$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577269250/0/3130332e38382e33322e302f32322d3332203d3e203536303431.roa File: 3130332e38382e33322e302f32322d3332203d3e203536303431.roa (raw, json) Hash identifier: LZt3ftbf5G9yhtS00ZJvPGtPMnxv5PFu1Xk9iH95A4o= Subject key identifier: 43:F8:2B:B5:F0:B2:D6:CE:4A:F9:D5:8F:0E:4E:21:4C:B4:80:9F:23 Certificate issuer: /CN=0A37AC88E303F4BB834C180B06F250ADE69700BF Certificate serial: 2C1EEE88872B42F8DD33952FFEE377BD0B096671 Authority key identifier: 0A:37:AC:88:E3:03:F4:BB:83:4C:18:0B:06:F2:50:AD:E6:97:00:BF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0A37AC88E303F4BB834C180B06F250ADE69700BF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577269250/0/3130332e38382e33322e302f32322d3332203d3e203536303431.roa Signing time: Tue 21 Apr 2026 16:17:45 +0000 ROA not before: Tue 21 Apr 2026 16:12:45 +0000 ROA not after: Tue 20 Apr 2027 16:17:45 +0000 asID: 56041 IP address blocks: 103.88.32.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577269250/0/0A37AC88E303F4BB834C180B06F250ADE69700BF.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577269250/0/0A37AC88E303F4BB834C180B06F250ADE69700BF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0A37AC88E303F4BB834C180B06F250ADE69700BF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 03:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:1e:ee:88:87:2b:42:f8:dd:33:95:2f:fe:e3:77:bd:0b:09:66:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A37AC88E303F4BB834C180B06F250ADE69700BF Validity Not Before: Apr 21 16:12:45 2026 GMT Not After : Apr 20 16:17:45 2027 GMT Subject: CN=43F82BB5F0B2D6CE4AF9D58F0E4E214CB4809F23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:76:59:0f:5b:cf:87:ad:5e:20:28:4e:1f:10: 0c:6b:be:75:de:ef:2b:9c:92:64:2b:98:ab:3c:07: 11:63:25:6c:1c:6a:f9:b4:88:e7:3d:fa:85:40:43: 65:27:0d:33:4c:75:67:54:e4:eb:e6:d2:b2:85:34: 37:69:cd:77:b6:d8:c6:3c:b4:73:7e:67:4a:e1:41: 2c:5f:7d:24:59:6c:6a:e7:a4:50:ee:81:f1:f3:eb: 59:e0:73:cb:eb:e0:d5:40:2d:d3:8d:ca:b1:c6:0c: a8:fa:75:bc:51:09:7d:c0:56:2b:33:1d:74:fd:5d: 2e:f0:3e:fa:cf:fc:9e:56:cf:fe:06:bb:66:48:1a: bd:37:21:83:52:28:e2:3c:c7:13:44:fa:4d:95:d5: 0d:cb:64:4e:f5:ae:52:65:32:82:60:f4:9f:29:e6: 18:cb:de:46:48:16:df:de:56:8f:ac:3b:df:ce:da: f8:b3:a3:2d:8a:8b:7a:7e:dd:5b:e4:0a:ae:76:57: 9f:a4:20:c9:c7:6d:b1:68:49:f9:a8:22:8a:84:13: 5c:42:22:c0:c5:91:8f:e6:02:7b:3d:e7:bb:8b:5a: 4e:5c:a0:dc:88:7f:94:35:fb:dd:ad:32:fb:58:2d: 6f:5d:83:62:af:b7:f9:e1:ef:b5:4d:ce:46:d7:39: ff:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F8:2B:B5:F0:B2:D6:CE:4A:F9:D5:8F:0E:4E:21:4C:B4:80:9F:23 X509v3 Authority Key Identifier: