$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330347126785/0/3130332e3131362e3132312e302f32342d3234203d3e203633363534.roa File: 3130332e3131362e3132312e302f32342d3234203d3e203633363534.roa (raw, json) Hash identifier: vpD7NEE8qzM+eWphvno3vCArBIi9VdE9XjhBRn48b6k= Subject key identifier: 85:7D:C0:6E:E8:99:F1:47:21:1A:6B:C3:8A:D3:73:18:07:4A:30:42 Certificate issuer: /CN=191E76D74421148B42FA2A7F663270AE7FAD25F9 Certificate serial: 24D323AFB634F37C726DC90FD184F7F64714BC86 Authority key identifier: 19:1E:76:D7:44:21:14:8B:42:FA:2A:7F:66:32:70:AE:7F:AD:25:F9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/191E76D74421148B42FA2A7F663270AE7FAD25F9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/3130332e3131362e3132312e302f32342d3234203d3e203633363534.roa Signing time: Mon 27 Apr 2026 01:23:32 +0000 ROA not before: Mon 27 Apr 2026 01:18:32 +0000 ROA not after: Mon 26 Apr 2027 01:23:32 +0000 asID: 63654 IP address blocks: 103.116.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/191E76D74421148B42FA2A7F663270AE7FAD25F9.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/191E76D74421148B42FA2A7F663270AE7FAD25F9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/191E76D74421148B42FA2A7F663270AE7FAD25F9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 11:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:d3:23:af:b6:34:f3:7c:72:6d:c9:0f:d1:84:f7:f6:47:14:bc:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=191E76D74421148B42FA2A7F663270AE7FAD25F9 Validity Not Before: Apr 27 01:18:32 2026 GMT Not After : Apr 26 01:23:32 2027 GMT Subject: CN=857DC06EE899F147211A6BC38AD37318074A3042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ad:d0:06:c4:2f:72:92:2d:c9:02:0d:24:6c: e3:00:76:11:66:c2:56:ca:67:5e:45:20:c1:6e:b7: 48:fe:4b:b0:a9:72:a4:eb:ce:01:fc:3a:31:fc:fa: 29:48:13:bb:48:46:f4:18:79:8e:68:8e:db:c2:5d: 50:c7:ad:ae:9d:17:b0:26:aa:87:3f:69:07:3d:18: 4e:62:3f:2f:01:08:d1:c3:49:c8:41:ff:b2:b6:09: 25:69:a1:7a:17:df:01:47:3b:a4:12:89:c2:46:51: 21:da:a8:f1:65:77:28:e8:c2:a0:0f:21:73:8c:c5: 1a:38:a7:1b:9e:2b:87:da:7d:1b:e6:30:c2:4f:d7: 36:ce:82:c8:e7:7b:da:57:88:61:f7:95:98:4d:74: fd:3d:4c:71:a1:52:73:f6:8a:6a:88:24:78:6e:89: 91:91:4f:77:c0:58:9d:48:31:70:06:f0:01:4e:91: ee:b4:c2:fa:37:d8:7c:dd:06:e3:c8:a7:42:15:42: 04:49:5a:f0:83:97:6c:1c:ce:d3:9e:d9:5e:52:f8: 48:dc:73:ce:b2:ff:81:4b:83:41:e6:c1:0c:90:93: 39:0f:dd:e3:b4:5a:f2:9e:4b:71:19:83:bb:58:ff: ba:11:66:75:a0:95:69:90:74:ab:4b:c0:8d:c6:0c: 19:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7D:C0:6E:E8:99:F1:47:21:1A:6B:C3:8A:D3:73:18:07:4A:30:42 X509v3 Authority Key Identifier: keyid:19:1E:76:D7:44:21:14:8B:42:FA:2A:7F:66:32:70:AE:7F:AD:25:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/191E76D74421148B42FA2A7F663270AE7FAD25F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/191E76D74421148B42FA2A7F663270AE7FAD25F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330347126785/0/3130332e3131362e3132312e302f32342d3234203d3e203633363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.121.