$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e31372e34302e302f32322d3232203d3e203233373234.roa File: 3130332e31372e34302e302f32322d3232203d3e203233373234.roa (raw, json) Hash identifier: DiCa/0kjPN8ccxcZ9gQIpYAaL+bteNknfy8erY5x4us= Subject key identifier: 8F:70:30:92:07:E8:33:B5:5C:E4:12:74:FB:43:E4:85:FD:B2:F6:09 Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 48EBDE5CF0817C10C9FADB2FD5149BC37625AB41 Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e31372e34302e302f32322d3232203d3e203233373234.roa Signing time: Thu 14 May 2026 07:50:48 +0000 ROA not before: Thu 14 May 2026 07:45:48 +0000 ROA not after: Thu 13 May 2027 07:50:48 +0000 asID: 23724 IP address blocks: 103.17.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 11:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:eb:de:5c:f0:81:7c:10:c9:fa:db:2f:d5:14:9b:c3:76:25:ab:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: May 14 07:45:48 2026 GMT Not After : May 13 07:50:48 2027 GMT Subject: CN=8F70309207E833B55CE41274FB43E485FDB2F609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:36:c9:22:d9:34:05:c4:75:77:0a:f2:14:7c: 2a:cd:31:64:0d:21:f4:97:73:12:d5:ec:f7:c3:d7: f3:21:05:28:5c:93:0e:ea:71:89:1d:09:57:fd:ef: f9:53:1f:7b:4d:69:29:cf:3d:17:7f:9b:63:91:b2: 3c:0d:76:d3:d3:f6:ac:25:22:f0:67:fd:7d:7e:a8: 1f:80:5a:6e:76:5c:2e:d2:bd:71:d3:ef:7a:80:ce: 62:5b:22:26:40:86:62:c4:f7:ef:ae:a7:b4:a8:aa: c3:c8:84:b3:7c:a5:14:39:87:6c:cc:9a:20:93:76: 3a:f1:29:fa:e0:1b:cb:82:30:3e:07:77:d9:64:36: 67:89:ae:a0:a2:d4:6e:bf:cf:68:bc:8f:ea:6a:81: 34:31:19:08:88:94:e0:99:87:4d:05:a4:14:df:97: d0:8b:63:5c:6b:df:60:ca:b4:2a:b6:48:45:7b:b1: f4:ab:e2:28:ce:af:8d:0a:c1:3e:de:c3:3a:53:7f: 3a:21:e2:a2:06:5e:29:53:a7:03:c8:05:84:0e:c3: bf:db:bc:e3:0b:10:29:90:f1:a6:16:c7:a8:31:a9: 98:ef:d3:c1:3a:38:93:37:1a:04:5b:52:8f:37:ee: 4e:53:06:98:2b:30:e6:be:e0:eb:f6:65:c9:d2:31: 2a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:70:30:92:07:E8:33:B5:5C:E4:12:74:FB:43:E4:85:FD:B2:F6:09 X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e31372e34302e302f32322d3232203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.40.0/22 Signature Algorithm: sha256WithRSAEncryption a9:e9:67:c3:80:2b:74:4d:9d:bc:14:29:85:fc:5e:0c:2f:44: ce:c0:d3:19:ef:59:7b:96:37:d1:ac:ef:0a:43:85:0e:f0:5e: da:69:a8:99:6f:14:ed:82:15:12:8d:84:67:7c:af:15:a2:00: d9:8a:22:8a:79:1a:f7:70:1c:39:75:41:8f:ec:de:14:6f:ec: e4:c0:79:b4:55:81:65:79:a4:d2:5e:05:d1:8f:43:5d:84:e6: 18:ee:2c:f4:a3:82:af:5c:2a:f5:3c:ba:05:eb:8e:86:89:94: 1a:e8:80:14:33:ef:8b:c2:66:4e:2b:7f:9a:8f:b8:90:ac:bb: 65:60:c7:4d:0f:fa:b0:56:9a:69:d3:d6:e7:88:5c:45:72:2e: 82:ff:4b:11:31:95:16:62:05:c2:19:15:46:2a:0f:51:e6:ff: 6f:b6:f1:7b:e7:5d:67:e3:6c:ff:85:de:2a:dd:84:6c:e8:2e: b8:39:f4:f7:21:f8:9f:b5:e1:98:bb:52:7e:96:6f:26:f6:da: 7b:52:ab:e8:44:fd:b5:3f:9a:b4:57:b7:44:8a:28:fa:24:82: 7f:f9:cf:34:6c:57:c2:d4:89:c0:04:8c:4e:36:43:47:00:69: d9:e1:98:6a:eb:25:90:be:e3:92:76:f2:f6:63:be:10:9f:b0: 38:39:7b:98 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUSOveXPCBfBDJ+tsv1RSbw3Ylq0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA1MTQwNzQ1NDhaFw0yNzA1MTMwNzUwNDhaMDMxMTAvBgNV BAMTKDhGNzAzMDkyMDdFODMzQjU1Q0U0MTI3NEZCNDNFNDg1RkRCMkY2MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNski2TQFxHV3CvIUfCrNMWQN IfSXcxLV7PfD1/MhBShckw7qcYkdCVf97/lTH3tNaSnPPRd/m2ORsjwNdtPT9qwl IvBn/X1+qB+AWm52XC7SvXHT73qAzmJbIiZAhmLE9++up7SoqsPIhLN8pRQ5h2zM miCTdjrxKfrgG8uCMD4Hd9lkNmeJrqCi1G6/z2i8j+pqgTQxGQiIlOCZh00FpBTf l9CLY1xr32DKtCq2SEV7sfSr4ijOr40KwT7ewzpTfzoh4qIGXilTpwPIBYQOw7/b vOMLECmQ8aYWx6gxqZjv08E6OJM3GgRbUo837k5TBpgrMOa+4Ov2ZcnSMSp/AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUj3AwkgfoM7Vc5BJ0+0Pkhf2y9gkwHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NjY4NDgxLzAvMzEzMDMzMmUzMTM3 MmUzNDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzMzM3MzIzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcRKDANBgkqhkiG9w0BAQsFAAOCAQEAqelnw4ArdE2dvBQphfxeDC9EzsDT Ge9Ze5Y30azvCkOFDvBe2mmomW8U7YIVEo2EZ3yvFaIA2Yoiinka93AcOXVBj+ze FG/s5MB5tFWBZXmk0l4F0Y9DXYTmGO4s9KOCr1wq9Ty6BeuOhomUGuiAFDPvi8Jm Tit/mo+4kKy7ZWDHTQ/6sFaaadPW54hcRXIugv9LETGVFmIFwhkVRioPUeb/b7bx e+ddZ+Ns/4XeKt2EbOguuDn09yH4n7XhmLtSfpZvJvbae1Kr6ET9tT+atFe3RIoo +iSCf/nPNGxXwtSJwASMTjZDRwBp2eGYauslkL7jknby9mO+EJ+wODl7mA== -----END CERTIFICATE-----Generated at Sat May 30 00:41:51 2026 by rpki-client