$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265485825/0/3130332e3231392e36342e302f32322d3232203d3e20313436383036.roa File: 3130332e3231392e36342e302f32322d3232203d3e20313436383036.roa (raw, json) Hash identifier: NrUR+T6l+LFVoNzoAI9D1qEOCPPHDi4EvIfHnTSu1S0= Subject key identifier: F3:9A:84:0C:56:CD:9D:FB:F6:5B:D8:52:3B:A4:A6:90:9D:6A:77:95 Certificate issuer: /CN=632A01C4F1D5C990BF6B363A67894CC7D69E478B Certificate serial: 2A3F9B6D88D6737E06A7276D418C971C5804C8A1 Authority key identifier: 63:2A:01:C4:F1:D5:C9:90:BF:6B:36:3A:67:89:4C:C7:D6:9E:47:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/632A01C4F1D5C990BF6B363A67894CC7D69E478B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/3130332e3231392e36342e302f32322d3232203d3e20313436383036.roa Signing time: Sat 30 May 2026 07:31:22 +0000 ROA not before: Sat 30 May 2026 07:26:22 +0000 ROA not after: Sat 29 May 2027 07:31:22 +0000 asID: 146806 IP address blocks: 103.219.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/632A01C4F1D5C990BF6B363A67894CC7D69E478B.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/632A01C4F1D5C990BF6B363A67894CC7D69E478B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/632A01C4F1D5C990BF6B363A67894CC7D69E478B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 15:46:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:3f:9b:6d:88:d6:73:7e:06:a7:27:6d:41:8c:97:1c:58:04:c8:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=632A01C4F1D5C990BF6B363A67894CC7D69E478B Validity Not Before: May 30 07:26:22 2026 GMT Not After : May 29 07:31:22 2027 GMT Subject: CN=F39A840C56CD9DFBF65BD8523BA4A6909D6A7795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:7e:01:ae:22:fa:e8:d5:b9:33:e9:e0:64: f6:ad:61:3c:22:f2:df:d2:44:e8:b0:bb:1a:54:d7: 83:6f:e4:b8:45:33:ce:0e:0d:29:4c:a9:51:5d:1a: 95:5d:ec:0d:d1:91:ef:0b:44:d5:52:c5:6a:6a:d2: cf:01:a4:9e:56:65:27:ad:54:4a:b8:7b:ef:e8:76: 89:48:14:54:fc:df:cf:8c:c0:f2:ca:75:de:4c:3c: ab:5d:65:36:8f:14:51:92:c9:31:ea:74:74:57:2d: f1:ba:d3:69:9e:30:b9:5e:64:8f:c7:c1:92:94:e9: 3d:5b:a7:eb:5d:f2:06:0a:aa:26:ee:e0:8b:3b:84: e7:93:95:97:06:04:00:77:a3:0f:01:95:95:68:9f: 00:3d:8b:0a:eb:98:27:1e:fa:83:36:83:ea:d3:5d: d6:c7:c6:d7:a2:57:d8:24:4e:ab:16:3f:a2:36:1f: 35:6e:1a:6a:d1:ab:4c:d7:68:52:bf:14:4b:50:75: 26:8d:44:31:e9:d2:03:7f:f8:d0:19:76:21:ca:18: bd:a9:17:92:e5:24:31:6d:ea:c7:31:e4:fc:44:5a: 55:29:aa:a0:a3:dc:41:62:ab:e8:a9:1f:46:31:be: 17:c3:b2:bf:f9:9b:54:e7:5c:20:9a:34:c4:ce:1b: 83:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:9A:84:0C:56:CD:9D:FB:F6:5B:D8:52:3B:A4:A6:90:9D:6A:77:95 X509v3 Authority Key Identifier: