$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065580055121690626/0/3130332e3233342e3133312e302f32342d3234203d3e203137363231.roa File: 3130332e3233342e3133312e302f32342d3234203d3e203137363231.roa (raw, json) Hash identifier: RMNTQapEhHCiy0mYS+fxG4lDIlhhdGLWHWapAq2ssyk= Subject key identifier: CC:61:D8:EA:4E:8F:4F:AC:4F:C5:E0:25:E9:7B:05:2C:15:F1:25:FA Certificate issuer: /CN=B8C15036932176BBE4E7217ED5772ACA3DB00427 Certificate serial: 1418DC9B1FE7244FF7C6540D64D3D45F190EE56F Authority key identifier: B8:C1:50:36:93:21:76:BB:E4:E7:21:7E:D5:77:2A:CA:3D:B0:04:27 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/3130332e3233342e3133312e302f32342d3234203d3e203137363231.roa Signing time: Tue 21 Apr 2026 02:55:53 +0000 ROA not before: Tue 21 Apr 2026 02:50:53 +0000 ROA not after: Tue 20 Apr 2027 02:55:53 +0000 asID: 17621 IP address blocks: 103.234.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.crl rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:18:dc:9b:1f:e7:24:4f:f7:c6:54:0d:64:d3:d4:5f:19:0e:e5:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C15036932176BBE4E7217ED5772ACA3DB00427 Validity Not Before: Apr 21 02:50:53 2026 GMT Not After : Apr 20 02:55:53 2027 GMT Subject: CN=CC61D8EA4E8F4FAC4FC5E025E97B052C15F125FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cd:c8:5c:d2:d0:ba:57:a7:f7:47:5a:57:32: 2a:f2:b2:be:51:a1:9a:23:7d:5a:82:b0:64:29:41: d2:84:aa:62:aa:f2:db:0f:de:5d:61:76:06:30:2d: 4c:bf:70:04:7a:ea:1a:53:8a:1e:81:47:10:74:05: 25:16:e4:18:de:26:ba:6e:a2:34:2e:ef:bb:51:4a: 9f:e8:a9:c0:a9:4e:b5:ac:cf:53:37:75:b3:87:f9: 4e:48:21:19:dd:67:f3:1c:83:ef:74:33:82:af:5d: c1:05:42:97:6f:9d:3b:5a:f9:b2:c3:c7:19:df:3e: cb:6d:00:b6:4b:cd:88:7b:ae:fc:2a:51:fd:d6:02: 67:5b:31:a1:93:1f:1e:7e:56:0e:30:91:bc:cd:f0: 6e:ac:54:22:0a:05:81:70:b5:52:9d:07:ea:72:e3: 57:fa:6a:42:9f:5c:e2:7d:31:af:d9:8e:06:fe:14: 89:8b:76:c9:b6:41:dc:bb:af:76:7c:87:9b:13:8b: 56:92:2b:51:0a:f1:b2:b6:3c:c5:b3:78:fd:b7:77: 1d:fd:f3:09:f5:b6:6f:42:aa:64:a3:58:f5:ab:56: 25:87:21:ed:bc:87:65:75:65:89:c9:b9:1e:2c:c6: 0b:26:40:d1:32:d7:0a:e2:6e:e2:72:20:ff:3e:ac: e0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:61:D8:EA:4E:8F:4F:AC:4F:C5:E0:25:E9:7B:05:2C:15:F1:25:FA X509v3 Authority Key Identifier: keyid:B8:C1:50:36:93:21:76:BB:E4:E7:21:7E:D5:77:2A:CA:3D:B0:04:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/3130332e3233342e3133312e302f32342d3234203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.131.0/24 Signature Algorithm: sha256WithRSAEncryption 