$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230342e302f32342d3234203d3e203536303430.roa File: 3130332e3233392e3230342e302f32342d3234203d3e203536303430.roa (raw, json) Hash identifier: krb9+VZzw/7gmWLlOqLP3M6mOQzxwqADKKgYkWB48T0= Subject key identifier: 0F:6F:41:20:A1:6D:28:9B:82:89:DC:C1:84:59:A1:72:AB:F7:DE:CF Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 726C08C26195A781746FF0E19BEC54DC863B89C1 Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230342e302f32342d3234203d3e203536303430.roa Signing time: Mon 13 Apr 2026 02:12:08 +0000 ROA not before: Mon 13 Apr 2026 02:07:08 +0000 ROA not after: Mon 12 Apr 2027 02:12:08 +0000 asID: 56040 IP address blocks: 103.239.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 09:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:6c:08:c2:61:95:a7:81:74:6f:f0:e1:9b:ec:54:dc:86:3b:89:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: Apr 13 02:07:08 2026 GMT Not After : Apr 12 02:12:08 2027 GMT Subject: CN=0F6F4120A16D289B8289DCC18459A172ABF7DECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c9:9d:07:f4:b6:9f:fe:a4:1f:00:42:84:b4: 42:1d:73:e5:c9:a1:d5:0e:51:10:d8:0a:1b:2a:ac: 42:04:d9:f6:15:24:ff:ab:d9:5c:5e:bd:88:8a:d8: f1:57:87:62:8c:38:75:e9:bc:66:bb:cd:ed:53:b9: 54:be:c4:98:bb:3c:8d:c0:c1:5e:c5:30:eb:30:e1: f6:b9:7b:ce:b9:f3:10:6e:03:dd:c8:ae:6a:45:86: ac:b5:70:98:8b:38:02:8c:a4:83:3d:26:c0:34:ba: fa:6a:4b:91:83:30:ed:1d:43:02:7b:0e:58:c0:90: e3:60:4a:8c:df:5e:e3:55:d9:bb:10:9a:ac:66:c7: b1:14:13:c2:ed:79:40:02:2b:81:19:2e:d7:bd:71: fe:8e:4b:33:85:d0:7a:a8:16:4a:5b:b1:7f:75:ab: 4e:54:19:3f:47:69:49:ab:8c:aa:15:31:34:c7:70: 70:86:c3:98:6a:3e:14:81:e0:c9:c2:83:e3:06:7e: b7:1d:98:fa:97:92:0b:b9:f1:87:a8:61:2d:e7:a5: df:cb:84:ca:a4:26:38:92:0a:69:a2:3c:3b:a1:17: 47:79:ef:0b:9d:64:b4:5a:0a:d7:78:b5:5c:ed:45: 8c:71:4d:60:57:a1:b8:63:dd:1d:7b:2f:25:85:53: 50:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6F:41:20:A1:6D:28:9B:82:89:DC:C1:84:59:A1:72:AB:F7:DE:CF X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230342e302f32342d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.204.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:a7:f0:a4:53:07:59:82:d8:76:00:21:d2:f5:73:e5:e3:f9: 78:d3:58:f6:4b:36:4d:ac:8d:d1:37:9d:52:8b:fb:9a:3c:76: 4f:11:ce:95:c0:a7:1d:ad:8f:12:cd:6c:82:b9:bf:2b:05:6d: 5e:9e:b4:5a:53:73:6a:2c:11:12:aa:d5:40:6b:eb:ff:37:dc: 12:e5:ea:49:48:af:c8:dd:71:eb:4c:e3:fb:8b:11:1a:fd:13: f0:02:fb:de:2b:1f:18:e9:25:65:3a:73:72:83:fc:ad:b7:e7: ed:d5:35:a3:ce:5a:d4:2b:c2:2f:e0:5a:28:f2:48:0b:85:6f: 50:45:41:14:b8:ae:cf:e1:88:e7:67:05:b1:a7:87:3e:d6:ed: 1d:f2:44:b4:cd:84:82:2f:8c:f5:60:9d:d7:35:3a:95:dc:f7: 94:c3:56:67:8b:8e:57:e4:ff:74:ea:f1:ec:b3:8e:58:14:00: d8:47:8c:19:d4:60:ee:b8:f9:00:06:c9:3d:73:c0:b6:4c:60: 1c:05:f2:73:60:2b:67:b1:e7:fe:29:c2:1a:1b:f9:a3:ac:7c: 45:8b:4d:39:16:72:21:80:34:10:72:58:fc:56:53:2a:0b:ad: c3:76:66:2b:d0:f1:05:dc:ca:80:62:49:d7:80:fa:2f:72:f9: ae:01:88:5a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUcmwIwmGVp4F0b/Dhm+xU3IY7icEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA0MTMwMjA3MDhaFw0yNzA0MTIwMjEyMDhaMDMxMTAvBgNV BAMTKDBGNkY0MTIwQTE2RDI4OUI4Mjg5RENDMTg0NTlBMTcyQUJGN0RFQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHyZ0H9Laf/qQfAEKEtEIdc+XJ odUOURDYChsqrEIE2fYVJP+r2VxevYiK2PFXh2KMOHXpvGa7ze1TuVS+xJi7PI3A wV7FMOsw4fa5e8658xBuA93IrmpFhqy1cJiLOAKMpIM9JsA0uvpqS5GDMO0dQwJ7 DljAkONgSozfXuNV2bsQmqxmx7EUE8LteUACK4EZLte9cf6OSzOF0HqoFkpbsX91 q05UGT9HaUmrjKoVMTTHcHCGw5hqPhSB4MnCg+MGfrcdmPqXkgu58YeoYS3npd/L hMqkJjiSCmmiPDuhF0d57wudZLRaCtd4tVztRYxxTWBXobhj3R17LyWFU1ATAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUD29BIKFtKJuCidzBhFmhcqv33s8wHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3MjAyNTkvMC8zMTMwMzMyZTMy MzMzOTJlMzIzMDM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfvzDANBgkqhkiG9w0BAQsFAAOCAQEAW6fwpFMHWYLYdgAh0vVz 5eP5eNNY9ks2TayN0TedUov7mjx2TxHOlcCnHa2PEs1sgrm/KwVtXp60WlNzaiwR EqrVQGvr/zfcEuXqSUivyN1x60zj+4sRGv0T8AL73isfGOklZTpzcoP8rbfn7dU1 o85a1CvCL+BaKPJIC4VvUEVBFLiuz+GI52cFsaeHPtbtHfJEtM2Egi+M9WCd1zU6 ldz3lMNWZ4uOV+T/dOrx7LOOWBQA2EeMGdRg7rj5AAbJPXPAtkxgHAXyc2ArZ7Hn /inCGhv5o6x8RYtNORZyIYA0EHJY/FZTKgutw3ZmK9DxBdzKgGJJ14D6L3L5rgGI Wg== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:18 2026 by rpki-client