$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1118728720266362907/0/3130332e37362e3232342e302f32322d3232203d3e2034383437.roa File: 3130332e37362e3232342e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: /7dkC0KCXVakh473Sdc/GvCBLnVg8PslCmydwVIeiDg= Subject key identifier: 46:D0:E8:38:32:DA:43:A5:67:4C:F4:91:75:0D:51:A8:F8:68:57:99 Certificate issuer: /CN=9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A Certificate serial: 6B97D36614D891E0BC0F5D102C516C856F763ABF Authority key identifier: 9D:FA:5D:44:CF:50:ED:F5:6E:93:BB:7F:AF:86:3E:B6:0B:60:D0:4A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/3130332e37362e3232342e302f32322d3232203d3e2034383437.roa Signing time: Mon 15 Jun 2026 06:52:23 +0000 ROA not before: Mon 15 Jun 2026 06:47:23 +0000 ROA not after: Mon 14 Jun 2027 06:52:23 +0000 asID: 4847 IP address blocks: 103.76.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.crl rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Jun 2026 09:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:97:d3:66:14:d8:91:e0:bc:0f:5d:10:2c:51:6c:85:6f:76:3a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A Validity Not Before: Jun 15 06:47:23 2026 GMT Not After : Jun 14 06:52:23 2027 GMT Subject: CN=46D0E83832DA43A5674CF491750D51A8F8685799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8f:7f:9d:f1:cd:fc:fc:90:2a:92:f9:c1:88: 04:5e:44:a8:b8:6a:a9:1d:17:09:e0:7e:6c:bb:7c: 41:a8:75:30:7c:3e:12:b5:bc:15:b7:39:0d:24:5c: fa:58:f0:55:f9:c0:41:63:fd:f2:e4:12:1c:2f:e6: f0:96:37:9a:70:5b:ba:62:b4:39:ea:ba:d4:50:a8: fb:d2:05:2e:f9:8c:5a:83:27:97:29:47:ac:ec:1e: d3:66:a1:39:77:d7:05:3e:a8:7c:ed:67:0b:98:e1: 68:42:b6:3a:63:9b:4d:e4:a3:df:e1:69:92:df:22: 6d:d5:60:f7:cc:6b:88:a0:5f:aa:5f:af:57:6e:07: 73:02:5d:80:06:a8:5a:11:82:d3:f5:cd:c0:69:cb: 6c:36:53:ee:d5:30:9e:2e:13:8d:ab:58:7a:9a:ce: 4a:cf:2f:da:3e:b7:11:51:c4:81:8c:47:52:1e:95: 8e:02:20:c4:e6:ae:3a:ee:56:82:7f:68:9e:a7:29: c5:14:13:9b:d0:7c:ec:3b:8c:7a:e0:8f:3f:85:24: 74:4a:a7:40:e1:30:85:1d:82:1a:15:4a:8e:d0:88: a7:05:93:ab:31:29:e2:b5:50:85:51:82:fa:1e:be: 4b:7c:17:5c:1a:4d:b0:63:d4:61:95:48:09:01:4f: ee:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D0:E8:38:32:DA:43:A5:67:4C:F4:91:75:0D:51:A8:F8:68:57:99 X509v3 Authority Key Identifier: keyid:9D:FA:5D:44:CF:50:ED:F5:6E:93:BB:7F:AF:86:3E:B6:0B:60:D0:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9DFA5D44CF50EDF56E93BB7FAF863EB60B60D04A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1118728720266362907/0/3130332e37362e3232342e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.224.0/22 