$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234342e302f32322d3232203d3e203233373234.roa File: 3130332e3233352e3234342e302f32322d3232203d3e203233373234.roa (raw, json) Hash identifier: ARpIsOa42hfejqWqzO3UHY9BV0n7T+U1u0bV5iyHDYg= Subject key identifier: D7:55:C0:D4:07:D9:45:73:58:B0:BE:D3:33:B4:3C:DB:A9:AD:FE:46 Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 2F3B0E5919DF879F73368DA502FB0291F6ED3929 Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234342e302f32322d3232203d3e203233373234.roa Signing time: Thu 14 May 2026 07:56:00 +0000 ROA not before: Thu 14 May 2026 07:51:00 +0000 ROA not after: Thu 13 May 2027 07:56:00 +0000 asID: 23724 IP address blocks: 103.235.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 11:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:3b:0e:59:19:df:87:9f:73:36:8d:a5:02:fb:02:91:f6:ed:39:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: May 14 07:51:00 2026 GMT Not After : May 13 07:56:00 2027 GMT Subject: CN=D755C0D407D9457358B0BED333B43CDBA9ADFE46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f7:00:d9:b1:48:0e:3b:39:68:0e:38:b5:78: 5e:a8:cf:a9:c2:f1:9d:dc:21:9a:de:fc:3f:ff:8c: 2e:bf:54:57:55:cc:72:cd:db:d5:6a:8b:83:2f:60: 23:84:12:16:fd:8b:25:e8:ca:ec:9a:0c:02:b2:cd: 91:5a:63:3c:96:65:65:c6:1e:46:54:1c:ac:2e:a7: 0b:d7:9a:c1:09:c1:74:3e:98:08:e5:a4:6c:60:6e: 6c:f9:45:81:29:be:dd:3d:53:58:05:33:03:93:b0: e0:66:28:ab:ca:13:67:1c:ec:6b:0b:49:b9:db:85: 14:46:6c:3b:67:c0:6f:25:e0:ef:3e:91:83:9a:fe: b3:95:c3:42:86:68:c0:81:27:0f:aa:66:c5:83:09: aa:fd:ff:83:b6:bd:f9:9f:4c:ec:5b:94:eb:c2:fe: 96:0d:a9:13:9b:a2:95:d7:85:c0:56:4c:66:db:5b: d6:d8:d6:43:df:37:f8:fc:82:28:76:78:25:6c:bd: 66:a5:7a:5c:e4:18:52:4e:be:d0:dc:d2:dd:4d:27: 23:cc:bf:21:5f:db:62:07:b6:64:2f:ba:ea:95:f0: ba:c2:6b:ac:d5:23:c8:af:d2:57:c2:7a:c6:20:95: 25:c4:a2:36:ed:97:62:5a:e2:4a:01:3b:54:40:65: 8d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:55:C0:D4:07:D9:45:73:58:B0:BE:D3:33:B4:3C:DB:A9:AD:FE:46 X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234342e302f32322d3232203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.244.0/22 Signature Algorithm: sha256WithRSAEncryption 79:0f:1c:88:24:eb:24:34:45:21:41:ea:51:62:5f:f5:60:62: 4d:fe:be:e1:2a:c1:c1:35:f4:20:b6:eb:80:81:a6:c7:5f:e9: c1:f4:48:8d:ff:77:db:bc:2c:eb:98:c8:98:c5:13:06:54:07: 2e:7c:8b:bc:e1:5e:cb:ba:64:28:a2:35:be:94:2f:5e:5c:bc: d2:48:2a:99:35:4c:0d:62:19:77:3f:c1:85:63:53:81:2c:f8: 45:1d:fe:c6:d8:ac:71:e0:8d:fc:a0:6f:53:80:44:bd:81:48: 0e:df:23:06:5a:f5:2f:76:0d:8d:be:15:38:d7:c3:63:ba:4a: 0a:32:c7:23:f6:33:91:89:16:64:42:fc:55:c3:4a:df:6b:20: d2:2f:29:7d:f8:4b:ba:51:d5:84:0a:40:b4:94:4d:f8:48:30: ea:8a:ad:05:f4:84:05:6a:22:da:9a:14:55:de:6f:51:9f:1b: 1d:5f:dd:7e:83:83:d8:a0:af:54:7a:f5:83:38:b0:fb:88:9f: 6f:b4:f6:50:4d:2d:d0:e5:af:e2:04:cf:ff:4b:39:df:1f:9e: 16:ec:48:e7:2d:0c:82:57:5a:ec:d6:1e:d8:99:2e:a5:35:f0: 95:f6:2d:11:7d:c1:c8:f3:17:e6:8a:b5:60:a7:f2:27:1c:a7: d9:70:ba:36 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIULzsOWRnfh59zNo2lAvsCkfbtOSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA1MTQwNzUxMDBaFw0yNzA1MTMwNzU2MDBaMDMxMTAvBgNV BAMTKEQ3NTVDMEQ0MDdEOTQ1NzM1OEIwQkVEMzMzQjQzQ0RCQTlBREZFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb9wDZsUgOOzloDji1eF6oz6nC 8Z3cIZre/D//jC6/VFdVzHLN29Vqi4MvYCOEEhb9iyXoyuyaDAKyzZFaYzyWZWXG HkZUHKwupwvXmsEJwXQ+mAjlpGxgbmz5RYEpvt09U1gFMwOTsOBmKKvKE2cc7GsL SbnbhRRGbDtnwG8l4O8+kYOa/rOVw0KGaMCBJw+qZsWDCar9/4O2vfmfTOxblOvC /pYNqRObopXXhcBWTGbbW9bY1kPfN/j8gih2eCVsvWalelzkGFJOvtDc0t1NJyPM vyFf22IHtmQvuuqV8LrCa6zVI8iv0lfCesYglSXEojbtl2Ja4koBO1RAZY35AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU11XA1AfZRXNYsL7TM7Q826mt/kYwHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2Njg0ODEvMC8zMTMwMzMyZTMy MzMzNTJlMzIzNDM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfr9DANBgkqhkiG9w0BAQsFAAOCAQEAeQ8ciCTrJDRFIUHqUWJf 9WBiTf6+4SrBwTX0ILbrgIGmx1/pwfRIjf9327ws65jImMUTBlQHLnyLvOFey7pk KKI1vpQvXly80kgqmTVMDWIZdz/BhWNTgSz4RR3+xtisceCN/KBvU4BEvYFIDt8j Blr1L3YNjb4VONfDY7pKCjLHI/YzkYkWZEL8VcNK32sg0i8pffhLulHVhApAtJRN +Egw6oqtBfSEBWoi2poUVd5vUZ8bHV/dfoOD2KCvVHr1gziw+4ifb7T2UE0t0OWv 4gTP/0s53x+eFuxI5y0Mglda7NYe2JkupTXwlfYtEX3ByPMX5oq1YKfyJxyn2XC6 Ng== -----END CERTIFICATE-----Generated at Sat May 30 00:41:58 2026 by rpki-client