$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585649345822722/0/3130332e3235352e36382e302f32322d3332203d3e20313531323633.roa File: 3130332e3235352e36382e302f32322d3332203d3e20313531323633.roa (raw, json) Hash identifier: E8XwVM09wV4mmM7F08pkiRB8CC0AKgFeu5HqHXnGNC8= Subject key identifier: F0:5B:79:D9:48:AD:9F:B1:B6:4A:DD:F1:A7:12:B3:ED:87:E0:CF:95 Certificate issuer: /CN=DDBA616F96D9C2CD7F7CAB692F9EFE7666680138 Certificate serial: 6F2F281C86AD6F6A1155E035D49AA9327CC0346D Authority key identifier: DD:BA:61:6F:96:D9:C2:CD:7F:7C:AB:69:2F:9E:FE:76:66:68:01:38 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/3130332e3235352e36382e302f32322d3332203d3e20313531323633.roa Signing time: Fri 10 Apr 2026 08:43:54 +0000 ROA not before: Fri 10 Apr 2026 08:38:54 +0000 ROA not after: Fri 09 Apr 2027 08:43:54 +0000 asID: 151263 IP address blocks: 103.255.68.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.crl rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 11:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:2f:28:1c:86:ad:6f:6a:11:55:e0:35:d4:9a:a9:32:7c:c0:34:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDBA616F96D9C2CD7F7CAB692F9EFE7666680138 Validity Not Before: Apr 10 08:38:54 2026 GMT Not After : Apr 9 08:43:54 2027 GMT Subject: CN=F05B79D948AD9FB1B64ADDF1A712B3ED87E0CF95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:80:5f:0f:a0:3b:f8:57:ac:05:fd:90:ea:7d: e9:44:1f:61:49:b2:2f:b3:ff:fd:15:49:0f:9d:3e: 03:9d:55:62:c8:45:d1:53:7b:76:6b:8c:25:e1:68: 05:f3:f1:44:1a:22:eb:21:72:ea:c8:53:17:4f:59: f0:ab:c0:14:af:2b:0b:b9:22:b2:ba:dd:a6:dd:f7: 84:f1:7d:c1:fe:f3:82:08:85:0c:ac:a8:26:86:87: 08:73:02:b7:68:1d:60:ac:eb:8d:d2:25:c6:f9:3a: ba:50:d5:88:7a:64:b8:15:e4:9b:70:13:60:73:f8: 40:f6:7a:77:ba:c6:1b:f8:ec:04:50:95:2e:9e:3a: f8:dd:95:67:ce:ca:da:7b:48:c6:6f:c0:5a:93:6e: 8c:07:12:3d:0d:d1:63:21:08:94:74:36:1c:5a:2e: 01:8c:26:de:8e:bb:a6:41:d2:32:66:c8:88:fd:14: 12:50:9f:ad:9f:6b:8c:68:57:a0:2b:71:a6:eb:30: 9d:0d:e6:c0:6e:11:ca:b5:83:e1:31:d1:f5:46:fb: fa:2b:9b:43:78:62:f9:68:5b:bf:dc:16:77:de:a6: fb:e0:b2:b0:9e:07:f2:d3:c0:b4:20:d4:8f:0c:1d: 50:d0:2c:bf:d0:c7:28:7b:cc:9c:ee:81:14:f0:48: 74:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:5B:79:D9:48:AD:9F:B1:B6:4A:DD:F1:A7:12:B3:ED:87:E0:CF:95 X509v3 Authority Key Identifier: keyid:DD:BA:61:6F:96:D9:C2:CD:7F:7C:AB:69:2F:9E:FE:76:66:68:01:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/3130332e3235352e36382e302f32322d3332203d3e20313531323633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.68.0/22 Signature Algorithm: