$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098791527330611202/0/3130332e32352e36362e302f32332d3233203d3e2030.roa File: 3130332e32352e36362e302f32332d3233203d3e2030.roa (raw, json) Hash identifier: JMo6LH7KCuXdAXtrDjOm3O2HDvLmSMhk1dhzSjfl0Z4= Subject key identifier: 89:6A:8C:D9:94:47:08:03:12:4E:B7:1F:6C:77:C0:C3:23:55:EC:B8 Certificate issuer: /CN=65339B7A6B7988AA6EF40EF864D58BFE051E018B Certificate serial: 42B9466EBB4EECECAB01F97B708F323980C61D50 Authority key identifier: 65:33:9B:7A:6B:79:88:AA:6E:F4:0E:F8:64:D5:8B:FE:05:1E:01:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65339B7A6B7988AA6EF40EF864D58BFE051E018B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098791527330611202/0/3130332e32352e36362e302f32332d3233203d3e2030.roa Signing time: Tue 21 Apr 2026 02:40:06 +0000 ROA not before: Tue 21 Apr 2026 02:35:06 +0000 ROA not after: Tue 20 Apr 2027 02:40:06 +0000 asID: 0 IP address blocks: 103.25.66.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098791527330611202/0/65339B7A6B7988AA6EF40EF864D58BFE051E018B.crl rsync://rpki-rps.cnnic.cn/repo/A1098791527330611202/0/65339B7A6B7988AA6EF40EF864D58BFE051E018B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65339B7A6B7988AA6EF40EF864D58BFE051E018B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b9:46:6e:bb:4e:ec:ec:ab:01:f9:7b:70:8f:32:39:80:c6:1d:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65339B7A6B7988AA6EF40EF864D58BFE051E018B Validity Not Before: Apr 21 02:35:06 2026 GMT Not After : Apr 20 02:40:06 2027 GMT Subject: CN=896A8CD994470803124EB71F6C77C0C32355ECB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7d:a1:bb:ae:db:1d:9b:c5:b3:92:22:a8:10: c6:4d:90:1d:e1:96:cc:96:a6:e6:65:56:ee:f7:9d: 1d:fe:1e:06:9e:cc:0d:50:58:d7:bf:b3:7e:3d:e7: 8b:01:de:ed:2a:3e:5a:e9:32:50:cd:60:75:cb:53: 4c:d5:12:29:84:30:55:64:7d:29:f9:e8:9f:d0:26: 24:ff:8e:34:32:9e:eb:39:f3:cb:d3:f4:06:11:0e: ea:2b:52:7b:e7:bb:0b:4d:1b:d5:ef:ad:f7:db:16: 4a:18:a6:82:57:d6:f9:67:4c:c8:8a:12:b3:e1:21: 6e:26:34:71:89:ae:37:70:f9:35:55:76:b4:40:5d: f5:4f:be:84:40:58:ef:17:5a:75:fd:51:8e:b5:06: a7:8d:c8:34:0f:c1:24:be:56:52:52:54:86:94:63: 86:d8:21:96:ca:5e:06:9b:5f:dc:e1:d9:ec:27:3d: e2:e7:8c:c6:ee:59:dd:29:64:18:b0:e8:11:6f:7e: de:a1:49:7a:06:c7:6f:75:6d:0d:91:82:3a:e9:87: e8:07:54:63:87:49:13:ec:ef:85:f3:f6:5e:96:d1: e5:20:e4:d2:d2:1b:e0:b4:28:e5:2d:22:85:9f:91: 75:bc:82:7e:3d:2e:02:dd:6e:9f:ff:e5:a5:97:a6: 6d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6A:8C:D9:94:47:08:03:12:4E:B7:1F:6C:77:C0:C3:23:55:EC:B8 X509v3 Authority Key Identifier: keyid:65:33:9B:7A:6B:79:88:AA:6E:F4:0E:F8:64:D5:8B:FE:05:1E:01:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098791527330611202/0/65339B7A6B7988AA6EF40EF864D58BFE051E018B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65339B7A6B7988AA6EF40EF864D58BFE051E018B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098791527330611202/0/3130332e32352e36362e302f32332d3233203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.66.