$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330347126785/0/3130332e3131362e3132302e302f32322d3232203d3e203633363534.roa File: 3130332e3131362e3132302e302f32322d3232203d3e203633363534.roa (raw, json) Hash identifier: fLgddK5a5pen10EIOArIO5eS1Bvv0lSS9vSM6d0T0bw= Subject key identifier: 26:E3:9D:C1:24:91:47:E8:A5:2E:F2:33:F2:F4:2D:A1:6F:E4:ED:DA Certificate issuer: /CN=191E76D74421148B42FA2A7F663270AE7FAD25F9 Certificate serial: 5FE6EEA6F90A9FF480D6D2F3C8367AF03CF7EBEF Authority key identifier: 19:1E:76:D7:44:21:14:8B:42:FA:2A:7F:66:32:70:AE:7F:AD:25:F9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/191E76D74421148B42FA2A7F663270AE7FAD25F9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/3130332e3131362e3132302e302f32322d3232203d3e203633363534.roa Signing time: Mon 27 Apr 2026 01:25:15 +0000 ROA not before: Mon 27 Apr 2026 01:20:15 +0000 ROA not after: Mon 26 Apr 2027 01:25:15 +0000 asID: 63654 IP address blocks: 103.116.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/191E76D74421148B42FA2A7F663270AE7FAD25F9.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/191E76D74421148B42FA2A7F663270AE7FAD25F9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/191E76D74421148B42FA2A7F663270AE7FAD25F9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 11:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e6:ee:a6:f9:0a:9f:f4:80:d6:d2:f3:c8:36:7a:f0:3c:f7:eb:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=191E76D74421148B42FA2A7F663270AE7FAD25F9 Validity Not Before: Apr 27 01:20:15 2026 GMT Not After : Apr 26 01:25:15 2027 GMT Subject: CN=26E39DC1249147E8A52EF233F2F42DA16FE4EDDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d1:3b:4e:50:c5:82:d0:4d:50:22:c0:6b:48: 67:e9:e7:91:f6:73:4e:93:12:f0:e7:9c:8d:c4:78: e9:47:3d:db:a1:d1:5c:dc:8c:ed:71:64:34:12:4e: a2:93:67:de:80:ef:13:02:39:f9:8a:69:07:a8:aa: 50:e9:2d:c9:7d:18:e1:cd:fa:49:57:06:25:c1:51: 89:d2:92:ca:31:32:83:cb:b5:49:06:b9:78:16:c5: de:78:9a:37:c0:40:d4:07:88:ed:51:cb:82:bb:19: ef:a0:ec:6f:86:7b:cc:76:4f:00:db:d8:b0:33:cf: d2:3d:2c:a3:89:3c:cb:58:d6:d2:22:8e:66:20:b5: 98:e4:85:06:a0:e0:fa:da:21:b5:63:38:7f:03:26: 10:7c:f1:38:96:a1:85:b8:65:56:0d:c9:46:89:70: e2:63:32:d1:a4:d1:73:d2:e2:91:eb:37:39:5f:47: 03:da:8c:77:f9:3e:b6:a7:d5:c4:31:11:45:26:eb: ea:20:9f:4c:26:2a:73:f0:63:07:f1:2f:11:6e:7c: ba:8d:c0:7b:53:57:30:8e:a6:64:bc:27:9e:26:13: 8e:ba:e3:ab:a8:b3:01:2a:33:1a:8e:eb:b4:29:8d: 17:f0:ee:8c:67:dd:f4:d4:a2:b1:b1:52:9d:61:d8: 35:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E3:9D:C1:24:91:47:E8:A5:2E:F2:33:F2:F4:2D:A1:6F:E4:ED:DA X509v3 Authority Key Identifier: