$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100967882713464835/0/3137352e3130322e3230382e302f32302d3230203d3e203435303836.roa File: 3137352e3130322e3230382e302f32302d3230203d3e203435303836.roa (raw, json) Hash identifier: ims/EvTAqLemtPhxrhZVuL8ucZ7Js1GGRx8OtJ4Pc7c= Subject key identifier: E6:6F:58:21:16:01:63:F7:A3:85:FF:41:17:0B:AE:F1:B9:A0:45:C7 Certificate issuer: /CN=061380D3CE8E2B472E9B68A28BCAC5C725B02C09 Certificate serial: 21F4751B88092C69A2CF14808A48BD30ED860E59 Authority key identifier: 06:13:80:D3:CE:8E:2B:47:2E:9B:68:A2:8B:CA:C5:C7:25:B0:2C:09 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/061380D3CE8E2B472E9B68A28BCAC5C725B02C09.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100967882713464835/0/3137352e3130322e3230382e302f32302d3230203d3e203435303836.roa Signing time: Tue 28 Apr 2026 03:14:19 +0000 ROA not before: Tue 28 Apr 2026 03:09:19 +0000 ROA not after: Tue 27 Apr 2027 03:14:19 +0000 asID: 45086 IP address blocks: 175.102.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100967882713464835/0/061380D3CE8E2B472E9B68A28BCAC5C725B02C09.crl rsync://rpki-rps.cnnic.cn/repo/A1100967882713464835/0/061380D3CE8E2B472E9B68A28BCAC5C725B02C09.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/061380D3CE8E2B472E9B68A28BCAC5C725B02C09.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:f4:75:1b:88:09:2c:69:a2:cf:14:80:8a:48:bd:30:ed:86:0e:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=061380D3CE8E2B472E9B68A28BCAC5C725B02C09 Validity Not Before: Apr 28 03:09:19 2026 GMT Not After : Apr 27 03:14:19 2027 GMT Subject: CN=E66F5821160163F7A385FF41170BAEF1B9A045C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6b:75:ef:55:c4:3d:85:fc:77:05:a1:1d:3a: c7:76:55:93:2f:39:2c:38:06:7b:ae:ce:f5:a2:d6: 3b:b9:53:9c:51:7a:12:9d:f3:6d:63:89:99:7b:87: ca:76:93:c1:5c:b8:e6:66:41:fc:08:04:ed:be:df: a6:74:38:1a:f3:27:99:d3:43:ea:3d:35:97:6a:a7: 1f:fe:c7:b1:28:31:2a:0c:bc:fd:97:14:cb:b8:7e: a3:6b:ab:cb:18:4f:c6:bf:8a:e6:7a:a0:82:7e:ee: cc:06:50:26:92:4e:52:6d:75:fd:76:f3:e2:de:05: 42:00:1b:de:5c:2d:04:aa:ca:b2:e0:3a:82:df:f8: 9c:5f:d1:b6:a0:94:63:03:84:3f:06:51:3a:b1:5f: 41:aa:17:53:b0:fb:03:7b:ce:4f:be:30:2f:00:d0: f6:e0:9d:65:21:e1:b1:d9:d2:81:db:b7:d5:86:cf: ee:f2:cc:9b:76:26:d7:1c:cc:ec:e2:53:3a:d8:77: ce:49:fa:70:3e:b3:e2:75:c9:c6:0b:bf:1a:3c:37: ad:46:ef:e4:81:f8:83:9f:d2:91:49:e9:7f:9f:e6: f6:8b:52:65:80:fc:65:70:a4:4b:41:60:84:1f:9f: 3b:30:7c:b7:d4:9e:34:40:76:ab:4d:03:be:3c:f2: f3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6F:58:21:16:01:63:F7:A3:85:FF:41:17:0B:AE:F1:B9:A0:45:C7 X509v3 Authority Key Identifier: keyid:06:13:80:D3:CE:8E:2B:47:2E:9B:68:A2:8B:CA:C5:C7:25:B0:2C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100967882713464835/0/061380D3CE8E2B472E9B68A28BCAC5C725B02C09.