$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948402691/0/3130362e31312e302e302f31362d3234203d3e203337393633.roa File: 3130362e31312e302e302f31362d3234203d3e203337393633.roa (raw, json) Hash identifier: yQmD+OYAINvD98IxrI87Ly9AvZOmM2xePYRx0N/oDyQ= Subject key identifier: 03:2C:BB:D9:0A:BC:D8:F6:76:01:7D:59:E5:57:23:8E:52:B1:5C:44 Certificate issuer: /CN=0AD34C05E88D12C30ED7FE1DD2ABEA564673DAC0 Certificate serial: 0DEA870A29F9431F3C0AD80A8C631FD88BE89B4D Authority key identifier: 0A:D3:4C:05:E8:8D:12:C3:0E:D7:FE:1D:D2:AB:EA:56:46:73:DA:C0 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AD34C05E88D12C30ED7FE1DD2ABEA564673DAC0.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948402691/0/3130362e31312e302e302f31362d3234203d3e203337393633.roa Signing time: Mon 20 Apr 2026 02:03:31 +0000 ROA not before: Mon 20 Apr 2026 01:58:31 +0000 ROA not after: Mon 19 Apr 2027 02:03:31 +0000 asID: 37963 IP address blocks: 106.11.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948402691/0/0AD34C05E88D12C30ED7FE1DD2ABEA564673DAC0.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948402691/0/0AD34C05E88D12C30ED7FE1DD2ABEA564673DAC0.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AD34C05E88D12C30ED7FE1DD2ABEA564673DAC0.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Apr 2026 01:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:ea:87:0a:29:f9:43:1f:3c:0a:d8:0a:8c:63:1f:d8:8b:e8:9b:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AD34C05E88D12C30ED7FE1DD2ABEA564673DAC0 Validity Not Before: Apr 20 01:58:31 2026 GMT Not After : Apr 19 02:03:31 2027 GMT Subject: CN=032CBBD90ABCD8F676017D59E557238E52B15C44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fc:f1:be:d6:d9:63:01:f0:4b:34:bd:da:f3: 1d:3a:e9:9d:63:52:1a:a2:1a:d7:d4:09:c0:97:f5: 7d:32:d0:ec:dc:36:d2:2d:76:68:90:90:49:8a:a5: b6:7f:03:ef:aa:1c:17:94:8e:49:f2:ef:24:15:cc: a7:4f:59:2f:00:e0:9e:ef:d1:00:ff:9a:5c:fc:f8: d4:98:2a:90:90:88:e5:21:c5:72:38:fb:ab:5f:28: 99:bf:79:48:94:a0:c0:12:f5:e7:91:d2:6e:2e:fc: 4d:eb:36:19:41:15:1e:66:84:c9:91:e3:40:39:a6: 1e:c6:99:32:42:97:3b:cc:5d:dd:cf:48:e6:a3:72: f5:d1:e0:e9:f4:b8:a4:02:e9:e9:df:74:8e:47:40: 1d:83:44:ab:43:94:53:4c:ae:c8:25:eb:ab:ee:e8: 0e:41:3a:47:d7:f1:67:e3:88:8d:96:8d:0f:7c:19: 7c:e5:90:a0:64:91:5e:7c:dd:fa:f3:05:7a:14:f1: 0b:54:a6:72:6e:9c:b7:6d:91:97:18:dd:ba:79:7c: e5:33:c3:62:db:66:da:42:57:21:d6:1c:3b:13:74: 76:78:f6:b9:ae:f8:81:95:84:ca:3e:87:58:96:b8: 58:b1:68:7d:3a:b9:e0:41:63:56:82:b7:68:48:03: 3f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2C:BB:D9:0A:BC:D8:F6:76:01:7D:59:E5:57:23:8E:52:B1:5C:44 X509v3 Authority Key Identifier: keyid:0A:D3:4C:05:E8:8D:12:C3:0E:D7:FE:1D:D2:AB:EA:56:46:73:DA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948402691/0/0AD34C05E88D12C30ED7FE1DD2ABEA564673DAC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AD34C05E88D12C30ED7FE1DD2ABEA564673DAC0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948402691/0/3130362e31312e302e302f31362d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 106.