$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1108630512513056787/0/AS0.roa File: AS0.roa (raw, json) Hash identifier: EvHOeE0VRoKmj+IkX+G9k6Kw919D0rfcsecsEPiPJNA= Subject key identifier: D4:E9:47:F7:4A:EE:C1:27:24:5A:0A:E1:9F:D3:4F:1B:E9:E8:76:E7 Certificate issuer: /CN=F6FB05F40E211EA9D8D385A6E01D76ACFEABE9E2 Certificate serial: 7754CF83635DBA2F48360AC3615B978FFB1DCE29 Authority key identifier: F6:FB:05:F4:0E:21:1E:A9:D8:D3:85:A6:E0:1D:76:AC:FE:AB:E9:E2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F6FB05F40E211EA9D8D385A6E01D76ACFEABE9E2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1108630512513056787/0/AS0.roa Signing time: Mon 18 May 2026 06:30:42 +0000 ROA not before: Mon 18 May 2026 06:25:42 +0000 ROA not after: Mon 17 May 2027 06:30:42 +0000 asID: 0 IP address blocks: 103.52.40.0/22 maxlen: 22 124.68.64.0/18 maxlen: 18 218.246.52.0/22 maxlen: 22 218.246.56.0/21 maxlen: 21 2400:b700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1108630512513056787/0/F6FB05F40E211EA9D8D385A6E01D76ACFEABE9E2.crl rsync://rpki-rps.cnnic.cn/repo/A1108630512513056787/0/F6FB05F40E211EA9D8D385A6E01D76ACFEABE9E2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F6FB05F40E211EA9D8D385A6E01D76ACFEABE9E2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 19:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:54:cf:83:63:5d:ba:2f:48:36:0a:c3:61:5b:97:8f:fb:1d:ce:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F6FB05F40E211EA9D8D385A6E01D76ACFEABE9E2 Validity Not Before: May 18 06:25:42 2026 GMT Not After : May 17 06:30:42 2027 GMT Subject: CN=D4E947F74AEEC127245A0AE19FD34F1BE9E876E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c8:ac:ea:4e:aa:0e:70:fb:22:5f:72:6e:36: bd:20:ce:e6:09:ae:63:68:a0:c5:af:eb:ba:b0:48: 16:93:7c:8f:0e:5f:a8:1a:ba:a1:fb:cf:72:1b:be: 1c:86:84:4f:e5:99:f0:fd:7d:6a:17:3a:66:bf:54: 3e:98:3e:e2:fc:75:f0:09:c7:02:71:a2:3b:1c:e6: 52:b5:11:c6:eb:93:18:8e:7e:0d:36:d9:c2:40:7f: 2b:c3:8d:f5:3f:f3:8d:6f:07:f6:27:98:95:70:d6: a7:a0:7a:df:69:13:dd:ce:af:22:9d:cb:df:26:dd: 5f:b4:c6:bc:84:7b:99:86:c6:7f:e5:56:6a:1e:e3: 88:e3:71:68:4e:2d:fc:53:ca:25:84:c0:59:76:9c: 8c:49:82:81:a0:97:fb:97:1e:72:bf:a8:d0:8c:4b: ab:fe:58:94:c7:9e:98:23:28:95:46:0f:5a:8f:19: 25:ae:c4:33:d1:9e:d5:79:db:10:df:2c:7e:cf:00: 70:db:f2:42:d9:8f:72:94:9b:68:db:02:70:4c:d9: 09:ac:98:d3:78:a0:db:61:eb:65:35:9e:cd:a6:3d: f8:4a:9e:05:7f:d0:2c:1c:24:ac:cf:0c:85:bb:0a: f5:95:f2:9d:23:6d:bd:ac:2a:bd:77:39:a9:89:8f: e0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E9:47:F7:4A:EE:C1:27:24:5A:0A:E1:9F:D3:4F:1B:E9:E8:76:E7 X509v3 Authority Key Identifier: keyid:F6:FB:05:F4:0E:21:1E:A9:D8:D3:85:A6:E0:1D:76:AC:FE:AB:E9:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1108630512513056787/0/F6FB05F40E211EA9D8D385A6E01D76ACFEABE9E2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F6FB05F40E211EA9D8D385A6E01D76ACFEABE9E2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1108630512513056787/0/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.40.0/22 