$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1070955924073545731/0/AS0.roa File: AS0.roa (raw, json) Hash identifier: RSxUs5ZU8R/5Tt2wZ85816aThZjNhTTXPB/DV1zalNU= Subject key identifier: 7C:05:4B:FA:04:C8:22:2C:51:BE:AB:0E:7E:1B:AF:F4:8A:90:63:35 Certificate issuer: /CN=1B27C26F8F7ECE53972D80933F503C09222E8F9F Certificate serial: 267D1BE12008FF71163A8B4424CC921D687B0CF8 Authority key identifier: 1B:27:C2:6F:8F:7E:CE:53:97:2D:80:93:3F:50:3C:09:22:2E:8F:9F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/AS0.roa Signing time: Mon 20 Apr 2026 08:45:03 +0000 ROA not before: Mon 20 Apr 2026 08:40:03 +0000 ROA not after: Mon 19 Apr 2027 08:45:03 +0000 asID: 0 IP address blocks: 43.241.248.0/22 maxlen: 22 103.37.176.0/22 maxlen: 22 103.156.28.0/23 maxlen: 23 120.54.0.0/16 maxlen: 16 2401:7d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.crl rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 06:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:7d:1b:e1:20:08:ff:71:16:3a:8b:44:24:cc:92:1d:68:7b:0c:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B27C26F8F7ECE53972D80933F503C09222E8F9F Validity Not Before: Apr 20 08:40:03 2026 GMT Not After : Apr 19 08:45:03 2027 GMT Subject: CN=7C054BFA04C8222C51BEAB0E7E1BAFF48A906335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7e:c4:ca:b8:75:dd:12:4b:56:80:da:ad:ec: 87:2c:87:02:12:14:46:e3:cf:1f:64:99:79:96:ee: e5:b0:07:17:2f:16:7d:63:bf:b5:36:64:9c:af:b0: d3:20:f6:95:95:23:26:8a:32:d2:ed:fd:67:97:80: d3:4c:e2:50:36:82:86:87:34:60:e8:3f:89:89:58: 55:db:c3:97:cf:7a:f3:5c:b7:15:e1:a2:d5:84:04: 6a:4a:80:56:9d:0d:4b:f9:dd:8e:9a:93:a1:b1:b7: d4:80:4d:28:5b:3d:79:fd:6a:3a:be:37:d7:0c:35: cc:8e:4e:88:ec:b6:c0:4f:88:a1:c0:65:50:dc:ae: 5a:3c:cf:c4:f9:e8:28:96:1a:d5:fb:82:a6:40:7b: 10:7b:04:bb:8d:54:be:71:6c:7e:a2:86:72:c7:e5: 45:37:bc:59:f4:10:5a:90:35:24:dc:78:57:42:b8: 9d:be:77:49:19:df:36:eb:27:51:ed:44:7b:f5:da: 46:f4:44:3e:7e:ab:de:f0:db:cc:f3:63:3e:09:59: 27:e5:d8:d1:bd:17:42:11:23:74:64:e7:54:58:18: 36:e3:32:db:df:45:2c:58:be:8f:3e:a0:90:b3:10: 92:15:72:17:2f:f0:7a:e0:54:6c:f9:54:b0:8e:51: 36:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:05:4B:FA:04:C8:22:2C:51:BE:AB:0E:7E:1B:AF:F4:8A:90:63:35 X509v3 Authority Key Identifier: keyid:1B:27:C2:6F:8F:7E:CE:53:97:2D:80:93:3F:50:3C:09:22:2E:8F:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.248.0/22 103.37.176.0/22 103.156.28.0/23 120.54.0.0/16 IPv6: 2401:7d80::/32 Signature Algorithm: sha256WithRSAEncryption 77:ea:57:56:5d:03:8b:be:9c:a9:ed:62:db:f1:f9:f6:a2:19: