$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3136312e3235342e302f32342d3234203d3e20313436373732.roa File: 3130332e3136312e3235342e302f32342d3234203d3e20313436373732.roa (raw, json) Hash identifier: fj/sfPPmAd9753TITYEO7kcwQ/mY2SreemFgpWZQiKQ= Subject key identifier: F2:A1:8E:59:63:9A:3B:81:6C:B0:E5:52:BD:55:77:7D:8B:E4:5A:5E Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 59F166D0F5FA6888F3D4FC734049A3A35568DD17 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3136312e3235342e302f32342d3234203d3e20313436373732.roa Signing time: Thu 16 Apr 2026 04:06:43 +0000 ROA not before: Thu 16 Apr 2026 04:01:43 +0000 ROA not after: Thu 15 Apr 2027 04:06:43 +0000 asID: 146772 IP address blocks: 103.161.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f1:66:d0:f5:fa:68:88:f3:d4:fc:73:40:49:a3:a3:55:68:dd:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 16 04:01:43 2026 GMT Not After : Apr 15 04:06:43 2027 GMT Subject: CN=F2A18E59639A3B816CB0E552BD55777D8BE45A5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:38:99:9d:ff:32:86:ae:39:c6:84:1f:d4:2f: 09:62:74:63:c6:9c:6c:48:f1:d8:7f:09:e1:c5:10: 7b:2d:c3:ac:1f:5f:df:06:23:25:8c:f7:e3:f8:8c: 27:79:ae:b9:bf:2e:2d:0e:71:9f:5d:3c:96:ea:0a: 85:ef:b9:0d:d0:c0:a5:7e:14:a6:59:7d:f6:dd:aa: 3e:b1:67:9b:cd:75:d4:c5:f2:47:18:a8:9c:0d:2b: 36:a8:70:15:d8:35:c0:b8:73:df:c8:87:c6:bb:c1: 28:b0:86:31:a7:6a:3b:c9:8a:1a:26:35:91:dd:00: 83:07:25:b2:46:1a:67:68:c2:c6:34:90:0e:f8:f2: 57:85:2b:0a:8a:3c:f8:51:b6:c9:d2:a1:0c:ae:ed: 2d:28:e5:e5:73:a6:78:9c:0d:ae:6f:9f:c5:a9:fa: 7d:d8:5d:5c:5a:1d:ba:7a:dc:b2:33:56:85:69:2a: a8:60:ab:38:51:3d:c8:64:8f:dd:88:b4:13:49:0f: 67:39:e4:9f:97:c1:23:96:41:fd:ba:a7:95:2f:19: 4d:41:05:45:32:68:db:59:43:1f:64:2d:a1:9d:2b: 3c:2e:7b:ca:2e:d0:bb:cd:e9:75:6e:5d:4b:ca:32: b7:13:40:f2:89:2f:a6:53:de:46:75:29:1b:f7:dd: 22:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A1:8E:59:63:9A:3B:81:6C:B0:E5:52:BD:55:77:7D:8B:E4:5A:5E X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3136312e3235342e302f32342d3234203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.254.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:5d:99:45:d7:9b:84:fa:ec:f1:9d:5e:a3:30:5d:c2:a0:b1: 2e:0a:ff:d5:e8:77:e1:bf:d5:e2:f0:16:26:0d:a5:e2:0e:52: 1e:87:d8:9c:e8:3f:e3:af:7b:68:70:2e:54:d4:6b:58:d9:63: 05:71:90:e0:3e:4e:bd:2a:ef:d4:63:49:29:3e:94:62:2f:75: b7:ed:63:f5:7d:9c:d2:77:aa:6e:7e:35:1c:22:18:6c:d7:0b: 1e:1d:2a:55:6d:80:d4:1f:4d:f0:bd:25:42:e3:fb:d5:7d:33: be:91:7a:49:d4:7b:42:e3:85:ac:47:28:f6:44:e6:b7:43:8a: 57:b7:84:34:0c:65:fc:f2:46:64:81:71:fc:2b:f8:b7:34:f0: 5e:a5:44:63:cd:07:ff:08:35:c7:76:27:6f:67:bc:10:8d:ae: b7:5a:19:28:e5:19:ec:8d:f8:e1:10:07:f4:15:d0:c5:40:47: 6b:6e:b2:8d:0d:19:66:d9:1c:59:7a:9e:7d:99:82:b1:6d:ad: 49:1e:ad:69:76:46:f3:36:84:06:89:56:18:73:76:97:ee:6d: 5c:3d:de:05:b9:21:1e:d5:3c:3c:91:b2:ae:71:1a:e8:7f:7b: f7:ae:30:42:08:da:e6:ed:7a:ae:4f:5e:33:c7:0c:5f:f8:28: 5d:65:73:4e -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUWfFm0PX6aIjz1PxzQEmjo1Vo3RcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MTYwNDAxNDNaFw0yNzA0MTUwNDA2NDNaMDMxMTAvBgNV BAMTKEYyQTE4RTU5NjM5QTNCODE2Q0IwRTU1MkJENTU3NzdEOEJFNDVBNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+OJmd/zKGrjnGhB/ULwlidGPG nGxI8dh/CeHFEHstw6wfX98GIyWM9+P4jCd5rrm/Li0OcZ9dPJbqCoXvuQ3QwKV+ FKZZffbdqj6xZ5vNddTF8kcYqJwNKzaocBXYNcC4c9/Ih8a7wSiwhjGnajvJihom NZHdAIMHJbJGGmdowsY0kA748leFKwqKPPhRtsnSoQyu7S0o5eVzpnicDa5vn8Wp +n3YXVxaHbp63LIzVoVpKqhgqzhRPchkj92ItBNJD2c55J+XwSOWQf26p5UvGU1B BUUyaNtZQx9kLaGdKzwue8ou0LvN6XVuXUvKMrcTQPKJL6ZT3kZ1KRv33SLVAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQU8qGOWWOaO4FssOVSvVV3fYvkWl4wHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDIwMjg5LzAvMzEzMDMzMmUz MTM2MzEyZTMyMzUzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNjM3Mzcz Mi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeh/jANBgkqhkiG9w0BAQsFAAOCAQEAPV2ZRdebhPrs8Z1e ozBdwqCxLgr/1eh34b/V4vAWJg2l4g5SHofYnOg/4697aHAuVNRrWNljBXGQ4D5O vSrv1GNJKT6UYi91t+1j9X2c0neqbn41HCIYbNcLHh0qVW2A1B9N8L0lQuP71X0z vpF6SdR7QuOFrEco9kTmt0OKV7eENAxl/PJGZIFx/Cv4tzTwXqVEY80H/wg1x3Yn b2e8EI2ut1oZKOUZ7I344RAH9BXQxUBHa26yjQ0ZZtkcWXqefZmCsW2tSR6taXZG 8zaEBolWGHN2l+5tXD3eBbkhHtU8PJGyrnEa6H97964wQgja5u16rk9eM8cMX/go XWVzTg== -----END CERTIFICATE-----Generated at Sat Apr 18 02:43:15 2026 by rpki-client