$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114861900895617051/0/3130332e31362e3132342e302f32322d3232203d3e203538383531.roa File: 3130332e31362e3132342e302f32322d3232203d3e203538383531.roa (raw, json) Hash identifier: J03Bd745xFUmekCrtUpll59JIIiIgF2WNL6PFFMPGcc= Subject key identifier: 63:1D:A4:7B:06:9E:2C:FF:B6:28:BB:E8:A5:59:23:56:01:E9:17:50 Certificate issuer: /CN=2DE78C945E2B53374B86C0A7BDE5ADE6904C5EC2 Certificate serial: 2BB2B7AD72B22C0DCA8AF766AA95DAFCC9AEBD0F Authority key identifier: 2D:E7:8C:94:5E:2B:53:37:4B:86:C0:A7:BD:E5:AD:E6:90:4C:5E:C2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2DE78C945E2B53374B86C0A7BDE5ADE6904C5EC2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114861900895617051/0/3130332e31362e3132342e302f32322d3232203d3e203538383531.roa Signing time: Thu 04 Jun 2026 10:26:11 +0000 ROA not before: Thu 04 Jun 2026 10:21:11 +0000 ROA not after: Thu 03 Jun 2027 10:26:11 +0000 asID: 58851 IP address blocks: 103.16.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114861900895617051/0/2DE78C945E2B53374B86C0A7BDE5ADE6904C5EC2.crl rsync://rpki-rps.cnnic.cn/repo/A1114861900895617051/0/2DE78C945E2B53374B86C0A7BDE5ADE6904C5EC2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2DE78C945E2B53374B86C0A7BDE5ADE6904C5EC2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 04:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b2:b7:ad:72:b2:2c:0d:ca:8a:f7:66:aa:95:da:fc:c9:ae:bd:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DE78C945E2B53374B86C0A7BDE5ADE6904C5EC2 Validity Not Before: Jun 4 10:21:11 2026 GMT Not After : Jun 3 10:26:11 2027 GMT Subject: CN=631DA47B069E2CFFB628BBE8A559235601E91750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:af:de:6d:01:59:19:5e:53:db:8b:91:48:de: 07:34:a4:11:e6:ea:9e:1a:4b:f8:b2:66:4b:af:4d: 6e:87:78:76:0f:32:1c:1a:ba:25:64:08:0f:5b:fc: 59:d6:75:55:80:c3:e7:28:ad:5b:a6:2b:f4:af:09: 7f:0d:fa:05:07:71:dd:ce:f5:1b:b4:a8:5c:a4:fc: f4:bc:09:52:63:35:d7:b7:42:db:c6:d7:8d:27:d3: 67:d5:b6:0f:f0:66:42:2c:23:eb:c0:99:03:eb:5b: 6c:c2:c0:e1:06:0a:24:b0:20:93:f7:0f:1c:97:3b: 1d:d8:81:fa:a4:7d:f7:c3:af:03:09:d8:4e:57:f6: 5e:4c:73:d8:68:7b:b7:dd:f4:09:52:04:6d:06:9f: d8:be:0c:30:ff:bf:0b:73:1b:9f:7b:c8:76:80:19: ea:14:58:03:ec:12:12:1f:14:13:93:f8:f3:57:5f: f0:b5:fc:a0:2b:8d:18:0d:3b:d6:81:d6:4f:ee:2c: 32:41:26:cc:1b:14:e7:e1:b7:59:c0:50:f6:d7:75: 44:06:50:b5:23:94:4c:d7:dd:75:22:2d:26:c9:5d: 0c:07:3b:99:11:cd:53:01:be:92:6d:f8:25:7d:86: cb:fd:21:a2:70:6d:03:ed:a9:01:96:5a:e2:6f:e1: 68:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1D:A4:7B:06:9E:2C:FF:B6:28:BB:E8:A5:59:23:56:01:E9:17:50 X509v3 Authority Key Identifier: keyid:2D:E7:8C:94:5E:2B:53:37:4B:86:C0:A7:BD:E5:AD:E6:90:4C:5E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114861900895617051/0/2DE78C945E2B53374B86C0A7BDE5ADE6904C5EC2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2DE78C945E2B53374B86C0A7BDE5ADE6904C5EC2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114861900895617051/0/3130332e31362e3132342e302f32322d3232203d3e203538383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.124.