$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS618.roa File: AS618.roa (raw, json) Hash identifier: R+C8Vc8lMDFPCjUBt8RrWNDpfiQzOxRJZjPH8n6RrH8= Subject key identifier: F4:4B:58:02:51:01:64:36:C3:0A:0C:2A:3C:0A:B7:5A:B0:E7:FD:C4 Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 44CB0CEB2C3AF4A983E91647E52BAC7BA725F5E7 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS618.roa Signing time: Thu 16 Apr 2026 06:21:20 +0000 ROA not before: Thu 16 Apr 2026 06:16:20 +0000 ROA not after: Thu 15 Apr 2027 06:21:20 +0000 asID: 618 IP address blocks: 101.124.0.0/20 maxlen: 20 101.124.19.0/24 maxlen: 24 114.67.131.0/24 maxlen: 24 114.67.136.0/24 maxlen: 24 114.67.150.0/24 maxlen: 24 114.67.152.0/22 maxlen: 22 114.67.156.0/24 maxlen: 24 114.67.159.0/24 maxlen: 24 116.198.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:cb:0c:eb:2c:3a:f4:a9:83:e9:16:47:e5:2b:ac:7b:a7:25:f5:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 16 06:16:20 2026 GMT Not After : Apr 15 06:21:20 2027 GMT Subject: CN=F44B580251016436C30A0C2A3C0AB75AB0E7FDC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c5:dd:de:0d:62:13:b2:ed:de:76:ee:40:a0: 73:2c:de:a0:f4:4d:5d:c6:61:dd:dd:ad:9a:47:e2: a3:d2:3f:2b:33:26:78:85:a2:57:d0:b0:1c:a7:01: da:b0:2b:c8:b0:e0:7f:82:4f:b1:16:23:a4:03:70: f7:71:9e:07:74:80:93:75:d9:f5:1b:40:0c:b0:fc: 3d:61:81:65:93:9b:f1:52:a6:55:52:33:83:67:2f: bb:ed:67:98:c0:f8:5d:c1:f5:a6:39:bf:5b:5b:cc: e5:55:25:d8:cd:e1:c7:10:a4:fa:ff:b7:51:97:8b: e5:61:2b:07:cc:c4:fb:38:eb:ed:24:7c:3f:e9:51: 94:8e:db:cd:e7:8c:4a:64:56:75:7c:4c:a8:0f:14: d7:8f:36:db:cb:45:67:c7:af:a6:ed:c4:0e:b6:f0: 12:4b:5d:c8:a9:a5:6d:df:08:c3:26:93:c9:9b:97: a1:a7:bc:6d:c3:a2:15:cc:c2:0b:cd:1a:25:34:e1: c2:67:32:79:e2:62:a6:ff:2e:54:db:2e:a8:64:57: 2d:e2:8e:24:36:39:a3:ae:88:ad:99:8f:bb:ed:fc: 50:9e:0c:7d:34:2e:a6:67:52:fc:b3:5f:a1:0d:24: be:a3:fe:05:49:dc:21:1c:d8:35:14:40:25:6b:7b: e3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:4B:58:02:51:01:64:36:C3:0A:0C:2A:3C:0A:B7:5A:B0:E7:FD:C4 X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/AS618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.124.0.0/20 101.124.19.0/24 114.67.131.0/24 114.67.136.0/24 114.67.150.0/24 114.67.152.0-114.67.156.255 114.67.159.0/24 116.198.11.