$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS25743.roa File: AS25743.roa (raw, json) Hash identifier: 62wm3hjrKSTAMQ4s0HfcJZmR7Dw8rHd9Oq7Gl2Vg8Dw= Subject key identifier: BA:64:DA:46:E6:AA:22:54:6C:18:BC:13:07:BD:66:94:3A:6B:CA:DF Certificate issuer: /CN=1FFF263C64163BC58514B539C10375CCB553D75E Certificate serial: 5D5FB620129B8A5DCC419CD27761090CE871B22F Authority key identifier: 1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS25743.roa Signing time: Thu 28 May 2026 08:28:28 +0000 ROA not before: Thu 28 May 2026 08:23:28 +0000 ROA not after: Thu 27 May 2027 08:28:28 +0000 asID: 25743 IP address blocks: 103.6.108.0/22 maxlen: 24 103.6.228.0/24 maxlen: 24 103.221.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 23:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:5f:b6:20:12:9b:8a:5d:cc:41:9c:d2:77:61:09:0c:e8:71:b2:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FFF263C64163BC58514B539C10375CCB553D75E Validity Not Before: May 28 08:23:28 2026 GMT Not After : May 27 08:28:28 2027 GMT Subject: CN=BA64DA46E6AA22546C18BC1307BD66943A6BCADF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:8c:e4:9b:bb:a8:0c:c3:71:88:21:21:63:46: 5a:96:e5:3b:72:cd:f6:c4:32:1f:9f:63:e0:39:0c: 2b:e8:59:32:53:fe:87:ef:b5:8a:fe:8d:c9:33:a6: 6f:d3:82:3d:b5:fc:98:a7:b0:6f:38:c1:11:e5:35: c9:bf:26:b8:ef:df:1e:6a:e6:0d:37:15:20:d9:d7: 81:c4:9e:d3:1a:8e:00:a5:02:d7:8e:be:a0:88:15: 8b:7b:7a:0b:0d:3a:51:57:c1:ff:ab:43:de:3b:fe: 2f:59:30:aa:d6:55:d6:fb:ef:b3:a7:a7:c2:88:ae: 89:dc:7c:00:c6:8a:b6:7e:ae:c3:fe:af:d4:77:8a: 47:7e:03:f5:85:55:2a:8b:54:dd:f3:4c:6a:6f:be: 48:fa:08:cb:77:5c:59:2b:8a:68:16:c6:74:d4:fd: 92:c7:00:59:04:cb:de:4c:98:43:13:94:a1:2b:0b: d5:41:e1:cb:13:ae:98:30:d0:76:0c:3d:ab:a7:e5: f8:e1:d9:5c:8f:de:30:71:b8:c6:da:75:c1:bf:8d: a9:8c:5e:d1:63:40:fd:d4:8e:06:55:cf:9b:e3:69: 03:45:0e:41:16:b4:6e:59:7d:91:e9:5e:96:13:bf: e3:60:d3:f2:7a:8f:6a:da:47:6e:26:89:ec:c1:5b: c0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:64:DA:46:E6:AA:22:54:6C:18:BC:13:07:BD:66:94:3A:6B:CA:DF X509v3 Authority Key Identifier: keyid:1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS25743.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.108.0/22 103.6.228.0/24 103.221.49.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:52:a9:62:59:e7:8d:41:20:8f:7e:a9:f1:81:31:40:20:73: 2e:1d:b8:e2:c2:a6:69:fd:3f:6a:89:27:81:91:a8:02:b9:15: 52:e5:c7:4c:47:c1:85:9a:e1:14:6e:91:49:f9:4d:50:6f:0d: 9a:9e:86:40:ff:22:18:99:6f:a7:5a:07:b4:e2:e9:00:bc:4c: 4d:31:e9:01:42:89:a6:5f:83:7a:8e:6b:c1:c7:1c:31:cb:c8: 62:19:ae:31:ba:30:c5:bb:1b:07:d2:ef:be:19:8d:a8:40:c8: 7d:fa:d1:10:78:03:d7:0b:d9:ba:0a:ad:3b:4f:56:06:3c:6d: f0:a5:f9:6b:c5:27:3e:fc:f2:af:9c:5d:a4:31:07:f4:15:29: 2f:bd:b6:94:71:b0:8c:6f:5f:2e:d2:58:74:ef:d5:4a:31:9e: d4:62:71:a5:98:e1:1f:f0:b4:27:b4:e6:69:4e:77:17:59:3d: 2e:81:74:b9:13:a4:60:0e:79:97:ab:87:4c:1d:35:b0:d2:20: 2a:44:c8:86:e4:17:b6:62:92:d6:39:e0:a1:13:fe:87:9c:62: 03:47:3e:a8:3c:26:a0:e3:da:85:76:b0:21:03:ad:7c:b5:e0: f7:d6:d0:2e:82:1f:45:41:a4:41:a7:5b:9d:b7:b8:f3:81:46: 97:ea:89:82 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgIUXV+2IBKbil3MQZzSd2EJDOhxsi8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NC NTUzRDc1RTAeFw0yNjA1MjgwODIzMjhaFw0yNzA1MjcwODI4MjhaMDMxMTAvBgNV BAMTKEJBNjREQTQ2RTZBQTIyNTQ2QzE4QkMxMzA3QkQ2Njk0M0E2QkNBREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWjOSbu6gMw3GIISFjRlqW5Tty zfbEMh+fY+A5DCvoWTJT/ofvtYr+jckzpm/Tgj21/JinsG84wRHlNcm/Jrjv3x5q 5g03FSDZ14HEntMajgClAteOvqCIFYt7egsNOlFXwf+rQ947/i9ZMKrWVdb777On p8KIroncfADGirZ+rsP+r9R3ikd+A/WFVSqLVN3zTGpvvkj6CMt3XFkrimgWxnTU /ZLHAFkEy95MmEMTlKErC9VB4csTrpgw0HYMPaun5fjh2VyP3jBxuMbadcG/jamM XtFjQP3UjgZVz5vjaQNFDkEWtG5ZfZHpXpYTv+Ng0/J6j2raR24miezBW8AZAgMB AAGjggHvMIIB6zAdBgNVHQ4EFgQUumTaRuaqIlRsGLwTB71mlDpryt8wHwYDVR0j BBgwFoAUH/8mPGQWO8WFFLU5wQN1zLVT114wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDMyNzA0My8wLzFGRkYyNjNDNjQxNjNCQzU4NTE0QjUzOUMxMDM3 NUNDQjU1M0Q3NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NCNTUzRDc1RS5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQzMjcwNDMvMC9BUzI1NzQzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIA ATASAwQCZwZsAwQAZwbkAwQAZ90xMA0GCSqGSIb3DQEBCwUAA4IBAQAeUqliWeeN QSCPfqnxgTFAIHMuHbjiwqZp/T9qiSeBkagCuRVS5cdMR8GFmuEUbpFJ+U1Qbw2a noZA/yIYmW+nWge04ukAvExNMekBQommX4N6jmvBxxwxy8hiGa4xujDFuxsH0u++ GY2oQMh9+tEQeAPXC9m6Cq07T1YGPG3wpflrxSc+/PKvnF2kMQf0FSkvvbaUcbCM b18u0lh079VKMZ7UYnGlmOEf8LQntOZpTncXWT0ugXS5E6RgDnmXq4dMHTWw0iAq RMiG5Be2YpLWOeChE/6HnGIDRz6oPCag49qFdrAhA618teD31tAugh9FQaRBp1ud t7jzgUaX6omC -----END CERTIFICATE-----Generated at Sat Jun 6 16:09:06 2026 by rpki-client