sha256WithRSAEncryption 30:2c:4d:37:cb:d1:ec:fe:6a:78:ef:40:ff:d1:47:e1:6b:8b: a5:a7:c1:49:5e:4f:3e:7a:8f:d7:11:c9:2b:4a:a2:5f:51:6e: ea:34:10:bd:5c:48:22:ba:55:d2:9d:7f:1c:3c:17:49:7f:45: 4c:3b:a2:43:7d:54:65:d2:ee:2f:61:50:6b:c4:0b:11:39:39: 36:d0:fd:77:f4:ea:69:bf:84:f9:05:4d:66:98:0f:2a:1f:e6: df:90:84:21:dd:bc:a0:03:4e:4f:c3:3f:89:73:19:23:b7:1b: 1e:58:56:bd:78:44:d5:d2:aa:5e:b9:09:74:39:4b:cf:b3:9c: d7:9f:d3:5e:c8:62:2a:ff:43:70:0b:dc:5f:0d:53:af:19:43: 94:25:81:42:3b:20:26:b7:c9:55:9b:dc:81:c3:d4:99:50:24: 42:15:2e:6e:a6:fe:d7:37:19:43:6b:d1:38:d8:6c:dd:4e:77: a4:36:98:04:7d:ce:5d:85:91:a8:21:00:4c:5b:4a:ad:39:ce: c9:b3:a7:9f:b1:cc:66:1a:fa:f2:bf:33:55:34:2a:2d:87:1b: b4:7b:2b:e5:93:9b:82:9c:eb:33:6e:a3:64:fc:21:3d:68:05: e1:cf:70:15:d8:85:b0:0c:4c:b0:19:28:eb:87:a1:22:79:db: 99:85:05:60 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUby8oHIatb2oRVeA11JqpMnzANG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERCQTYxNkY5NkQ5QzJDRDdGN0NBQjY5MkY5RUZFNzY2 NjY4MDEzODAeFw0yNjA0MTAwODM4NTRaFw0yNzA0MDkwODQzNTRaMDMxMTAvBgNV BAMTKEYwNUI3OUQ5NDhBRDlGQjFCNjRBRERGMUE3MTJCM0VEODdFMENGOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTgF8PoDv4V6wF/ZDqfelEH2FJ si+z//0VSQ+dPgOdVWLIRdFTe3ZrjCXhaAXz8UQaIushcurIUxdPWfCrwBSvKwu5 IrK63abd94TxfcH+84IIhQysqCaGhwhzArdoHWCs643SJcb5OrpQ1Yh6ZLgV5Jtw E2Bz+ED2ene6xhv47ARQlS6eOvjdlWfOytp7SMZvwFqTbowHEj0N0WMhCJR0Nhxa LgGMJt6Ou6ZB0jJmyIj9FBJQn62fa4xoV6ArcabrMJ0N5sBuEcq1g+Ex0fVG+/or m0N4YvloW7/cFnfepvvgsrCeB/LTwLQg1I8MHVDQLL/Qxyh7zJzugRTwSHR5AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU8Ft52Uitn7G2St3xpxKz7Yfgz5UwHwYDVR0j BBgwFoAU3bphb5bZws1/fKtpL57+dmZoATgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTY0OTM0NTgyMjcyMi8wL0REQkE2MTZGOTZEOUMyQ0Q3RjdDQUI2OTJGOUVG RTc2NjY2ODAxMzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRERCQTYxNkY5NkQ5QzJDRDdGN0NBQjY5MkY5RUZFNzY2NjY4MDEzOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODU2NDkzNDU4MjI3MjIvMC8zMTMwMzMyZTMy MzUzNTJlMzYzODJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMxMzUzMTMyMzYzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmf/RDANBgkqhkiG9w0BAQsFAAOCAQEAMCxNN8vR7P5qeO9A/9FH 4WuLpafBSV5PPnqP1xHJK0qiX1Fu6jQQvVxIIrpV0p1/HDwXSX9FTDuiQ31UZdLu L2FQa8QLETk5NtD9d/Tqab+E+QVNZpgPKh/m35CEId28oANOT8M/iXMZI7cbHlhW vXhE1dKqXrkJdDlLz7Oc15/TXshiKv9DcAvcXw1TrxlDlCWBQjsgJrfJVZvcgcPU mVAkQhUubqb+1zcZQ2vRONhs3U53pDaYBH3OXYWRqCEATFtKrTnOybOnn7HMZhr6 8r8zVTQqLYcbtHsr5ZObgpzrM26jZPwhPWgF4c9wFdiFsAxMsBko64ehInnbmYUF YA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:27 2026 by rpki-client