$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109303545804357649/0/3130332e3134392e3234342e302f32332d3233203d3e20313334373630.roa File: 3130332e3134392e3234342e302f32332d3233203d3e20313334373630.roa (raw, json) Hash identifier: 0zkN+f0JOwqtezRzLLt6DnniDUvLcCSNJS4SvCiXzgc= Subject key identifier: 84:39:AB:81:D6:C9:5F:B9:D1:6D:9E:AB:68:F1:A1:66:6C:85:DE:8F Certificate issuer: /CN=33326972ADEFF29B1F5FA14927CBEBEDA33B4C18 Certificate serial: 0524147307196000BC3913C3A16340F7CDD4462A Authority key identifier: 33:32:69:72:AD:EF:F2:9B:1F:5F:A1:49:27:CB:EB:ED:A3:3B:4C:18 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/33326972ADEFF29B1F5FA14927CBEBEDA33B4C18.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109303545804357649/0/3130332e3134392e3234342e302f32332d3233203d3e20313334373630.roa Signing time: Mon 01 Jun 2026 09:52:04 +0000 ROA not before: Mon 01 Jun 2026 09:47:04 +0000 ROA not after: Mon 31 May 2027 09:52:04 +0000 asID: 134760 IP address blocks: 103.149.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109303545804357649/0/33326972ADEFF29B1F5FA14927CBEBEDA33B4C18.crl rsync://rpki-rps.cnnic.cn/repo/A1109303545804357649/0/33326972ADEFF29B1F5FA14927CBEBEDA33B4C18.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/33326972ADEFF29B1F5FA14927CBEBEDA33B4C18.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:24:14:73:07:19:60:00:bc:39:13:c3:a1:63:40:f7:cd:d4:46:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33326972ADEFF29B1F5FA14927CBEBEDA33B4C18 Validity Not Before: Jun 1 09:47:04 2026 GMT Not After : May 31 09:52:04 2027 GMT Subject: CN=8439AB81D6C95FB9D16D9EAB68F1A1666C85DE8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bc:35:27:e7:07:07:bc:f8:84:26:78:bb:40: 63:12:01:b8:f5:51:ab:72:d7:5d:6f:85:43:c5:9d: 8a:93:fd:0a:3c:78:cf:7f:c6:6c:88:e6:2e:29:d9: ff:b6:8f:f5:f0:c7:c5:64:dd:b8:54:14:ad:a6:11: 97:e2:0b:47:68:e4:f5:3f:a3:10:7c:52:8d:9e:81: b4:64:71:a6:4f:8b:8e:fc:2b:50:9d:7d:fe:5d:26: 51:29:a7:e8:d3:53:62:48:d5:8a:ba:3d:41:03:d2: 3a:63:59:b9:43:c0:76:1e:23:ea:4c:5e:88:ef:3c: 2e:ff:cf:01:fd:75:cc:26:33:24:b0:53:4b:b1:0b: 2a:f5:b5:bc:78:66:45:49:5c:cd:97:d9:11:82:01: d9:20:4e:8f:62:65:90:75:5d:ff:cb:11:11:ab:a3: b6:16:c1:19:5f:a7:7f:42:e0:c9:bc:6e:e9:a1:f7: e9:e5:f3:3f:ff:fe:99:d2:b3:70:2b:bc:b1:f9:a9: 99:7d:78:1f:16:ad:95:d9:25:f2:84:d8:25:cf:c2: 7d:ca:ed:3f:b1:77:1a:5a:56:f5:0d:89:83:d5:94: 3e:26:16:77:a7:54:f4:ce:12:47:1c:96:ce:ff:85: 4f:a9:45:b0:a8:34:27:2e:8d:a2:66:4e:49:29:82: fa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:39:AB:81:D6:C9:5F:B9:D1:6D:9E:AB:68:F1:A1:66:6C:85:DE:8F X509v3 Authority Key Identifier: keyid:33:32:69:72:AD:EF:F2:9B:1F:5F:A1:49:27:CB:EB:ED:A3:3B:4C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109303545804357649/0/33326972ADEFF29B1F5FA14927CBEBEDA33B4C18.