$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588993548615682/0/AS40065.roa File: AS40065.roa (raw, json) Hash identifier: qeiPWKN11SLE/GYyJ+IUtb1I695J9qmFkzRjrQ5qcxA= Subject key identifier: 96:03:FF:8E:04:A0:F3:D0:9C:59:59:06:7D:E8:D8:1D:4E:8C:4C:F8 Certificate issuer: /CN=18763247046D56AAFB3D6773D049459B01F9D976 Certificate serial: 18747A05FD53C51311F7FB7E323F4FEF4BDABF82 Authority key identifier: 18:76:32:47:04:6D:56:AA:FB:3D:67:73:D0:49:45:9B:01:F9:D9:76 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18763247046D56AAFB3D6773D049459B01F9D976.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588993548615682/0/AS40065.roa Signing time: Tue 19 May 2026 02:36:40 +0000 ROA not before: Tue 19 May 2026 02:31:40 +0000 ROA not after: Tue 18 May 2027 02:36:40 +0000 asID: 40065 IP address blocks: 103.118.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588993548615682/0/18763247046D56AAFB3D6773D049459B01F9D976.crl rsync://rpki-rps.cnnic.cn/repo/A1065588993548615682/0/18763247046D56AAFB3D6773D049459B01F9D976.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18763247046D56AAFB3D6773D049459B01F9D976.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 23:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:74:7a:05:fd:53:c5:13:11:f7:fb:7e:32:3f:4f:ef:4b:da:bf:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18763247046D56AAFB3D6773D049459B01F9D976 Validity Not Before: May 19 02:31:40 2026 GMT Not After : May 18 02:36:40 2027 GMT Subject: CN=9603FF8E04A0F3D09C5959067DE8D81D4E8C4CF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:75:0b:99:00:6b:58:05:f5:01:cd:b8:5b:a8: bb:3f:6f:d6:c6:13:37:81:d4:25:c5:66:f4:58:3c: 1e:9d:66:a7:14:bd:ef:16:0c:25:30:bd:36:84:65: 59:c8:99:49:f7:b4:6a:20:c6:6a:d7:61:8b:1d:97: c1:26:5a:c0:76:4a:a3:24:43:f9:ef:fc:3c:27:a5: 6b:89:a7:af:38:73:7b:e6:7c:09:43:6b:69:43:5e: 3f:7a:bb:f0:6b:12:92:b7:50:b3:42:f8:90:57:54: 7f:b3:01:14:9f:93:ee:d0:e2:2b:f1:ac:b9:4d:34: 6e:91:70:13:15:3c:0a:1b:f7:94:d2:3d:78:a0:5a: 92:0d:20:41:39:c0:ec:e7:de:cd:29:82:f3:e4:82: 94:8a:3f:09:c9:ab:51:87:b2:d8:db:73:14:1c:77: d6:6a:71:62:da:13:c7:32:d0:fe:c6:50:59:93:7c: 29:20:2a:28:51:90:38:e0:ca:91:93:a0:02:8f:03: 37:b3:5d:49:17:26:5f:84:6c:c7:3a:91:07:ad:7d: d2:51:a8:79:d6:d2:5f:50:0a:9c:4d:a6:0e:bd:b1: ec:1e:fe:a0:5e:56:b8:25:6b:05:05:80:3a:37:08: a8:d4:d0:4d:0a:4c:57:02:4a:3e:59:18:6c:30:84: 96:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:03:FF:8E:04:A0:F3:D0:9C:59:59:06:7D:E8:D8:1D:4E:8C:4C:F8 X509v3 Authority Key Identifier: keyid:18:76:32:47:04:6D:56:AA:FB:3D:67:73:D0:49:45:9B:01:F9:D9:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548615682/0/18763247046D56AAFB3D6773D049459B01F9D976.