$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100991880549629955/0/3130312e34392e3134382e302f32332d3233203d3e2034383437.roa File: 3130312e34392e3134382e302f32332d3233203d3e2034383437.roa (raw, json) Hash identifier: hD8pipimoNbXJuFtKR22JqYH5vAkWdps2g2kY8PbheI= Subject key identifier: 8A:FA:5A:D0:C2:B7:5A:B4:6D:47:17:1F:67:8F:9B:90:72:24:16:67 Certificate issuer: /CN=060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD Certificate serial: 61B0B9ECD7120EDDAD934074732FAB829259C9F4 Authority key identifier: 06:06:77:FF:DB:8F:A3:C6:C6:DC:2F:18:ED:F7:BE:DA:06:5F:B8:AD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/3130312e34392e3134382e302f32332d3233203d3e2034383437.roa Signing time: Mon 27 Apr 2026 03:50:23 +0000 ROA not before: Mon 27 Apr 2026 03:45:23 +0000 ROA not after: Mon 26 Apr 2027 03:50:23 +0000 asID: 4847 IP address blocks: 101.49.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.crl rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b0:b9:ec:d7:12:0e:dd:ad:93:40:74:73:2f:ab:82:92:59:c9:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD Validity Not Before: Apr 27 03:45:23 2026 GMT Not After : Apr 26 03:50:23 2027 GMT Subject: CN=8AFA5AD0C2B75AB46D47171F678F9B9072241667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:5a:cd:d5:5a:2a:39:21:8f:29:6b:da:a1:e3: 31:07:40:90:11:c3:ef:2b:c4:c1:74:ed:30:e5:ee: b1:5f:9e:95:e0:a0:08:f9:fd:13:9e:f8:e0:d5:aa: 6f:e3:13:26:fa:9a:f1:44:d9:e3:db:a4:7a:42:04: 1b:ae:d7:5f:53:db:0a:8c:93:cc:0d:6e:97:c2:95: 08:4b:90:10:ad:bb:fa:44:3b:9c:f3:3a:d7:3e:00: 5d:64:63:56:ff:d6:54:c2:76:fc:56:db:3c:58:33: c0:d5:44:67:b1:0a:6b:5b:b3:be:27:bf:8b:50:46: c3:fa:e4:2e:28:c1:0b:dc:a8:30:44:fa:f1:7f:1e: 44:be:09:2b:7e:85:23:2c:da:f3:20:e0:d3:a8:1b: 0c:91:69:13:30:4b:e2:45:96:4e:1c:89:0b:3e:0e: 49:3e:d7:c4:9e:8b:71:bd:9c:8d:62:42:38:a7:01: 3d:de:e3:04:fe:51:8b:9b:f2:e1:0d:02:f8:fb:d6: fd:c3:a9:44:f9:ec:bc:15:34:20:24:42:5a:b8:53: 19:68:70:35:d0:c5:6f:16:32:74:92:dd:ea:46:85: c2:1a:f2:1c:3d:50:8c:d5:fc:6d:94:c7:fe:cd:e6: 10:d9:04:c9:f3:76:c7:05:ea:0c:86:c1:4e:c5:2c: 4a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:FA:5A:D0:C2:B7:5A:B4:6D:47:17:1F:67:8F:9B:90:72:24:16:67 X509v3 Authority Key Identifier: keyid:06:06:77:FF:DB:8F:A3:C6:C6:DC:2F:18:ED:F7:BE:DA:06:5F:B8:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/3130312e34392e3134382e302f32332d3233203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 101.49.148.