$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230302e3233322e302f32342d3234203d3e2034383132.roa File: 3130332e3230302e3233322e302f32342d3234203d3e2034383132.roa (raw, json) Hash identifier: BclgK1HXOma/aLW71tIKGNbvE+PPyjCZhkhxQUNz1Po= Subject key identifier: 3D:B1:69:EA:9E:3B:A9:64:CA:4E:FE:60:79:69:7C:EC:3A:19:E6:F2 Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 3A559CC52F9C0070CAE336B7837F51953F7544F4 Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230302e3233322e302f32342d3234203d3e2034383132.roa Signing time: Fri 17 Apr 2026 06:23:24 +0000 ROA not before: Fri 17 Apr 2026 06:18:24 +0000 ROA not after: Fri 16 Apr 2027 06:23:24 +0000 asID: 4812 IP address blocks: 103.200.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:55:9c:c5:2f:9c:00:70:ca:e3:36:b7:83:7f:51:95:3f:75:44:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 06:18:24 2026 GMT Not After : Apr 16 06:23:24 2027 GMT Subject: CN=3DB169EA9E3BA964CA4EFE6079697CEC3A19E6F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6e:f4:8b:a6:e7:74:29:ea:6b:48:e4:e5:97: ed:35:a2:e0:42:b0:79:90:cb:ba:03:09:ca:4c:4f: 11:e7:2c:0e:d3:22:6e:16:39:d7:4a:b7:72:4c:73: 1c:31:71:ca:a5:65:5e:11:0c:85:f9:6d:fc:34:3d: a6:c3:cc:5a:e3:2c:e4:5f:b3:4e:dd:c2:23:d7:b9: f0:07:57:92:89:37:5e:81:f2:64:63:54:c5:e3:ae: 19:d2:ad:17:13:97:6b:0e:59:d6:f7:2b:a5:e9:87: 5d:ee:20:5d:33:39:04:33:b5:11:16:77:08:3c:37: f6:70:11:aa:73:63:1c:10:0c:88:5e:28:8c:8b:c1: 33:f1:c3:5c:a4:7e:8b:27:d3:2c:a2:7e:4b:43:26: 09:af:6c:67:28:73:8e:2b:25:fa:01:01:47:68:b5: 78:a5:e3:b9:40:b4:10:5b:2b:93:c0:7c:a6:9f:ea: 98:80:0c:29:47:20:1a:92:e4:9d:8f:b3:0c:1b:79: 60:51:6b:86:00:9a:c2:39:7d:d3:93:dd:9e:b6:1a: cf:4f:39:e9:4d:a0:62:15:69:67:fe:94:3d:a5:b4: 1b:8e:98:81:13:c2:52:c5:a4:43:87:68:88:eb:e2: dc:44:68:bc:4a:90:83:31:ce:a6:96:61:ab:e2:24: 28:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B1:69:EA:9E:3B:A9:64:CA:4E:FE:60:79:69:7C:EC:3A:19:E6:F2 X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230302e3233322e302f32342d3234203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.200.232.0/24 Signature Algorithm: sha256WithRSAEncryption 70:d2:31:60:29:01:82:dd:88:42:46:23:1f:9e:74:bd:1a:97: 25:3f:59:61:47:1d:50:cb:b9:b6:58:04:85:0a:0b:c9:d5:cd: e3:11:91:69:d4:fd:a3:56:10:d1:3a:65:09:e3:c9:b7:bb:9d: 8f:8f:2c:90:b5:73:f9:0c:2a:8a:d4:b1:f8:21:1d:03:6f:65: cc:97:58:a6:07:b1:f9:99:55:14:71:f2:d3:dc:1c:a0:fc:ec: 71:76:5c:03:b3:64:0c:91:b2:6a:65:6f:58:71:ed:37:58:32: a7:8b:13:7f:bb:bf:52:fa:c1:2a:f5:1e:e2:90:10:ac:c5:7f: 61:5d:ae:da:3d:71:73:88:88:c2:1d:cb:09:56:86:dc:0f:38: 31:ee:f5:df:20:1f:4c:b3:ce:45:a7:7e:25:24:68:af:70:fc: a6:d2:49:bc:71:4a:8a:24:78:63:3f:7b:1a:2f:b0:e2:dd:46: fe:3f:9e:69:62:02:f8:30:d4:00:bf:07:66:64:93:2a:8d:00: 9b:d4:b8:09:f0:9d:1a:bf:e8:10:40:d7:e7:27:01:8e:7c:80: 37:95:c5:f9:da:11:08:52:96:29:8e:72:cd:3a:a7:e8:49:7f: 8c:8e:e9:eb:27:80:df:c7:97:66:50:06:87:b2:a6:eb:64:64: 52:27:16:ae -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOlWcxS+cAHDK4za3g39RlT91RPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcwNjE4MjRaFw0yNzA0MTYwNjIzMjRaMDMxMTAvBgNV BAMTKDNEQjE2OUVBOUUzQkE5NjRDQTRFRkU2MDc5Njk3Q0VDM0ExOUU2RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0bvSLpud0KeprSOTll+01ouBC sHmQy7oDCcpMTxHnLA7TIm4WOddKt3JMcxwxccqlZV4RDIX5bfw0PabDzFrjLORf s07dwiPXufAHV5KJN16B8mRjVMXjrhnSrRcTl2sOWdb3K6Xph13uIF0zOQQztREW dwg8N/ZwEapzYxwQDIheKIyLwTPxw1ykfosn0yyifktDJgmvbGcoc44rJfoBAUdo tXil47lAtBBbK5PAfKaf6piADClHIBqS5J2PswwbeWBRa4YAmsI5fdOT3Z62Gs9P OelNoGIVaWf+lD2ltBuOmIETwlLFpEOHaIjr4txEaLxKkIMxzqaWYaviJCjNAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUPbFp6p47qWTKTv5geWl87DoZ5vIwHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjE3OTQ1OC8wLzMxMzAzMzJlMzIz MDMwMmUzMjMzMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzEzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGfI6DANBgkqhkiG9w0BAQsFAAOCAQEAcNIxYCkBgt2IQkYjH550vRqX JT9ZYUcdUMu5tlgEhQoLydXN4xGRadT9o1YQ0TplCePJt7udj48skLVz+QwqitSx +CEdA29lzJdYpgex+ZlVFHHy09wcoPzscXZcA7NkDJGyamVvWHHtN1gyp4sTf7u/ UvrBKvUe4pAQrMV/YV2u2j1xc4iIwh3LCVaG3A84Me713yAfTLPORad+JSRor3D8 ptJJvHFKiiR4Yz97Gi+w4t1G/j+eaWIC+DDUAL8HZmSTKo0Am9S4CfCdGr/oEEDX 5ycBjnyAN5XF+doRCFKWKY5yzTqn6El/jI7p6yeA38eXZlAGh7Km62RkUicWrg== -----END CERTIFICATE-----Generated at Sat Apr 18 03:14:06 2026 by rpki-client