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/18763247046D56AAFB3D6773D049459B01F9D976.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548615682/0/AS40065.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.248.0/22 Signature Algorithm: sha256WithRSAEncryption 70:b9:08:0b:35:e0:94:57:e0:12:42:bc:b6:9d:c5:2e:72:fa: 9e:83:b8:5c:c7:e4:f8:2d:f5:6f:56:56:b0:66:97:7d:1b:98: 41:bd:a4:79:23:40:22:bf:99:2f:56:d8:82:1b:41:b2:b8:32: c1:be:f4:ba:0c:8a:14:09:e5:c8:43:05:d4:61:75:5a:e2:9f: dc:93:fc:8a:73:ff:d1:86:59:0d:25:8a:fa:60:51:fd:b6:d5: d0:7d:34:21:57:4a:43:b8:2c:70:85:8c:9c:78:b1:ff:4e:77: c1:58:94:86:61:f0:f9:6b:5d:48:4e:99:5d:9e:5c:4a:96:1a: 47:53:af:02:f7:0a:04:91:f5:e4:d4:f3:82:70:32:b0:c4:5d: 67:f9:d2:41:18:f9:e6:9c:44:5d:f9:bc:fc:6a:b4:55:7d:5f: 39:af:0d:30:1f:b8:d2:57:a2:21:37:00:40:03:9d:3f:8e:66: b8:4c:27:aa:63:dd:6c:49:94:9a:af:9d:fb:5f:17:4c:e2:18: 09:ab:6a:86:54:de:cc:c5:0d:cb:53:c2:8a:19:1e:9b:98:75: 2f:f3:d5:56:73:86:31:b4:f8:52:f8:f8:0e:c2:08:f3:ec:33: 4e:78:53:57:d3:07:fd:d8:83:11:5c:88:bc:82:83:b7:a6:16: c5:3c:be:fc -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUGHR6Bf1TxRMR9/t+Mj9P70vav4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTg3NjMyNDcwNDZENTZBQUZCM0Q2NzczRDA0OTQ1OUIw MUY5RDk3NjAeFw0yNjA1MTkwMjMxNDBaFw0yNzA1MTgwMjM2NDBaMDMxMTAvBgNV BAMTKDk2MDNGRjhFMDRBMEYzRDA5QzU5NTkwNjdERThEODFENEU4QzRDRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIdQuZAGtYBfUBzbhbqLs/b9bG EzeB1CXFZvRYPB6dZqcUve8WDCUwvTaEZVnImUn3tGogxmrXYYsdl8EmWsB2SqMk Q/nv/DwnpWuJp684c3vmfAlDa2lDXj96u/BrEpK3ULNC+JBXVH+zARSfk+7Q4ivx rLlNNG6RcBMVPAob95TSPXigWpINIEE5wOzn3s0pgvPkgpSKPwnJq1GHstjbcxQc d9ZqcWLaE8cy0P7GUFmTfCkgKihRkDjgypGToAKPAzezXUkXJl+EbMc6kQetfdJR qHnW0l9QCpxNpg69sewe/qBeVrglawUFgDo3CKjU0E0KTFcCSj5ZGGwwhJZRAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUlgP/jgSg89CcWVkGfejYHU6MTPgwHwYDVR0j BBgwFoAUGHYyRwRtVqr7PWdz0ElFmwH52XYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODk5MzU0ODYxNTY4Mi8wLzE4NzYzMjQ3MDQ2RDU2QUFGQjNENjc3M0QwNDk0 NTlCMDFGOUQ5NzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTg3NjMyNDcwNDZENTZBQUZCM0Q2NzczRDA0OTQ1OUIwMUY5RDk3Ni5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODg5OTM1NDg2MTU2ODIvMC9BUzQwMDY1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCZ3b4MA0GCSqGSIb3DQEBCwUAA4IBAQBwuQgLNeCUV+ASQry2ncUucvqe g7hcx+T4LfVvVlawZpd9G5hBvaR5I0Aiv5kvVtiCG0GyuDLBvvS6DIoUCeXIQwXU YXVa4p/ck/yKc//RhlkNJYr6YFH9ttXQfTQhV0pDuCxwhYyceLH/TnfBWJSGYfD5 a11ITpldnlxKlhpHU68C9woEkfXk1POCcDKwxF1n+dJBGPnmnERd+bz8arRVfV85 rw0wH7jSV6IhNwBAA50/jma4TCeqY91sSZSar537XxdM4hgJq2qGVN7MxQ3LU8KK GR6bmHUv89VWc4YxtPhS+PgOwgjz7DNOeFNX0wf92IMRXIi8goO3phbFPL78 -----END CERTIFICATE-----Generated at Thu Jun 4 16:08:45 2026 by rpki-client