$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3139372e3138302e302f32322d3234203d3e20313532303932.roa File: 3130332e3139372e3138302e302f32322d3234203d3e20313532303932.roa (raw, json) Hash identifier: B6x/uDECE7+Fg5u7tyvLoqu43JaKthAEheYeLJj7NRQ= Subject key identifier: 97:F6:B5:20:75:0F:7D:8E:71:D3:72:21:F8:80:05:D3:D7:82:63:A5 Certificate issuer: /CN=09F7B3237C248B53A3ADBB771E63C783610963AB Certificate serial: 589B7BB8F967341DA5102A70A3FFCB9759E7DD2A Authority key identifier: 09:F7:B3:23:7C:24:8B:53:A3:AD:BB:77:1E:63:C7:83:61:09:63:AB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3139372e3138302e302f32322d3234203d3e20313532303932.roa Signing time: Tue 21 Apr 2026 11:24:57 +0000 ROA not before: Tue 21 Apr 2026 11:19:57 +0000 ROA not after: Tue 20 Apr 2027 11:24:57 +0000 asID: 152092 IP address blocks: 103.197.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.crl rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9b:7b:b8:f9:67:34:1d:a5:10:2a:70:a3:ff:cb:97:59:e7:dd:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09F7B3237C248B53A3ADBB771E63C783610963AB Validity Not Before: Apr 21 11:19:57 2026 GMT Not After : Apr 20 11:24:57 2027 GMT Subject: CN=97F6B520750F7D8E71D37221F88005D3D78263A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:c4:63:4e:0d:62:6c:51:87:5a:25:cc:7d:2c: 6d:b4:32:3b:ef:d1:f8:ec:4a:bc:23:b4:b9:93:73: 1f:8c:63:7b:d7:b3:3f:25:5f:12:8e:5b:cb:da:d4: e6:1c:a5:c8:d7:7f:49:4b:8a:34:2f:43:d9:d2:0f: d7:05:19:60:04:0f:a6:f2:8f:34:1b:d9:92:15:1b: a7:dd:64:99:a6:d1:da:35:fd:47:a9:cf:ed:de:9b: cd:f1:80:98:b2:cb:10:ac:38:b4:ae:8c:ea:1c:49: d9:2a:2d:47:23:98:5d:4c:19:46:b6:9d:ef:d0:f3: 50:87:2a:ce:d5:0a:a2:eb:cc:e2:c0:78:3d:2d:72: 16:04:e1:7d:3a:58:0b:80:9d:03:49:d3:f5:22:70: ac:ab:1c:37:cc:a2:bc:c7:34:a0:85:d4:26:76:58: 98:a3:87:da:5c:e8:fa:83:0c:c1:aa:9c:96:10:06: 78:ef:95:d1:9c:08:ae:eb:19:09:f8:b2:04:fe:bc: ae:8f:90:c3:18:ba:61:46:85:ec:37:7a:6c:92:fa: f2:75:66:96:b2:93:9e:73:e1:1e:10:ab:de:d1:b8: 20:6d:b6:92:89:ca:62:dc:36:bf:61:f1:fc:33:d8: 2b:2e:f7:39:c2:45:c1:f6:c2:6d:0e:40:95:d8:f2: 74:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F6:B5:20:75:0F:7D:8E:71:D3:72:21:F8:80:05:D3:D7:82:63:A5 X509v3 Authority Key Identifier: keyid:09:F7:B3:23:7C:24:8B:53:A3:AD:BB:77:1E:63:C7:83:61:09:63:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3139372e3138302e302f32322d3234203d3e20313532303932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.197.180.0/22 Signature Algorithm: sha256WithRSAEncryption 