$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/3130312e3132342e302e302f31362d3234203d3e203233373234.roa File: 3130312e3132342e302e302f31362d3234203d3e203233373234.roa (raw, json) Hash identifier: 9miGyL5gJzgm3sL0NE1BCNUkwl/TLnI4lqELMmHShHU= Subject key identifier: BF:B8:48:7C:18:71:17:E4:69:BC:2D:39:06:46:82:06:73:02:70:3A Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 4676F835FB5A1AB152235DAB090B38FDBF683997 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/3130312e3132342e302e302f31362d3234203d3e203233373234.roa Signing time: Fri 10 Apr 2026 09:43:52 +0000 ROA not before: Fri 10 Apr 2026 09:38:52 +0000 ROA not after: Fri 09 Apr 2027 09:43:52 +0000 asID: 23724 IP address blocks: 101.124.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:76:f8:35:fb:5a:1a:b1:52:23:5d:ab:09:0b:38:fd:bf:68:39:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 10 09:38:52 2026 GMT Not After : Apr 9 09:43:52 2027 GMT Subject: CN=BFB8487C187117E469BC2D39064682067302703A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:64:f7:b8:d1:21:83:f6:d3:f0:a8:03:80:01: a5:be:35:f6:62:50:77:3f:95:78:b0:e3:fc:94:6d: e0:f0:e7:1c:05:3e:81:b8:06:c8:e4:84:f1:48:be: 89:1c:85:fa:44:a8:a5:10:31:91:7f:21:88:e9:e0: 7c:11:c2:f8:ba:16:24:52:d8:56:02:d1:79:a9:e9: 89:5b:e5:08:d0:bd:1c:ea:3d:48:aa:72:a3:f4:1a: 8f:e9:c4:5f:ad:e7:23:c6:69:6f:eb:e6:5f:7b:48: 25:ae:12:8c:86:43:0b:d0:52:ea:dc:c1:74:9a:d4: 49:22:1a:6d:a3:9f:ce:43:c2:23:3f:64:6f:fd:6c: d7:c7:ce:63:c6:29:87:8a:d7:74:3c:7e:b3:73:a6: 49:d2:c6:6d:e0:37:c2:48:97:f2:9a:ba:04:ce:69: bc:ef:ee:b0:5f:58:c5:ae:2f:6d:2f:39:4c:a5:f4: 96:b4:7c:e3:32:dd:3d:c5:b7:73:0f:ed:50:11:80: 96:8e:a0:3e:e9:94:98:38:9e:49:c5:05:93:23:9f: 9c:fe:3f:31:4b:75:ec:3c:18:98:bc:d2:bc:27:c6: 68:3d:f0:5c:9e:28:41:ff:eb:36:cb:f5:a5:6d:db: 00:2a:a3:ce:89:9e:cc:79:ce:be:6b:97:e2:3f:21: 38:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B8:48:7C:18:71:17:E4:69:BC:2D:39:06:46:82:06:73:02:70:3A X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/3130312e3132342e302e302f31362d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.124.0.0/16 Signature Algorithm: sha256WithRSAEncryption 30:3e:5e:81:b5:a9:d8:ad:5c:87:52:f1:db:13:18:bf:ce:20: e6:61:b0:41:c8:6e:ca:08:ef:f4:9e:38:24:59:32:6b:a2:ad: df:3e:7a:54:88:f1:ef:8e:74:65:a5:33:b6:95:f0:aa:10:c1: 4d:98:d1:91:c3:49:27:48:11:76:a3:49:3f:64:3a:ba:28:cf: 02:74:a5:66:24:ab:e0:db:bb:86:d6:69:ad:55:48:94:98:46: 4e:ce:37:df:a3:a0:6d:36:42:2b:db:79:23:70:2a:19:8c:92: 54:dd:e0:af:c5:af:63:76:c9:1a:32:00:f0:f3:12:da:64:f1: 29:75:ba:ee:c2:89:05:90:5e:c6:a3:65:d2:48:f5:01:56:40: 89:9b:25:9e:01:5c:ea:03:7b:94:a3:8f:fc:a9:af:56:e9:c0: 2f:8d:e3:b8:c0:89:59:b5:3d:2b:4c:81:2c:ea:29:b7:15:fb: a7:e1:f1:ec:cc:64:d0:33:4c:4a:58:fa:56:18:aa:f5:83:83: c4:d3:9b:00:ba:ac:9f:a3:8a:93:75:51:17:ae:f8:7e:1d:a4: 68:f9:a8:69:ba:57:a2:b2:43:40:8e:94:13:30:24:96:1f:8d: a2:f3:29:c3:ce:6f:42:8d:33:dc:8d:61:19:02:71:94:c1:d8: 2e:43:58:60 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIURnb4NftaGrFSI12rCQs4/b9oOZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MTAwOTM4NTJaFw0yNzA0MDkwOTQzNTJaMDMxMTAvBgNV BAMTKEJGQjg0ODdDMTg3MTE3RTQ2OUJDMkQzOTA2NDY4MjA2NzMwMjcwM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWZPe40SGD9tPwqAOAAaW+NfZi UHc/lXiw4/yUbeDw5xwFPoG4BsjkhPFIvokchfpEqKUQMZF/IYjp4HwRwvi6FiRS 2FYC0Xmp6Ylb5QjQvRzqPUiqcqP0Go/pxF+t5yPGaW/r5l97SCWuEoyGQwvQUurc wXSa1EkiGm2jn85DwiM/ZG/9bNfHzmPGKYeK13Q8frNzpknSxm3gN8JIl/KaugTO abzv7rBfWMWuL20vOUyl9Ja0fOMy3T3Ft3MP7VARgJaOoD7plJg4nknFBZMjn5z+ PzFLdew8GJi80rwnxmg98FyeKEH/6zbL9aVt2wAqo86Jnsx5zr5rl+I/ITgNAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUv7hIfBhxF+RpvC05BkaCBnMCcDowHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzEzMDMxMmUzMTMy MzQyZTMwMmUzMDJmMzEzNjJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAGV8MA0GCSqGSIb3DQEBCwUAA4IBAQAwPl6BtanYrVyHUvHbExi/ziDmYbBB yG7KCO/0njgkWTJroq3fPnpUiPHvjnRlpTO2lfCqEMFNmNGRw0knSBF2o0k/ZDq6 KM8CdKVmJKvg27uG1mmtVUiUmEZOzjffo6BtNkIr23kjcCoZjJJU3eCvxa9jdska MgDw8xLaZPEpdbruwokFkF7Go2XSSPUBVkCJmyWeAVzqA3uUo4/8qa9W6cAvjeO4 wIlZtT0rTIEs6im3Ffun4fHszGTQM0xKWPpWGKr1g4PE05sAuqyfo4qTdVEXrvh+ HaRo+ahpuleiskNAjpQTMCSWH42i8ynDzm9CjTPcjWEZAnGUwdguQ1hg -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:01 2026 by rpki-client