$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130302e302f32332d3233203d3e2034383136.roa File: 3130332e3231392e3130302e302f32332d3233203d3e2034383136.roa (raw, json) Hash identifier: IEEAMJ/et3yDLp0gz+24xRYvSyjwCAZnVUXAZLMMWZo= Subject key identifier: AD:F5:57:57:C1:17:EE:FD:A9:4B:BA:14:C5:43:60:35:99:1E:29:EA Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 3AFEAC795D7EF84547EB2C802042932BCA66A51F Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130302e302f32332d3233203d3e2034383136.roa Signing time: Thu 23 Apr 2026 02:07:36 +0000 ROA not before: Thu 23 Apr 2026 02:02:36 +0000 ROA not after: Thu 22 Apr 2027 02:07:36 +0000 asID: 4816 IP address blocks: 103.219.100.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 06:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fe:ac:79:5d:7e:f8:45:47:eb:2c:80:20:42:93:2b:ca:66:a5:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 23 02:02:36 2026 GMT Not After : Apr 22 02:07:36 2027 GMT Subject: CN=ADF55757C117EEFDA94BBA14C5436035991E29EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:98:4d:2e:15:18:d5:ec:70:11:ab:85:c1:3d: 57:a4:4d:ab:43:c1:00:5f:cb:20:fb:18:ba:9c:bb: ab:99:3a:70:2d:9d:f6:21:61:6c:bf:9a:99:da:71: 9d:ff:ec:be:4d:02:7c:96:52:80:ca:28:5a:1c:35: f2:cd:13:51:42:05:e6:6e:ef:2a:55:27:f5:18:68: 5d:fc:5c:67:06:b4:6d:7f:fd:91:54:8a:47:2c:fd: 20:83:f9:f0:f1:36:05:38:4f:d8:2d:4c:3c:d3:13: 9b:79:0a:0c:d7:05:c7:42:87:67:38:9e:34:b5:e5: 4a:30:a2:15:bf:22:a0:0d:e3:e6:d9:08:dd:6e:7c: a7:39:01:4c:0b:83:43:a8:32:6f:ca:a9:82:61:ec: a6:7b:d5:8e:f1:8d:73:c1:ca:5a:34:48:79:71:68: fe:a4:70:cb:5b:39:8c:0b:b9:5d:47:d2:f5:d0:ca: ce:9b:d0:22:f4:b1:83:60:dc:41:6f:f1:b8:5d:d1: e6:41:fe:2d:e4:de:c8:0e:c8:f1:0a:e6:95:8f:2e: 5b:b2:30:03:d5:09:e1:ac:f0:da:12:6b:dd:1c:bc: 11:35:70:97:0b:3a:ff:71:bd:c2:d1:d3:9e:34:45: 71:17:a6:b3:27:55:d4:d0:55:2c:36:2c:d5:67:10: 29:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F5:57:57:C1:17:EE:FD:A9:4B:BA:14:C5:43:60:35:99:1E:29:EA X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3130332e3231392e3130302e302f32332d3233203d3e2034383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.219.100.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:49:6b:37:96:9c:1a:bc:ab:f1:c2:2a:6f:d4:6e:d6:d2:e4: b1:f9:ce:c2:bc:ce:f6:d1:92:a6:36:e3:eb:6f:e2:88:2e:eb: 45:e4:63:23:e3:f7:1f:10:c7:c1:3a:69:04:bd:a3:82:9c:40: 8b:90:b7:45:db:73:73:f1:72:d4:ab:d1:47:53:0c:50:01:17: 9e:57:8e:75:05:5e:6d:b1:bd:36:e8:3c:2c:72:fb:0e:a0:7b: af:5c:07:c9:0a:06:09:13:2b:9c:6d:da:af:e4:b3:15:d3:fa: 4c:d5:0d:95:49:00:66:5d:f6:86:40:64:52:a5:8c:f2:eb:fb: 6d:be:0f:a1:77:47:a5:59:9b:64:27:96:f2:86:96:8a:4e:54: 83:f3:2a:d4:81:1d:0e:be:17:fc:a5:99:e8:72:8b:d0:2a:c6: bb:5b:29:79:30:91:bd:b9:f9:d5:b9:8c:ba:3d:ed:30:d1:3a: 59:48:b7:f1:a2:cd:fa:a7:8f:8f:0a:f9:f0:30:2a:92:c6:b5: 13:40:73:df:ef:c0:32:e9:41:c6:70:64:9d:2c:2b:3d:0e:c5: b6:9c:77:fc:2e:a0:6c:64:03:bb:ea:0d:df:be:a7:e3:7c:a2: be:c7:08:5a:59:e8:b4:a3:db:9e:fb:f7:7b:de:8c:65:ae:33: b8:26:fa:a1 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOv6seV1++EVH6yyAIEKTK8pmpR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjMwMjAyMzZaFw0yNzA0MjIwMjA3MzZaMDMxMTAvBgNV BAMTKEFERjU1NzU3QzExN0VFRkRBOTRCQkExNEM1NDM2MDM1OTkxRTI5RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChmE0uFRjV7HARq4XBPVekTatD wQBfyyD7GLqcu6uZOnAtnfYhYWy/mpnacZ3/7L5NAnyWUoDKKFocNfLNE1FCBeZu 7ypVJ/UYaF38XGcGtG1//ZFUikcs/SCD+fDxNgU4T9gtTDzTE5t5CgzXBcdCh2c4 njS15UowohW/IqAN4+bZCN1ufKc5AUwLg0OoMm/KqYJh7KZ71Y7xjXPBylo0SHlx aP6kcMtbOYwLuV1H0vXQys6b0CL0sYNg3EFv8bhd0eZB/i3k3sgOyPEK5pWPLluy MAPVCeGs8NoSa90cvBE1cJcLOv9xvcLR0540RXEXprMnVdTQVSw2LNVnECmjAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUrfVXV8EX7v2pS7oUxUNgNZkeKeowHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4NTM4OTI2NTQyMDI4OS8wLzMxMzAzMzJlMzIz MTM5MmUzMTMwMzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzEzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWfbZDANBgkqhkiG9w0BAQsFAAOCAQEAL0lrN5acGryr8cIqb9Ru1tLk sfnOwrzO9tGSpjbj62/iiC7rReRjI+P3HxDHwTppBL2jgpxAi5C3Rdtzc/Fy1KvR R1MMUAEXnleOdQVebbG9Nug8LHL7DqB7r1wHyQoGCRMrnG3ar+SzFdP6TNUNlUkA Zl32hkBkUqWM8uv7bb4PoXdHpVmbZCeW8oaWik5Ug/Mq1IEdDr4X/KWZ6HKL0CrG u1speTCRvbn51bmMuj3tMNE6WUi38aLN+qePjwr58DAqksa1E0Bz3+/AMulBxnBk nSwrPQ7Ftpx3/C6gbGQDu+oN376n43yivscIWlnotKPbnvv3e96MZa4zuCb6oQ== -----END CERTIFICATE-----Generated at Mon Apr 27 13:50:48 2026 by rpki-client