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/33326972ADEFF29B1F5FA14927CBEBEDA33B4C18.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109303545804357649/0/3130332e3134392e3234342e302f32332d3233203d3e20313334373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.244.0/23 Signature Algorithm: sha256WithRSAEncryption b2:88:79:57:ac:87:18:3c:30:3b:70:3a:5d:49:a9:d7:bb:ca: 1d:7a:15:e1:6b:eb:85:ed:4d:ac:cf:0b:bb:aa:fe:0c:9b:82: aa:48:1b:09:ab:b1:64:2d:5e:51:00:f3:1a:f5:66:3a:0e:79: 13:32:77:8e:02:19:31:82:5e:8d:f6:d5:f7:48:fe:96:3b:f2: d0:bd:ea:0a:32:e7:e8:75:b2:c6:87:8f:99:aa:94:6c:da:21: 43:cf:b1:b2:e1:5d:76:a8:b1:1b:67:35:9f:4b:ca:09:66:ed: 93:de:ee:5f:89:9d:28:06:66:8b:a4:5c:86:e4:25:22:99:03: 0f:39:52:16:52:75:76:88:bf:a1:0f:01:48:a4:58:90:0e:d8: 0f:01:64:da:44:c1:a8:97:cc:c6:7f:ee:98:ea:ab:d4:9a:90: 9d:0b:2c:33:df:a0:92:8e:fd:74:12:6e:97:c5:65:1f:c3:54: 99:da:15:ab:ac:42:25:be:2a:8d:30:d5:e2:9c:8e:97:4a:ee: 2f:ac:94:da:c7:79:c6:d0:db:d6:c1:76:ce:63:32:7b:0c:72: 74:dd:a8:8f:a9:dc:37:d3:83:20:bb:ce:79:a4:06:36:fe:e3: 01:7b:a5:c2:a8:2c:44:c0:91:6f:48:7f:82:9b:fb:8d:24:89: 59:2f:f9:b1 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUBSQUcwcZYAC8ORPDoWNA983URiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMzMjY5NzJBREVGRjI5QjFGNUZBMTQ5MjdDQkVCRURB MzNCNEMxODAeFw0yNjA2MDEwOTQ3MDRaFw0yNzA1MzEwOTUyMDRaMDMxMTAvBgNV BAMTKDg0MzlBQjgxRDZDOTVGQjlEMTZEOUVBQjY4RjFBMTY2NkM4NURFOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDevDUn5wcHvPiEJni7QGMSAbj1 Uaty111vhUPFnYqT/Qo8eM9/xmyI5i4p2f+2j/Xwx8Vk3bhUFK2mEZfiC0do5PU/ oxB8Uo2egbRkcaZPi478K1Cdff5dJlEpp+jTU2JI1Yq6PUED0jpjWblDwHYeI+pM XojvPC7/zwH9dcwmMySwU0uxCyr1tbx4ZkVJXM2X2RGCAdkgTo9iZZB1Xf/LERGr o7YWwRlfp39C4Mm8bumh9+nl8z///pnSs3ArvLH5qZl9eB8WrZXZJfKE2CXPwn3K 7T+xdxpaVvUNiYPVlD4mFnenVPTOEkccls7/hU+pRbCoNCcujaJmTkkpgvrnAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUhDmrgdbJX7nRbZ6raPGhZmyF3o8wHwYDVR0j BBgwFoAUMzJpcq3v8psfX6FJJ8vr7aM7TBgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTMwMzU0NTgwNDM1NzY0OS8wLzMzMzI2OTcyQURFRkYyOUIxRjVGQTE0OTI3Q0JF QkVEQTMzQjRDMTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzMzMjY5NzJBREVGRjI5QjFGNUZBMTQ5MjdDQkVCRURBMzNCNEMxOC5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA5MzAzNTQ1ODA0MzU3NjQ5LzAvMzEzMDMzMmUz MTM0MzkyZTMyMzQzNDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzMzNDM3MzYz MC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeV9DANBgkqhkiG9w0BAQsFAAOCAQEAsoh5V6yHGDwwO3A6 XUmp17vKHXoV4Wvrhe1NrM8Lu6r+DJuCqkgbCauxZC1eUQDzGvVmOg55EzJ3jgIZ MYJejfbV90j+ljvy0L3qCjLn6HWyxoePmaqUbNohQ8+xsuFddqixG2c1n0vKCWbt k97uX4mdKAZmi6RchuQlIpkDDzlSFlJ1doi/oQ8BSKRYkA7YDwFk2kTBqJfMxn/u mOqr1JqQnQssM9+gko79dBJul8VlH8NUmdoVq6xCJb4qjTDV4pyOl0ruL6yU2sd5 xtDb1sF2zmMyewxydN2oj6ncN9ODILvOeaQGNv7jAXulwqgsRMCRb0h/gpv7jSSJ WS/5sQ== -----END CERTIFICATE-----Generated at Sun Jun 14 04:11:50 2026 by rpki-client