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:03:33:c2:c0:76:03:47:72:d8:0f:4e:90:b7:87:1a:35:08: 5b:fd:f7:da:1e:ca:78:4c:a1:41:ea:e1:11:55:44:d1:3b:2f: dc:fd:6d:ad:33:ed:1c:67:78:7a:d4:a5:13:46:1b:d5:40:da: 7a:17:ea:32:76:f1:3e:ba:eb:e3:62:a8:5b:ae:11:f3:13:fb: 6f:6a:8c:1a:71:1d:0b:b6:27:f8:71:47:a1:9c:86:1c:40:08: 28:4e:28:91:51:5f:3f:09:4f:89:fa:90:4c:33:c3:d8:1f:d0: 5f:f1:e0:1c:e9:f9:4f:e7:9a:c8:5b:19:30:e4:f8:e4:76:34: 4d:97:9c:eb:a0:99:e1:62:d7:34:58:6a:cf:42:42:55:e8:2e: ce:be:c1:f8:9b:40:c8:34:c5:0d:98:90:ac:50:b8:64:3f:94: f6:93:9d:ba:1f:31:f4:a9:54:ec:5f:6a:5a:6e:2e:ca:49:59: 9e:8a:fb:cf:bd:d5:ad:98:3b:86:b1:af:e2:6a:88:1b:56:c4: 6b:9c:4b:8d:b0:81:b8:81:c0:6f:d4:68:ae:33:71:76:3d:40: 2e:7f:71:95:55:7a:8f:87:8d:d2:7f:13:4b:99:ff:67:52:99: 3e:34:7e:93:39:00:f2:a1:11:40:9c:fb:9d:b0:50:11:30:79: 80:71:9c:e2 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIURMsM6yw69KmD6RZH5Suse6cl9ecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MTYwNjE2MjBaFw0yNzA0MTUwNjIxMjBaMDMxMTAvBgNV BAMTKEY0NEI1ODAyNTEwMTY0MzZDMzBBMEMyQTNDMEFCNzVBQjBFN0ZEQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzxd3eDWITsu3edu5AoHMs3qD0 TV3GYd3drZpH4qPSPyszJniFolfQsBynAdqwK8iw4H+CT7EWI6QDcPdxngd0gJN1 2fUbQAyw/D1hgWWTm/FSplVSM4NnL7vtZ5jA+F3B9aY5v1tbzOVVJdjN4ccQpPr/ t1GXi+VhKwfMxPs46+0kfD/pUZSO283njEpkVnV8TKgPFNePNtvLRWfHr6btxA62 8BJLXcippW3fCMMmk8mbl6GnvG3DohXMwgvNGiU04cJnMnniYqb/LlTbLqhkVy3i jiQ2OaOuiK2Zj7vt/FCeDH00LqZnUvyzX6ENJL6j/gVJ3CEc2DUUQCVre+PvAgMB AAGjggITMIICDzAdBgNVHQ4EFgQU9EtYAlEBZDbDCgwqPAq3WrDn/cQwHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw WwYIKwYBBQUHAQsETzBNMEsGCCsGAQUFBzALhj9yc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjgzNjM1OTk3OTA5OTc1MDYvMC9BUzYxOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjBRBggrBgEFBQcBBwEB/wRCMEAwPgQCAAEw OAMEBGV8AAMEAGV8EwMEAHJDgwMEAHJDiAMEAHJDljAMAwQDckOYAwQAckOcAwQA ckOfAwQAdMYLMA0GCSqGSIb3DQEBCwUAA4IBAQBqAzPCwHYDR3LYD06Qt4caNQhb /ffaHsp4TKFB6uERVUTROy/c/W2tM+0cZ3h61KUTRhvVQNp6F+oydvE+uuvjYqhb rhHzE/tvaowacR0Ltif4cUehnIYcQAgoTiiRUV8/CU+J+pBMM8PYH9Bf8eAc6flP 55rIWxkw5PjkdjRNl5zroJnhYtc0WGrPQkJV6C7OvsH4m0DINMUNmJCsULhkP5T2 k526HzH0qVTsX2pabi7KSVmeivvPvdWtmDuGsa/iaogbVsRrnEuNsIG4gcBv1Giu M3F2PUAuf3GVVXqPh43SfxNLmf9nUpk+NH6TOQDyoRFAnPudsFARMHmAcZzi -----END CERTIFICATE-----Generated at Fri Apr 17 20:59:41 2026 by rpki-client