$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32322d3234203d3e203633353637.roa File: 3130332e3233392e3234342e302f32322d3234203d3e203633353637.roa (raw, json) Hash identifier: uE9mtAo/0yG0VZK95jg5qGPwrV9pp6b1qMlzHyI2br4= Subject key identifier: A3:ED:E3:B2:24:2A:09:FA:79:86:98:16:3F:E3:96:BF:1E:E7:F1:90 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 244F713A6C33B6DFB980FAF6C55B5E129BD506C9 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32322d3234203d3e203633353637.roa Signing time: Tue 14 Apr 2026 07:54:49 +0000 ROA not before: Tue 14 Apr 2026 07:49:49 +0000 ROA not after: Tue 13 Apr 2027 07:54:49 +0000 asID: 63567 IP address blocks: 103.239.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:4f:71:3a:6c:33:b6:df:b9:80:fa:f6:c5:5b:5e:12:9b:d5:06:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:49:49 2026 GMT Not After : Apr 13 07:54:49 2027 GMT Subject: CN=A3EDE3B2242A09FA798698163FE396BF1EE7F190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5f:70:35:52:97:25:7f:bf:93:60:37:97:94: 72:9c:4f:37:a7:ba:7d:f3:a8:a0:e8:b4:1b:55:39: 3e:9d:e0:79:76:86:f3:7f:4f:37:70:7b:21:38:80: b4:41:81:4d:a2:d8:1f:40:92:01:46:af:9b:60:d0: 08:99:9a:7a:ee:0e:91:f6:ab:a1:3f:b3:60:e7:33: 61:4f:48:b6:54:84:83:8c:fe:7a:ca:90:48:72:e4: ff:ad:ca:cc:c6:dd:0a:4a:f3:e0:3f:d8:07:52:b8: bb:49:e8:4b:a4:61:6e:32:b0:84:a6:c5:82:ee:58: 83:ec:b6:36:fe:a9:0f:f5:f6:ef:de:dd:ed:22:84: 36:b0:f5:8c:91:c1:4f:56:71:97:82:90:7f:b8:1b: 59:5b:1b:ee:04:1b:6b:ac:ff:5a:55:fd:6b:14:b5: 16:bb:91:5c:5b:d1:58:25:28:ce:07:5e:9f:9d:32: b8:bd:a6:dd:35:26:43:56:14:5f:c1:1a:dc:f6:a4: 32:7f:11:8e:d6:41:32:9d:9f:a5:9f:78:b5:35:80: 92:4a:59:2f:e7:f6:74:cf:f3:92:a0:43:b5:ee:ea: 52:24:45:14:9a:4f:dd:73:2a:68:24:58:8a:cd:98: d7:00:b3:59:69:2b:ae:aa:d3:0c:6a:e4:6b:6e:b1: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:ED:E3:B2:24:2A:09:FA:79:86:98:16:3F:E3:96:BF:1E:E7:F1:90 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e3233392e3234342e302f32322d3234203d3e203633353637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.244.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:33:2e:11:e2:59:a9:72:78:1c:b2:78:e1:82:b3:8a:b6:db: 85:91:24:11:1a:93:d0:dc:62:1c:ae:0a:be:30:ad:0d:bf:96: a3:aa:a0:a1:30:33:da:c7:12:46:ad:bc:81:4e:4c:84:81:4a: 5e:a2:17:7a:79:d9:dc:a6:3b:5d:bb:41:7a:dd:95:59:d8:8b: 61:79:93:fe:ef:42:61:0a:dd:a0:81:a7:e4:37:61:b2:23:5c: e3:87:cf:73:b0:55:95:7b:ee:ad:ef:35:28:c4:8a:14:b4:a3: 99:f1:a2:d0:a4:8b:44:d4:6a:91:0b:a8:49:bd:2b:ad:21:61: f8:53:f4:d6:c9:3b:08:1a:ff:b3:0d:ec:a3:1d:ad:b3:0d:d2: af:52:f7:b1:4f:5f:96:06:84:b0:1c:fb:f2:e2:d1:d1:e7:93: 0f:ea:31:2a:50:7d:cb:8e:45:d1:4f:5f:95:20:0b:2b:78:30: 37:1c:6a:02:f5:ce:ac:da:55:f3:ee:ef:4a:63:a6:d6:b4:5a: 68:96:ea:ce:c0:76:f1:44:c4:ca:86:3b:61:8a:ae:92:04:94: 6a:2f:da:0b:93:bc:24:13:14:f5:d3:bc:92:8e:5d:c8:46:7b: 6a:17:68:00:28:d3:ae:4f:d8:95:07:0c:85:52:bf:5a:75:7a: a8:0e:c5:05 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJE9xOmwztt+5gPr2xVteEpvVBskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzQ5NDlaFw0yNzA0MTMwNzU0NDlaMDMxMTAvBgNV BAMTKEEzRURFM0IyMjQyQTA5RkE3OTg2OTgxNjNGRTM5NkJGMUVFN0YxOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqX3A1Upclf7+TYDeXlHKcTzen un3zqKDotBtVOT6d4Hl2hvN/TzdweyE4gLRBgU2i2B9AkgFGr5tg0AiZmnruDpH2 q6E/s2DnM2FPSLZUhIOM/nrKkEhy5P+tyszG3QpK8+A/2AdSuLtJ6EukYW4ysISm xYLuWIPstjb+qQ/19u/e3e0ihDaw9YyRwU9WcZeCkH+4G1lbG+4EG2us/1pV/WsU tRa7kVxb0VglKM4HXp+dMri9pt01JkNWFF/BGtz2pDJ/EY7WQTKdn6WfeLU1gJJK WS/n9nTP85KgQ7Xu6lIkRRSaT91zKmgkWIrNmNcAs1lpK66q0wxq5Gtusdq1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUo+3jsiQqCfp5hpgWP+OWvx7n8ZAwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3ODU3OTUvMC8zMTMwMzMyZTMy MzMzOTJlMzIzNDM0MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzYzMzM1MzYzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfv9DANBgkqhkiG9w0BAQsFAAOCAQEAOzMuEeJZqXJ4HLJ44YKz irbbhZEkERqT0NxiHK4KvjCtDb+Wo6qgoTAz2scSRq28gU5MhIFKXqIXennZ3KY7 XbtBet2VWdiLYXmT/u9CYQrdoIGn5DdhsiNc44fPc7BVlXvure81KMSKFLSjmfGi 0KSLRNRqkQuoSb0rrSFh+FP01sk7CBr/sw3sox2tsw3Sr1L3sU9flgaEsBz78uLR 0eeTD+oxKlB9y45F0U9flSALK3gwNxxqAvXOrNpV8+7vSmOm1rRaaJbqzsB28UTE yoY7YYqukgSUai/aC5O8JBMU9dO8ko5dyEZ7ahdoACjTrk/YlQcMhVK/WnV6qA7F BQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:27:38 2026 by rpki-client