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/061380D3CE8E2B472E9B68A28BCAC5C725B02C09.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100967882713464835/0/3137352e3130322e3230382e302f32302d3230203d3e203435303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.102.208.0/20 Signature Algorithm: sha256WithRSAEncryption 64:33:95:c2:3f:91:f8:92:03:50:70:34:33:57:5f:89:22:7c: 33:14:35:55:30:ab:5d:53:21:53:b3:1d:4b:10:76:93:39:a4: 28:8e:8b:da:b0:3c:fd:e8:de:f0:c4:a9:59:28:d9:6b:f5:21: fd:24:2a:57:51:79:3b:dc:ca:63:e0:22:04:c2:02:b7:ea:b1: 87:85:f3:95:7e:56:fb:36:d4:3a:1e:ec:ef:37:6f:bc:3a:b4: 67:4a:9d:a4:ca:e7:d3:c7:91:e0:f0:9c:b7:fb:01:ae:ce:77: b1:7d:5a:81:c3:15:0b:df:5b:6b:e8:d3:cb:47:be:2b:67:c0: 81:5f:d3:8d:3d:8f:2a:74:a0:7f:43:11:a8:91:9d:83:7d:83: 6a:ba:59:d8:30:82:1a:ce:22:1f:fc:5d:11:d7:79:c1:4f:04: c0:11:f2:06:d4:55:5f:52:1f:8f:bc:f5:97:7a:3b:8f:0c:72: 66:8e:0d:c6:36:e3:5a:20:93:99:6c:0d:d5:a6:26:21:e7:fd: b9:16:3c:01:42:d6:be:16:5f:17:65:45:a4:68:7c:b5:e3:c1: 16:b5:12:81:0c:3a:f0:b7:e4:73:46:01:2b:2c:d6:00:6d:87: 31:2d:00:af:45:87:b3:56:bc:82:b0:38:75:7e:47:1d:d2:83: 6a:26:cd:3d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUIfR1G4gJLGmizxSAiki9MO2GDlkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDYxMzgwRDNDRThFMkI0NzJFOUI2OEEyOEJDQUM1Qzcy NUIwMkMwOTAeFw0yNjA0MjgwMzA5MTlaFw0yNzA0MjcwMzE0MTlaMDMxMTAvBgNV BAMTKEU2NkY1ODIxMTYwMTYzRjdBMzg1RkY0MTE3MEJBRUYxQjlBMDQ1QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDga3XvVcQ9hfx3BaEdOsd2VZMv OSw4BnuuzvWi1ju5U5xRehKd821jiZl7h8p2k8FcuOZmQfwIBO2+36Z0OBrzJ5nT Q+o9NZdqpx/+x7EoMSoMvP2XFMu4fqNrq8sYT8a/iuZ6oIJ+7swGUCaSTlJtdf12 8+LeBUIAG95cLQSqyrLgOoLf+Jxf0baglGMDhD8GUTqxX0GqF1Ow+wN7zk++MC8A 0PbgnWUh4bHZ0oHbt9WGz+7yzJt2JtcczOziUzrYd85J+nA+s+J1ycYLvxo8N61G 7+SB+IOf0pFJ6X+f5vaLUmWA/GVwpEtBYIQfnzswfLfUnjRAdqtNA7488vN/AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU5m9YIRYBY/ejhf9BFwuu8bmgRccwHwYDVR0j BBgwFoAUBhOA086OK0cum2iii8rFxyWwLAkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2Nzg4MjcxMzQ2NDgzNS8wLzA2MTM4MEQzQ0U4RTJCNDcyRTlCNjhBMjhCQ0FD NUM3MjVCMDJDMDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDYxMzgwRDNDRThFMkI0NzJFOUI2OEEyOEJDQUM1QzcyNUIwMkMwOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDA5Njc4ODI3MTM0NjQ4MzUvMC8zMTM3MzUyZTMx MzAzMjJlMzIzMDM4MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzQzNTMwMzgzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBK9m0DANBgkqhkiG9w0BAQsFAAOCAQEAZDOVwj+R+JIDUHA0M1df iSJ8MxQ1VTCrXVMhU7MdSxB2kzmkKI6L2rA8/eje8MSpWSjZa/Uh/SQqV1F5O9zK Y+AiBMICt+qxh4XzlX5W+zbUOh7s7zdvvDq0Z0qdpMrn08eR4PCct/sBrs53sX1a gcMVC99ba+jTy0e+K2fAgV/TjT2PKnSgf0MRqJGdg32DarpZ2DCCGs4iH/xdEdd5 wU8EwBHyBtRVX1Ifj7z1l3o7jwxyZo4NxjbjWiCTmWwN1aYmIef9uRY8AULWvhZf F2VFpGh8tePBFrUSgQw68Lfkc0YBKyzWAG2HMS0Ar0WHs1a8grA4dX5HHdKDaibN PQ== -----END CERTIFICATE-----Generated at Wed May 13 14:41:08 2026 by rpki-client