$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1118728720266362907/0/3130332e3233362e3234342e302f32322d3232203d3e2034383437.roa File: 3130332e3233362e3234342e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: Y5trOlbR/plNg3QWBKYijC8voHHhxrp8lORe45SD0+M= Subject key identifier: C3:5B:64:D7:92:0D:02:24:97:A4:11:58:0D:8D:EF:D2:7D:1C:54:B1 Certificate issuer: /CN=9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A Certificate serial: 7E95D23E9ED4393CA2DCCE0E9D77A7C9AA5B5C3E Authority key identifier: 9D:FA:5D:44:CF:50:ED:F5:6E:93:BB:7F:AF:86:3E:B6:0B:60:D0:4A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/3130332e3233362e3234342e302f32322d3232203d3e2034383437.roa Signing time: Mon 15 Jun 2026 06:52:23 +0000 ROA not before: Mon 15 Jun 2026 06:47:23 +0000 ROA not after: Mon 14 Jun 2027 06:52:23 +0000 asID: 4847 IP address blocks: 103.236.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.crl rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Jun 2026 09:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:95:d2:3e:9e:d4:39:3c:a2:dc:ce:0e:9d:77:a7:c9:aa:5b:5c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A Validity Not Before: Jun 15 06:47:23 2026 GMT Not After : Jun 14 06:52:23 2027 GMT Subject: CN=C35B64D7920D022497A411580D8DEFD27D1C54B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0d:bd:68:32:81:e6:c9:74:c1:09:ce:de:2c: 56:a4:76:75:bd:fa:b7:b4:32:5a:06:c6:2e:b2:00: a3:5c:08:a7:34:d2:02:ac:66:b7:13:6d:3d:89:c8: 95:3a:29:ed:29:92:42:86:b6:8d:3d:da:25:c4:6f: 01:ab:08:e2:d8:f8:bd:fb:e6:1d:97:41:97:05:2c: e1:ab:2a:0a:a1:c1:7d:55:43:9a:7a:1c:4d:0e:fe: 03:71:87:72:8d:79:7a:47:9a:48:1a:e9:59:7f:b3: 82:40:e3:84:f2:e8:9d:70:01:3e:3f:c0:2c:21:f1: 7f:cf:6a:57:2c:1e:00:c8:68:33:b2:2c:74:9f:12: cc:4e:8c:cf:b0:27:de:49:51:27:af:82:6d:40:b8: a1:5f:81:d7:c8:58:3b:89:3a:57:c5:55:9e:0c:5f: 9c:d5:52:e9:5c:a2:e2:dc:e6:69:6a:7b:88:6b:1c: 2a:2d:2c:b1:84:65:60:d4:7f:b8:27:8a:bd:26:01: dd:bd:8e:15:f7:df:27:6b:c8:e3:f4:52:80:11:42: 1e:c2:ba:3f:bb:92:ee:bc:6b:45:97:0c:48:55:aa: 86:66:76:88:af:fe:4c:80:0f:f5:46:88:40:08:82: 82:67:1d:ed:32:6b:cc:04:da:a5:14:b0:29:bf:90: 3a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:5B:64:D7:92:0D:02:24:97:A4:11:58:0D:8D:EF:D2:7D:1C:54:B1 X509v3 Authority Key Identifier: keyid:9D:FA:5D:44:CF:50:ED:F5:6E:93:BB:7F:AF:86:3E:B6:0B:60:D0:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/3130332e3233362e3234342e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.244.0/22 Signature Algorithm: sha256WithRSAEncryption 88:98:a7:59:71:64:76:30:fb:04:c4:60:64:50:7c:1a:09:69: e9:ad:44:d2:c9:5b:2a:bd:b4:0b:32:10:28:e1:17:58:ce:c4: 2a:db:5f:3b:95:5d:12:0a:77:89:fd:64:eb:cb:33:a2:63:c4: be:6a:1d:cf:2b:32:67:d8:bf:aa:00:b5:38:1a:8f:75:fb:80: d3:72:c5:fd:43:69:3a:9e:cf:a6:db:ff:11:c3:03:a5:44:31: 22:6a:d4:1d:58:70:74:d6:9e:5d:2f:e2:9a:c8:cd:e3:2a:a1: 91:b2:46:bc:6c:68:6c:10:7e:67:1d:4a:86:8b:a8:53:62:6d: 58:4f:6f:b2:2e:2b:8f:9d:ef:9f:74:51:2e:84:74:ac:64:e7: 2a:84:f2:a2:7d:ef:4d:82:20:f5:9e:b8:4d:ae:78:cd:81:02: 16:86:48:25:b0:b6:e6:ea:36:c0:53:83:56:f7:ae:7f:8f:cc: f1:a4:62:da:21:50:b6:18:16:9e:90:6b:3d:1b:96:4c:4e:69: 19:47:b5:a9:40:75:29:da:ce:67:ff:dd:c5:5d:b6:b4:69:8e: 9e:5b:f4:64:fb:17:9b:5e:3f:7e:58:12:38:a7:f2:6c:fa:f8: 08:f8:52:36:bb:75:e6:78:5a:e8:fd:b6:3e:7f:b8:0c:d2:25: 89:6b:da:22 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUfpXSPp7UOTyi3M4OnXenyapbXD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURGQTVENDRDRjUwRURGNTZFOTNCQjdGQUY4NjNFQjYw QjYwRDA0QTAeFw0yNjA2MTUwNjQ3MjNaFw0yNzA2MTQwNjUyMjNaMDMxMTAvBgNV BAMTKEMzNUI2NEQ3OTIwRDAyMjQ5N0E0MTE1ODBEOERFRkQyN0QxQzU0QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjDb1oMoHmyXTBCc7eLFakdnW9 +re0MloGxi6yAKNcCKc00gKsZrcTbT2JyJU6Ke0pkkKGto092iXEbwGrCOLY+L37 5h2XQZcFLOGrKgqhwX1VQ5p6HE0O/gNxh3KNeXpHmkga6Vl/s4JA44Ty6J1wAT4/ wCwh8X/PalcsHgDIaDOyLHSfEsxOjM+wJ95JUSevgm1AuKFfgdfIWDuJOlfFVZ4M X5zVUulcouLc5mlqe4hrHCotLLGEZWDUf7gnir0mAd29jhX33ydryOP0UoARQh7C uj+7ku68a0WXDEhVqoZmdoiv/kyAD/VGiEAIgoJnHe0ya8wE2qUUsCm/kDqPAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUw1tk15INAiSXpBFYDY3v0n0cVLEwHwYDVR0j BBgwFoAUnfpdRM9Q7fVuk7t/r4Y+tgtg0EowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx ODcyODcyMDI2NjM2MjkwNy8wLzlERkE1RDQ0Q0Y1MEVERjU2RTkzQkI3RkFGODYz RUI2MEI2MEQwNEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOURGQTVENDRDRjUwRURGNTZFOTNCQjdGQUY4NjNFQjYwQjYwRDA0QS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExODcyODcyMDI2NjM2MjkwNy8wLzMxMzAzMzJlMzIz MzM2MmUzMjM0MzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmfs9DANBgkqhkiG9w0BAQsFAAOCAQEAiJinWXFkdjD7BMRgZFB8Gglp 6a1E0slbKr20CzIQKOEXWM7EKttfO5VdEgp3if1k68szomPEvmodzysyZ9i/qgC1 OBqPdfuA03LF/UNpOp7Pptv/EcMDpUQxImrUHVhwdNaeXS/imsjN4yqhkbJGvGxo bBB+Zx1KhouoU2JtWE9vsi4rj53vn3RRLoR0rGTnKoTyon3vTYIg9Z64Ta54zYEC FoZIJbC25uo2wFODVveuf4/M8aRi2iFQthgWnpBrPRuWTE5pGUe1qUB1KdrOZ//d xV22tGmOnlv0ZPsXm14/flgSOKfybPr4CPhSNrt15nha6P22Pn+4DNIliWvaIg== -----END CERTIFICATE-----Generated at Wed Jun 24 18:15:49 2026 by rpki-client