$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1089062140922298370/0/3130332e38392e3230342e302f32322d3332203d3e203633353930.roa File: 3130332e38392e3230342e302f32322d3332203d3e203633353930.roa (raw, json) Hash identifier: wQZNQ8htskRoCTool3ebx10NlszNudhoZTfs1p8qovY= Subject key identifier: 69:D9:6C:91:81:A8:6B:1A:E1:73:37:39:DA:7A:2C:FB:79:40:71:03 Certificate issuer: /CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Certificate serial: 2D04964B4D16DA5ECFA3BD87520BCBDBA8475FFA Authority key identifier: 22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/3130332e38392e3230342e302f32322d3332203d3e203633353930.roa Signing time: Thu 23 Apr 2026 07:28:05 +0000 ROA not before: Thu 23 Apr 2026 07:23:05 +0000 ROA not after: Thu 22 Apr 2027 07:28:05 +0000 asID: 63590 IP address blocks: 103.89.204.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:04:96:4b:4d:16:da:5e:cf:a3:bd:87:52:0b:cb:db:a8:47:5f:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Validity Not Before: Apr 23 07:23:05 2026 GMT Not After : Apr 22 07:28:05 2027 GMT Subject: CN=69D96C9181A86B1AE1733739DA7A2CFB79407103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0c:ea:b3:da:b0:60:4f:37:85:f5:c3:c2:89: d1:f3:64:fc:a6:1e:d6:4a:52:0e:18:eb:46:34:09: 7c:9a:82:07:30:d6:7e:65:74:f8:9b:8f:3a:2c:14: 2e:e1:eb:83:ec:07:42:d2:63:78:27:39:37:72:75: 70:15:47:f1:9e:5e:eb:3e:d7:13:88:78:4d:f0:af: f5:c9:fa:a2:28:72:9f:21:c2:4c:bb:c0:63:36:ad: a4:12:1d:60:69:ba:c6:b3:32:d9:57:ad:88:18:46: b3:ed:b3:dd:fb:d1:d9:5a:78:43:21:8c:2e:04:4a: 5c:35:fa:35:36:52:99:c1:25:60:06:56:29:69:53: 8d:b7:1c:38:33:dc:ef:4d:6f:84:a1:72:45:a7:4b: c1:56:5a:17:4f:1a:1a:79:a7:32:70:c0:4d:19:8f: 29:10:c2:67:7d:3a:31:b7:54:55:a6:14:71:52:b5: ef:98:66:54:95:97:71:54:67:a3:24:0f:e8:ca:00: 1f:71:ac:15:d6:18:0c:81:11:91:3c:e2:48:dd:f2: 6c:54:eb:c6:88:3c:48:c1:9f:73:77:0e:b8:33:14: 1a:8c:f2:c0:4e:62:52:ab:86:65:52:23:ea:22:dd: 4e:c4:29:e3:ca:3b:b6:72:9f:4e:86:5b:23:17:ce: 15:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:D9:6C:91:81:A8:6B:1A:E1:73:37:39:DA:7A:2C:FB:79:40:71:03 X509v3 Authority Key Identifier: keyid:22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/3130332e38392e3230342e302f32322d3332203d3e203633353930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.204.0/22 Signature Algorithm: sha256WithRSAEncryption 63:29:c4:d9:67:69:82:27:c3:76:37:f1:bf:99:6b:d5:e3:71: f4:82:5b:85:bf:5a:36:bf:e4:84:30:d0:11:8e:83:1f:82:e9: e1:f5:83:9c:0b:35:60:2b:da:70:73:c8:fa:10:82:b6:03:36: 3f:9f:54:7f:07:41:4f:bf:1c:43:80:7c:67:7b:24:cd:01:e0: 29:d2:b5:d8:00:8a:61:48:e3:9a:3a:78:11:2c:55:fe:ff:23: ec:e2:3c:a9:ed:d8:47:20:74:87:bf:2b:ee:d9:3c:da:0c:c7: 9c:63:8d:ae:95:14:46:d1:32:03:8e:aa:cc:25:df:b5:ba:ea: 1c:97:19:55:5f:f2:e9:5b:2f:50:6e:76:c2:0e:7a:c6:68:ec: 33:cf:07:74:3b:c9:47:b3:e0:2d:8e:e8:64:41:a9:74:86:32: ad:99:8f:ed:b0:64:f4:58:b5:64:21:60:67:d9:8c:c8:c2:02: 8e:cc:1a:a2:18:96:57:08:cf:7a:7d:97:88:db:c3:5c:44:e4: f3:78:e2:57:29:9c:42:ba:22:ae:c6:65:a5:d9:c0:17:f1:ff: 0c:1d:73:f1:7a:63:14:fb:96:d3:ab:1c:9d:c5:e7:0c:d0:9b: 06:7c:a4:f4:96:28:7e:07:fb:c7:15:58:e4:6a:a2:d0:f9:be: 05:0c:76:4b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIULQSWS00W2l7Po72HUgvL26hHX/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFC RjI3QjIwMjAeFw0yNjA0MjMwNzIzMDVaFw0yNzA0MjIwNzI4MDVaMDMxMTAvBgNV BAMTKDY5RDk2QzkxODFBODZCMUFFMTczMzczOURBN0EyQ0ZCNzk0MDcxMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjDOqz2rBgTzeF9cPCidHzZPym HtZKUg4Y60Y0CXyaggcw1n5ldPibjzosFC7h64PsB0LSY3gnOTdydXAVR/GeXus+ 1xOIeE3wr/XJ+qIocp8hwky7wGM2raQSHWBpusazMtlXrYgYRrPts9370dlaeEMh jC4ESlw1+jU2UpnBJWAGVilpU423HDgz3O9Nb4ShckWnS8FWWhdPGhp5pzJwwE0Z jykQwmd9OjG3VFWmFHFSte+YZlSVl3FUZ6MkD+jKAB9xrBXWGAyBEZE84kjd8mxU 68aIPEjBn3N3DrgzFBqM8sBOYlKrhmVSI+oi3U7EKePKO7Zyn06GWyMXzhXPAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUadlskYGoaxrhczc52nos+3lAcQMwHwYDVR0j BBgwFoAUImXC6BvMzE6SKrEcWBreMb8nsgIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 OTA2MjE0MDkyMjI5ODM3MC8wLzIyNjVDMkU4MUJDQ0NDNEU5MjJBQjExQzU4MUFE RTMxQkYyN0IyMDIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFCRjI3QjIwMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA4OTA2MjE0MDkyMjI5ODM3MC8wLzMxMzAzMzJlMzgz OTJlMzIzMDM0MmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzYzMzM1MzkzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmdZzDANBgkqhkiG9w0BAQsFAAOCAQEAYynE2WdpgifDdjfxv5lr1eNx 9IJbhb9aNr/khDDQEY6DH4Lp4fWDnAs1YCvacHPI+hCCtgM2P59UfwdBT78cQ4B8 Z3skzQHgKdK12ACKYUjjmjp4ESxV/v8j7OI8qe3YRyB0h78r7tk82gzHnGONrpUU RtEyA46qzCXftbrqHJcZVV/y6VsvUG52wg56xmjsM88HdDvJR7PgLY7oZEGpdIYy rZmP7bBk9Fi1ZCFgZ9mMyMICjswaohiWVwjPen2XiNvDXETk83jiVymcQroirsZl pdnAF/H/DB1z8XpjFPuW06scncXnDNCbBnyk9JYofgf7xxVY5Gqi0Pm+BQx2Sw== -----END CERTIFICATE-----Generated at Wed May 13 20:20:29 2026 by rpki-client