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:2f:a0:c9:43:bf:aa:5d:d0:b0:1e:e7:64:8f:f5:57:3b:ee: f5:d4:b8:83:9d:73:2c:48:4d:c7:bd:37:5a:0e:49:8c:5a:92: 4f:5d:71:a1:37:cf:b4:d1:8a:80:60:1e:86:a8:8c:dd:ec:76: e5:2b:d6:a3:a1:54:f8:50:db:8f:04:c7:64:63:31:c1:6d:ca: eb:e4:73:c7:b1:d3:f1:a0:a0:1b:49:42:27:94:32:97:87:8d: b0:9a:bf:da:19:9d:6d:3f:48:3a:ef:86:65:5f:27:42:20:42: 04:9b:24:66:f9:18:3a:7a:6c:76:47:ad:40:c3:c0:80:6d:d6: 88:d1:e1:9a:dd:48:2f:f1:be:1e:30:b7:85:78:18:10:be:ff: 87:54:ef:86:3c:7f:04:75:e4:be:c2:3e:37:9e:69:4a:09:b4: 41:4f:3e:78:ce:b9:07:17:ba:fe:20:6b:f2:f1:e6:7a:a9:b8: cb:2d:66:64:0c:82:b9:bd:10:28:ef:8e:7d:18:86:87:9a:89: d3:cd:91:34:02:57:b7:da:ae:95:ab:7e:5b:70:21:41:33:0e: 6e:9f:67:b0:a5:14:72:b8:22:a1:41:24:ac:58:cc:f3:a1:3e: f6:d8:fe:23:ca:2a:c8:15:5c:8c:f6:40:13:db:c1:f4:29:b5: 16:79:fd:0c -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUK7K3rXKyLA3KivdmqpXa/MmuvQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFNzhDOTQ1RTJCNTMzNzRCODZDMEE3QkRFNUFERTY5 MDRDNUVDMjAeFw0yNjA2MDQxMDIxMTFaFw0yNzA2MDMxMDI2MTFaMDMxMTAvBgNV BAMTKDYzMURBNDdCMDY5RTJDRkZCNjI4QkJFOEE1NTkyMzU2MDFFOTE3NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyr95tAVkZXlPbi5FI3gc0pBHm 6p4aS/iyZkuvTW6HeHYPMhwauiVkCA9b/FnWdVWAw+corVumK/SvCX8N+gUHcd3O 9Ru0qFyk/PS8CVJjNde3QtvG140n02fVtg/wZkIsI+vAmQPrW2zCwOEGCiSwIJP3 DxyXOx3YgfqkfffDrwMJ2E5X9l5Mc9hoe7fd9AlSBG0Gn9i+DDD/vwtzG597yHaA GeoUWAPsEhIfFBOT+PNXX/C1/KArjRgNO9aB1k/uLDJBJswbFOfht1nAUPbXdUQG ULUjlEzX3XUiLSbJXQwHO5kRzVMBvpJt+CV9hsv9IaJwbQPtqQGWWuJv4WjTAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUYx2kewaeLP+2KLvopVkjVgHpF1AwHwYDVR0j BBgwFoAULeeMlF4rUzdLhsCnveWt5pBMXsIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg2MTkwMDg5NTYxNzA1MS8wLzJERTc4Qzk0NUUyQjUzMzc0Qjg2QzBBN0JERTVB REU2OTA0QzVFQzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkRFNzhDOTQ1RTJCNTMzNzRCODZDMEE3QkRFNUFERTY5MDRDNUVDMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExNDg2MTkwMDg5NTYxNzA1MS8wLzMxMzAzMzJlMzEz NjJlMzEzMjM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzODM4MzUzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmcQfDANBgkqhkiG9w0BAQsFAAOCAQEADy+gyUO/ql3QsB7nZI/1Vzvu 9dS4g51zLEhNx703Wg5JjFqST11xoTfPtNGKgGAehqiM3ex25SvWo6FU+FDbjwTH ZGMxwW3K6+Rzx7HT8aCgG0lCJ5Qyl4eNsJq/2hmdbT9IOu+GZV8nQiBCBJskZvkY OnpsdketQMPAgG3WiNHhmt1IL/G+HjC3hXgYEL7/h1Tvhjx/BHXkvsI+N55pSgm0 QU8+eM65Bxe6/iBr8vHmeqm4yy1mZAyCub0QKO+OfRiGh5qJ082RNAJXt9qulat+ W3AhQTMObp9nsKUUcrgioUEkrFjM86E+9tj+I8oqyBVcjPZAE9vB9Cm1Fnn9DA== -----END CERTIFICATE-----Generated at Fri Jun 12 06:44:25 2026 by rpki-client