$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3235322e302f32322d3232203d3e203233373234.roa File: 3130332e3233352e3235322e302f32322d3232203d3e203233373234.roa (raw, json) Hash identifier: wqpHNESZxm6z2+4w9MLDt0wYR9VZjqs22P3AVjC8wB8= Subject key identifier: 7B:2B:68:C3:75:3F:D4:EC:2A:D0:26:65:52:81:E1:4F:EA:DC:09:78 Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 1F64FC4731DE646BD27B35D61F472B66BA88BA7D Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3235322e302f32322d3232203d3e203233373234.roa Signing time: Thu 14 May 2026 07:57:01 +0000 ROA not before: Thu 14 May 2026 07:52:01 +0000 ROA not after: Thu 13 May 2027 07:57:01 +0000 asID: 23724 IP address blocks: 103.235.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 11:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:64:fc:47:31:de:64:6b:d2:7b:35:d6:1f:47:2b:66:ba:88:ba:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: May 14 07:52:01 2026 GMT Not After : May 13 07:57:01 2027 GMT Subject: CN=7B2B68C3753FD4EC2AD026655281E14FEADC0978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:69:52:55:53:44:0f:35:3f:6d:31:76:3e:86: 8b:4a:3c:c8:b6:db:d9:71:84:b7:9d:38:5c:03:f7: 33:ff:11:a8:4b:7b:f8:0e:18:9b:a4:9f:4a:9e:30: 75:c5:48:2f:c2:71:b3:80:26:16:1f:93:cb:ef:4e: 72:00:9b:3e:a6:5e:a8:90:52:4f:6d:a9:4a:61:62: 1a:80:3b:f3:83:6e:61:bf:2d:b2:de:0d:6f:05:5b: 04:30:34:21:ca:97:e8:5d:6e:20:99:f2:89:a8:4d: 14:04:f4:9b:a1:29:5a:2b:20:9b:04:f6:86:e9:3d: e8:60:3e:8c:38:5f:42:07:7a:95:08:a1:45:e2:19: cb:3a:cc:ea:8b:a3:0d:d9:07:83:a5:2c:30:0f:e6: 40:9a:5d:32:d1:71:85:32:fa:15:73:a0:b0:d2:b6: ed:14:7b:09:b7:98:ca:27:53:7a:aa:0f:a7:42:f2: b7:c9:fa:44:df:da:bb:71:1a:da:ed:22:1b:fa:91: de:bf:6b:1a:00:40:81:67:45:b5:a4:66:12:3c:22: 09:9a:fd:02:75:a4:c6:d7:8a:7d:e1:d0:16:e6:dd: 09:d4:68:6e:cc:a3:f0:31:aa:c2:fe:23:ac:8e:1d: 91:ae:0f:18:a9:12:b9:61:12:da:57:dc:d5:f6:9a: 66:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:2B:68:C3:75:3F:D4:EC:2A:D0:26:65:52:81:E1:4F:EA:DC:09:78 X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3130332e3233352e3235322e302f32322d3232203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.252.0/22 Signature Algorithm: sha256WithRSAEncryption a4:19:c2:08:4c:0c:b4:34:fe:1d:9e:99:cc:75:67:dd:2c:66: 6d:32:38:39:30:6f:0d:c8:82:4c:d2:71:cd:26:74:d3:f5:ff: bc:1e:38:12:a6:e3:e8:a9:d3:9f:c9:98:0c:82:47:c9:29:59: a9:9c:ee:d6:14:b9:c1:ef:9b:c8:b1:07:9a:68:15:38:45:fc: 7c:39:b6:9e:7b:af:3e:d4:ff:6b:bf:df:75:d9:88:c5:3a:f6: 15:2b:dd:6b:f3:44:25:43:3d:d8:4a:dd:1d:a2:59:27:45:c4: 3f:26:ec:26:4b:a4:53:03:a3:c3:aa:ef:b0:59:d8:a2:d6:3e: 96:95:97:7c:77:bd:f8:8d:e8:f3:e2:ab:04:a9:fa:e7:63:f0: fa:40:66:7c:9c:26:00:5a:c0:5b:40:84:24:2b:9c:b9:4e:a5: 29:64:f7:45:59:6f:b5:f3:52:2d:0e:ab:61:f2:e1:2b:2a:e9: b6:51:dc:b8:e9:cf:8d:67:18:c4:9b:fc:0c:52:1a:5b:6c:62: bb:8d:30:7b:26:39:e7:bf:31:89:59:a9:57:20:2d:0a:9c:13: f7:aa:d8:3c:03:1f:be:e6:eb:57:49:32:58:5a:4b:03:e8:01: d0:1e:52:0a:5d:8e:6f:83:29:30:34:be:8c:15:b0:ed:86:ec: 05:ae:94:53 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUH2T8RzHeZGvSezXWH0crZrqIun0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA1MTQwNzUyMDFaFw0yNzA1MTMwNzU3MDFaMDMxMTAvBgNV BAMTKDdCMkI2OEMzNzUzRkQ0RUMyQUQwMjY2NTUyODFFMTRGRUFEQzA5NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdaVJVU0QPNT9tMXY+hotKPMi2 29lxhLedOFwD9zP/EahLe/gOGJukn0qeMHXFSC/CcbOAJhYfk8vvTnIAmz6mXqiQ Uk9tqUphYhqAO/ODbmG/LbLeDW8FWwQwNCHKl+hdbiCZ8omoTRQE9JuhKVorIJsE 9obpPehgPow4X0IHepUIoUXiGcs6zOqLow3ZB4OlLDAP5kCaXTLRcYUy+hVzoLDS tu0Uewm3mMonU3qqD6dC8rfJ+kTf2rtxGtrtIhv6kd6/axoAQIFnRbWkZhI8Igma /QJ1pMbXin3h0Bbm3QnUaG7Mo/AxqsL+I6yOHZGuDxipErlhEtpX3NX2mmYDAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUeytow3U/1Owq0CZlUoHhT+rcCXgwHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzcyNDE5NDc2Njg0ODEvMC8zMTMwMzMyZTMy MzMzNTJlMzIzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzMzM3MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfr/DANBgkqhkiG9w0BAQsFAAOCAQEApBnCCEwMtDT+HZ6ZzHVn 3SxmbTI4OTBvDciCTNJxzSZ00/X/vB44Eqbj6KnTn8mYDIJHySlZqZzu1hS5we+b yLEHmmgVOEX8fDm2nnuvPtT/a7/fddmIxTr2FSvda/NEJUM92ErdHaJZJ0XEPybs JkukUwOjw6rvsFnYotY+lpWXfHe9+I3o8+KrBKn652Pw+kBmfJwmAFrAW0CEJCuc uU6lKWT3RVlvtfNSLQ6rYfLhKyrptlHcuOnPjWcYxJv8DFIaW2xiu40weyY5578x iVmpVyAtCpwT96rYPAMfvubrV0kyWFpLA+gB0B5SCl2Ob4MpMDS+jBWw7YbsBa6U Uw== -----END CERTIFICATE-----Generated at Sat May 30 00:41:46 2026 by rpki-client