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:03:c3:e4:c6:6c:ff:ee:52:95:e3:63:24:6f:49:eb:d8:2d: 91:d6:e0:c0:25:65:bd:81:36:58:b3:8a:7f:44:eb:59:35:a1: 73:c8:34:24:38:e4:12:2b:fd:62:14:9c:c3:ef:b2:4e:f5:bf: f1:96:32:75:f0:b0:4a:1e:1c:43:05:dc:26:ac:31:9e:a2:7b: 68:4c:6e:f2:7f:c6:69:28:d1:95:c0:49:77:ad:d7:cd:69:0e: b7:e9:16:1f:37:10:96:33:e8:5e:4c:f1:13:a8:fb:5e:cf:1a: 63:e5:6d:e8:55:1e:bb:d7:8c:4d:86:5d:7c:c2:6e:c1:dc:61: 94:c1:6b:50:56:1c:ec:ee:c1:b0:6e:05:37:1b:c9:c7:03:94: e2:bf:47:f4:ee:dc:df:60:2a:77:d4:4b:e6:35:3e:c2:5f:99: e6:79:fb:58:73:21:f4:67:c0:69:05:6c:67:39:06:64:c1:57: dc:ac:59:e1:a5:cf:f3:be:52:05:bb:e8:a2:3e:6a:8a:f8:84: bf:a0:9d:db:26:d6:e9:69:70:ae:d1:2a:cb:c4:d6:9f:51:88: 8b:10:55:f9:73:3e:b7:58:7c:ae:e6:d6:5d:d9:b2:81:71:f5: d4:6b:77:db:97:60:73:19:10:9c:75:66:10:93:ba:07:e0:ac: 11:29:34:ae -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUYbC57NcSDt2tk0B0cy+rgpJZyfQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDYwNjc3RkZEQjhGQTNDNkM2REMyRjE4RURGN0JFREEw NjVGQjhBRDAeFw0yNjA0MjcwMzQ1MjNaFw0yNzA0MjYwMzUwMjNaMDMxMTAvBgNV BAMTKDhBRkE1QUQwQzJCNzVBQjQ2RDQ3MTcxRjY3OEY5QjkwNzIyNDE2NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyWs3VWio5IY8pa9qh4zEHQJAR w+8rxMF07TDl7rFfnpXgoAj5/ROe+ODVqm/jEyb6mvFE2ePbpHpCBBuu119T2wqM k8wNbpfClQhLkBCtu/pEO5zzOtc+AF1kY1b/1lTCdvxW2zxYM8DVRGexCmtbs74n v4tQRsP65C4owQvcqDBE+vF/HkS+CSt+hSMs2vMg4NOoGwyRaRMwS+JFlk4ciQs+ Dkk+18Sei3G9nI1iQjinAT3e4wT+UYub8uENAvj71v3DqUT57LwVNCAkQlq4Uxlo cDXQxW8WMnSS3epGhcIa8hw9UIzV/G2Ux/7N5hDZBMnzdscF6gyGwU7FLEpDAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUivpa0MK3WrRtRxcfZ4+bkHIkFmcwHwYDVR0j BBgwFoAUBgZ3/9uPo8bG3C8Y7fe+2gZfuK0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk5MTg4MDU0OTYyOTk1NS8wLzA2MDY3N0ZGREI4RkEzQzZDNkRDMkYxOEVERjdC RURBMDY1RkI4QUQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDYwNjc3RkZEQjhGQTNDNkM2REMyRjE4RURGN0JFREEwNjVGQjhBRC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAwOTkxODgwNTQ5NjI5OTU1LzAvMzEzMDMxMmUzNDM5 MmUzMTM0MzgyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWUxlDANBgkqhkiG9w0BAQsFAAOCAQEAiwPD5MZs/+5SleNjJG9J69gtkdbg wCVlvYE2WLOKf0TrWTWhc8g0JDjkEiv9YhScw++yTvW/8ZYydfCwSh4cQwXcJqwx nqJ7aExu8n/GaSjRlcBJd63XzWkOt+kWHzcQljPoXkzxE6j7Xs8aY+Vt6FUeu9eM TYZdfMJuwdxhlMFrUFYc7O7BsG4FNxvJxwOU4r9H9O7c32Aqd9RL5jU+wl+Z5nn7 WHMh9GfAaQVsZzkGZMFX3KxZ4aXP875SBbvooj5qiviEv6Cd2ybW6WlwrtEqy8TW n1GIixBV+XM+t1h8rubWXdmygXH11Gt325dgcxkQnHVmEJO6B+CsESk0rg== -----END CERTIFICATE-----Generated at Mon Apr 27 13:46:36 2026 by rpki-client