$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3230332e3130372e302e302f31372d3234203d3e20313334393633.roa File: 3230332e3130372e302e302f31372d3234203d3e20313334393633.roa (raw, json) Hash identifier: KP/aLWrAtDaqluL0jOpzqoXt/vsYaHIYk2JQ8tX8Z2Q= Subject key identifier: 3B:AD:39:59:07:66:E3:4D:2C:28:5B:60:91:27:A1:97:B0:0E:79:70 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 7189C8E9991E879A23BBCA56D343B0F638CF0C6A Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3230332e3130372e302e302f31372d3234203d3e20313334393633.roa Signing time: Mon 11 May 2026 16:31:28 +0000 ROA not before: Mon 11 May 2026 16:26:28 +0000 ROA not after: Mon 10 May 2027 16:31:28 +0000 asID: 134963 IP address blocks: 203.107.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:89:c8:e9:99:1e:87:9a:23:bb:ca:56:d3:43:b0:f6:38:cf:0c:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: May 11 16:26:28 2026 GMT Not After : May 10 16:31:28 2027 GMT Subject: CN=3BAD39590766E34D2C285B609127A197B00E7970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cb:87:af:5b:0b:33:e3:42:c9:8a:95:1c:25: 63:cf:2f:42:63:5f:46:94:14:7c:7c:6f:b2:f7:6b: 1a:e5:19:00:a7:b3:fe:b9:f6:57:c7:bf:ff:a0:82: f8:fd:63:8e:7e:bf:be:34:fb:d3:70:d7:a5:6b:bc: e2:3d:dd:a8:f5:30:16:8b:64:63:02:ce:46:cc:c2: 6c:42:f2:df:13:2a:fa:46:77:17:b2:3f:e9:86:92: 68:b1:eb:d4:ed:5e:fe:31:49:41:54:9d:03:43:06: 81:ad:91:7b:c4:4b:9a:3d:35:ca:4a:86:12:07:5a: 59:3b:31:5e:8f:92:b0:88:fa:ac:27:18:89:d3:ea: be:d4:2f:35:ea:49:87:c4:c8:6a:5a:9c:1d:d6:79: 3e:d1:f2:aa:15:be:ac:ea:0d:90:e3:63:5c:69:8b: ed:35:d8:b4:60:f3:cd:1d:7d:93:ad:19:70:38:1d: fc:a4:31:b3:20:b0:6a:15:1f:94:75:10:94:eb:59: 21:02:0e:35:5a:cb:96:11:37:cc:fd:a6:c6:0e:1b: 27:9d:49:0a:40:ec:68:cb:04:67:3d:60:48:3b:6e: de:d0:34:aa:1f:4f:45:96:6e:fc:ff:c3:16:f3:48: 20:46:c5:63:4d:33:87:3a:c1:98:47:60:e6:73:e7: d1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AD:39:59:07:66:E3:4D:2C:28:5B:60:91:27:A1:97:B0:0E:79:70 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/3230332e3130372e302e302f31372d3234203d3e20313334393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.107.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1a:25:7b:9d:02:21:2f:f5:9d:96:6f:74:93:5a:6f:42:ab:f7: 14:03:eb:16:54:51:c2:47:c0:aa:3d:cc:4f:43:d4:07:31:37: 8b:c6:61:c8:f8:f3:ad:ad:d6:ef:66:26:25:1d:2d:db:da:25: a8:73:99:f5:be:15:da:94:2e:f3:e7:e8:c2:25:16:36:e6:84: da:7c:0a:54:db:ef:32:d3:ed:64:b6:7c:30:8a:87:c8:d8:ea: b1:75:09:09:cd:28:f4:d4:3b:8c:10:e7:64:d9:a8:62:08:3e: e9:25:64:c3:7d:a7:36:5d:c7:0a:4a:9b:01:cd:6b:10:0f:0c: 52:3e:47:f1:02:99:38:b1:d4:82:54:4d:b4:88:30:61:6f:51: 4a:90:dd:a0:04:f4:00:c7:cf:82:bb:c9:c7:03:97:72:34:54: cc:73:c5:6e:be:01:72:52:8e:e4:19:78:c7:7c:b1:3e:8a:32: 0b:d7:66:43:a5:34:bd:b0:d5:83:07:d0:af:8c:e1:ca:6c:08: 6e:58:4e:9b:7b:16:65:6c:bf:7c:f9:12:02:22:32:bc:fa:0f: 4c:6d:f6:15:2e:25:37:ce:b1:54:40:ed:23:19:3d:d2:0d:b3: f6:b5:a0:90:5a:c7:4d:c7:75:94:40:c6:ba:bc:f3:96:32:1b: de:75:c7:79 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUcYnI6Zkeh5oju8pW00Ow9jjPDGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA1MTExNjI2MjhaFw0yNzA1MTAxNjMxMjhaMDMxMTAvBgNV BAMTKDNCQUQzOTU5MDc2NkUzNEQyQzI4NUI2MDkxMjdBMTk3QjAwRTc5NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZy4evWwsz40LJipUcJWPPL0Jj X0aUFHx8b7L3axrlGQCns/659lfHv/+ggvj9Y45+v740+9Nw16VrvOI93aj1MBaL ZGMCzkbMwmxC8t8TKvpGdxeyP+mGkmix69TtXv4xSUFUnQNDBoGtkXvES5o9NcpK hhIHWlk7MV6PkrCI+qwnGInT6r7ULzXqSYfEyGpanB3WeT7R8qoVvqzqDZDjY1xp i+012LRg880dfZOtGXA4HfykMbMgsGoVH5R1EJTrWSECDjVay5YRN8z9psYOGyed SQpA7GjLBGc9YEg7bt7QNKofT0WWbvz/wxbzSCBGxWNNM4c6wZhHYOZz59GjAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUO605WQdm400sKFtgkSehl7AOeXAwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTg4NzY0NDA5MDYzMDE0NS8wLzMyMzAzMzJlMzEz MDM3MmUzMDJlMzAyZjMxMzcyZDMyMzQyMDNkM2UyMDMxMzMzNDM5MzYzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEB8trADANBgkqhkiG9w0BAQsFAAOCAQEAGiV7nQIhL/Wdlm90k1pvQqv3 FAPrFlRRwkfAqj3MT0PUBzE3i8ZhyPjzra3W72YmJR0t29olqHOZ9b4V2pQu8+fo wiUWNuaE2nwKVNvvMtPtZLZ8MIqHyNjqsXUJCc0o9NQ7jBDnZNmoYgg+6SVkw32n Nl3HCkqbAc1rEA8MUj5H8QKZOLHUglRNtIgwYW9RSpDdoAT0AMfPgrvJxwOXcjRU zHPFbr4BclKO5Bl4x3yxPooyC9dmQ6U0vbDVgwfQr4zhymwIblhOm3sWZWy/fPkS AiIyvPoPTG32FS4lN86xVEDtIxk90g2z9rWgkFrHTcd1lEDGurzzljIb3nXHeQ== -----END CERTIFICATE-----Generated at Wed May 13 10:00:55 2026 by rpki-client