$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3130332e3234382e3135322e302f32342d3234203d3e20313333303333.roa File: 3130332e3234382e3135322e302f32342d3234203d3e20313333303333.roa (raw, json) Hash identifier: si2Vp5pJ/mTFsK2FSRl6/bkhmaSjRnlv/7+SZ/U/JAo= Subject key identifier: 63:4A:62:EB:5C:A9:12:6F:E6:85:CC:6C:33:04:CB:0D:D9:52:B7:75 Certificate issuer: /CN=25C6596195B162409A5AFAA92570F258BAD3C42D Certificate serial: 1C4CE7AA05CEE2DB97E111987F0A61BBF6B9A306 Authority key identifier: 25:C6:59:61:95:B1:62:40:9A:5A:FA:A9:25:70:F2:58:BA:D3:C4:2D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3130332e3234382e3135322e302f32342d3234203d3e20313333303333.roa Signing time: Mon 08 Jun 2026 07:12:21 +0000 ROA not before: Mon 08 Jun 2026 07:07:21 +0000 ROA not after: Mon 07 Jun 2027 07:12:21 +0000 asID: 133033 IP address blocks: 103.248.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 14:06:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4c:e7:aa:05:ce:e2:db:97:e1:11:98:7f:0a:61:bb:f6:b9:a3:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25C6596195B162409A5AFAA92570F258BAD3C42D Validity Not Before: Jun 8 07:07:21 2026 GMT Not After : Jun 7 07:12:21 2027 GMT Subject: CN=634A62EB5CA9126FE685CC6C3304CB0DD952B775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3a:8b:38:e5:57:c3:26:f2:67:b9:f5:2d:1b: 29:17:14:28:e5:af:6b:0e:f0:84:29:02:c9:b6:d4: b1:e3:4f:e6:d9:64:70:cc:1c:bc:94:47:ee:8c:a4: 64:5c:40:12:08:20:ed:cd:75:0d:4d:d0:42:5a:2c: 31:02:9d:8b:55:58:4d:50:12:93:e8:7d:ad:75:45: 76:17:7a:32:eb:7b:52:a4:f6:f2:ee:4c:93:e2:4b: 66:97:d1:33:d0:94:bf:db:6f:52:c3:78:c7:30:8f: a2:32:1f:a7:20:dc:05:e8:c3:97:e2:e3:9e:8f:76: e2:7b:28:89:dd:b9:0e:04:48:2c:79:9b:97:87:f5: a4:37:dc:97:55:16:79:49:18:70:76:d5:af:23:64: af:4e:97:d2:e5:26:ea:3b:5e:cd:13:64:54:4d:09: 2b:88:98:ce:48:3d:ce:0e:27:91:68:21:5b:5c:9c: 7a:73:24:af:d5:85:d8:98:3a:d6:d5:04:a8:8c:06: 05:15:c5:ff:aa:07:8f:19:7f:b1:18:30:e1:97:d3: 0d:bb:4f:8d:11:b8:fa:6d:6c:2a:d3:1b:54:fe:15: e4:ec:23:22:f8:c5:21:1c:3e:8a:0b:60:33:51:03: 4c:9f:7c:ae:bd:ce:60:10:14:d1:c6:4b:c4:77:b9: 4c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:4A:62:EB:5C:A9:12:6F:E6:85:CC:6C:33:04:CB:0D:D9:52:B7:75 X509v3 Authority Key Identifier: keyid:25:C6:59:61:95:B1:62:40:9A:5A:FA:A9:25:70:F2:58:BA:D3:C4:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/25C6596195B162409A5AFAA92570F258BAD3C42D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/25C6596195B162409A5AFAA92570F258BAD3C42D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911216996355/0/3130332e3234382e3135322e302f32342d3234203d3e20313333303333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.152.0/24 