:3d:51:c8:46:02:54:50:df:08:bd:3b:65:42: 33:7f:c9:40:c2:df:ec:bb:bb:47:d8:0e:50:81:97: f3:9c:62:53:c8:48:cf:ea:1e:e3:02:14:62:5f:be: d2:1c:ca:0e:ca:5c:46:7f:df:2d:cf:4e:ef:37:db: ce:9f:92:e8:89:6f:59:1d:ee:f1:e7:0c:c9:f0:71: f4:fb:93:49:c0:a7:48:82:37:ea:43:86:22:31:28: f0:e4:63:00:23:98:c6:81:78:87:d5:2b:e6:b5:c1: c5:06:a7:56:34:f3:5c:bb:6c:da:85:e4:90:5e:96: c9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:EC:5C:EB:3D:2B:46:11:BE:A7:F8:CC:17:13:AB:94:CC:1F:89:5B X509v3 Authority Key Identifier: keyid:09:F7:B3:23:7C:24:8B:53:A3:AD:BB:77:1E:63:C7:83:61:09:63:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3133392e39322e302f32332d3234203d3e20313534333231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.92.0/23 Signature Algorithm: sha256WithRSAEncryption c0:ed:e6:61:e2:e8:62:97:71:17:08:ce:45:d6:3b:01:14:e5: b0:04:08:7d:63:cb:74:76:02:05:8c:ec:08:53:7c:17:e1:b6: 88:51:3e:08:37:d5:79:3e:fe:b7:06:e5:7c:5f:e3:e2:ae:0c: 8b:55:83:51:a9:4a:42:ef:b9:55:e8:73:37:22:f2:58:49:9e: 2e:5a:9a:7c:b2:bd:a2:e7:5d:90:e3:28:62:cb:a4:96:33:e0: 67:b0:be:ec:c9:66:d5:e3:82:57:e5:f0:83:3f:76:b2:06:5a: ae:96:0a:ac:e8:1f:06:fd:f5:3a:dd:cb:85:fb:bd:3b:21:de: 7e:8a:fa:f3:c8:67:d4:d9:ff:52:98:cd:a5:f9:4b:95:6f:a8: 98:d9:5f:66:ea:4b:1a:77:f1:6d:ca:f0:91:19:93:79:c7:7c: e0:77:c4:88:5b:3f:96:87:20:e4:07:df:8e:b2:29:33:7c:7c: 85:39:cd:70:87:52:be:de:16:8c:f5:48:b5:77:10:09:7b:c7: ff:96:bd:22:84:78:e7:e6:29:4c:2d:cd:4d:ab:f5:13:2b:4e: bf:6b:fa:d6:8a:c3:dd:5a:2f:a5:a8:7f:ed:52:31:1c:7d:61: 7a:f8:7b:d9:bc:73:ee:9e:76:a5:07:56:a4:0c:98:0d:31:61: 51:9e:60:c1 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUGJbwtsR2crolplWYvlNbt6gAi7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlGN0IzMjM3QzI0OEI1M0EzQURCQjc3MUU2M0M3ODM2 MTA5NjNBQjAeFw0yNjAzMTAwNDMzMDJaFw0yNzAzMDkwNDM4MDJaMDMxMTAvBgNV BAMTKEM3RUM1Q0VCM0QyQjQ2MTFCRUE3RjhDQzE3MTNBQjk0Q0MxRjg5NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Of18vkobYlP2oCpSiSTndysk qtMnk3NDLnzfdXuizowYCfnqy0nZiFn6dlX1rqFIXplm7YYkpTRXqGW9rC8fvegp h7+0tMXQRPA+Inp3INXlqZyc7v7W3kFXnjvOEHJQmZKiOYFkpVy8dyG0Hg5a23KS iRUmeZNl7GMYeahyHzs6nx6mHTMmPVHIRgJUUN8IvTtlQjN/yUDC3+y7u0fYDlCB l/OcYlPISM/qHuMCFGJfvtIcyg7KXEZ/3y3PTu83286fkuiJb1kd7vHnDMnwcfT7 k0nAp0iCN+pDhiIxKPDkYwAjmMaBeIfVK+a1wcUGp1Y081y7bNqF5JBelsnnAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUx+xc6z0rRhG+p/jMFxOrlMwfiVswHwYDVR0j BBgwFoAUCfezI3wki1Ojrbt3HmPHg2EJY6swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTY4MzA2MTc3NjM4Ni8wLzA5RjdCMzIzN0MyNDhCNTNBM0FEQkI3NzFFNjND NzgzNjEwOTYzQUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDlGN0IzMjM3QzI0OEI1M0EzQURCQjc3MUU2M0M3ODM2MTA5NjNBQi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1OTE2ODMwNjE3NzYzODYvMC8zMTMwMzMyZTMx MzMzOTJlMzkzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzUzNDMzMzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWeLXDANBgkqhkiG9w0BAQsFAAOCAQEAwO3mYeLoYpdxFwjORdY7 ARTlsAQIfWPLdHYCBYzsCFN8F+G2iFE+CDfVeT7+twblfF/j4q4Mi1WDUalKQu+5 VehzNyLyWEmeLlqafLK9ouddkOMoYsukljPgZ7C+7Mlm1eOCV+Xwgz92sgZarpYK rOgfBv31Ot3Lhfu9OyHefor688hn1Nn/UpjNpflLlW+omNlfZupLGnfxbcrwkRmT ecd84HfEiFs/locg5AffjrIpM3x8hTnNcIdSvt4WjPVItXcQCXvH/5a9IoR45+Yp TC3NTav1EytOv2v61orD3Vovpah/7VIxHH1hevh72bxz7p52pQdWpAyYDTFhUZ5g wQ== -----END CERTIFICATE-----Generated at Thu Mar 26 23:38:29 2026 by rpki-client