$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e34342e38302e302f32322d3234203d3e2034383337.roa File: 3130332e34342e38302e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: kbDNWNCBjKw3Tey0ZdiOPjM7Ii+5Pb4U36R3JAXxbl0= Subject key identifier: 97:D9:44:8B:82:25:6C:0C:33:12:78:2E:31:87:8E:9A:D6:8E:FC:D3 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 63A5402B042EF53159FB26C04D7F485092012F7C Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e34342e38302e302f32322d3234203d3e2034383337.roa Signing time: Mon 01 Jun 2026 07:26:07 +0000 ROA not before: Mon 01 Jun 2026 07:21:07 +0000 ROA not after: Mon 31 May 2027 07:26:07 +0000 asID: 4837 IP address blocks: 103.44.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 23:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a5:40:2b:04:2e:f5:31:59:fb:26:c0:4d:7f:48:50:92:01:2f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Jun 1 07:21:07 2026 GMT Not After : May 31 07:26:07 2027 GMT Subject: CN=97D9448B82256C0C3312782E31878E9AD68EFCD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:14:59:7a:b1:6d:75:ad:d8:7c:16:09:3f:68: 94:86:cb:14:95:e1:d4:2d:ea:03:ff:8d:74:0a:3d: 39:cd:54:cd:ef:45:36:0c:7d:ff:13:1b:85:f7:bf: 50:a6:b1:09:af:1d:36:e8:00:9b:04:1d:af:6d:f1: e7:85:a0:fd:05:2e:00:10:ce:3f:ef:2b:7d:4a:3e: d9:11:a6:49:92:60:5f:d8:1f:16:ef:a3:5a:a4:71: 78:61:e6:5d:e3:c8:06:50:c7:2c:a4:c4:2b:5e:97: 40:48:ca:93:8f:71:1b:96:9b:40:2c:f4:89:fb:ac: 65:4d:79:e7:32:a1:77:b1:fb:d5:15:93:eb:a8:8f: 09:9f:c7:eb:c3:24:36:d0:bb:ed:0b:4e:c9:fe:d8: ed:91:82:ec:b4:67:29:ec:3e:eb:4d:1c:d8:c3:86: 80:db:2e:ef:27:e6:d7:4b:15:03:f4:92:6c:25:8b: 31:1a:e2:a2:66:9d:e0:94:65:15:3e:1c:49:6c:ae: 71:64:8c:c8:98:2e:26:d0:1c:29:a8:41:b1:b8:c6: 59:f5:ac:0e:35:a6:08:2d:10:50:53:78:f4:ea:96: 7e:4a:99:a1:d5:d3:dd:6c:3e:ad:03:63:b7:bd:43: 98:50:88:82:88:7e:40:e9:f0:1a:2b:4f:d1:45:0c: 15:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D9:44:8B:82:25:6C:0C:33:12:78:2E:31:87:8E:9A:D6:8E:FC:D3 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e34342e38302e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.80.0/22 Signature Algorithm: sha256WithRSAEncryption 21:23:07:3f:50:bf:2d:97:6a:f0:f8:d3:13:9b:dd:b3:a4:a6: 19:e2:17:30:b3:79:76:6a:98:86:04:78:e8:f8:19:a9:19:1a: b6:63:4d:89:0d:b1:06:d0:97:aa:01:ef:e6:e5:48:7f:00:48: c4:40:c8:52:5d:de:eb:5c:05:e1:28:42:57:9c:87:60:d0:4a: c5:b0:54:d3:23:45:db:8e:e3:8c:5f:7c:e8:f0:dd:90:75:00: 10:81:86:31:98:82:11:b1:80:19:13:62:75:69:e4:fc:91:4d: 1e:ef:8e:1f:7b:cd:de:d7:19:3f:ab:56:d8:40:62:a7:6f:03: dc:80:6d:65:74:be:a6:1c:41:b4:73:db:29:2f:0f:df:b8:f8: e4:6b:12:06:ba:ad:87:da:75:5f:83:72:61:34:99:42:f8:ea: 8a:59:93:10:6b:4f:33:ee:76:01:c3:6f:6a:e2:c3:f5:c5:b8: 44:66:c0:cd:c6:05:50:35:60:80:cc:09:f3:f0:47:64:90:33: f0:92:50:68:97:28:9e:36:c6:46:b3:01:cd:60:ee:dd:57:6c: 63:51:43:59:4a:da:79:3f:19:0d:fc:fb:b4:04:61:00:99:d7: 61:d8:1d:32:e8:05:fb:e3:d8:4c:f4:44:5a:67:80:63:0d:7c: 9a:a5:7c:63 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUY6VAKwQu9TFZ+ybATX9IUJIBL3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA2MDEwNzIxMDdaFw0yNzA1MzEwNzI2MDdaMDMxMTAvBgNV BAMTKDk3RDk0NDhCODIyNTZDMEMzMzEyNzgyRTMxODc4RTlBRDY4RUZDRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOFFl6sW11rdh8Fgk/aJSGyxSV 4dQt6gP/jXQKPTnNVM3vRTYMff8TG4X3v1CmsQmvHTboAJsEHa9t8eeFoP0FLgAQ zj/vK31KPtkRpkmSYF/YHxbvo1qkcXhh5l3jyAZQxyykxCtel0BIypOPcRuWm0As 9In7rGVNeecyoXex+9UVk+uojwmfx+vDJDbQu+0LTsn+2O2Rguy0ZynsPutNHNjD hoDbLu8n5tdLFQP0kmwlizEa4qJmneCUZRU+HElsrnFkjMiYLibQHCmoQbG4xln1 rA41pggtEFBTePTqln5KmaHV091sPq0DY7e9Q5hQiIKIfkDp8BorT9FFDBWhAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUl9lEi4IlbAwzEnguMYeOmtaO/NMwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NzI3NzUyMzUxOTQwNjA5LzAvMzEzMDMzMmUzNDM0 MmUzODMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnLFAwDQYJKoZIhvcNAQELBQADggEBACEjBz9Qvy2XavD40xOb3bOkphniFzCz eXZqmIYEeOj4GakZGrZjTYkNsQbQl6oB7+blSH8ASMRAyFJd3utcBeEoQlech2DQ SsWwVNMjRduO44xffOjw3ZB1ABCBhjGYghGxgBkTYnVp5PyRTR7vjh97zd7XGT+r VthAYqdvA9yAbWV0vqYcQbRz2ykvD9+4+ORrEga6rYfadV+DcmE0mUL46opZkxBr TzPudgHDb2riw/XFuERmwM3GBVA1YIDMCfPwR2SQM/CSUGiXKJ42xkazAc1g7t1X bGNRQ1lK2nk/GQ38+7QEYQCZ12HYHTLoBfvj2Ez0RFpngGMNfJqlfGM= -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:29 2026 by rpki-client