$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3231382e39322e302f32322d3234203d3e20313534333231.roa File: 3130332e3231382e39322e302f32322d3234203d3e20313534333231.roa (raw, json) Hash identifier: 433AW0+hhEE8q7JCu17vzxwpDNdnp1FKFB4cC73VXRY= Subject key identifier: 00:3C:71:23:AA:E8:B6:A6:C2:39:A1:F0:49:9D:EE:97:72:4D:11:AA Certificate issuer: /CN=09F7B3237C248B53A3ADBB771E63C783610963AB Certificate serial: 0963A8AC8948CC4C9892C228BC473FEF87C666A0 Authority key identifier: 09:F7:B3:23:7C:24:8B:53:A3:AD:BB:77:1E:63:C7:83:61:09:63:AB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3231382e39322e302f32322d3234203d3e20313534333231.roa Signing time: Tue 10 Mar 2026 04:38:02 +0000 ROA not before: Tue 10 Mar 2026 04:33:02 +0000 ROA not after: Tue 09 Mar 2027 04:38:02 +0000 asID: 154321 IP address blocks: 103.218.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.crl rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 14:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:63:a8:ac:89:48:cc:4c:98:92:c2:28:bc:47:3f:ef:87:c6:66:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09F7B3237C248B53A3ADBB771E63C783610963AB Validity Not Before: Mar 10 04:33:02 2026 GMT Not After : Mar 9 04:38:02 2027 GMT Subject: CN=003C7123AAE8B6A6C239A1F0499DEE97724D11AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a6:db:55:9e:03:1c:24:e8:60:ad:36:3e:26: dd:5d:0a:7e:5b:9c:d3:ea:bc:b9:fe:db:cf:9a:f0: 07:dc:64:08:bf:da:f7:40:28:e4:54:83:60:ff:98: af:be:1d:9f:e4:15:ba:ef:90:b7:91:12:ed:51:d5: a0:7d:ae:71:94:26:0f:ef:80:11:b6:f6:d8:8e:96: 49:93:5d:db:d7:fc:c9:8c:06:dc:e5:09:37:8b:8f: f3:31:9e:bb:43:a1:04:af:53:8a:93:a0:87:d1:1d: 1e:62:f1:48:cd:62:86:b0:db:99:e7:74:00:17:e1: fe:00:aa:e8:89:34:df:74:fd:80:44:02:c9:86:bd: 5a:30:b7:49:60:69:e8:68:27:51:53:1e:da:7a:54: 2d:fa:07:16:fb:ec:9d:45:55:e1:0e:3f:55:5d:61: 3e:12:71:3d:74:c1:f5:0b:7f:21:6e:92:d7:1c:4c: 87:74:35:1d:e0:de:a3:2a:b7:79:13:78:14:86:08: 0e:21:14:8b:19:a2:e2:86:12:db:9f:4e:92:ef:60: 49:6f:88:7d:90:50:15:67:86:1c:36:cf:5b:75:66: 3c:67:5f:9a:7d:ee:14:ae:96:ba:e1:29:83:32:ee: ae:10:53:fd:89:78:3c:b9:4b:d7:0a:05:26:2d:fb: e3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:3C:71:23:AA:E8:B6:A6:C2:39:A1:F0:49:9D:EE:97:72:4D:11:AA X509v3 Authority Key Identifier: keyid:09:F7:B3:23:7C:24:8B:53:A3:AD:BB:77:1E:63:C7:83:61:09:63:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/09F7B3237C248B53A3ADBB771E63C783610963AB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/09F7B3237C248B53A3ADBB771E63C783610963AB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591683061776386/0/3130332e3231382e39322e302f32322d3234203d3e20313534333231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.218.92.0/22 