$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234382e302f32322d3232203d3e203233373234.roa File: 3130332e3233352e3234382e302f32322d3232203d3e203233373234.roa (raw, json) Hash identifier: fFlmHYdAWr1ZmrEd8mxb07whgP+eFHyZpEzhrGSPntk= Subject key identifier: 14:9C:70:42:A0:06:B5:CB:A5:A1:2D:55:DE:EB:5B:EE:C5:DD:CF:8D Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 2E3609551FAAD3775830D2D5D6F7652A292438FF Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234382e302f32322d3232203d3e203233373234.roa Signing time: Thu 14 May 2026 07:56:33 +0000 ROA not before: Thu 14 May 2026 07:51:33 +0000 ROA not after: Thu 13 May 2027 07:56:33 +0000 asID: 23724 IP address blocks: 103.235.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 11:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:36:09:55:1f:aa:d3:77:58:30:d2:d5:d6:f7:65:2a:29:24:38:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: May 14 07:51:33 2026 GMT Not After : May 13 07:56:33 2027 GMT Subject: CN=149C7042A006B5CBA5A12D55DEEB5BEEC5DDCF8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:ed:c0:59:5f:b2:f7:d3:09:4b:39:9e:8c:b3: 20:0f:06:9c:df:18:86:56:62:a5:4b:1e:be:47:65: 16:35:2f:f2:09:d6:de:90:22:18:b6:d7:62:51:19: f7:64:27:df:b4:79:0f:89:df:ae:2b:d6:3a:5d:76: a5:2b:4a:5c:66:81:09:ad:ba:ec:30:69:82:92:d1: 81:15:63:e1:86:a5:47:a2:71:7f:cd:6c:66:0f:f4: a4:f4:4e:a6:1a:9a:75:25:d7:50:3f:b6:d5:e4:6d: e0:b1:d4:91:0f:67:6f:ea:ff:de:47:97:cf:80:b3: f9:55:81:b1:0d:15:d6:e3:aa:b5:6e:32:02:14:38: 87:6a:bd:64:09:ef:30:52:94:87:96:c7:a9:c4:66: cc:79:ec:e4:94:f7:df:39:0e:f4:9f:e4:36:82:28: 1b:51:e8:76:63:ed:53:0e:33:81:f6:ca:e1:ac:77: 84:10:c1:60:b1:8b:30:17:56:c2:be:58:c2:b4:7f: 6a:a2:46:6e:ba:93:d7:2f:0c:1e:bd:01:03:e1:a7: d1:23:5c:dc:26:9c:a9:7e:80:a1:20:6b:f8:d1:68: 88:6f:16:d7:40:37:c5:7b:ea:c5:24:cb:43:1d:8d: da:15:c1:c7:80:ac:1d:c7:05:b7:6b:ce:ac:bf:cc: 6f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:9C:70:42:A0:06:B5:CB:A5:A1:2D:55:DE:EB:5B:EE:C5:DD:CF:8D X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234382e302f32322d3232203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.248.0/22 Signature Algorithm: sha256WithRSAEncryption 64:11:66:fc:8e:d4:ec:6d:b2:d5:e0:b8:9e:0f:16:08:53:5c: f0:58:7c:69:2b:b3:d7:ca:3d:8c:22:df:75:2d:e6:4b:91:ac: 1f:5c:ba:75:b7:c4:af:cd:97:59:a0:9a:8b:3f:19:13:31:94: 98:00:ee:ad:9e:b5:e5:a1:20:9f:74:90:88:07:21:7e:bc:38: b0:aa:c8:5d:77:20:b2:81:52:59:79:a3:51:9c:b9:92:9b:bc: cb:72:44:97:81:97:9f:8b:c0:42:bc:82:a1:a8:63:c9:7a:1b: bb:84:c1:33:15:e5:85:e0:c7:7f:be:ff:4d:f9:ed:df:52:2e: d0:1a:d3:11:4f:dd:59:44:3a:a5:d4:5d:4d:a4:87:f1:33:e5: 1e:ae:33:6b:84:81:d0:1e:d4:52:29:d2:fd:51:67:ae:6c:75: 70:c5:ef:c7:8e:f4:b7:41:b0:b3:03:f9:cb:4b:9c:4f:5e:81: 6c:2c:06:2b:66:2e:5f:ad:0e:fa:fa:66:e3:40:c2:24:bf:d1: 69:f1:8e:cb:8d:af:d7:bd:e7:48:29:01:95:7e:1a:d4:fa:a3: b1:da:d8:a4:94:bb:c1:6e:e9:7d:8b:56:bb:79:e1:77:bf:df: 5c:5d:85:dd:d0:6d:12:92:96:cf:46:df:ba:bb:7a:81:b8:6e: b1:b5:27:1c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIULjYJVR+q03dYMNLV1vdlKikkOP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA1MTQwNzUxMzNaFw0yNzA1MTMwNzU2MzNaMDMxMTAvBgNV BAMTKDE0OUM3MDQyQTAwNkI1Q0JBNUExMkQ1NURFRUI1QkVFQzVERENGOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD47cBZX7L30wlLOZ6MsyAPBpzf GIZWYqVLHr5HZRY1L/IJ1t6QIhi212JRGfdkJ9+0eQ+J364r1jpddqUrSlxmgQmt uuwwaYKS0YEVY+GGpUeicX/NbGYP9KT0TqYamnUl11A/ttXkbeCx1JEPZ2/q/95H l8+As/lVgbENFdbjqrVuMgIUOIdqvWQJ7zBSlIeWx6nEZsx57OSU9985DvSf5DaC KBtR6HZj7VMOM4H2yuGsd4QQwWCxizAXVsK+WMK0f2qiRm66k9cvDB69AQPhp9Ej XNwmnKl+gKEga/jRaIhvFtdAN8V76sUky0MdjdoVwceArB3HBbdrzqy/zG8hAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUFJxwQqAGtculoS1V3utb7sXdz40wHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2Njg0ODEvMC8zMTMwMzMyZTMy MzMzNTJlMzIzNDM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfr+DANBgkqhkiG9w0BAQsFAAOCAQEAZBFm/I7U7G2y1eC4ng8W CFNc8Fh8aSuz18o9jCLfdS3mS5GsH1y6dbfEr82XWaCaiz8ZEzGUmADurZ615aEg n3SQiAchfrw4sKrIXXcgsoFSWXmjUZy5kpu8y3JEl4GXn4vAQryCoahjyXobu4TB MxXlheDHf77/Tfnt31Iu0BrTEU/dWUQ6pdRdTaSH8TPlHq4za4SB0B7UUinS/VFn rmx1cMXvx470t0GwswP5y0ucT16BbCwGK2YuX60O+vpm40DCJL/RafGOy42v173n SCkBlX4a1PqjsdrYpJS7wW7pfYtWu3nhd7/fXF2F3dBtEpKWz0bfurt6gbhusbUn HA== -----END CERTIFICATE-----Generated at Sat May 30 00:42:20 2026 by rpki-client