$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3232302e302f32332d3233203d3e203536323832.roa File: 3130332e3233352e3232302e302f32332d3233203d3e203536323832.roa (raw, json) Hash identifier: aKXW6hWBbioOEP7pDiE/dFvPxGjdj9jrnsYlsB3M89A= Subject key identifier: 1C:92:80:AF:CA:EF:AA:D1:D0:19:47:6B:E5:75:93:70:4F:2A:E4:5A Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 263287544C8009124DD9B05A595FC8A85ADD5D99 Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3232302e302f32332d3233203d3e203536323832.roa Signing time: Tue 09 Jun 2026 06:43:25 +0000 ROA not before: Tue 09 Jun 2026 06:38:25 +0000 ROA not after: Tue 08 Jun 2027 06:43:25 +0000 asID: 56282 IP address blocks: 103.235.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:32:87:54:4c:80:09:12:4d:d9:b0:5a:59:5f:c8:a8:5a:dd:5d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: Jun 9 06:38:25 2026 GMT Not After : Jun 8 06:43:25 2027 GMT Subject: CN=1C9280AFCAEFAAD1D019476BE57593704F2AE45A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e3:0c:33:c3:b1:00:ec:df:51:eb:46:08:f5: 22:3a:a4:bf:75:bd:8e:fe:3f:5f:2a:c8:d8:45:b0: 1b:4f:7b:51:dd:f3:b1:b4:e4:5c:cb:5b:6e:3c:51: e0:0e:b4:7c:31:34:50:3b:73:f0:b6:95:8c:5a:c5: 89:3c:80:a7:7b:69:c5:d8:3c:ab:e4:56:56:80:b2: e5:29:e8:94:a4:18:df:16:0b:91:b2:c8:b1:0f:f8: ef:bc:10:95:17:c0:6b:66:d0:c4:d1:27:cc:ae:bb: 07:ba:e7:a5:1d:29:23:13:d3:8d:9b:53:de:01:d9: cd:e5:c5:76:bb:6a:a6:ef:51:61:f9:96:c3:a7:fa: bf:35:94:e5:68:7e:84:a0:89:f1:7e:57:01:66:86: 99:59:95:e2:23:7b:bd:6c:72:22:0d:8e:86:4f:35: c5:7f:89:3d:15:dc:ed:19:4b:d8:07:f2:46:04:a7: da:51:9c:80:ba:07:34:7b:4c:d2:f4:41:c2:43:ff: 03:60:5f:28:7e:9f:94:72:7d:09:73:6b:16:f6:62: 43:b2:aa:06:1b:e2:0a:d5:f5:a4:39:8a:b7:b0:d7: 8c:a8:2f:51:df:4e:c8:c1:af:dd:a7:f0:04:89:c1: 77:3d:c8:46:de:2c:73:5d:be:cf:a5:bc:11:14:ad: 05:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:92:80:AF:CA:EF:AA:D1:D0:19:47:6B:E5:75:93:70:4F:2A:E4:5A X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3232302e302f32332d3233203d3e203536323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.220.0/23 Signature Algorithm: sha256WithRSAEncryption 07:9e:9c:d8:47:5f:32:ab:a9:77:40:ff:70:24:aa:b9:dc:e7: 72:e9:ea:82:dd:07:15:e1:16:39:54:a8:5f:21:d1:86:0d:56: 2f:a9:2e:ad:87:11:62:91:12:57:48:90:0e:61:cc:fa:24:68: 0b:28:4a:d2:f6:44:9c:aa:9a:a4:da:9c:c0:cf:d4:f5:bd:88: 36:fd:b7:75:d7:8b:fc:63:6c:89:e1:63:00:b9:88:de:40:2a: ff:1a:77:91:88:87:b5:8c:ee:dd:1a:3b:c9:70:63:82:69:6f: 9e:9f:af:d8:89:20:19:04:1a:b6:a8:d8:d6:ee:b3:d3:71:4c: 27:3c:31:f1:b0:db:45:d2:af:1f:a9:89:06:6b:04:b2:89:e3: c8:7b:f2:5e:3e:ac:59:02:a4:44:ae:48:5c:08:02:80:4f:e5: a9:d6:42:b1:b0:92:43:6e:a1:a4:21:0e:2d:cb:9b:10:ef:d7: 78:fa:a8:da:29:b0:3e:16:a7:a7:71:c0:4d:96:47:5d:54:2d: a4:9e:70:7a:64:ca:38:27:a7:58:79:f9:f0:e4:9d:00:31:61: 27:47:ce:ab:6e:a3:88:36:b7:4b:c6:00:ab:b7:17:04:65:ab: a4:4e:bf:91:9a:83:ba:5f:69:1e:37:55:f3:8a:4a:8a:9e:b0: 68:37:59:39 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJjKHVEyACRJN2bBaWV/IqFrdXZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA2MDkwNjM4MjVaFw0yNzA2MDgwNjQzMjVaMDMxMTAvBgNV BAMTKDFDOTI4MEFGQ0FFRkFBRDFEMDE5NDc2QkU1NzU5MzcwNEYyQUU0NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/4wwzw7EA7N9R60YI9SI6pL91 vY7+P18qyNhFsBtPe1Hd87G05FzLW248UeAOtHwxNFA7c/C2lYxaxYk8gKd7acXY PKvkVlaAsuUp6JSkGN8WC5GyyLEP+O+8EJUXwGtm0MTRJ8yuuwe656UdKSMT042b U94B2c3lxXa7aqbvUWH5lsOn+r81lOVofoSgifF+VwFmhplZleIje71sciINjoZP NcV/iT0V3O0ZS9gH8kYEp9pRnIC6BzR7TNL0QcJD/wNgXyh+n5RyfQlzaxb2YkOy qgYb4grV9aQ5irew14yoL1HfTsjBr92n8ASJwXc9yEbeLHNdvs+lvBEUrQWBAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUHJKAr8rvqtHQGUdr5XWTcE8q5FowHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2Njg0ODEvMC8zMTMwMzMyZTMy MzMzNTJlMzIzMjMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzUzNjMyMzgzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfr3DANBgkqhkiG9w0BAQsFAAOCAQEAB56c2EdfMqupd0D/cCSq udzncunqgt0HFeEWOVSoXyHRhg1WL6kurYcRYpESV0iQDmHM+iRoCyhK0vZEnKqa pNqcwM/U9b2INv23ddeL/GNsieFjALmI3kAq/xp3kYiHtYzu3Ro7yXBjgmlvnp+v 2IkgGQQatqjY1u6z03FMJzwx8bDbRdKvH6mJBmsEsonjyHvyXj6sWQKkRK5IXAgC gE/lqdZCsbCSQ26hpCEOLcubEO/XePqo2imwPhanp3HATZZHXVQtpJ5wemTKOCen WHn58OSdADFhJ0fOq26jiDa3S8YAq7cXBGWrpE6/kZqDul9pHjdV84pKip6waDdZ OQ== -----END CERTIFICATE-----Generated at Fri Jun 12 01:01:26 2026 by rpki-client