$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230312e3139362e302f32342d3234203d3e203137363232.roa File: 3130332e3230312e3139362e302f32342d3234203d3e203137363232.roa (raw, json) Hash identifier: luZzwO9wg/5RgPGmtiybn6TTUncoNUt70L571i3ZpHo= Subject key identifier: 2A:69:8F:3F:BF:CD:A6:22:29:1E:7D:88:8E:AE:F1:A4:4B:CE:AF:CF Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 6D8E50F112127AAEA77C8D59E37E921833E48730 Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230312e3139362e302f32342d3234203d3e203137363232.roa Signing time: Fri 17 Apr 2026 02:24:46 +0000 ROA not before: Fri 17 Apr 2026 02:19:46 +0000 ROA not after: Fri 16 Apr 2027 02:24:46 +0000 asID: 17622 IP address blocks: 103.201.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:8e:50:f1:12:12:7a:ae:a7:7c:8d:59:e3:7e:92:18:33:e4:87:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 02:19:46 2026 GMT Not After : Apr 16 02:24:46 2027 GMT Subject: CN=2A698F3FBFCDA622291E7D888EAEF1A44BCEAFCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:17:1c:28:dd:a3:9a:c6:55:2c:4b:fb:f1:3b: b7:e5:cc:6a:92:96:41:a9:bd:42:9e:e5:a8:ad:60: 6b:9e:8f:da:23:b9:1c:87:e1:aa:4e:c5:b2:4b:8f: c6:5a:22:ad:41:df:dd:3a:64:04:32:ec:57:25:2d: 3d:73:fe:d5:8d:43:6a:a1:8f:4c:75:8f:0f:b5:c0: 97:12:7b:cd:a3:8c:ae:8c:27:76:51:a3:87:5b:cd: e1:ee:8d:ef:d5:14:51:23:4a:5e:61:d5:03:4d:6b: bd:a2:74:29:52:fd:d6:a3:21:55:82:ee:9b:fb:d4: c5:d0:fb:35:1e:d7:de:68:80:5d:5d:d0:42:99:37: 37:16:5b:d5:13:ed:a5:fc:fd:e6:60:13:48:64:ff: 92:04:54:2c:86:2e:ef:a4:f9:1f:ad:bc:8a:6d:c9: f5:a1:91:82:e8:bc:b6:f3:f4:9b:a1:7f:6a:bb:60: b9:e8:3a:3a:1c:54:8e:d8:18:48:9d:09:b3:4c:64: 0c:b5:cc:6e:9b:69:6c:b4:90:aa:b7:45:15:e7:25: 82:e3:ab:fc:6e:62:38:73:fa:5b:46:50:25:2c:4e: 2b:f7:f3:46:6d:fc:88:c0:d2:69:ef:69:f2:82:9d: 0f:cb:98:c9:2e:23:32:73:22:de:a6:b0:03:06:9b: 84:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:69:8F:3F:BF:CD:A6:22:29:1E:7D:88:8E:AE:F1:A4:4B:CE:AF:CF X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230312e3139362e302f32342d3234203d3e203137363232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.196.0/24 Signature Algorithm: sha256WithRSAEncryption bc:53:49:66:5c:60:f8:66:7a:d9:94:1f:2a:5b:91:9b:ad:a2: 4a:a1:40:d1:95:9f:de:f9:32:9e:bc:db:e9:60:7a:1c:20:fa: 31:8e:fd:a3:c3:76:d0:65:bb:57:0d:4e:59:65:4b:3f:2c:3b: 0a:6f:a5:ff:c2:62:11:c4:ec:24:ec:ca:3e:1f:36:cb:4e:72: f7:2f:d4:71:07:2d:3b:3e:16:80:78:aa:59:9c:dd:24:2b:89: 26:ee:33:0f:73:45:34:e4:bd:be:6d:0b:cb:18:47:7d:e6:9c: 44:82:dd:fb:56:a0:07:13:64:15:2f:2e:45:56:d6:6e:73:61: 63:2c:c2:3f:7c:31:ce:09:47:2b:b6:c7:14:87:40:e3:40:f6: 1c:10:3f:58:2e:81:d9:41:d9:44:52:51:24:c6:1f:10:c9:f4: d5:01:17:3f:29:9c:56:47:bf:d6:a4:46:88:8c:a3:1b:08:72: 5c:cf:a7:ec:b0:7e:c6:13:90:44:1c:f6:2e:16:6a:b9:ed:6b: b7:1f:fa:9b:05:b1:d9:ce:26:f8:89:96:a5:46:92:6c:69:00: 37:3e:7f:c6:8d:f1:17:51:cc:3c:73:d4:4c:f7:e1:b9:e8:ca: c8:36:ba:26:84:72:e4:f6:dc:0f:11:30:54:2f:5f:ac:b3:81: dd:ec:2c:0a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUbY5Q8RISeq6nfI1Z436SGDPkhzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcwMjE5NDZaFw0yNzA0MTYwMjI0NDZaMDMxMTAvBgNV BAMTKDJBNjk4RjNGQkZDREE2MjIyOTFFN0Q4ODhFQUVGMUE0NEJDRUFGQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0Fxwo3aOaxlUsS/vxO7flzGqS lkGpvUKe5aitYGuej9ojuRyH4apOxbJLj8ZaIq1B3906ZAQy7FclLT1z/tWNQ2qh j0x1jw+1wJcSe82jjK6MJ3ZRo4dbzeHuje/VFFEjSl5h1QNNa72idClS/dajIVWC 7pv71MXQ+zUe195ogF1d0EKZNzcWW9UT7aX8/eZgE0hk/5IEVCyGLu+k+R+tvIpt yfWhkYLovLbz9Juhf2q7YLnoOjocVI7YGEidCbNMZAy1zG6baWy0kKq3RRXnJYLj q/xuYjhz+ltGUCUsTiv380Zt/IjA0mnvafKCnQ/LmMkuIzJzIt6msAMGm4RBAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUKmmPP7/NpiIpHn2Ijq7xpEvOr88wHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzY3MjMzNzIxNzk0NTgvMC8zMTMwMzMyZTMy MzAzMTJlMzEzOTM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfJxDANBgkqhkiG9w0BAQsFAAOCAQEAvFNJZlxg+GZ62ZQfKluR m62iSqFA0ZWf3vkynrzb6WB6HCD6MY79o8N20GW7Vw1OWWVLPyw7Cm+l/8JiEcTs JOzKPh82y05y9y/UcQctOz4WgHiqWZzdJCuJJu4zD3NFNOS9vm0LyxhHfeacRILd +1agBxNkFS8uRVbWbnNhYyzCP3wxzglHK7bHFIdA40D2HBA/WC6B2UHZRFJRJMYf EMn01QEXPymcVke/1qRGiIyjGwhyXM+n7LB+xhOQRBz2LhZque1rtx/6mwWx2c4m +ImWpUaSbGkANz5/xo3xF1HMPHPUTPfhuejKyDa6JoRy5PbcDxEwVC9frLOB3ews Cg== -----END CERTIFICATE-----Generated at Sat Apr 18 00:22:17 2026 by rpki-client