$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS4812.roa File: AS4812.roa (raw, json) Hash identifier: uR8+jvbPWxX/gya7yb2Z9YMAFb2ToXh5oJ8ZtPWHAUc= Subject key identifier: F2:7A:53:79:78:FA:5E:CD:A8:94:6C:5A:ED:28:DA:E1:76:16:38:02 Certificate issuer: /CN=1FFF263C64163BC58514B539C10375CCB553D75E Certificate serial: 147C0FA77246BEC34BA4FE998EA16D56B6415CFA Authority key identifier: 1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS4812.roa Signing time: Tue 21 Apr 2026 02:06:53 +0000 ROA not before: Tue 21 Apr 2026 02:01:53 +0000 ROA not after: Tue 20 Apr 2027 02:06:53 +0000 asID: 4812 IP address blocks: 43.254.152.0/24 maxlen: 24 103.5.192.0/23 maxlen: 24 103.5.194.0/24 maxlen: 24 103.5.195.0/24 maxlen: 24 103.24.116.0/24 maxlen: 24 103.24.118.0/23 maxlen: 24 150.242.238.0/23 maxlen: 24 202.89.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:7c:0f:a7:72:46:be:c3:4b:a4:fe:99:8e:a1:6d:56:b6:41:5c:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FFF263C64163BC58514B539C10375CCB553D75E Validity Not Before: Apr 21 02:01:53 2026 GMT Not After : Apr 20 02:06:53 2027 GMT Subject: CN=F27A537978FA5ECDA8946C5AED28DAE176163802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7b:75:e2:b2:44:c3:fd:47:0a:79:6f:94:88: 70:94:6b:38:f2:6f:38:42:b8:95:1a:58:2b:0d:c2: 2e:54:3c:53:1e:e2:2d:ac:77:e1:12:fa:05:00:95: 83:22:17:fd:0d:df:bb:fd:09:35:75:ed:ad:e5:85: d8:38:e3:44:2e:aa:e4:f1:50:fa:19:8e:81:be:fb: 36:b0:7f:b3:66:ac:58:b0:54:a3:3f:72:c8:8b:be: f0:c4:b3:0c:28:3e:be:ce:db:56:4b:04:de:09:6e: 26:e6:cb:ca:9b:ae:0e:bf:a7:bf:bd:9d:e2:8f:e1: 4a:a0:59:f8:53:1c:7c:01:0e:5b:19:0d:18:cc:5e: f5:55:cb:71:c5:e9:8f:f8:e4:c8:f1:f0:9a:54:4b: 97:2a:ea:36:85:44:2b:ad:21:73:f8:11:a3:77:12: 34:c9:55:a2:ed:c7:16:3c:d3:b7:28:d7:b9:48:cb: 0b:48:76:30:85:f3:4c:2c:56:0e:d5:f3:b9:35:dc: 77:c4:b8:1f:ce:76:1a:d6:87:23:32:1d:ab:73:30: 7d:e6:64:d1:de:42:ce:07:ed:84:a9:ce:47:0a:47: eb:27:27:c0:2f:ef:85:92:84:f3:36:fe:ee:5e:25: 2f:3f:c2:a4:b2:9b:67:63:01:47:3d:45:ad:c1:4f: 9d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:7A:53:79:78:FA:5E:CD:A8:94:6C:5A:ED:28:DA:E1:76:16:38:02 X509v3 Authority Key Identifier: keyid:1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS4812.