$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: ZMwXvE4dHyIcjXmR+aleISP8m7PnxVmHxH9TxqYuPjw= Subject key identifier: 45:2E:2F:43:6E:8D:A4:DB:DE:91:90:3E:62:07:23:81:ED:0E:88:1A Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 4CE47ECDDB4C64739EE46B6BECEABA2DA2691059 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS16509.roa Signing time: Thu 16 Apr 2026 06:17:21 +0000 ROA not before: Thu 16 Apr 2026 06:12:21 +0000 ROA not after: Thu 15 Apr 2027 06:17:21 +0000 asID: 16509 IP address blocks: 1.118.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 23:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e4:7e:cd:db:4c:64:73:9e:e4:6b:6b:ec:ea:ba:2d:a2:69:10:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 16 06:12:21 2026 GMT Not After : Apr 15 06:17:21 2027 GMT Subject: CN=452E2F436E8DA4DBDE91903E62072381ED0E881A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:a4:73:48:a1:e9:1f:58:45:bf:dd:50:34:e8: 2b:4f:1c:5b:d7:16:f9:7c:1f:11:e5:95:3f:6d:c3: 30:47:2e:2b:1f:c3:1f:75:ec:08:06:89:64:cb:d7: b7:57:bf:04:f7:9d:7b:16:64:f4:27:54:d7:30:bb: 62:04:39:1f:11:72:e8:30:3f:a1:fd:11:12:13:d4: 3c:c7:0e:db:f5:51:2d:ad:24:1c:4d:e1:de:5e:44: 2a:81:2a:84:45:8e:d9:23:1c:3a:ac:9d:c5:cc:53: b7:ec:54:85:cc:ad:91:57:4d:4f:e8:d1:bf:85:f6: 95:c9:d2:56:12:c9:78:be:9b:b7:c1:db:f3:f1:6a: 82:fd:6c:c5:d8:57:1e:2b:ae:48:c5:0d:26:16:f9: 22:fe:4e:cb:c7:6e:f0:de:90:eb:1a:f4:6c:fc:4c: db:ae:28:3b:fa:bc:0c:a8:9e:15:7f:fa:d8:83:d1: 55:69:ad:61:56:fa:e4:9b:ce:80:53:74:74:a3:91: e7:e9:95:b4:3e:a9:a3:79:85:ea:e1:97:a8:b1:b0: 10:9a:d3:36:97:ce:87:a1:6c:08:52:26:63:f1:8c: f8:36:0a:4c:8c:bd:d8:34:cf:66:67:75:dd:73:bf: 65:46:04:03:45:50:6d:69:dc:a4:0e:74:8d:cb:42: 1d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2E:2F:43:6E:8D:A4:DB:DE:91:90:3E:62:07:23:81:ED:0E:88:1A X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.118.3.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:4b:77:16:bd:a0:a1:c2:48:ea:fd:b9:c2:d1:9d:a0:ae:5c: ac:ee:38:77:9a:40:f5:7f:cf:22:a5:1f:65:10:d5:95:99:06: 7c:79:d3:e3:ce:0f:00:f1:bc:b9:fe:28:d9:da:74:49:54:a3: 25:20:8d:88:8e:12:b7:20:ef:29:c1:ca:5c:be:e7:4d:33:fc: 15:8d:d3:bf:db:35:dd:cf:e8:fc:d3:04:1a:b8:fe:7a:f7:a9: d0:bc:e5:1e:c5:74:50:57:8d:42:b6:8f:60:29:ab:05:48:aa: c6:7c:33:27:c8:59:e4:35:b1:f0:c9:ad:d9:93:53:ac:5d:00: 52:98:c4:cd:bf:cd:68:15:24:68:af:81:4f:1d:b5:80:7c:41: 93:8c:c1:ad:aa:32:ba:5f:9c:3f:35:60:57:a1:86:98:b5:7a: f4:55:76:21:43:f7:dd:21:19:32:3f:66:60:c4:10:3f:fd:64: 4d:f5:0a:5f:6f:1d:ac:e4:24:55:f3:28:9e:81:64:fa:75:0a: 35:60:3c:7d:d2:b6:2c:6b:41:81:28:39:46:e2:f0:67:23:6c: 4f:88:d0:d3:11:33:f9:df:b4:2f:6b:de:c7:16:90:e4:74:3c: 87:ed:82:c5:d4:d9:c4:23:e6:d6:01:ef:97:cd:4b:6b:6e:45: a6:6f:ad:ad -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUTOR+zdtMZHOe5Gtr7Oq6LaJpEFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MTYwNjEyMjFaFw0yNzA0MTUwNjE3MjFaMDMxMTAvBgNV BAMTKDQ1MkUyRjQzNkU4REE0REJERTkxOTAzRTYyMDcyMzgxRUQwRTg4MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRpHNIoekfWEW/3VA06CtPHFvX Fvl8HxHllT9twzBHLisfwx917AgGiWTL17dXvwT3nXsWZPQnVNcwu2IEOR8Rcugw P6H9ERIT1DzHDtv1US2tJBxN4d5eRCqBKoRFjtkjHDqsncXMU7fsVIXMrZFXTU/o 0b+F9pXJ0lYSyXi+m7fB2/PxaoL9bMXYVx4rrkjFDSYW+SL+TsvHbvDekOsa9Gz8 TNuuKDv6vAyonhV/+tiD0VVprWFW+uSbzoBTdHSjkefplbQ+qaN5herhl6ixsBCa 0zaXzoehbAhSJmPxjPg2CkyMvdg0z2Zndd1zv2VGBANFUG1p3KQOdI3LQh2BAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQURS4vQ26NpNvekZA+Ygcjge0OiBowHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjgzNjM1OTk3OTA5OTc1MDYvMC9BUzE2NTA5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAAXYDMA0GCSqGSIb3DQEBCwUAA4IBAQCaS3cWvaChwkjq/bnC0Z2grlys 7jh3mkD1f88ipR9lENWVmQZ8edPjzg8A8by5/ijZ2nRJVKMlII2IjhK3IO8pwcpc vudNM/wVjdO/2zXdz+j80wQauP5696nQvOUexXRQV41Cto9gKasFSKrGfDMnyFnk NbHwya3Zk1OsXQBSmMTNv81oFSRor4FPHbWAfEGTjMGtqjK6X5w/NWBXoYaYtXr0 VXYhQ/fdIRkyP2ZgxBA//WRN9Qpfbx2s5CRV8yiegWT6dQo1YDx90rYsa0GBKDlG 4vBnI2xPiNDTETP537Qva97HFpDkdDyH7YLF1NnEI+bWAe+XzUtrbkWmb62t -----END CERTIFICATE-----Generated at Fri Apr 17 05:57:50 2026 by rpki-client