$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3230352e3235322e302f32322d3232203d3e203233363530.roa File: 3130332e3230352e3235322e302f32322d3232203d3e203233363530.roa (raw, json) Hash identifier: Zcrj2+wmh/IPtT2IoIvGavNLyQLGR9mHOa7F3cCu730= Subject key identifier: B1:A7:56:70:4F:9E:75:C1:B8:A0:34:00:E1:CC:4C:76:2B:A0:95:7F Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 2CABED24D1CC72A5ED35F14E979CD5DEA0BD9788 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3230352e3235322e302f32322d3232203d3e203233363530.roa Signing time: Tue 14 Apr 2026 07:32:01 +0000 ROA not before: Tue 14 Apr 2026 07:27:01 +0000 ROA not after: Tue 13 Apr 2027 07:32:01 +0000 asID: 23650 IP address blocks: 103.205.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ab:ed:24:d1:cc:72:a5:ed:35:f1:4e:97:9c:d5:de:a0:bd:97:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:27:01 2026 GMT Not After : Apr 13 07:32:01 2027 GMT Subject: CN=B1A756704F9E75C1B8A03400E1CC4C762BA0957F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a8:94:83:00:ca:39:c2:67:7a:07:f3:5f:99: 1b:3e:28:fa:23:80:88:ff:aa:c7:ff:6d:4d:05:30: 79:a9:da:e1:73:28:54:4a:53:f7:43:20:70:4f:1c: 7e:74:72:1f:4f:35:0b:b7:dd:e2:54:2a:cc:d8:1e: 13:b9:72:f3:91:e0:e8:dc:01:ab:93:b7:ee:52:5f: 42:f0:d5:87:9f:02:a5:ca:5a:40:5e:a8:25:05:ba: 61:f4:03:d5:3d:75:6d:50:ee:a6:e8:04:71:0f:b5: 69:4d:ab:7c:e2:25:84:20:ff:78:25:af:c3:09:37: 75:34:d5:f7:67:a3:4b:0a:cc:29:09:32:07:c8:ef: 82:0e:bc:ef:b6:49:e3:c1:64:09:5b:4d:29:98:7e: 7f:fe:9d:42:df:e7:39:72:76:33:21:06:4c:c9:5e: 91:e9:d6:d2:81:db:13:70:d6:f4:7d:cd:e4:aa:02: ff:05:41:13:58:b1:f1:ff:b7:b8:1d:26:d9:00:a9: 4f:91:20:c9:33:7f:79:10:54:5f:cf:d3:33:d6:8c: fd:78:0f:af:3d:b5:1d:ea:8d:d3:d2:a2:1b:af:b9: d7:07:17:f1:e6:c8:9c:39:14:c2:52:f1:ee:6f:68: bf:e3:e5:79:fb:08:6e:9d:68:43:61:d1:65:5d:95: d5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A7:56:70:4F:9E:75:C1:B8:A0:34:00:E1:CC:4C:76:2B:A0:95:7F X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3230352e3235322e302f32322d3232203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.205.252.0/22 Signature Algorithm: sha256WithRSAEncryption 11:75:93:5d:0d:51:73:c3:c4:b2:70:db:5c:e8:f2:21:59:b6: e5:51:2b:b2:3d:dc:80:3a:a2:cc:27:2c:88:ed:fa:a4:55:93: 93:9b:c1:bc:8c:c6:a5:bb:b9:b6:fd:e2:ba:c7:e4:32:45:9f: 92:a5:54:6b:da:89:cc:aa:7d:e8:4e:e3:54:18:80:d5:11:49: 8e:c0:b7:91:5f:6d:a3:11:60:1c:60:91:90:7c:de:b4:8d:5c: ba:fe:7d:89:08:5b:f1:75:7b:06:f0:dd:14:d3:8a:dc:c5:93: 07:8f:b6:bf:72:e6:a5:4e:9b:fe:ae:25:d1:25:db:c7:d9:94: ad:24:51:75:69:03:ee:57:85:ac:93:4e:4e:cb:f9:e8:69:ff: 73:00:81:07:04:e1:7e:ec:24:44:9c:c7:58:0e:d1:77:ed:1c: 2d:14:74:5a:7b:fc:3b:30:1b:67:4d:53:6b:50:73:40:80:5c: c7:1b:f3:e5:a8:b5:cf:81:73:6d:46:8e:ac:30:88:a4:9c:74: 02:8b:9d:79:55:59:63:38:be:16:b8:2d:28:dd:c1:50:00:7b: e1:ce:81:31:40:6f:01:52:a8:a7:31:f0:b8:58:17:b8:12:ff: 55:b7:42:fd:55:67:13:df:9d:5b:fd:f3:6e:c1:6a:4b:04:a8: b3:e2:68:70 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIULKvtJNHMcqXtNfFOl5zV3qC9l4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzI3MDFaFw0yNzA0MTMwNzMyMDFaMDMxMTAvBgNV BAMTKEIxQTc1NjcwNEY5RTc1QzFCOEEwMzQwMEUxQ0M0Qzc2MkJBMDk1N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLqJSDAMo5wmd6B/NfmRs+KPoj gIj/qsf/bU0FMHmp2uFzKFRKU/dDIHBPHH50ch9PNQu33eJUKszYHhO5cvOR4Ojc AauTt+5SX0Lw1YefAqXKWkBeqCUFumH0A9U9dW1Q7qboBHEPtWlNq3ziJYQg/3gl r8MJN3U01fdno0sKzCkJMgfI74IOvO+2SePBZAlbTSmYfn/+nULf5zlydjMhBkzJ XpHp1tKB2xNw1vR9zeSqAv8FQRNYsfH/t7gdJtkAqU+RIMkzf3kQVF/P0zPWjP14 D689tR3qjdPSohuvudcHF/HmyJw5FMJS8e5vaL/j5Xn7CG6daENh0WVdldUrAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUsadWcE+edcG4oDQA4cxMdiuglX8wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3ODU3OTUvMC8zMTMwMzMyZTMy MzAzNTJlMzIzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzMzM2MzUzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfN/DANBgkqhkiG9w0BAQsFAAOCAQEAEXWTXQ1Rc8PEsnDbXOjy IVm25VErsj3cgDqizCcsiO36pFWTk5vBvIzGpbu5tv3iusfkMkWfkqVUa9qJzKp9 6E7jVBiA1RFJjsC3kV9toxFgHGCRkHzetI1cuv59iQhb8XV7BvDdFNOK3MWTB4+2 v3LmpU6b/q4l0SXbx9mUrSRRdWkD7leFrJNOTsv56Gn/cwCBBwThfuwkRJzHWA7R d+0cLRR0Wnv8OzAbZ01Ta1BzQIBcxxvz5ai1z4FzbUaOrDCIpJx0AoudeVVZYzi+ FrgtKN3BUAB74c6BMUBvAVKopzHwuFgXuBL/VbdC/VVnE9+dW/3zbsFqSwSos+Jo cA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:41:26 2026 by rpki-client