$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32322d3234203d3e203536303436.roa File: 3130332e3233392e3234342e302f32322d3234203d3e203536303436.roa (raw, json) Hash identifier: WOf60zZFcnMlnlXm1WE2T4jEVmY3ykODS4QBAJ9uIgI= Subject key identifier: E7:A0:9A:0E:05:7F:C5:89:4E:8D:22:26:CE:62:03:2E:0F:4C:16:99 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 2F323B0791123E404CF4FEF9F976D0A9F14D3EA1 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32322d3234203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:54:49 +0000 ROA not before: Tue 14 Apr 2026 07:49:49 +0000 ROA not after: Tue 13 Apr 2027 07:54:49 +0000 asID: 56046 IP address blocks: 103.239.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:32:3b:07:91:12:3e:40:4c:f4:fe:f9:f9:76:d0:a9:f1:4d:3e:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:49:49 2026 GMT Not After : Apr 13 07:54:49 2027 GMT Subject: CN=E7A09A0E057FC5894E8D2226CE62032E0F4C1699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:bc:03:3d:bc:de:99:c3:86:71:ab:93:4a:fe: da:dc:e9:01:36:87:0c:d5:67:6c:77:34:eb:66:3e: 49:64:d0:50:12:6e:36:2b:ea:36:45:63:ac:17:09: d4:f6:85:8f:c1:39:ca:d9:9a:cb:07:31:84:ec:07: 41:f7:06:20:9e:e1:f6:7b:76:c4:ce:80:c9:78:99: 3f:84:21:0b:ff:5b:32:31:ef:0d:23:77:3b:eb:91: 82:11:5b:ce:f5:26:27:ad:21:36:03:88:ae:dd:d2: e6:6c:e0:35:9d:b5:53:f3:f0:f3:f7:24:7c:4f:3d: af:cc:a3:d3:71:9a:43:46:cd:48:aa:18:ab:cc:84: b2:9f:4d:a1:99:20:fe:2d:2c:94:5a:08:c0:9c:97: b4:f3:2b:56:3b:de:c0:88:f8:83:19:71:3c:12:36: 5e:d5:45:25:bc:88:6f:ef:64:fc:d6:c5:91:fd:06: 6a:6f:5a:a1:66:9c:10:10:4e:f5:7b:71:8e:74:73: 9d:05:53:e7:69:b5:fd:62:dc:58:66:38:25:2d:d6: 6d:4c:49:e1:14:4b:f1:51:e9:75:64:df:78:52:61: e3:9e:f4:71:73:ce:7c:1a:68:51:ee:bd:15:46:24: c2:e2:c1:13:10:28:7a:85:33:0e:9c:25:45:e6:2a: 81:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A0:9A:0E:05:7F:C5:89:4E:8D:22:26:CE:62:03:2E:0F:4C:16:99 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32322d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.244.0/22 Signature Algorithm: sha256WithRSAEncryption 63:84:84:c4:54:b2:81:35:ce:35:8b:b2:81:64:45:06:62:15: 33:1e:5a:7d:56:4a:4a:9b:01:33:83:c2:7c:08:a8:c0:be:bc: 06:22:c3:84:e5:6b:59:27:15:3f:2d:be:76:f8:5d:79:a8:5d: 97:9f:a2:4e:33:e8:e8:ad:24:5b:8c:b8:a8:60:f6:e2:37:2e: 3c:23:33:7f:7d:b3:09:6e:b6:3b:b2:51:17:82:7f:6e:c0:4f: 09:92:76:08:8d:b9:83:0a:6c:2b:24:89:70:1d:a1:9d:e9:01: 7a:42:eb:12:62:7a:91:e0:2c:ce:c6:b2:d0:c5:97:1b:1f:5e: d5:5f:74:4a:53:9a:2c:43:2e:99:2c:16:4b:e1:8e:a1:c6:bb: fa:a5:c3:50:6c:2d:ab:02:60:2b:fe:df:e9:3f:d0:1e:bf:88: 8c:66:62:50:82:e4:34:b5:06:08:b3:d1:19:04:99:b1:fe:a8: f0:5a:06:2a:42:31:42:0c:b4:0f:5f:0c:34:25:fd:df:d7:08: fc:10:a5:21:6b:0d:be:7f:74:04:66:7e:5a:9a:f3:46:c7:cd: 1d:a7:71:91:82:22:c3:f3:eb:7e:b9:dc:1c:07:b1:b4:65:a4: 5b:b7:a5:0e:d6:98:e1:b5:e0:44:68:bd:48:2c:3d:8e:6f:77: a2:87:f9:20 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIULzI7B5ESPkBM9P75+XbQqfFNPqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzQ5NDlaFw0yNzA0MTMwNzU0NDlaMDMxMTAvBgNV BAMTKEU3QTA5QTBFMDU3RkM1ODk0RThEMjIyNkNFNjIwMzJFMEY0QzE2OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPvAM9vN6Zw4Zxq5NK/trc6QE2 hwzVZ2x3NOtmPklk0FASbjYr6jZFY6wXCdT2hY/BOcrZmssHMYTsB0H3BiCe4fZ7 dsTOgMl4mT+EIQv/WzIx7w0jdzvrkYIRW871JietITYDiK7d0uZs4DWdtVPz8PP3 JHxPPa/Mo9NxmkNGzUiqGKvMhLKfTaGZIP4tLJRaCMCcl7TzK1Y73sCI+IMZcTwS Nl7VRSW8iG/vZPzWxZH9BmpvWqFmnBAQTvV7cY50c50FU+dptf1i3FhmOCUt1m1M SeEUS/FR6XVk33hSYeOe9HFzznwaaFHuvRVGJMLiwRMQKHqFMw6cJUXmKoFPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU56CaDgV/xYlOjSImzmIDLg9MFpkwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3ODU3OTUvMC8zMTMwMzMyZTMy MzMzOTJlMzIzNDM0MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfv9DANBgkqhkiG9w0BAQsFAAOCAQEAY4SExFSygTXONYuygWRF BmIVMx5afVZKSpsBM4PCfAiowL68BiLDhOVrWScVPy2+dvhdeahdl5+iTjPo6K0k W4y4qGD24jcuPCMzf32zCW62O7JRF4J/bsBPCZJ2CI25gwpsKySJcB2hnekBekLr EmJ6keAszsay0MWXGx9e1V90SlOaLEMumSwWS+GOoca7+qXDUGwtqwJgK/7f6T/Q Hr+IjGZiUILkNLUGCLPRGQSZsf6o8FoGKkIxQgy0D18MNCX939cI/BClIWsNvn90 BGZ+WprzRsfNHadxkYIiw/PrfrncHAextGWkW7elDtaY4bXgRGi9SCw9jm93oof5 IA== -----END CERTIFICATE-----Generated at Sat Apr 18 07:28:52 2026 by rpki-client