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:c9:31:20:38:89:8b:eb:3b:9a:26:f3:33:af:e7:68:07:4a: 28:c8:33:59:70:27:18:43:1b:67:e8:06:7a:85:24:b9:5a:c4: 91:e6:04:89:1c:54:51:02:82:ea:57:9a:94:4d:8c:e6:b9:a4: 65:5e:65:93:11:ba:f6:b3:4c:da:8d:7e:7e:86:b7:e3:11:ff: 39:b3:81:8f:da:65:fe:2a:7d:7e:d0:fa:18:e2:ad:88:0d:9f: f3:e6:4a:11:ec:8e:8c:16:d1:c7:ce:57:a0:d8:d4:1b:a4:5c: d1:43:56:fa:73:63:a8:e1:a8:cb:3f:93:15:9f:30:29:f9:a1: 68:52:d6:75:51:63:c9:39:4d:65:27:a0:23:a5:17:74:d2:ca: c5:f3:b1:c1:ee:4b:52:95:20:9f:f5:00:d9:1a:7e:e1:53:58: f3:f3:51:5d:b7:e4:3c:9e:67:19:98:49:c2:84:b0:f0:ac:ec: 3a:ed:40:2b:38:55:c9:cd:ef:d9:79:73:56:ad:6a:2f:63:b1: 4c:a2:6e:db:e8:4b:c7:b7:7a:62:c3:9f:7d:bb:eb:7f:32:40: ca:62:d4:31:c8:2e:45:6a:83:86:b1:9a:63:3e:5f:79:92:77: 59:40:fe:ea:d3:ec:1f:fa:db:64:6c:1e:01:7c:15:db:45:7c: 4e:ee:12:d6 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUQrlGbrtO7OyrAfl7cI8yOYDGHVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUzMzlCN0E2Qjc5ODhBQTZFRjQwRUY4NjRENThCRkUw NTFFMDE4QjAeFw0yNjA0MjEwMjM1MDZaFw0yNzA0MjAwMjQwMDZaMDMxMTAvBgNV BAMTKDg5NkE4Q0Q5OTQ0NzA4MDMxMjRFQjcxRjZDNzdDMEMzMjM1NUVDQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVfaG7rtsdm8WzkiKoEMZNkB3h lsyWpuZlVu73nR3+HgaezA1QWNe/s34954sB3u0qPlrpMlDNYHXLU0zVEimEMFVk fSn56J/QJiT/jjQynus588vT9AYRDuorUnvnuwtNG9XvrffbFkoYpoJX1vlnTMiK ErPhIW4mNHGJrjdw+TVVdrRAXfVPvoRAWO8XWnX9UY61BqeNyDQPwSS+VlJSVIaU Y4bYIZbKXgabX9zh2ewnPeLnjMbuWd0pZBiw6BFvft6hSXoGx291bQ2Rgjrph+gH VGOHSRPs74Xz9l6W0eUg5NLSG+C0KOUtIoWfkXW8gn49LgLdbp//5aWXpm0dAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUiWqM2ZRHCAMSTrcfbHfAwyNV7LgwHwYDVR0j BBgwFoAUZTObemt5iKpu9A74ZNWL/gUeAYswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODc5MTUyNzMzMDYxMTIwMi8wLzY1MzM5QjdBNkI3OTg4QUE2RUY0MEVGODY0RDU4 QkZFMDUxRTAxOEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjUzMzlCN0E2Qjc5ODhBQTZFRjQwRUY4NjRENThCRkUwNTFFMDE4Qi5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NzkxNTI3MzMwNjExMjAyLzAvMzEzMDMzMmUzMjM1 MmUzNjM2MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnGUIw DQYJKoZIhvcNAQELBQADggEBAD3JMSA4iYvrO5om8zOv52gHSijIM1lwJxhDG2fo BnqFJLlaxJHmBIkcVFECgupXmpRNjOa5pGVeZZMRuvazTNqNfn6Gt+MR/zmzgY/a Zf4qfX7Q+hjirYgNn/PmShHsjowW0cfOV6DY1BukXNFDVvpzY6jhqMs/kxWfMCn5 oWhS1nVRY8k5TWUnoCOlF3TSysXzscHuS1KVIJ/1ANkafuFTWPPzUV235DyeZxmY ScKEsPCs7DrtQCs4VcnN79l5c1atai9jsUyibtvoS8e3emLDn327638yQMpi1DHI LkVqg4axmmM+X3mSd1lA/urT7B/622RsHgF8FdtFfE7uEtY= -----END CERTIFICATE-----Generated at Mon Apr 27 10:59:26 2026 by rpki-client