b1:cd:58:fc:20:e7:8a:26:09:67:8d:91:61:c7:3a:dd:54:e7: 0b:95:90:06:5c:a6:26:0c:47:bf:9c:01:92:7c:b2:20:05:c6: af:e7:a4:7f:ec:09:f3:89:78:64:b9:b0:5a:b5:3e:01:94:dd: a5:63:0e:ce:63:c7:6c:b1:58:60:7a:0b:40:46:25:e1:4a:7b: cf:b1:06:ad:4d:e6:fd:11:9d:61:ce:bb:9a:c1:60:0a:31:ad: 6f:bc:6e:10:b8:10:6e:2a:dd:e6:07:7f:db:9b:b1:ed:cd:3a: db:82:ba:6c:bd:45:58:4a:a4:62:a4:6c:4e:ee:ae:1a:55:bb: 38:c2:39:7b:9e:84:03:61:f1:13:b9:27:ff:e9:44:65:0c:e9: 9d:59:53:91:a3:c2:d9:3e:b0:f5:eb:a4:b4:de:cc:78:64:9b: 3d:77:7c:5c:7c:f4:17:7f:81:3b:93:89:6f:6d:77:3b:c3:77: 63:82:cf:55:70:26:54:98:5f:97:b6:70:00:5f:c9:ff:b0:af: 96:dc:4e:89:c0:21:2a:c5:11:ca:5d:62:23:a8:1e:46:e7:d9: 41:89:7a:3a:32:ca:18:22:07:f0:2f:ad:3e:5f:84:d7:f8:ea: c9:81:24:53 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgIUJn0b4SAI/3EWOotEJMySHWh7DPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUIyN0MyNkY4RjdFQ0U1Mzk3MkQ4MDkzM0Y1MDNDMDky MjJFOEY5RjAeFw0yNjA0MjAwODQwMDNaFw0yNzA0MTkwODQ1MDNaMDMxMTAvBgNV BAMTKDdDMDU0QkZBMDRDODIyMkM1MUJFQUIwRTdFMUJBRkY0OEE5MDYzMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcfsTKuHXdEktWgNqt7IcshwIS FEbjzx9kmXmW7uWwBxcvFn1jv7U2ZJyvsNMg9pWVIyaKMtLt/WeXgNNM4lA2goaH NGDoP4mJWFXbw5fPevNctxXhotWEBGpKgFadDUv53Y6ak6Gxt9SATShbPXn9ajq+ N9cMNcyOTojstsBPiKHAZVDcrlo8z8T56CiWGtX7gqZAexB7BLuNVL5xbH6ihnLH 5UU3vFn0EFqQNSTceFdCuJ2+d0kZ3zbrJ1HtRHv12kb0RD5+q97w28zzYz4JWSfl 2NG9F0IRI3Rk51RYGDbjMtvfRSxYvo8+oJCzEJIVchcv8HrgVGz5VLCOUTaJAgMB AAGjggH/MIIB+zAdBgNVHQ4EFgQUfAVL+gTIIixRvqsOfhuv9IqQYzUwHwYDVR0j BBgwFoAUGyfCb49+zlOXLYCTP1A8CSIuj58wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA3 MDk1NTkyNDA3MzU0NTczMS8wLzFCMjdDMjZGOEY3RUNFNTM5NzJEODA5MzNGNTAz QzA5MjIyRThGOUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUIyN0MyNkY4RjdFQ0U1Mzk3MkQ4MDkzM0Y1MDNDMDkyMjJFOEY5Ri5jZXIw WQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1yc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNzA5NTU5MjQwNzM1NDU3MzEvMC9BUzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwPwYIKwYBBQUHAQcBAf8EMDAuMB0EAgABMBcD BAIr8fgDBAJnJbADBAFnnBwDAwB4NjANBAIAAjAHAwUAJAF9gDANBgkqhkiG9w0B AQsFAAOCAQEAd+pXVl0Di76cqe1i2/H59qIZsc1Y/CDniiYJZ42RYcc63VTnC5WQ BlymJgxHv5wBknyyIAXGr+ekf+wJ84l4ZLmwWrU+AZTdpWMOzmPHbLFYYHoLQEYl 4Up7z7EGrU3m/RGdYc67msFgCjGtb7xuELgQbird5gd/25ux7c0624K6bL1FWEqk YqRsTu6uGlW7OMI5e56EA2HxE7kn/+lEZQzpnVlTkaPC2T6w9euktN7MeGSbPXd8 XHz0F3+BO5OJb213O8N3Y4LPVXAmVJhfl7ZwAF/J/7CvltxOicAhKsURyl1iI6ge RufZQYl6OjLKGCIH8C+tPl+E1/jqyYEkUw== -----END CERTIFICATE-----Generated at Tue May 12 21:53:48 2026 by rpki-client