keyid:19:1E:76:D7:44:21:14:8B:42:FA:2A:7F:66:32:70:AE:7F:AD:25:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/191E76D74421148B42FA2A7F663270AE7FAD25F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/191E76D74421148B42FA2A7F663270AE7FAD25F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/3130332e3131362e3132302e302f32322d3232203d3e203633363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.120.0/22 Signature Algorithm: sha256WithRSAEncryption 08:9c:19:d9:89:f7:7c:bb:c8:d9:86:cd:9b:2f:bc:01:4b:4b: 36:95:b3:08:b1:d0:00:01:21:5a:d7:e5:35:df:ba:68:b5:46: cc:c7:75:f1:b7:4b:71:9b:18:f7:bb:7e:96:60:95:62:a8:4f: 58:f9:2f:14:ba:48:ce:db:4a:c7:e6:82:de:50:fb:95:9c:04: ee:d5:83:45:4c:f6:09:88:a2:3e:6e:c7:6a:e0:4c:8b:af:1b: c4:d3:fa:d7:9b:a9:98:95:2f:22:9a:7b:ab:ed:0d:c8:5d:a3: 37:c5:a5:91:b0:7b:69:dc:30:2a:15:b8:d5:e9:2f:af:93:c2: 0f:95:4f:74:be:30:09:95:c2:2b:5b:f7:b0:a3:b5:d3:ed:03: f1:62:ec:80:78:11:54:dd:08:c6:80:c5:46:f9:16:ae:35:88: 11:b3:a1:0e:90:29:d2:0c:6f:65:fd:7d:a3:aa:45:be:31:66: 9c:13:aa:3f:e9:65:a5:98:e1:b0:01:dd:03:5b:ff:a1:1d:0c: ba:ea:cc:9f:5a:f0:e7:15:df:f0:ec:d2:5e:24:93:77:1e:41: 79:a9:c0:ac:86:c6:43:40:09:31:2a:b0:31:fc:4a:da:8e:41: c6:0b:6d:87:e8:94:7e:88:6b:7a:da:4a:d8:77:e1:7b:05:f4: 36:4b:7a:f7 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUX+bupvkKn/SA1tLzyDZ68Dz36+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkxRTc2RDc0NDIxMTQ4QjQyRkEyQTdGNjYzMjcwQUU3 RkFEMjVGOTAeFw0yNjA0MjcwMTIwMTVaFw0yNzA0MjYwMTI1MTVaMDMxMTAvBgNV BAMTKDI2RTM5REMxMjQ5MTQ3RThBNTJFRjIzM0YyRjQyREExNkZFNEVEREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC0TtOUMWC0E1QIsBrSGfp55H2 c06TEvDnnI3EeOlHPduh0VzcjO1xZDQSTqKTZ96A7xMCOfmKaQeoqlDpLcl9GOHN +klXBiXBUYnSksoxMoPLtUkGuXgWxd54mjfAQNQHiO1Ry4K7Ge+g7G+Ge8x2TwDb 2LAzz9I9LKOJPMtY1tIijmYgtZjkhQag4PraIbVjOH8DJhB88TiWoYW4ZVYNyUaJ cOJjMtGk0XPS4pHrNzlfRwPajHf5Pran1cQxEUUm6+ogn0wmKnPwYwfxLxFufLqN wHtTVzCOpmS8J54mE46646uoswEqMxqO67QpjRfw7oxn3fTUorGxUp1h2DWvAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUJuOdwSSRR+ilLvIz8vQtoW/k7dowHwYDVR0j BBgwFoAUGR5210QhFItC+ip/ZjJwrn+tJfkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0NzEyNjc4NS8wLzE5MUU3NkQ3NDQyMTE0OEI0MkZBMkE3RjY2MzI3 MEFFN0ZBRDI1RjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTkxRTc2RDc0NDIxMTQ4QjQyRkEyQTdGNjYzMjcwQUU3RkFEMjVGOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDcxMjY3ODUvMC8zMTMwMzMyZTMx MzEzNjJlMzEzMjMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzUzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmd0eDANBgkqhkiG9w0BAQsFAAOCAQEACJwZ2Yn3fLvI2YbNmy+8 AUtLNpWzCLHQAAEhWtflNd+6aLVGzMd18bdLcZsY97t+lmCVYqhPWPkvFLpIzttK x+aC3lD7lZwE7tWDRUz2CYiiPm7HauBMi68bxNP615upmJUvIpp7q+0NyF2jN8Wl kbB7adwwKhW41ekvr5PCD5VPdL4wCZXCK1v3sKO10+0D8WLsgHgRVN0IxoDFRvkW rjWIEbOhDpAp0gxvZf19o6pFvjFmnBOqP+llpZjhsAHdA1v/oR0MuurMn1rw5xXf 8OzSXiSTdx5BeanArIbGQ0AJMSqwMfxK2o5Bxgtth+iUfohretpK2HfhewX0Nkt6 9w== -----END CERTIFICATE-----Generated at Mon Apr 27 20:38:23 2026 by rpki-client