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.152.0/24 103.5.192.0/22 103.24.116.0/24 103.24.118.0/23 150.242.238.0/23 202.89.96.0/24 Signature Algorithm: sha256WithRSAEncryption 17:d0:f9:6a:13:33:c2:44:a9:04:8f:b0:77:4a:5b:2a:01:55: 0e:ec:c8:81:04:f1:37:20:2f:29:c3:53:de:25:44:df:eb:58: 49:76:e1:e3:e5:dd:2c:67:59:74:81:82:ab:2c:70:92:87:d3: 0e:a3:d8:c9:a7:7d:d7:11:ec:34:9e:f3:ef:ef:1e:ab:c1:75: 78:d0:f1:08:22:3a:af:1e:d3:44:b8:3f:73:ea:53:77:f3:d2: 77:6f:d8:88:47:4d:fd:1b:7e:2b:1b:96:e9:46:04:c4:a9:4c: f6:37:ed:f4:71:cd:42:56:b0:55:80:af:c8:37:b6:64:34:e0: dc:99:5e:c0:5f:82:0f:85:de:89:07:3c:8e:11:bd:bb:3a:31: 87:3e:1e:fc:0e:4a:ef:06:56:53:77:4b:09:15:28:57:bc:e7: e9:fa:e9:ea:29:fd:08:95:f6:b8:cb:7c:1e:31:81:3c:04:35: 6c:16:2d:ca:08:be:09:08:ae:d0:44:f0:43:ea:3c:0f:3f:13: 76:8f:2c:4a:34:f7:a6:16:6c:ba:4a:63:7f:b7:76:e6:84:8c: 75:bd:be:b2:7f:89:ee:66:04:39:0e:33:99:d1:b8:7a:af:79: 5b:79:b6:14:7b:1c:dc:ec:45:c0:d3:73:b5:d2:59:5d:ed:32: f8:cc:39:26 -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUFHwPp3JGvsNLpP6ZjqFtVrZBXPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NC NTUzRDc1RTAeFw0yNjA0MjEwMjAxNTNaFw0yNzA0MjAwMjA2NTNaMDMxMTAvBgNV BAMTKEYyN0E1Mzc5NzhGQTVFQ0RBODk0NkM1QUVEMjhEQUUxNzYxNjM4MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1e3XiskTD/UcKeW+UiHCUazjy bzhCuJUaWCsNwi5UPFMe4i2sd+ES+gUAlYMiF/0N37v9CTV17a3lhdg440QuquTx UPoZjoG++zawf7NmrFiwVKM/csiLvvDEswwoPr7O21ZLBN4Jbibmy8qbrg6/p7+9 neKP4UqgWfhTHHwBDlsZDRjMXvVVy3HF6Y/45Mjx8JpUS5cq6jaFRCutIXP4EaN3 EjTJVaLtxxY807co17lIywtIdjCF80wsVg7V87k13HfEuB/OdhrWhyMyHatzMH3m ZNHeQs4H7YSpzkcKR+snJ8Av74WShPM2/u5eJS8/wqSym2djAUc9Ra3BT51rAgMB AAGjggIAMIIB/DAdBgNVHQ4EFgQU8npTeXj6Xs2olGxa7Sja4XYWOAIwHwYDVR0j BBgwFoAUH/8mPGQWO8WFFLU5wQN1zLVT114wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDMyNzA0My8wLzFGRkYyNjNDNjQxNjNCQzU4NTE0QjUzOUMxMDM3 NUNDQjU1M0Q3NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NCNTUzRDc1RS5jZXIw XAYIKwYBBQUHAQsEUDBOMEwGCCsGAQUFBzALhkByc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQzMjcwNDMvMC9BUzQ4MTIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwPQYIKwYBBQUHAQcBAf8ELjAsMCoEAgAB MCQDBAAr/pgDBAJnBcADBABnGHQDBAFnGHYDBAGW8u4DBADKWWAwDQYJKoZIhvcN AQELBQADggEBABfQ+WoTM8JEqQSPsHdKWyoBVQ7syIEE8TcgLynDU94lRN/rWEl2 4ePl3SxnWXSBgqsscJKH0w6j2MmnfdcR7DSe8+/vHqvBdXjQ8QgiOq8e00S4P3Pq U3fz0ndv2IhHTf0bfisblulGBMSpTPY37fRxzUJWsFWAr8g3tmQ04NyZXsBfgg+F 3okHPI4Rvbs6MYc+HvwOSu8GVlN3SwkVKFe85+n66eop/QiV9rjLfB4xgTwENWwW LcoIvgkIrtBE8EPqPA8/E3aPLEo096YWbLpKY3+3duaEjHW9vrJ/ie5mBDkOM5nR uHqveVt5thR7HNzsRcDTc7XSWV3tMvjMOSY= -----END CERTIFICATE-----Generated at Wed Apr 22 03:06:01 2026 by rpki-client