$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3130332e36362e33352e302f32342d3234203d3e2034363131.roa File: 3130332e36362e33352e302f32342d3234203d3e2034363131.roa (raw, json) Hash identifier: gY+qMgWgJvHs6SDZmlGFp+AAc3uGBrjBkD6f9uzt130= Subject key identifier: AF:0E:EC:5E:DC:43:6A:9E:17:09:FB:DE:A0:05:3A:5A:CA:AD:ED:4B Certificate issuer: /CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Certificate serial: 5B411A2B5783617E45103F612FEF1611456F8F62 Authority key identifier: 4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3130332e36362e33352e302f32342d3234203d3e2034363131.roa Signing time: Tue 12 May 2026 01:54:33 +0000 ROA not before: Tue 12 May 2026 01:49:33 +0000 ROA not after: Tue 11 May 2027 01:54:33 +0000 asID: 4611 IP address blocks: 103.66.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:41:1a:2b:57:83:61:7e:45:10:3f:61:2f:ef:16:11:45:6f:8f:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Validity Not Before: May 12 01:49:33 2026 GMT Not After : May 11 01:54:33 2027 GMT Subject: CN=AF0EEC5EDC436A9E1709FBDEA0053A5ACAADED4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bd:93:a0:a2:2c:c3:83:e5:32:b5:aa:5a:76: 2e:00:ba:7b:dc:6c:e2:97:c5:8e:8f:20:ad:98:32: 31:30:98:27:e5:aa:33:0c:b6:7a:55:63:87:29:89: 64:41:1b:c1:0c:a9:a9:85:bc:5d:bc:97:f5:15:bb: c3:19:b7:4d:0f:77:4b:c6:86:0a:ab:60:8c:98:4c: 7c:5a:c7:fd:19:70:74:b6:59:6d:66:e3:ed:02:06: a7:f8:59:0f:82:9a:b5:69:b3:95:00:98:3c:bc:52: 07:4c:85:3a:58:0b:45:35:85:7f:75:68:39:17:2b: d1:78:44:47:b7:ca:3d:3b:c9:5f:d4:c6:28:99:ae: 34:96:97:f8:72:81:ae:8e:bc:1a:36:15:46:64:c2: 79:7a:44:ab:d7:a3:92:c5:9c:e8:dd:00:2b:e1:4d: 67:4b:06:19:54:5f:63:5a:47:0c:ab:24:44:a9:b3: 91:9a:78:be:35:87:bf:6f:13:be:cd:d6:4a:b8:bc: da:8b:a7:8d:b0:1a:68:73:ea:b7:e1:72:88:4d:ec: 69:9a:06:34:4a:24:be:db:8a:f1:ed:fe:e2:22:b1: c0:e1:37:01:cf:90:fb:20:61:fc:60:bf:7d:42:18: 26:7d:59:ec:9e:86:62:56:00:79:90:57:77:24:08: 1b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:0E:EC:5E:DC:43:6A:9E:17:09:FB:DE:A0:05:3A:5A:CA:AD:ED:4B X509v3 Authority Key Identifier: keyid:4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3130332e36362e33352e302f32342d3234203d3e2034363131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.35.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:56:fe:90:73:9f:c5:61:d9:ce:ab:2f:5b:b8:46:ce:c2:0f: fe:87:b9:db:f6:a3:ce:2f:c1:cd:19:a3:91:9c:11:e5:62:e0: f9:2b:9c:46:12:92:c8:ba:4d:21:90:4a:71:4b:1f:8f:3c:af: ac:96:cf:bf:b4:48:85:6a:74:35:07:72:7a:0e:09:83:ec:ea: ed:80:07:3b:49:c9:b2:b5:e8:d4:a3:09:f5:b6:ee:87:81:6f: a6:78:7b:d5:84:12:df:9c:8c:59:21:7a:c8:e5:72:d6:83:dd: 2e:91:9e:9d:15:52:e2:50:fd:18:6b:37:66:1b:1d:d7:44:2c: 10:22:6e:0f:93:49:be:d9:4f:a5:a6:17:4d:27:9f:27:ac:1e: 6b:72:9d:8f:9a:07:6b:d8:65:a7:c7:2b:fc:5e:7e:c3:72:27: dc:cb:2c:bb:28:64:01:18:c4:e5:ad:8e:f1:03:5d:c9:fc:79: ff:ef:0b:fc:1a:c1:1d:b8:98:ad:a5:c9:0a:33:25:b1:51:0d: 14:ee:01:ba:fd:af:1b:38:ee:09:e2:26:27:cc:93:8e:7e:5b: eb:23:70:af:cb:91:ad:0f:ed:3a:2b:b9:d9:24:97:d0:ac:3e: de:0b:f3:d4:d3:62:2c:7b:2e:04:63:a7:38:66:36:64:8a:51: bb:99:a8:cb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUW0EaK1eDYX5FED9hL+8WEUVvj2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJD QUREMEFGQjAeFw0yNjA1MTIwMTQ5MzNaFw0yNzA1MTEwMTU0MzNaMDMxMTAvBgNV BAMTKEFGMEVFQzVFREM0MzZBOUUxNzA5RkJERUEwMDUzQTVBQ0FBREVENEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvvZOgoizDg+Uytapadi4Aunvc bOKXxY6PIK2YMjEwmCflqjMMtnpVY4cpiWRBG8EMqamFvF28l/UVu8MZt00Pd0vG hgqrYIyYTHxax/0ZcHS2WW1m4+0CBqf4WQ+CmrVps5UAmDy8UgdMhTpYC0U1hX91 aDkXK9F4REe3yj07yV/UxiiZrjSWl/hyga6OvBo2FUZkwnl6RKvXo5LFnOjdACvh TWdLBhlUX2NaRwyrJESps5GaeL41h79vE77N1kq4vNqLp42wGmhz6rfhcohN7Gma BjRKJL7bivHt/uIiscDhNwHPkPsgYfxgv31CGCZ9WeyehmJWAHmQV3ckCBvfAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUrw7sXtxDap4XCfveoAU6Wsqt7UswHwYDVR0j BBgwFoAUSvXdk5jrwz6gyuBB1/Uu4srdCvswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjM5ODM4ODE4NzgyNDE0Ny8wLzRBRjVERDkzOThFQkMzM0VBMENBRTA0MUQ3RjUy RUUyQ0FERDBBRkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJDQUREMEFGQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2Mzk4Mzg4MTg3ODI0MTQ3LzAvMzEzMDMzMmUzNjM2 MmUzMzM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNjMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnQiMwDQYJKoZIhvcNAQELBQADggEBAG9W/pBzn8Vh2c6rL1u4Rs7CD/6Hudv2 o84vwc0Zo5GcEeVi4PkrnEYSksi6TSGQSnFLH488r6yWz7+0SIVqdDUHcnoOCYPs 6u2ABztJybK16NSjCfW27oeBb6Z4e9WEEt+cjFkhesjlctaD3S6Rnp0VUuJQ/Rhr N2YbHddELBAibg+TSb7ZT6WmF00nnyesHmtynY+aB2vYZafHK/xefsNyJ9zLLLso ZAEYxOWtjvEDXcn8ef/vC/wawR24mK2lyQozJbFRDRTuAbr9rxs47gniJifMk45+ W+sjcK/Lka0P7Torudkkl9CsPt4L89TTYix7LgRjpzhmNmSKUbuZqMs= -----END CERTIFICATE-----Generated at Wed May 13 21:31:25 2026 by rpki-client