Signature Algorithm: sha256WithRSAEncryption 46:d5:74:b4:20:fc:2d:3c:d0:9d:f3:c0:5c:4d:61:fc:2d:56: 42:22:55:d1:75:94:7f:43:1e:e9:65:cd:a3:9c:4b:ba:20:6f: 2d:8f:d6:b5:7e:54:27:c4:ac:f8:75:59:5f:e3:73:69:e2:95: a2:56:5e:04:56:80:73:9e:4a:bd:52:8b:d8:d8:e4:a7:d3:77: 4f:6e:d9:e9:ce:3a:69:09:28:ca:b7:cb:4d:41:1d:76:f1:fa: 76:ca:e2:90:14:0e:22:12:64:89:2a:21:af:e9:7a:2d:60:31: 3e:62:e7:ae:b7:65:7c:65:af:f8:52:cd:8c:af:f1:45:32:73: ed:db:42:e7:55:ba:c7:a4:cb:bb:bb:cc:d0:53:e4:c4:7d:33: 1c:f5:bf:c2:90:b4:93:88:66:b1:a6:b6:3c:28:e5:d9:d5:c1: 70:bf:8a:2e:af:2b:e9:cb:b0:27:98:c8:c1:72:34:bc:6c:f1: 98:ef:19:a7:7e:b2:8d:4e:28:6c:10:46:88:3a:5f:21:50:ea: 07:a0:c3:b6:13:4b:1c:f3:1c:7f:98:95:69:b0:56:a8:4e:07: b7:c8:c5:3c:34:58:a2:1c:74:23:f1:25:d3:e6:60:e1:a7:6c: 54:f5:f0:7c:6e:d0:30:de:93:d0:a4:2f:56:7d:24:67:a8:44: 5e:67:b9:46 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUa5fTZhTYkeC8D10QLFFshW92Or8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURGQTVENDRDRjUwRURGNTZFOTNCQjdGQUY4NjNFQjYw QjYwRDA0QTAeFw0yNjA2MTUwNjQ3MjNaFw0yNzA2MTQwNjUyMjNaMDMxMTAvBgNV BAMTKDQ2RDBFODM4MzJEQTQzQTU2NzRDRjQ5MTc1MEQ1MUE4Rjg2ODU3OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7j3+d8c38/JAqkvnBiAReRKi4 aqkdFwngfmy7fEGodTB8PhK1vBW3OQ0kXPpY8FX5wEFj/fLkEhwv5vCWN5pwW7pi tDnqutRQqPvSBS75jFqDJ5cpR6zsHtNmoTl31wU+qHztZwuY4WhCtjpjm03ko9/h aZLfIm3VYPfMa4igX6pfr1duB3MCXYAGqFoRgtP1zcBpy2w2U+7VMJ4uE42rWHqa zkrPL9o+txFRxIGMR1IelY4CIMTmrjruVoJ/aJ6nKcUUE5vQfOw7jHrgjz+FJHRK p0DhMIUdghoVSo7QiKcFk6sxKeK1UIVRgvoevkt8F1waTbBj1GGVSAkBT+7RAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQURtDoODLaQ6VnTPSRdQ1RqPhoV5kwHwYDVR0j BBgwFoAUnfpdRM9Q7fVuk7t/r4Y+tgtg0EowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx ODcyODcyMDI2NjM2MjkwNy8wLzlERkE1RDQ0Q0Y1MEVERjU2RTkzQkI3RkFGODYz RUI2MEI2MEQwNEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOURGQTVENDRDRjUwRURGNTZFOTNCQjdGQUY4NjNFQjYwQjYwRDA0QS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE4NzI4NzIwMjY2MzYyOTA3LzAvMzEzMDMzMmUzNzM2 MmUzMjMyMzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdM4DANBgkqhkiG9w0BAQsFAAOCAQEARtV0tCD8LTzQnfPAXE1h/C1WQiJV 0XWUf0Me6WXNo5xLuiBvLY/WtX5UJ8Ss+HVZX+NzaeKVolZeBFaAc55KvVKL2Njk p9N3T27Z6c46aQkoyrfLTUEddvH6dsrikBQOIhJkiSohr+l6LWAxPmLnrrdlfGWv +FLNjK/xRTJz7dtC51W6x6TLu7vM0FPkxH0zHPW/wpC0k4hmsaa2PCjl2dXBcL+K Lq8r6cuwJ5jIwXI0vGzxmO8Zp36yjU4obBBGiDpfIVDqB6DDthNLHPMcf5iVabBW qE4Ht8jFPDRYohx0I/El0+Zg4adsVPXwfG7QMN6T0KQvVn0kZ6hEXme5Rg== -----END CERTIFICATE-----Generated at Wed Jun 24 18:14:39 2026 by rpki-client