$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e3234382e3130302e302f32322d3234203d3e203535393936.roa File: 3130332e3234382e3130302e302f32322d3234203d3e203535393936.roa (raw, json) Hash identifier: ybbj1zzg3wh21pyPriXY3k4ZwA88uQh1B1JhwwB1mM8= Subject key identifier: 49:9C:59:98:68:EA:C8:9B:8C:DD:CD:29:B1:86:16:C0:38:DC:59:A3 Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 33225FFC1931646BFF23FB964E5FD729F44499A1 Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e3234382e3130302e302f32322d3234203d3e203535393936.roa Signing time: Fri 17 Apr 2026 01:50:45 +0000 ROA not before: Fri 17 Apr 2026 01:45:45 +0000 ROA not after: Fri 16 Apr 2027 01:50:45 +0000 asID: 55996 IP address blocks: 103.248.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 04:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:22:5f:fc:19:31:64:6b:ff:23:fb:96:4e:5f:d7:29:f4:44:99:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: Apr 17 01:45:45 2026 GMT Not After : Apr 16 01:50:45 2027 GMT Subject: CN=499C599868EAC89B8CDDCD29B18616C038DC59A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a9:52:8d:b3:61:be:ba:5d:bc:73:ac:01:12: 16:9f:02:6f:db:7d:a6:ef:0b:22:ed:70:37:cf:a1: 23:8b:24:5a:94:18:8b:b5:59:91:42:d4:29:aa:73: 7a:d8:ac:94:95:34:9b:ff:38:e8:1c:7e:fe:28:de: 4d:c2:bf:9c:02:25:8b:e8:28:c9:e5:48:97:ab:f5: 30:7a:23:51:42:e3:18:e7:1e:fd:8c:8e:1f:71:bb: c6:c2:62:ae:7e:ce:d5:cf:cc:ca:d3:46:ab:06:88: 11:13:f7:1b:ad:8f:94:71:21:95:e2:2e:84:a7:58: c6:68:79:80:c7:68:01:28:31:95:88:65:ff:36:4b: d7:dd:90:6e:98:04:e1:43:20:dd:57:5f:f2:14:ec: 79:64:7e:43:14:e8:f9:98:b0:25:d7:25:6e:12:aa: ed:80:43:4c:80:4d:fa:07:ce:23:58:0a:a5:6a:11: 28:90:a6:57:74:b1:5a:a6:64:f0:57:5a:58:f0:f9: 45:d1:9a:1c:f9:63:d2:0c:70:cf:db:f2:35:fb:4f: 98:bc:bd:4f:16:66:fc:4e:80:4f:ed:0e:1c:c6:0a: e1:77:ba:d6:6f:ae:af:60:39:62:be:20:57:1a:4b: 3b:50:39:32:69:64:0e:a7:81:19:9d:e9:d3:41:e0: 03:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9C:59:98:68:EA:C8:9B:8C:DD:CD:29:B1:86:16:C0:38:DC:59:A3 X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e3234382e3130302e302f32322d3234203d3e203535393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.100.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:dc:fd:00:86:5b:00:41:0d:a0:40:3a:20:14:5c:ea:37:57: 8e:f3:da:ab:da:dd:d3:54:df:3a:6d:84:55:4a:22:a7:2c:28: 3e:5b:57:6f:7e:d3:19:a9:3e:e5:24:57:3c:53:70:f6:b7:34: 1e:02:7a:26:41:8b:e1:2c:3f:fe:5e:de:04:45:e1:1e:d8:93: 30:eb:ba:4e:7f:d9:40:76:90:b0:21:90:fe:43:29:4f:6c:49: 26:4f:79:0f:8a:14:f7:47:d7:b5:69:36:2d:ab:14:27:47:06: 24:52:c7:2f:1f:4b:e8:67:2d:92:69:a7:25:18:04:1e:79:d1: a3:68:ae:de:6f:b3:2e:64:a0:4c:21:6b:af:70:73:fa:4d:43: 85:9b:3f:fc:93:37:01:de:7c:4f:0e:38:eb:1a:0f:3b:fe:b4: 4c:a2:fa:c9:58:0b:e2:8b:b5:3f:25:42:4f:db:12:2f:4d:4c: b6:fc:ad:68:01:53:7f:71:ae:1b:ce:a1:6f:36:71:05:c9:80: 71:63:4d:d0:ea:d0:a8:68:cd:17:09:ca:64:cf:e2:c7:1a:bb: 7d:60:39:09:b2:58:8d:b6:48:a5:8f:dc:fd:db:c5:d0:64:79: 39:5f:8a:8d:5f:36:43:1e:d4:a0:65:e5:61:31:32:61:c9:f1: 56:28:62:da -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUMyJf/BkxZGv/I/uWTl/XKfREmaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA0MTcwMTQ1NDVaFw0yNzA0MTYwMTUwNDVaMDMxMTAvBgNV BAMTKDQ5OUM1OTk4NjhFQUM4OUI4Q0REQ0QyOUIxODYxNkMwMzhEQzU5QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsqVKNs2G+ul28c6wBEhafAm/b fabvCyLtcDfPoSOLJFqUGIu1WZFC1Cmqc3rYrJSVNJv/OOgcfv4o3k3Cv5wCJYvo KMnlSJer9TB6I1FC4xjnHv2Mjh9xu8bCYq5+ztXPzMrTRqsGiBET9xutj5RxIZXi LoSnWMZoeYDHaAEoMZWIZf82S9fdkG6YBOFDIN1XX/IU7HlkfkMU6PmYsCXXJW4S qu2AQ0yATfoHziNYCqVqESiQpld0sVqmZPBXWljw+UXRmhz5Y9IMcM/b8jX7T5i8 vU8WZvxOgE/tDhzGCuF3utZvrq9gOWK+IFcaSztQOTJpZA6ngRmd6dNB4AMhAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUSZxZmGjqyJuM3c0psYYWwDjcWaMwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2MDI5NDUvMC8zMTMwMzMyZTMy MzQzODJlMzEzMDMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmf4ZDANBgkqhkiG9w0BAQsFAAOCAQEAbtz9AIZbAEENoEA6IBRc 6jdXjvPaq9rd01TfOm2EVUoipywoPltXb37TGak+5SRXPFNw9rc0HgJ6JkGL4Sw/ /l7eBEXhHtiTMOu6Tn/ZQHaQsCGQ/kMpT2xJJk95D4oU90fXtWk2LasUJ0cGJFLH Lx9L6GctkmmnJRgEHnnRo2iu3m+zLmSgTCFrr3Bz+k1DhZs//JM3Ad58Tw446xoP O/60TKL6yVgL4ou1PyVCT9sSL01MtvytaAFTf3GuG86hbzZxBcmAcWNN0OrQqGjN FwnKZM/ixxq7fWA5CbJYjbZIpY/c/dvF0GR5OV+KjV82Qx7UoGXlYTEyYcnxVihi 2g== -----END CERTIFICATE-----Generated at Fri Apr 17 19:18:01 2026 by rpki-client