124.68.64.0/18 218.246.52.0-218.246.63.255 IPv6: 2400:b700::/32 Signature Algorithm: sha256WithRSAEncryption 9b:09:65:52:b4:30:9e:f7:02:a8:7f:cc:35:8b:05:60:32:4a: 43:ec:8c:6e:23:c9:ed:4c:6a:38:ee:e5:a9:ec:43:20:69:48: 4c:8c:59:d8:8f:20:cb:31:9d:88:4f:10:05:e1:e0:3d:cd:04: d5:aa:33:6c:fb:33:e6:a2:2b:40:7a:7e:f3:7d:74:c6:88:62: 19:87:5c:4f:28:43:f4:09:b8:9e:7f:cb:98:dc:0b:13:df:8a: b9:92:dd:02:7f:53:45:06:fb:68:21:d5:47:dc:bb:01:9c:00: 5d:15:25:d4:72:d0:69:a8:4b:ee:ea:5b:01:53:c1:f7:65:e3: 18:38:44:57:83:57:ea:4d:99:e6:8d:3f:18:ab:53:ae:c6:99: 12:d3:3e:76:a9:fb:d2:da:c8:01:1b:60:cc:51:68:ba:c7:27: 7b:4f:26:73:2b:e6:a0:0d:9f:ed:af:f8:a4:bf:75:f9:0c:f2: 56:1d:9a:b0:8e:a3:83:36:89:a2:62:bc:a1:19:2a:64:2a:fb: 97:dd:72:aa:80:8b:5b:4f:b6:7a:b0:fa:4d:dc:57:7d:47:90: c6:23:d7:3e:5b:55:cb:a6:9a:cf:4e:a0:08:b4:37:d8:f3:96: f6:38:d2:9e:9d:eb:26:40:b2:ec:54:e2:b4:d3:3e:99:78:08: c5:c2:25:a4 -----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgIUd1TPg2Ndui9INgrDYVuXj/sdzikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjZGQjA1RjQwRTIxMUVBOUQ4RDM4NUE2RTAxRDc2QUNG RUFCRTlFMjAeFw0yNjA1MTgwNjI1NDJaFw0yNzA1MTcwNjMwNDJaMDMxMTAvBgNV BAMTKEQ0RTk0N0Y3NEFFRUMxMjcyNDVBMEFFMTlGRDM0RjFCRTlFODc2RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRyKzqTqoOcPsiX3JuNr0gzuYJ rmNooMWv67qwSBaTfI8OX6gauqH7z3IbvhyGhE/lmfD9fWoXOma/VD6YPuL8dfAJ xwJxojsc5lK1EcbrkxiOfg022cJAfyvDjfU/841vB/YnmJVw1qeget9pE93OryKd y98m3V+0xryEe5mGxn/lVmoe44jjcWhOLfxTyiWEwFl2nIxJgoGgl/uXHnK/qNCM S6v+WJTHnpgjKJVGD1qPGSWuxDPRntV52xDfLH7PAHDb8kLZj3KUm2jbAnBM2Qms mNN4oNth62U1ns2mPfhKngV/0CwcJKzPDIW7CvWV8p0jbb2sKr13OamJj+BzAgMB AAGjggICMIIB/jAdBgNVHQ4EFgQU1OlH90ruwSckWgrhn9NPG+noducwHwYDVR0j BBgwFoAU9vsF9A4hHqnY04Wm4B12rP6r6eIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw ODYzMDUxMjUxMzA1Njc4Ny8wL0Y2RkIwNUY0MEUyMTFFQTlEOEQzODVBNkUwMUQ3 NkFDRkVBQkU5RTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjZGQjA1RjQwRTIxMUVBOUQ4RDM4NUE2RTAxRDc2QUNGRUFCRTlFMi5jZXIw WQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1yc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTExMDg2MzA1MTI1MTMwNTY3ODcvMC9BUzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwQgYIKwYBBQUHAQcBAf8EMzAxMCAEAgABMBoD BAJnNCgDBAZ8REAwDAMEAtr2NAMEBtr2ADANBAIAAjAHAwUAJAC3ADANBgkqhkiG 9w0BAQsFAAOCAQEAmwllUrQwnvcCqH/MNYsFYDJKQ+yMbiPJ7UxqOO7lqexDIGlI TIxZ2I8gyzGdiE8QBeHgPc0E1aozbPsz5qIrQHp+8310xohiGYdcTyhD9Am4nn/L mNwLE9+KuZLdAn9TRQb7aCHVR9y7AZwAXRUl1HLQaahL7upbAVPB92XjGDhEV4NX 6k2Z5o0/GKtTrsaZEtM+dqn70trIARtgzFFouscne08mcyvmoA2f7a/4pL91+Qzy Vh2asI6jgzaJomK8oRkqZCr7l91yqoCLW0+2erD6TdxXfUeQxiPXPltVy6aaz06g CLQ32POW9jjSnp3rJkCy7FTitNM+mXgIxcIlpA== -----END CERTIFICATE-----Generated at Sat May 23 03:03:23 2026 by rpki-client