Signature Algorithm: sha256WithRSAEncryption 09:58:ee:8d:01:82:ec:91:63:24:22:3d:4e:22:25:ad:b5:b2: 73:62:ec:5b:08:c1:93:b8:66:a8:12:a9:f0:a7:48:d5:32:8d: ac:5a:bd:40:43:f1:fa:a4:0c:75:3d:d5:df:3d:d2:5f:f7:ed: 7a:be:85:16:b1:1a:8a:1e:87:bb:d7:06:2d:84:6f:fc:81:71: 1a:2b:00:19:70:72:81:f1:41:68:b4:ab:e2:54:5d:fe:4f:28: 85:a4:8b:e6:69:bf:e2:f7:39:0a:b9:79:03:41:26:25:5e:38: 01:d9:3e:fb:d0:0c:0b:ad:fd:46:0f:63:2d:5a:55:68:83:a7: a7:f6:94:c5:c9:6f:05:4b:2b:b6:b5:7f:cd:e4:e8:14:27:c6: f5:f1:10:90:06:33:ee:e3:95:53:9f:db:b1:84:b2:2b:81:67: 56:a4:4a:a5:15:cb:de:88:b6:d1:3e:a2:04:cb:de:30:6a:41: c2:38:33:71:27:58:90:7c:03:76:16:e6:a9:91:b2:24:22:b7: 24:82:33:09:d8:d1:66:79:77:19:dd:c7:ca:0f:3a:54:a8:aa: 7e:2f:0e:37:47:9f:6a:f7:3f:bf:34:f4:1a:02:83:24:f8:f0: 43:b1:5e:95:f4:98:19:b4:f9:79:0b:38:23:91:81:26:a7:40: 5b:6e:ad:cb -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCWOorIlIzEyYksIovEc/74fGZqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlGN0IzMjM3QzI0OEI1M0EzQURCQjc3MUU2M0M3ODM2 MTA5NjNBQjAeFw0yNjAzMTAwNDMzMDJaFw0yNzAzMDkwNDM4MDJaMDMxMTAvBgNV BAMTKDAwM0M3MTIzQUFFOEI2QTZDMjM5QTFGMDQ5OURFRTk3NzI0RDExQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjpttVngMcJOhgrTY+Jt1dCn5b nNPqvLn+28+a8AfcZAi/2vdAKORUg2D/mK++HZ/kFbrvkLeREu1R1aB9rnGUJg/v gBG29tiOlkmTXdvX/MmMBtzlCTeLj/MxnrtDoQSvU4qToIfRHR5i8UjNYoaw25nn dAAX4f4AquiJNN90/YBEAsmGvVowt0lgaehoJ1FTHtp6VC36Bxb77J1FVeEOP1Vd YT4ScT10wfULfyFuktccTId0NR3g3qMqt3kTeBSGCA4hFIsZouKGEtufTpLvYElv iH2QUBVnhhw2z1t1ZjxnX5p97hSulrrhKYMy7q4QU/2JeDy5S9cKBSYt++MdAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUADxxI6rotqbCOaHwSZ3ul3JNEaowHwYDVR0j BBgwFoAUCfezI3wki1Ojrbt3HmPHg2EJY6swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTY4MzA2MTc3NjM4Ni8wLzA5RjdCMzIzN0MyNDhCNTNBM0FEQkI3NzFFNjND NzgzNjEwOTYzQUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDlGN0IzMjM3QzI0OEI1M0EzQURCQjc3MUU2M0M3ODM2MTA5NjNBQi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1OTE2ODMwNjE3NzYzODYvMC8zMTMwMzMyZTMy MzEzODJlMzkzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzUzNDMzMzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfaXDANBgkqhkiG9w0BAQsFAAOCAQEACVjujQGC7JFjJCI9TiIl rbWyc2LsWwjBk7hmqBKp8KdI1TKNrFq9QEPx+qQMdT3V3z3SX/fter6FFrEaih6H u9cGLYRv/IFxGisAGXBygfFBaLSr4lRd/k8ohaSL5mm/4vc5Crl5A0EmJV44Adk+ +9AMC639Rg9jLVpVaIOnp/aUxclvBUsrtrV/zeToFCfG9fEQkAYz7uOVU5/bsYSy K4FnVqRKpRXL3oi20T6iBMveMGpBwjgzcSdYkHwDdhbmqZGyJCK3JIIzCdjRZnl3 Gd3Hyg86VKiqfi8ON0efavc/vzT0GgKDJPjwQ7FelfSYGbT5eQs4I5GBJqdAW26t yw== -----END CERTIFICATE-----Generated at Fri Mar 27 02:16:33 2026 by rpki-client