keyid:0A:37:AC:88:E3:03:F4:BB:83:4C:18:0B:06:F2:50:AD:E6:97:00:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577269250/0/0A37AC88E303F4BB834C180B06F250ADE69700BF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0A37AC88E303F4BB834C180B06F250ADE69700BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577269250/0/3130332e38382e33322e302f32322d3332203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.88.32.0/22 Signature Algorithm: sha256WithRSAEncryption 98:25:29:bf:a9:7a:61:20:c3:29:bc:75:6b:ce:c1:34:40:96: fd:c4:48:7a:77:af:4c:5f:ac:0c:37:83:86:16:3d:ca:44:3a: c7:0c:bb:63:8f:f9:3f:5d:3b:f7:d6:13:e0:23:af:b5:7e:4b: a5:a8:3b:b3:2f:5f:6c:39:ce:23:e6:c3:fb:7b:0d:58:e2:ea: d1:09:34:fa:dc:5b:bf:29:d2:85:ff:ef:bd:37:26:76:1b:dd: 69:df:ab:94:fa:d5:8f:f4:4c:7e:22:36:c1:1d:59:f2:ea:b5: a7:bd:bf:e5:60:81:c7:60:2f:3b:2b:d2:d5:08:8e:43:13:42: c8:37:35:29:ca:32:ff:b4:8a:8a:f8:e4:6f:a1:62:16:4e:ce: 5e:76:11:46:fb:e2:32:31:32:37:cb:08:33:d3:e2:a5:5b:13: 29:3a:a1:be:9a:58:b5:a4:63:51:d0:e2:1e:3a:3d:7e:39:60: 1d:72:32:ed:0f:cc:2b:4b:1f:f8:b9:b5:dc:9d:25:32:85:a9: 18:9f:75:c6:4b:6e:fa:6c:21:83:6a:1b:f4:95:e6:60:5b:08: 15:4d:90:65:be:aa:80:80:4e:01:f5:32:c2:a3:25:be:f0:69: 99:dc:18:a6:67:38:17:0d:b8:04:72:40:e4:5a:71:23:e2:6d: 3c:70:34:27 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIULB7uiIcrQvjdM5Uv/uN3vQsJZnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEEzN0FDODhFMzAzRjRCQjgzNEMxODBCMDZGMjUwQURF Njk3MDBCRjAeFw0yNjA0MjExNjEyNDVaFw0yNzA0MjAxNjE3NDVaMDMxMTAvBgNV BAMTKDQzRjgyQkI1RjBCMkQ2Q0U0QUY5RDU4RjBFNEUyMTRDQjQ4MDlGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGdlkPW8+HrV4gKE4fEAxrvnXe 7yuckmQrmKs8BxFjJWwcavm0iOc9+oVAQ2UnDTNMdWdU5Ovm0rKFNDdpzXe22MY8 tHN+Z0rhQSxffSRZbGrnpFDugfHz61ngc8vr4NVALdONyrHGDKj6dbxRCX3AVisz HXT9XS7wPvrP/J5Wz/4Gu2ZIGr03IYNSKOI8xxNE+k2V1Q3LZE71rlJlMoJg9J8p 5hjL3kZIFt/eVo+sO9/O2vizoy2Ki3p+3VvkCq52V5+kIMnHbbFoSfmoIoqEE1xC IsDFkY/mAns957uLWk5coNyIf5Q1+92tMvtYLW9dg2Kvt/nh77VNzkbXOf8XAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUQ/grtfCy1s5K+dWPDk4hTLSAnyMwHwYDVR0j BBgwFoAUCjesiOMD9LuDTBgLBvJQreaXAL8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3NzI2OTI1MC8wLzBBMzdBQzg4RTMwM0Y0QkI4MzRDMTgwQjA2RjI1 MEFERTY5NzAwQkYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEEzN0FDODhFMzAzRjRCQjgzNEMxODBCMDZGMjUwQURFNjk3MDBCRi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyNzQxNTc3MjY5MjUwLzAvMzEzMDMzMmUzODM4 MmUzMzMyMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzUzNjMwMzQzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdYIDANBgkqhkiG9w0BAQsFAAOCAQEAmCUpv6l6YSDDKbx1a87BNECW/cRI enevTF+sDDeDhhY9ykQ6xwy7Y4/5P10799YT4COvtX5Lpag7sy9fbDnOI+bD+3sN WOLq0Qk0+txbvynShf/vvTcmdhvdad+rlPrVj/RMfiI2wR1Z8uq1p72/5WCBx2Av OyvS1QiOQxNCyDc1Kcoy/7SKivjkb6FiFk7OXnYRRvviMjEyN8sIM9PipVsTKTqh vppYtaRjUdDiHjo9fjlgHXIy7Q/MK0sf+Lm13J0lMoWpGJ91xktu+mwhg2ob9JXm YFsIFU2QZb6qgIBOAfUywqMlvvBpmdwYpmc4Fw24BHJA5FpxI+JtPHA0Jw== -----END CERTIFICATE-----Generated at Mon Apr 27 20:39:12 2026 by rpki-client