93:4f:c4:ce:e7:88:c4:6a:76:86:c0:c4:60:49:9d:a6:45:b0: 58:dd:43:c8:d9:1f:27:69:17:a2:ec:94:15:01:74:00:cf:64: ea:56:dd:31:32:2e:9d:ae:21:5b:54:a2:b4:30:27:2f:ea:53: 71:5c:f7:81:a5:ab:c5:f8:80:fb:8f:1c:f5:1c:24:8e:a5:f8: 6f:5d:36:48:a2:07:ce:fc:35:54:d0:96:b6:86:f3:9f:35:7c: af:7d:05:11:dd:db:64:65:9f:3b:ea:13:98:d9:cd:84:db:71: a5:68:e2:9b:44:45:ba:33:82:88:de:6e:23:61:cf:47:a3:3b: ac:ee:de:bc:01:b9:15:36:9d:c8:13:b2:9e:13:f1:19:9e:2a: be:cf:62:bb:98:0f:d8:c4:07:9e:7c:7a:e3:d7:9e:e0:81:98: cc:31:76:b1:df:ea:f1:50:00:43:4c:c4:79:31:2b:ba:c7:4f: f9:7e:72:7e:69:b6:21:85:87:5f:7f:1c:fe:a9:29:2e:de:bd: 96:9a:46:55:a2:6f:0e:ee:41:6f:dd:04:b5:94:f4:98:76:f3: 74:3d:47:d8:f1:df:d6:11:9d:45:ac:c3:52:75:01:a2:c9:f5: f0:0a:0e:62:73:5a:ac:a3:f9:4c:0c:91:4b:a5:8b:9c:55:da: 85:35:d9:6a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFBjcmx/nJE/3xlQNZNPUXxkO5W8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMTUwMzY5MzIxNzZCQkU0RTcyMTdFRDU3NzJBQ0Ez REIwMDQyNzAeFw0yNjA0MjEwMjUwNTNaFw0yNzA0MjAwMjU1NTNaMDMxMTAvBgNV BAMTKENDNjFEOEVBNEU4RjRGQUM0RkM1RTAyNUU5N0IwNTJDMTVGMTI1RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkzchc0tC6V6f3R1pXMirysr5R oZojfVqCsGQpQdKEqmKq8tsP3l1hdgYwLUy/cAR66hpTih6BRxB0BSUW5BjeJrpu ojQu77tRSp/oqcCpTrWsz1M3dbOH+U5IIRndZ/Mcg+90M4KvXcEFQpdvnTta+bLD xxnfPsttALZLzYh7rvwqUf3WAmdbMaGTHx5+Vg4wkbzN8G6sVCIKBYFwtVKdB+py 41f6akKfXOJ9Ma/Zjgb+FImLdsm2Qdy7r3Z8h5sTi1aSK1EK8bK2PMWzeP23dx39 8wn1tm9CqmSjWPWrViWHIe28h2V1ZYnJuR4sxgsmQNEy1wribuJyIP8+rOBrAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUzGHY6k6PT6xPxeAl6XsFLBXxJfowHwYDVR0j BBgwFoAUuMFQNpMhdrvk5yF+1Xcqyj2wBCcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MDA1NTEyMTY5MDYyNi8wL0I4QzE1MDM2OTMyMTc2QkJFNEU3MjE3RUQ1Nzcy QUNBM0RCMDA0MjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjhDMTUwMzY5MzIxNzZCQkU0RTcyMTdFRDU3NzJBQ0EzREIwMDQyNy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODAwNTUxMjE2OTA2MjYvMC8zMTMwMzMyZTMy MzMzNDJlMzEzMzMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM2MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfqgzANBgkqhkiG9w0BAQsFAAOCAQEAk0/EzueIxGp2hsDEYEmd pkWwWN1DyNkfJ2kXouyUFQF0AM9k6lbdMTIuna4hW1SitDAnL+pTcVz3gaWrxfiA +48c9RwkjqX4b102SKIHzvw1VNCWtobznzV8r30FEd3bZGWfO+oTmNnNhNtxpWji m0RFujOCiN5uI2HPR6M7rO7evAG5FTadyBOynhPxGZ4qvs9iu5gP2MQHnnx649ee 4IGYzDF2sd/q8VAAQ0zEeTErusdP+X5yfmm2IYWHX38c/qkpLt69lppGVaJvDu5B b90EtZT0mHbzdD1H2PHf1hGdRazDUnUBosn18AoOYnNarKP5TAyRS6WLnFXahTXZ ag== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:04 2026 by rpki-client