$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230362e302f32342d3234203d3e203536303430.roa File: 3130332e3233392e3230362e302f32342d3234203d3e203536303430.roa (raw, json) Hash identifier: GnSKQHUL57tHHpVOo+4xXu03xXH9/d1q75irCvzVxwQ= Subject key identifier: 3D:65:D8:38:8B:D0:3D:E6:4F:69:C1:BE:31:85:B1:13:D0:6A:FF:5B Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 0CF25F21ACA4862CAD13DF225276BB6A64FB3CFE Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230362e302f32342d3234203d3e203536303430.roa Signing time: Mon 13 Apr 2026 02:27:53 +0000 ROA not before: Mon 13 Apr 2026 02:22:53 +0000 ROA not after: Mon 12 Apr 2027 02:27:53 +0000 asID: 56040 IP address blocks: 103.239.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 09:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:f2:5f:21:ac:a4:86:2c:ad:13:df:22:52:76:bb:6a:64:fb:3c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: Apr 13 02:22:53 2026 GMT Not After : Apr 12 02:27:53 2027 GMT Subject: CN=3D65D8388BD03DE64F69C1BE3185B113D06AFF5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d2:f3:b6:9f:e0:81:86:11:87:82:28:63:28: e6:c4:ed:b3:db:d5:8c:fd:7f:15:91:64:f7:c2:18: 7d:d8:a9:44:96:92:a6:da:f4:eb:93:b8:d4:cd:00: d4:90:ea:b2:11:90:71:84:d4:8a:75:d9:84:fe:f1: 05:0c:03:87:e2:1c:2a:1f:cc:57:51:9b:02:22:4b: 58:1f:bb:20:3e:de:39:64:a9:91:e4:3a:fc:13:c2: 84:7d:74:04:e4:1b:20:30:fc:55:94:94:dd:61:b3: bd:e4:a2:87:e3:2a:ee:20:26:f4:f3:de:00:56:89: a8:f9:d3:a4:59:31:58:00:c3:46:c8:42:78:e2:1f: 30:5c:63:eb:61:e2:3d:5b:7c:ad:74:df:cd:09:f1: 20:35:44:93:43:27:cc:7c:51:31:fb:e7:ab:c1:2c: 3b:7c:54:ac:6f:ca:7e:f7:13:ab:62:26:4b:b7:73: b2:e9:f1:6b:fb:31:e6:8c:94:5e:04:d4:b9:8b:43: cb:3f:14:7d:73:45:fc:53:6b:6a:de:9d:7f:ec:c8: ce:02:cb:cb:fd:9a:bc:f8:6a:17:17:92:4c:0a:8c: 32:02:e5:14:82:43:3b:95:25:9b:39:98:8d:f2:9b: c6:e8:5d:c7:f8:cb:03:a3:9d:d2:69:8e:43:df:d2: 27:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:65:D8:38:8B:D0:3D:E6:4F:69:C1:BE:31:85:B1:13:D0:6A:FF:5B X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/3130332e3233392e3230362e302f32342d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.206.0/24 Signature Algorithm: sha256WithRSAEncryption b1:7b:f2:64:4e:6e:db:8a:78:51:27:03:c3:fd:2d:3d:ef:57: 5d:c7:c5:3d:be:2b:75:29:40:16:ba:4e:20:cf:8e:b7:8a:7d: da:4e:9d:31:79:60:8d:4f:52:b8:ea:e4:be:75:e5:94:79:8c: 52:bd:15:d7:d0:3d:11:06:68:54:30:ee:14:84:43:6b:51:28: d8:f3:ba:a4:cd:c4:a1:f1:51:ff:33:bb:7a:3a:5a:16:58:ad: 01:1a:72:28:9b:9c:f6:0f:b2:f5:3b:3e:34:21:6b:81:87:24: be:b7:5b:d2:ca:f5:9d:59:3c:95:c9:f0:f1:14:a7:bf:97:1c: 14:b8:8a:f8:5b:62:94:c8:2b:2f:a0:46:0c:cf:03:bb:26:72: 76:a7:fd:23:60:ab:38:3e:d3:f6:dc:52:b8:75:bb:22:5b:da: 75:62:b7:62:5a:9f:68:a4:0e:04:65:9a:19:e5:f5:fd:24:99: 22:d8:6a:2b:69:9f:9a:19:15:63:1a:84:18:ec:e4:36:31:3a: b2:ed:49:e1:8e:a3:a3:77:94:1a:47:44:6f:e2:0d:94:9d:d6: 97:4b:c4:15:4a:e0:b9:3f:2c:ee:0e:a6:e8:6d:28:88:db:69: f4:0d:1a:e0:07:c1:7d:6f:ad:3f:b8:e2:71:1e:42:7e:17:50: 69:5d:e6:aa -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUDPJfIaykhiytE98iUna7amT7PP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA0MTMwMjIyNTNaFw0yNzA0MTIwMjI3NTNaMDMxMTAvBgNV BAMTKDNENjVEODM4OEJEMDNERTY0RjY5QzFCRTMxODVCMTEzRDA2QUZGNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP0vO2n+CBhhGHgihjKObE7bPb 1Yz9fxWRZPfCGH3YqUSWkqba9OuTuNTNANSQ6rIRkHGE1Ip12YT+8QUMA4fiHCof zFdRmwIiS1gfuyA+3jlkqZHkOvwTwoR9dATkGyAw/FWUlN1hs73koofjKu4gJvTz 3gBWiaj506RZMVgAw0bIQnjiHzBcY+th4j1bfK10380J8SA1RJNDJ8x8UTH756vB LDt8VKxvyn73E6tiJku3c7Lp8Wv7MeaMlF4E1LmLQ8s/FH1zRfxTa2renX/syM4C y8v9mrz4ahcXkkwKjDIC5RSCQzuVJZs5mI3ym8boXcf4ywOjndJpjkPf0ieNAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUPWXYOIvQPeZPacG+MYWxE9Bq/1swHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3MjAyNTkvMC8zMTMwMzMyZTMy MzMzOTJlMzIzMDM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfvzjANBgkqhkiG9w0BAQsFAAOCAQEAsXvyZE5u24p4UScDw/0t Pe9XXcfFPb4rdSlAFrpOIM+Ot4p92k6dMXlgjU9SuOrkvnXllHmMUr0V19A9EQZo VDDuFIRDa1Eo2PO6pM3EofFR/zO7ejpaFlitARpyKJuc9g+y9Ts+NCFrgYckvrdb 0sr1nVk8lcnw8RSnv5ccFLiK+FtilMgrL6BGDM8DuyZydqf9I2CrOD7T9txSuHW7 IlvadWK3YlqfaKQOBGWaGeX1/SSZIthqK2mfmhkVYxqEGOzkNjE6su1J4Y6jo3eU GkdEb+INlJ3Wl0vEFUrguT8s7g6m6G0oiNtp9A0a4AfBfW+tP7jicR5CfhdQaV3m qg== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:18 2026 by rpki-client