$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3230322e3132332e3130372e302f32342d3234203d3e2034363131.roa File: 3230322e3132332e3130372e302f32342d3234203d3e2034363131.roa (raw, json) Hash identifier: 3tbE64n/dii7GNRtLZg5K6aHAbP1egLJB2VvyhZEfFU= Subject key identifier: C9:9F:DC:5E:E7:B1:77:06:49:BD:0E:C0:7E:AA:E7:AE:6E:F0:0B:AC Certificate issuer: /CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Certificate serial: 11812606A706F13F1F883A6C46B3DAB6D53511FF Authority key identifier: 4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3230322e3132332e3130372e302f32342d3234203d3e2034363131.roa Signing time: Tue 12 May 2026 01:56:22 +0000 ROA not before: Tue 12 May 2026 01:51:22 +0000 ROA not after: Tue 11 May 2027 01:56:22 +0000 asID: 4611 IP address blocks: 202.123.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:81:26:06:a7:06:f1:3f:1f:88:3a:6c:46:b3:da:b6:d5:35:11:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Validity Not Before: May 12 01:51:22 2026 GMT Not After : May 11 01:56:22 2027 GMT Subject: CN=C99FDC5EE7B1770649BD0EC07EAAE7AE6EF00BAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:57:04:96:db:7c:6b:0b:2b:b7:a9:1b:f6:6b: 85:f5:c6:10:59:19:33:98:b8:ae:41:ae:53:25:15: 3a:bf:21:f9:ae:b6:72:80:2b:ae:1e:98:6a:5f:96: c2:7e:7c:0d:1d:a1:bd:b3:f9:e9:06:8f:e9:f2:17: 26:c2:7e:e6:83:d1:b4:22:fb:5e:21:0a:7f:dc:73: 0a:cc:f6:e3:82:54:78:fa:13:e0:6f:9c:7f:ba:f5: 6e:1b:c2:ed:4d:6b:9f:0d:a0:e7:52:00:62:fa:b8: 37:44:fc:f0:3b:f0:85:a6:cb:dd:60:5a:79:fd:4e: 81:28:d5:77:f2:b6:0c:40:89:4d:e0:7b:96:74:9a: a6:4b:e0:6d:a4:8c:ff:5b:14:ed:47:ed:80:05:54: 2e:20:48:a7:c3:54:a0:ea:8a:b0:11:43:59:0a:65: 8e:c1:a8:ae:b8:0c:e6:38:34:fe:f7:d6:3c:c5:ae: 99:54:b2:66:ee:81:61:84:6d:3a:a4:ea:f3:54:84: 9a:0b:88:48:6a:79:8e:9f:c6:64:df:05:d1:64:9d: 6a:7a:37:0f:6b:2e:f5:ca:a8:ad:e0:b1:4b:eb:38: 2f:82:45:02:96:9d:42:c9:f0:cd:68:e3:94:16:c5: 39:ee:fc:45:4e:f5:b4:63:fb:2a:70:cf:90:1d:61: da:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9F:DC:5E:E7:B1:77:06:49:BD:0E:C0:7E:AA:E7:AE:6E:F0:0B:AC X509v3 Authority Key Identifier: keyid:4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3230322e3132332e3130372e302f32342d3234203d3e2034363131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.123.107.0/24 Signature Algorithm: sha256WithRSAEncryption 70:d6:77:0b:b4:cb:96:2e:78:84:42:0a:58:24:38:0a:83:37: e0:34:4c:fa:17:50:bd:d2:33:a3:b8:bc:1e:97:1c:9e:8f:0e: 6e:af:eb:64:b9:eb:7a:37:0e:0e:ea:96:9c:11:f2:93:4f:5e: fd:1c:a8:f5:0f:01:d8:4b:7d:7d:20:31:c6:e4:af:cf:4a:d6: 5d:16:2a:2a:e8:fa:87:08:27:30:ab:e3:21:bc:2c:2b:03:a2: d4:f1:cf:fa:4d:9b:bf:ce:5c:d8:04:00:45:6e:51:84:87:1a: bb:0d:92:f7:2f:48:d0:db:96:f0:dc:58:54:58:a0:9c:00:4b: d6:36:8e:dc:2c:46:d5:ee:d9:9f:7f:6e:51:98:ee:25:96:fb: fc:7e:09:66:61:85:09:da:d9:bc:c1:90:a1:7c:78:e7:fc:1f: 88:c1:50:c3:52:49:72:a8:0c:f1:66:00:49:67:96:25:5a:b4: ef:0b:12:e7:a3:50:4e:b2:2b:47:df:6d:f4:9b:1d:2f:4b:2f: 4c:2f:48:df:98:54:82:0e:93:bb:85:0a:c8:6b:15:62:d1:03: 45:1e:fc:25:ee:87:16:0d:ad:15:ad:fb:bc:ba:ab:7f:dc:4f: 91:73:2a:2e:71:99:b8:00:3c:6c:93:a5:3e:72:98:5e:19:1c: 20:b4:f1:9a -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUEYEmBqcG8T8fiDpsRrPattU1Ef8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJD QUREMEFGQjAeFw0yNjA1MTIwMTUxMjJaFw0yNzA1MTEwMTU2MjJaMDMxMTAvBgNV BAMTKEM5OUZEQzVFRTdCMTc3MDY0OUJEMEVDMDdFQUFFN0FFNkVGMDBCQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRVwSW23xrCyu3qRv2a4X1xhBZ GTOYuK5BrlMlFTq/IfmutnKAK64emGpflsJ+fA0dob2z+ekGj+nyFybCfuaD0bQi +14hCn/ccwrM9uOCVHj6E+BvnH+69W4bwu1Na58NoOdSAGL6uDdE/PA78IWmy91g Wnn9ToEo1XfytgxAiU3ge5Z0mqZL4G2kjP9bFO1H7YAFVC4gSKfDVKDqirARQ1kK ZY7BqK64DOY4NP731jzFrplUsmbugWGEbTqk6vNUhJoLiEhqeY6fxmTfBdFknWp6 Nw9rLvXKqK3gsUvrOC+CRQKWnULJ8M1o45QWxTnu/EVO9bRj+ypwz5AdYdrXAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUyZ/cXuexdwZJvQ7Afqrnrm7wC6wwHwYDVR0j BBgwFoAUSvXdk5jrwz6gyuBB1/Uu4srdCvswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjM5ODM4ODE4NzgyNDE0Ny8wLzRBRjVERDkzOThFQkMzM0VBMENBRTA0MUQ3RjUy RUUyQ0FERDBBRkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJDQUREMEFGQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwNjM5ODM4ODE4NzgyNDE0Ny8wLzMyMzAzMjJlMzEz MjMzMmUzMTMwMzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM2MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAMp7azANBgkqhkiG9w0BAQsFAAOCAQEAcNZ3C7TLli54hEIKWCQ4CoM3 4DRM+hdQvdIzo7i8Hpccno8Obq/rZLnrejcODuqWnBHyk09e/Ryo9Q8B2Et9fSAx xuSvz0rWXRYqKuj6hwgnMKvjIbwsKwOi1PHP+k2bv85c2AQARW5RhIcauw2S9y9I 0NuW8NxYVFignABL1jaO3CxG1e7Zn39uUZjuJZb7/H4JZmGFCdrZvMGQoXx45/wf iMFQw1JJcqgM8WYASWeWJVq07wsS56NQTrIrR99t9JsdL0svTC9I35hUgg6Tu4UK yGsVYtEDRR78Je6HFg2tFa37vLqrf9xPkXMqLnGZuAA8bJOlPnKYXhkcILTxmg== -----END CERTIFICATE-----Generated at Wed May 13 21:32:12 2026 by rpki-client