Signature Algorithm: sha256WithRSAEncryption 12:1c:c7:43:c0:97:76:7d:91:73:49:4c:f0:b9:97:7e:18:db: 04:17:5a:ee:7b:92:70:ae:0c:10:c9:a1:5d:a9:41:99:d9:78: 17:4c:a8:c2:b9:49:50:82:37:ee:7d:d1:e1:52:df:c3:cb:59: d5:a9:31:1f:64:0e:e9:53:18:c6:6a:65:42:8e:48:0a:76:4b: c7:24:f3:b8:37:20:90:01:16:3f:d0:14:46:52:58:e4:44:d5: 0e:1d:43:d8:a2:43:b6:c2:0d:5c:c8:d0:a7:33:b8:c1:1a:9b: 45:50:f5:26:c5:6f:c0:ff:b7:fe:0d:36:d5:98:3e:52:e4:a9: 3f:75:96:a1:d6:26:70:fa:dc:90:ac:ed:91:d7:d7:7e:37:db: f7:6d:30:63:1c:21:87:9f:2d:35:a9:ed:e8:a0:c3:28:fc:60: 33:7a:ab:aa:44:74:d1:60:a1:d0:87:b4:cc:aa:6b:3c:ee:52: ef:00:d0:a2:e6:f0:05:76:e4:bf:a8:b0:52:87:e8:e4:57:da: 86:94:72:b8:17:85:a6:03:50:df:43:de:6e:52:6f:fc:59:30: 8d:c6:cb:d6:d7:40:6a:14:72:f3:b3:03:73:13:07:54:fa:c9: 65:65:c7:6e:e7:53:02:c2:ab:57:3e:0a:06:0f:15:25:54:70: a6:1e:9b:d5 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUHEznqgXO4tuX4RGYfwphu/a5owYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDNjU5NjE5NUIxNjI0MDlBNUFGQUE5MjU3MEYyNThC QUQzQzQyRDAeFw0yNjA2MDgwNzA3MjFaFw0yNzA2MDcwNzEyMjFaMDMxMTAvBgNV BAMTKDYzNEE2MkVCNUNBOTEyNkZFNjg1Q0M2QzMzMDRDQjBERDk1MkI3NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVOos45VfDJvJnufUtGykXFCjl r2sO8IQpAsm21LHjT+bZZHDMHLyUR+6MpGRcQBIIIO3NdQ1N0EJaLDECnYtVWE1Q EpPofa11RXYXejLre1Kk9vLuTJPiS2aX0TPQlL/bb1LDeMcwj6IyH6cg3AXow5fi 456PduJ7KInduQ4ESCx5m5eH9aQ33JdVFnlJGHB21a8jZK9Ol9LlJuo7Xs0TZFRN CSuImM5IPc4OJ5FoIVtcnHpzJK/VhdiYOtbVBKiMBgUVxf+qB48Zf7EYMOGX0w27 T40RuPptbCrTG1T+FeTsIyL4xSEcPooLYDNRA0yffK69zmAQFNHGS8R3uUzjAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUY0pi61ypEm/mhcxsMwTLDdlSt3UwHwYDVR0j BBgwFoAUJcZZYZWxYkCaWvqpJXDyWLrTxC0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNjk5NjM1NS8wLzI1QzY1OTYxOTVCMTYyNDA5QTVBRkFBOTI1NzBG MjU4QkFEM0M0MkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjVDNjU5NjE5NUIxNjI0MDlBNUFGQUE5MjU3MEYyNThCQUQzQzQyRC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTg1OTExMjE2OTk2MzU1LzAvMzEzMDMzMmUz MjM0MzgyZTMxMzUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMzMwMzMz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf4mDANBgkqhkiG9w0BAQsFAAOCAQEAEhzHQ8CXdn2Rc0lM 8LmXfhjbBBda7nuScK4MEMmhXalBmdl4F0yowrlJUII37n3R4VLfw8tZ1akxH2QO 6VMYxmplQo5ICnZLxyTzuDcgkAEWP9AURlJY5ETVDh1D2KJDtsINXMjQpzO4wRqb RVD1JsVvwP+3/g021Zg+UuSpP3WWodYmcPrckKztkdfXfjfb920wYxwhh58tNant 6KDDKPxgM3qrqkR00WCh0Ie0zKprPO5S7wDQoubwBXbkv6iwUofo5FfahpRyuBeF pgNQ30PeblJv/FkwjcbL1tdAahRy87MDcxMHVPrJZWXHbudTAsKrVz4KBg8VJVRw ph6b1Q== -----END CERTIFICATE-----Generated at Sun Jun 14 02:53:52 2026 by rpki-client