keyid:63:2A:01:C4:F1:D5:C9:90:BF:6B:36:3A:67:89:4C:C7:D6:9E:47:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/632A01C4F1D5C990BF6B363A67894CC7D69E478B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/632A01C4F1D5C990BF6B363A67894CC7D69E478B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/3130332e3231392e36342e302f32322d3232203d3e20313436383036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.64.0/22 Signature Algorithm: sha256WithRSAEncryption b7:86:41:58:5b:d8:2d:e3:9b:d3:42:3c:5f:07:a4:d5:80:06: d5:2d:c0:11:42:b7:9a:a4:f6:39:10:1c:8d:13:e0:d0:33:1e: d5:aa:af:c4:f6:6d:cf:d5:09:51:d6:53:59:7d:27:42:c2:98: 99:48:81:16:32:44:d4:58:6c:68:1e:9d:dc:5a:dd:d9:5a:d6: 4d:03:e8:de:ac:96:52:95:33:52:1e:39:40:b2:41:b3:61:ea: 11:e0:77:62:4e:8c:83:62:2c:4f:cb:58:33:a9:61:92:3e:8e: a1:bb:32:1c:76:4f:2b:6f:54:cb:b3:a8:d7:03:23:2b:89:d8: a8:12:01:be:a7:04:e7:4b:45:52:3d:b7:3b:c4:46:2c:1c:02: 07:bd:eb:05:9a:a1:af:30:af:c1:2f:ff:b7:b8:ef:5f:d9:85: 6c:a8:c7:fe:a9:d9:6a:5e:86:06:d9:e7:14:58:1f:b4:1e:cd: 22:d2:89:38:fd:51:39:7f:63:09:42:c1:78:60:04:16:69:bc: 19:6b:ad:fc:c7:1d:67:20:2a:1a:57:ff:5f:59:52:3c:80:12: 42:36:53:c0:aa:e3:45:a1:a1:99:e4:0e:5b:9d:34:8c:7e:94: d9:0f:3e:c4:51:b0:ae:7d:38:15:d7:85:fe:8a:19:14:30:03: 0d:08:f8:c0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKj+bbYjWc34GpydtQYyXHFgEyKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMyQTAxQzRGMUQ1Qzk5MEJGNkIzNjNBNjc4OTRDQzdE NjlFNDc4QjAeFw0yNjA1MzAwNzI2MjJaFw0yNzA1MjkwNzMxMjJaMDMxMTAvBgNV BAMTKEYzOUE4NDBDNTZDRDlERkJGNjVCRDg1MjNCQTRBNjkwOUQ2QTc3OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCp34BriL66NW5M+ngZPatYTwi 8t/SROiwuxpU14Nv5LhFM84ODSlMqVFdGpVd7A3Rke8LRNVSxWpq0s8BpJ5WZSet VEq4e+/odolIFFT838+MwPLKdd5MPKtdZTaPFFGSyTHqdHRXLfG602meMLleZI/H wZKU6T1bp+td8gYKqibu4Is7hOeTlZcGBAB3ow8BlZVonwA9iwrrmCce+oM2g+rT XdbHxteiV9gkTqsWP6I2HzVuGmrRq0zXaFK/FEtQdSaNRDHp0gN/+NAZdiHKGL2p F5LlJDFt6scx5PxEWlUpqqCj3EFiq+ipH0YxvhfDsr/5m1TnXCCaNMTOG4MhAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU85qEDFbNnfv2W9hSO6SmkJ1qd5UwHwYDVR0j BBgwFoAUYyoBxPHVyZC/azY6Z4lMx9aeR4swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQ4NTgyNS8wLzYzMkEwMUM0RjFENUM5OTBCRjZCMzYzQTY3ODk0 Q0M3RDY5RTQ3OEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjMyQTAxQzRGMUQ1Qzk5MEJGNkIzNjNBNjc4OTRDQzdENjlFNDc4Qi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU0ODU4MjUvMC8zMTMwMzMyZTMy MzEzOTJlMzYzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzQzNjM4MzAzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfbQDANBgkqhkiG9w0BAQsFAAOCAQEAt4ZBWFvYLeOb00I8Xwek 1YAG1S3AEUK3mqT2ORAcjRPg0DMe1aqvxPZtz9UJUdZTWX0nQsKYmUiBFjJE1Fhs aB6d3Frd2VrWTQPo3qyWUpUzUh45QLJBs2HqEeB3Yk6Mg2IsT8tYM6lhkj6Oobsy HHZPK29Uy7Oo1wMjK4nYqBIBvqcE50tFUj23O8RGLBwCB73rBZqhrzCvwS//t7jv X9mFbKjH/qnZal6GBtnnFFgftB7NItKJOP1ROX9jCULBeGAEFmm8GWut/McdZyAq Glf/X1lSPIASQjZTwKrjRaGhmeQOW500jH6U2Q8+xFGwrn04FdeF/ooZFDADDQj4 wA== -----END CERTIFICATE-----Generated at Sat Jun 13 23:39:12 2026 by rpki-client