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:f4:4c:81:28:f0:56:d9:88:c5:41:aa:95:ab:b2:68:7d:70: 9c:5a:bc:98:8e:47:13:5b:21:54:c3:f1:09:09:5a:55:8a:9a: 47:26:0a:28:0d:07:8e:96:02:33:f4:0e:b7:21:7b:cb:7b:dd: 61:2e:8c:7c:68:53:74:f2:6d:e0:f4:04:b0:f1:6b:30:c1:2d: 5a:8f:5d:7c:bd:34:f4:06:48:f2:72:e7:4a:8f:10:95:e3:1d: 61:90:17:c1:bd:05:99:37:93:a1:14:39:f5:18:fa:c7:17:71: 78:b5:b4:84:32:0a:2a:ce:3c:1a:91:22:2f:a3:f9:7d:70:93: 82:13:ce:35:43:0d:28:a4:7b:9a:fc:19:26:15:cc:5f:b8:7b: 88:f8:cb:45:70:be:1f:8c:dc:f0:0e:87:41:28:2b:02:96:b2: 9b:83:8c:38:b8:66:c8:ee:91:4b:50:ed:63:51:f2:04:88:2b: f1:48:16:51:0e:53:0e:19:90:e4:37:f1:a0:b3:90:c8:5a:c1: b7:3a:23:d0:9f:58:6f:6b:ea:c7:33:39:9d:4e:78:a4:fe:c4: 19:6b:fd:28:3f:74:f3:aa:4a:56:f4:25:0c:13:b8:5f:71:1f: 94:8f:79:a2:39:5f:aa:b1:52:5a:49:b2:18:d7:00:1c:37:05: 96:2d:ec:67 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJNMjr7Y083xybckP0YT39kcUvIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkxRTc2RDc0NDIxMTQ4QjQyRkEyQTdGNjYzMjcwQUU3 RkFEMjVGOTAeFw0yNjA0MjcwMTE4MzJaFw0yNzA0MjYwMTIzMzJaMDMxMTAvBgNV BAMTKDg1N0RDMDZFRTg5OUYxNDcyMTFBNkJDMzhBRDM3MzE4MDc0QTMwNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjrdAGxC9yki3JAg0kbOMAdhFm wlbKZ15FIMFut0j+S7CpcqTrzgH8OjH8+ilIE7tIRvQYeY5ojtvCXVDHra6dF7Am qoc/aQc9GE5iPy8BCNHDSchB/7K2CSVpoXoX3wFHO6QSicJGUSHaqPFldyjowqAP IXOMxRo4pxueK4fafRvmMMJP1zbOgsjne9pXiGH3lZhNdP09THGhUnP2imqIJHhu iZGRT3fAWJ1IMXAG8AFOke60wvo32HzdBuPIp0IVQgRJWvCDl2wcztOe2V5S+Ejc c86y/4FLg0HmwQyQkzkP3eO0WvKeS3EZg7tY/7oRZnWglWmQdKtLwI3GDBklAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUhX3AbuiZ8UchGmvDitNzGAdKMEIwHwYDVR0j BBgwFoAUGR5210QhFItC+ip/ZjJwrn+tJfkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0NzEyNjc4NS8wLzE5MUU3NkQ3NDQyMTE0OEI0MkZBMkE3RjY2MzI3 MEFFN0ZBRDI1RjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTkxRTc2RDc0NDIxMTQ4QjQyRkEyQTdGNjYzMjcwQUU3RkFEMjVGOS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODIzMzAzNDcxMjY3ODUvMC8zMTMwMzMyZTMx MzEzNjJlMzEzMjMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzUzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGd0eTANBgkqhkiG9w0BAQsFAAOCAQEAbvRMgSjwVtmIxUGqlauy aH1wnFq8mI5HE1shVMPxCQlaVYqaRyYKKA0HjpYCM/QOtyF7y3vdYS6MfGhTdPJt 4PQEsPFrMMEtWo9dfL009AZI8nLnSo8QleMdYZAXwb0FmTeToRQ59Rj6xxdxeLW0 hDIKKs48GpEiL6P5fXCTghPONUMNKKR7mvwZJhXMX7h7iPjLRXC+H4zc8A6HQSgr Apaym4OMOLhmyO6RS1DtY1HyBIgr8UgWUQ5TDhmQ5DfxoLOQyFrBtzoj0J9Yb2vq xzM5nU54pP7EGWv9KD9086pKVvQlDBO4X3EflI95ojlfqrFSWkmyGNcAHDcFli3s Zw== -----END CERTIFICATE-----Generated at Mon Apr 27 20:38:21 2026 by rpki-client