99:17:8f:a4:8b:7f:20:f9:8a:ee:de:07:67:43:b2:cf:e3:12: 52:12:c3:da:6a:99:66:3d:a4:f3:2a:47:9d:d9:09:ba:6a:79: 8b:c3:51:e7:20:73:7e:fb:4c:04:25:a5:65:75:33:41:4f:bd: 1a:9b:cc:df:d9:ba:cd:19:3a:37:c7:91:e5:b2:5a:7c:df:1a: eb:92:ab:7d:7b:6e:4f:77:3d:16:4f:07:34:8e:46:b3:39:36: a5:33:3c:e9:ad:f9:df:b6:d8:59:eb:c1:80:96:27:45:8b:8e: dd:5d:4b:42:35:0d:14:82:74:d1:30:e5:24:88:28:7d:9b:3e: 15:ae:97:46:7f:98:2a:26:e6:d0:38:b8:39:44:93:b3:e5:db: 2f:c6:9c:ba:bb:a2:2b:af:46:c8:23:92:bf:4a:7b:b0:7e:50: e2:46:3c:a4:ea:66:12:d5:65:3b:02:02:76:12:9e:9f:10:19: 53:30:50:88:f4:06:d5:ac:60:cc:f9:27:a1:6d:a8:b8:d3:3a: 9e:b7:dd:71:cf:66:cb:19:77:15:c1:dc:83:fd:25:25:f2:e2: c2:e3:f1:73:44:d2:65:ae:fb:be:43:9f:7b:2f:46:b6:51:cb: c4:50:7e:a5:0e:5e:b8:be:b3:5a:56:78:40:a2:d6:b4:84:c5: 56:c8:af:4c -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUWJt7uPlnNB2lECpwo//Ll1nn3SowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlGN0IzMjM3QzI0OEI1M0EzQURCQjc3MUU2M0M3ODM2 MTA5NjNBQjAeFw0yNjA0MjExMTE5NTdaFw0yNzA0MjAxMTI0NTdaMDMxMTAvBgNV BAMTKDk3RjZCNTIwNzUwRjdEOEU3MUQzNzIyMUY4ODAwNUQzRDc4MjYzQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKxGNODWJsUYdaJcx9LG20Mjvv 0fjsSrwjtLmTcx+MY3vXsz8lXxKOW8va1OYcpcjXf0lLijQvQ9nSD9cFGWAED6by jzQb2ZIVG6fdZJmm0do1/Uepz+3em83xgJiyyxCsOLSujOocSdkqLUcjmF1MGUa2 ne/Q81CHKs7VCqLrzOLAeD0tchYE4X06WAuAnQNJ0/UicKyrHDfMorzHNKCF1CZ2 WJijh9pc6PqDDMGqnJYQBnjvldGcCK7rGQn4sgT+vK6PkMMYumFGhew3emyS+vJ1 Zpayk55z4R4Qq97RuCBttpKJymLcNr9h8fwz2Csu9znCRcH2wm0OQJXY8nSnAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUl/a1IHUPfY5x03Ih+IAF09eCY6UwHwYDVR0j BBgwFoAUCfezI3wki1Ojrbt3HmPHg2EJY6swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTY4MzA2MTc3NjM4Ni8wLzA5RjdCMzIzN0MyNDhCNTNBM0FEQkI3NzFFNjND NzgzNjEwOTYzQUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDlGN0IzMjM3QzI0OEI1M0EzQURCQjc3MUU2M0M3ODM2MTA5NjNBQi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTkxNjgzMDYxNzc2Mzg2LzAvMzEzMDMzMmUz MTM5MzcyZTMxMzgzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzkz Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmfFtDANBgkqhkiG9w0BAQsFAAOCAQEAmRePpIt/IPmK7t4H Z0Oyz+MSUhLD2mqZZj2k8ypHndkJump5i8NR5yBzfvtMBCWlZXUzQU+9GpvM39m6 zRk6N8eR5bJafN8a65KrfXtuT3c9Fk8HNI5Gszk2pTM86a3537bYWevBgJYnRYuO 3V1LQjUNFIJ00TDlJIgofZs+Fa6XRn+YKibm0Di4OUSTs+XbL8acuruiK69GyCOS v0p7sH5Q4kY8pOpmEtVlOwICdhKenxAZUzBQiPQG1axgzPknoW2ouNM6nrfdcc9m yxl3FcHcg/0lJfLiwuPxc0TSZa77vkOfey9GtlHLxFB+pQ5euL6zWlZ4QKLWtITF VsivTA== -----END CERTIFICATE-----Generated at Wed May 13 20:57:40 2026 by rpki-client