$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114113049960120339/0/3130332e3231382e3231372e302f32342d3234203d3e20313334353433.roa File: 3130332e3231382e3231372e302f32342d3234203d3e20313334353433.roa (raw, json) Hash identifier: nq92FnvfjRR84whnQXauF9ipzblRAvFLjaxaZSTK0jo= Subject key identifier: DC:A5:D8:32:99:90:B1:12:45:5A:95:79:08:63:46:AA:95:90:C2:80 Certificate issuer: /CN=04CFDCD1650DD854FF0F6840232427716459F9F6 Certificate serial: 543FFE62056C8F29A075FFD44F242FFE72D670D3 Authority key identifier: 04:CF:DC:D1:65:0D:D8:54:FF:0F:68:40:23:24:27:71:64:59:F9:F6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/04CFDCD1650DD854FF0F6840232427716459F9F6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/3130332e3231382e3231372e302f32342d3234203d3e20313334353433.roa Signing time: Sat 06 Jun 2026 14:52:51 +0000 ROA not before: Sat 06 Jun 2026 14:47:51 +0000 ROA not after: Sat 05 Jun 2027 14:52:51 +0000 asID: 134543 IP address blocks: 103.218.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/04CFDCD1650DD854FF0F6840232427716459F9F6.crl rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/04CFDCD1650DD854FF0F6840232427716459F9F6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/04CFDCD1650DD854FF0F6840232427716459F9F6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 11:48:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:3f:fe:62:05:6c:8f:29:a0:75:ff:d4:4f:24:2f:fe:72:d6:70:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CFDCD1650DD854FF0F6840232427716459F9F6 Validity Not Before: Jun 6 14:47:51 2026 GMT Not After : Jun 5 14:52:51 2027 GMT Subject: CN=DCA5D8329990B112455A9579086346AA9590C280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a0:36:16:e6:70:a6:a0:c8:b3:c7:47:ad:e5: 6f:be:ea:2a:9d:cf:2d:4b:ba:26:ed:50:3f:58:47: eb:d1:66:b2:e1:e2:24:ad:1e:7d:98:74:12:19:0c: 42:8c:23:4a:48:90:de:f4:f2:cc:84:80:92:45:d9: b9:73:31:e8:52:56:a0:dd:5b:31:d5:88:36:c8:cf: 91:01:20:fb:03:7a:57:20:6c:62:4c:dd:81:17:4c: 3f:2f:a3:a9:ac:6b:98:b5:7e:dd:7a:ea:b2:85:bd: e0:86:ba:87:d1:0c:3f:ff:d8:ac:f8:ea:a8:5b:d5: df:a2:04:59:9e:79:c3:ba:4d:31:5f:6d:55:99:4c: 94:24:02:a4:16:67:80:2c:c9:4b:27:72:20:4a:9f: c5:82:05:e5:0a:8b:6d:59:bd:a3:44:62:0a:d4:6c: 5c:3d:a8:39:e3:7d:0c:04:85:3a:00:a2:4a:9d:32: 45:e6:06:dd:ad:8b:8f:fa:08:c3:c8:10:e2:2b:18: e5:32:c8:de:31:53:8c:9b:2e:be:9e:3e:51:db:34: dc:79:91:86:f0:08:82:9c:aa:ae:a6:d9:47:e1:0d: ec:12:a1:2a:7f:83:2c:f8:30:35:a0:0e:cd:12:ad: 20:39:e7:f4:fb:c9:cc:dc:39:c9:c4:08:b4:12:ee: 54:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A5:D8:32:99:90:B1:12:45:5A:95:79:08:63:46:AA:95:90:C2:80 X509v3 Authority Key Identifier: keyid:04:CF:DC:D1:65:0D:D8:54:FF:0F:68:40:23:24:27:71:64:59:F9:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/04CFDCD1650DD854FF0F6840232427716459F9F6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/04CFDCD1650DD854FF0F6840232427716459F9F6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/3130332e3231382e3231372e302f32342d3234203d3e20313334353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.218.217.0/24 Signature Algorithm: sha256WithRSAEncryption 25:52:8d:d9:d4:c0:7a:4e:80:0c:6b:f0:ae:28:a8:c7:45:e2: 4d:4c:fb:c6:4e:83:9f:bd:64:5c:7e:00:07:21:13:c8:35:e1: 94:ea:e0:87:eb:e2:c1:ad:d8:7f:75:0d:5f:38:a4:c4:4b:b1: de:3b:c7:98:88:7e:8b:19:23:42:54:cb:ac:79:f9:57:27:38: 9c:5a:53:31:ad:b2:25:b1:5d:c1:1d:b7:d0:67:c5:6c:b8:5c: 80:1c:ba:36:0e:b5:8d:55:45:5b:5b:81:fb:61:79:d0:26:fd: 17:b6:0b:8f:0f:a2:c1:03:fc:20:30:8d:cc:e8:7e:4f:96:dc: 0f:13:57:ce:49:fa:74:67:ef:2b:21:77:c6:61:e8:03:89:f5: b3:0d:76:39:25:7a:ee:76:5e:0e:af:82:02:ad:94:4b:03:cd: 1f:b7:c4:29:dc:eb:63:07:8e:24:c1:90:50:fe:a6:c2:65:88: 66:81:0a:68:64:1e:79:69:e6:ac:09:df:fc:82:9b:70:f7:62: 59:e6:bb:82:7e:ad:e1:6c:9b:54:85:eb:e6:1b:af:0d:4a:1e: 67:29:f9:23:7b:15:0a:8c:71:e2:18:dd:87:69:89:c2:12:52: 24:c7:a5:35:04:ac:31:5b:1a:a8:b4:0f:78:a3:06:df:87:6a: 19:a7:e8:18 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUVD/+YgVsjymgdf/UTyQv/nLWcNMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRDRkRDRDE2NTBERDg1NEZGMEY2ODQwMjMyNDI3NzE2 NDU5RjlGNjAeFw0yNjA2MDYxNDQ3NTFaFw0yNzA2MDUxNDUyNTFaMDMxMTAvBgNV BAMTKERDQTVEODMyOTk5MEIxMTI0NTVBOTU3OTA4NjM0NkFBOTU5MEMyODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRoDYW5nCmoMizx0et5W++6iqd zy1LuibtUD9YR+vRZrLh4iStHn2YdBIZDEKMI0pIkN708syEgJJF2blzMehSVqDd WzHViDbIz5EBIPsDelcgbGJM3YEXTD8vo6msa5i1ft166rKFveCGuofRDD//2Kz4 6qhb1d+iBFmeecO6TTFfbVWZTJQkAqQWZ4AsyUsnciBKn8WCBeUKi21ZvaNEYgrU bFw9qDnjfQwEhToAokqdMkXmBt2ti4/6CMPIEOIrGOUyyN4xU4ybLr6ePlHbNNx5 kYbwCIKcqq6m2UfhDewSoSp/gyz4MDWgDs0SrSA55/T7yczcOcnECLQS7lQ/AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQU3KXYMpmQsRJFWpV5CGNGqpWQwoAwHwYDVR0j BBgwFoAUBM/c0WUN2FT/D2hAIyQncWRZ+fYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDExMzA0OTk2MDEyMDMzOS8wLzA0Q0ZEQ0QxNjUwREQ4NTRGRjBGNjg0MDIzMjQy NzcxNjQ1OUY5RjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDRDRkRDRDE2NTBERDg1NEZGMEY2ODQwMjMyNDI3NzE2NDU5RjlGNi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTE0MTEzMDQ5OTYwMTIwMzM5LzAvMzEzMDMzMmUz MjMxMzgyZTMyMzEzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfa2TANBgkqhkiG9w0BAQsFAAOCAQEAJVKN2dTAek6ADGvw riiox0XiTUz7xk6Dn71kXH4AByETyDXhlOrgh+viwa3Yf3UNXzikxEux3jvHmIh+ ixkjQlTLrHn5Vyc4nFpTMa2yJbFdwR230GfFbLhcgBy6Ng61jVVFW1uB+2F50Cb9 F7YLjw+iwQP8IDCNzOh+T5bcDxNXzkn6dGfvKyF3xmHoA4n1sw12OSV67nZeDq+C Aq2USwPNH7fEKdzrYweOJMGQUP6mwmWIZoEKaGQeeWnmrAnf/IKbcPdiWea7gn6t 4WybVIXr5huvDUoeZyn5I3sVCoxx4hjdh2mJwhJSJMelNQSsMVsaqLQPeKMG34dq GafoGA== -----END CERTIFICATE-----Generated at Sun Jun 14 01:01:00 2026 by rpki-client