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1e:a1:ca:07:bf:a0:d8:a1:59:17:0f:a2:d8:28:c8:df:25:db: 8a:95:63:a4:54:d0:4c:53:9c:7b:0b:0d:89:cf:5c:6f:be:02: d9:e2:00:ba:a9:ff:3e:2e:95:cb:ad:9e:04:3b:1d:7e:33:73: 8b:f5:c7:ec:d6:49:b9:35:68:36:7e:fe:95:bd:c4:ee:8a:5f: e2:34:2e:b4:ce:22:d3:d0:78:1d:bb:0d:19:93:63:14:ba:4b: ea:bf:94:b4:44:8f:42:e4:f5:85:d0:2c:e9:fa:40:ee:8e:85: 69:2a:98:81:73:d0:b7:60:bd:86:89:b4:98:72:3d:19:38:1e: bb:59:79:4a:46:cd:ef:63:0c:f3:5e:e1:17:6a:03:73:f8:69: 20:e1:7e:17:b9:14:fd:4e:e7:71:d3:b5:65:07:12:bb:61:95: db:73:e0:f2:14:fd:20:e9:f7:3c:b7:28:30:80:4c:8c:07:6c: 18:b4:8f:2c:aa:13:49:5a:1a:e9:4f:04:40:9a:2f:12:f2:c8: 14:8a:fb:ba:d6:89:59:c7:af:6f:d9:ed:49:b4:35:90:22:15: 51:2d:52:89:c6:82:21:90:97:d8:78:26:f8:c4:98:94:93:62: 3d:f0:80:dd:ee:12:00:d7:e4:b6:67:cd:5e:af:6d:6d:98:24: 4d:bb:1e:61 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUDeqHCin5Qx88CtgKjGMf2Ivom00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEFEMzRDMDVFODhEMTJDMzBFRDdGRTFERDJBQkVBNTY0 NjczREFDMDAeFw0yNjA0MjAwMTU4MzFaFw0yNzA0MTkwMjAzMzFaMDMxMTAvBgNV BAMTKDAzMkNCQkQ5MEFCQ0Q4RjY3NjAxN0Q1OUU1NTcyMzhFNTJCMTVDNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX/PG+1tljAfBLNL3a8x066Z1j UhqiGtfUCcCX9X0y0OzcNtItdmiQkEmKpbZ/A++qHBeUjkny7yQVzKdPWS8A4J7v 0QD/mlz8+NSYKpCQiOUhxXI4+6tfKJm/eUiUoMAS9eeR0m4u/E3rNhlBFR5mhMmR 40A5ph7GmTJClzvMXd3PSOajcvXR4On0uKQC6enfdI5HQB2DRKtDlFNMrsgl66vu 6A5BOkfX8WfjiI2WjQ98GXzlkKBkkV583frzBXoU8QtUpnJunLdtkZcY3bp5fOUz w2LbZtpCVyHWHDsTdHZ49rmu+IGVhMo+h1iWuFixaH06ueBBY1aCt2hIAz/PAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUAyy72Qq82PZ2AX1Z5VcjjlKxXEQwHwYDVR0j BBgwFoAUCtNMBeiNEsMO1/4d0qvqVkZz2sAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODQwMjY5MS8wLzBBRDM0QzA1RTg4RDEyQzMwRUQ3RkUxREQyQUJF QTU2NDY3M0RBQzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEFEMzRDMDVFODhEMTJDMzBFRDdGRTFERDJBQkVBNTY0NjczREFDMC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4NDAyNjkxLzAvMzEzMDM2MmUzMTMx MmUzMDJlMzAyZjMxMzYyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwBqCzANBgkqhkiG9w0BAQsFAAOCAQEAHqHKB7+g2KFZFw+i2CjI3yXbipVjpFTQ TFOcewsNic9cb74C2eIAuqn/Pi6Vy62eBDsdfjNzi/XH7NZJuTVoNn7+lb3E7opf 4jQutM4i09B4HbsNGZNjFLpL6r+UtESPQuT1hdAs6fpA7o6FaSqYgXPQt2C9hom0 mHI9GTgeu1l5SkbN72MM817hF2oDc/hpIOF+F7kU/U7ncdO1ZQcSu2GV23Pg8hT9 IOn3PLcoMIBMjAdsGLSPLKoTSVoa6U8EQJovEvLIFIr7utaJWcevb9ntSbQ1kCIV US1SicaCIZCX2Hgm+MSYlJNiPfCA3e4SANfktmfNXq9tbZgkTbseYQ== -----END CERTIFICATE-----Generated at Tue Apr 28 08:04:37 2026 by rpki-client