$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234382e302f32332d3233203d3e203536323832.roa File: 3130332e3233352e3234382e302f32332d3233203d3e203536323832.roa (raw, json) Hash identifier: 6Pi2B0p3sPa7LGJEgjeZgnvCmMWp3R67OWCLYNt9G84= Subject key identifier: E0:0A:99:9E:47:45:7A:1C:B3:8E:D7:12:98:2C:E3:F8:E5:92:6B:90 Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 7CB9FCDB93A32B405D9C7AA5F5B5954E9595F545 Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234382e302f32332d3233203d3e203536323832.roa Signing time: Tue 09 Jun 2026 06:40:26 +0000 ROA not before: Tue 09 Jun 2026 06:35:26 +0000 ROA not after: Tue 08 Jun 2027 06:40:26 +0000 asID: 56282 IP address blocks: 103.235.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:b9:fc:db:93:a3:2b:40:5d:9c:7a:a5:f5:b5:95:4e:95:95:f5:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: Jun 9 06:35:26 2026 GMT Not After : Jun 8 06:40:26 2027 GMT Subject: CN=E00A999E47457A1CB38ED712982CE3F8E5926B90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f0:50:74:19:0b:c0:26:f4:43:b1:d7:d3:c2: 08:a6:30:f5:9b:b4:20:53:0a:fc:44:da:2f:35:96: 60:d5:65:7d:72:5a:13:e6:f1:41:e7:03:53:10:34: f3:7e:ba:4f:aa:d0:22:77:81:ba:bb:be:6a:ae:05: 88:4b:87:b5:56:a0:7c:1b:1a:62:c4:28:88:42:1c: 00:4a:54:cb:05:73:a4:dc:6f:d5:67:fc:94:7a:f3: c2:30:05:36:5a:3b:04:14:a0:66:86:0a:51:1c:79: 8b:fa:10:fa:61:6c:e7:92:eb:fc:f1:41:70:ae:bf: d4:a4:a8:95:71:aa:07:56:8a:7b:1c:69:11:ad:4e: a7:93:ee:1c:43:ab:59:cd:42:11:11:ff:32:16:f7: e0:01:3c:80:0c:07:4b:dd:3e:7f:d8:2a:dd:ff:34: 12:cd:db:4d:c3:2b:7c:03:9e:de:1a:4b:40:78:0c: c4:33:82:48:9f:72:e6:31:12:2f:9d:78:ec:97:ba: 08:78:fc:66:29:18:c0:97:a6:dc:66:5e:73:0a:c3: 9c:c1:5f:1d:cd:b7:fb:e1:43:70:38:ab:03:db:31: 87:d4:b9:68:06:87:25:21:6c:2a:82:26:61:8a:9d: 4d:33:75:c4:35:38:8d:07:ae:13:de:8f:13:12:1e: a3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:0A:99:9E:47:45:7A:1C:B3:8E:D7:12:98:2C:E3:F8:E5:92:6B:90 X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3234382e302f32332d3233203d3e203536323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.248.0/23 Signature Algorithm: sha256WithRSAEncryption 37:2d:41:1e:f7:85:57:fe:76:84:a7:4c:9b:0e:93:f6:46:1e: ee:a9:7a:3c:f4:f2:4e:07:99:4a:d2:8b:3d:5b:8a:b5:49:bc: 37:fa:98:5e:f7:3c:c3:8c:5c:71:f9:7e:64:ba:df:fe:c6:08: 19:85:89:8d:d6:96:59:6e:30:cd:a5:9c:04:0c:d7:76:55:50: b6:66:cd:11:a8:df:1f:3f:d4:b3:96:1c:c4:a6:5a:98:9f:bd: 97:d6:24:0e:57:25:76:b6:30:c7:f9:4f:46:df:05:a1:9a:f6: 30:3d:54:6e:22:d6:d1:18:75:18:fe:32:ba:bd:c8:b4:c1:af: e9:09:90:6f:22:be:ce:62:97:cd:ba:2f:6f:b7:b0:62:46:7e: 3c:1b:a6:5a:d4:37:dd:d7:19:61:f2:a9:24:c0:4b:ba:4b:cb: 65:77:c0:3f:dd:98:5f:5d:80:8f:88:5a:f2:eb:fd:0b:20:ca: ad:bb:0b:56:36:47:15:84:2d:08:3a:d6:bf:0c:48:23:7f:c7: d0:5d:61:5e:7d:06:ca:66:df:e8:2d:84:6e:e5:06:2a:fb:c2: e8:75:6d:5f:b1:7a:80:22:cc:e8:64:c9:60:66:7d:b1:c5:7c: 47:01:d6:32:17:01:8b:bc:79:2e:5a:0f:ab:4f:6f:70:9f:34: 85:55:4a:19 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUfLn825OjK0BdnHql9bWVTpWV9UUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA2MDkwNjM1MjZaFw0yNzA2MDgwNjQwMjZaMDMxMTAvBgNV BAMTKEUwMEE5OTlFNDc0NTdBMUNCMzhFRDcxMjk4MkNFM0Y4RTU5MjZCOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa8FB0GQvAJvRDsdfTwgimMPWb tCBTCvxE2i81lmDVZX1yWhPm8UHnA1MQNPN+uk+q0CJ3gbq7vmquBYhLh7VWoHwb GmLEKIhCHABKVMsFc6Tcb9Vn/JR688IwBTZaOwQUoGaGClEceYv6EPphbOeS6/zx QXCuv9SkqJVxqgdWinscaRGtTqeT7hxDq1nNQhER/zIW9+ABPIAMB0vdPn/YKt3/ NBLN203DK3wDnt4aS0B4DMQzgkifcuYxEi+deOyXugh4/GYpGMCXptxmXnMKw5zB Xx3Nt/vhQ3A4qwPbMYfUuWgGhyUhbCqCJmGKnU0zdcQ1OI0HrhPejxMSHqPFAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU4AqZnkdFehyzjtcSmCzj+OWSa5AwHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2Njg0ODEvMC8zMTMwMzMyZTMy MzMzNTJlMzIzNDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzUzNjMyMzgzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfr+DANBgkqhkiG9w0BAQsFAAOCAQEANy1BHveFV/52hKdMmw6T 9kYe7ql6PPTyTgeZStKLPVuKtUm8N/qYXvc8w4xccfl+ZLrf/sYIGYWJjdaWWW4w zaWcBAzXdlVQtmbNEajfHz/Us5YcxKZamJ+9l9YkDlcldrYwx/lPRt8FoZr2MD1U biLW0Rh1GP4yur3ItMGv6QmQbyK+zmKXzbovb7ewYkZ+PBumWtQ33dcZYfKpJMBL ukvLZXfAP92YX12Aj4ha8uv9CyDKrbsLVjZHFYQtCDrWvwxII3/H0F1hXn0Gymbf 6C2EbuUGKvvC6HVtX7F6gCLM6GTJYGZ9scV8RwHWMhcBi7x5LloPq09vcJ80hVVK GQ== -----END CERTIFICATE-----Generated at Fri Jun 12 01:01:19 2026 by rpki-client