$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217455107/0/3130332e3233362e38342e302f32322d3232203d3e20313334373638.roa File: 3130332e3233362e38342e302f32322d3232203d3e20313334373638.roa (raw, json) Hash identifier: 9SHqvVYPUbO3dLD+jTjW+imtI2Acr3G8QsyhyvTorsI= Subject key identifier: 03:2A:D6:A1:FE:ED:48:FA:F9:E7:A4:0F:E6:B4:37:89:44:A7:E0:3A Certificate issuer: /CN=C38BD0765C4FF987B70BD4790E738FA576EAAA15 Certificate serial: 672D51636E8A66567A7EAF09F9E8B7692805AEE1 Authority key identifier: C3:8B:D0:76:5C:4F:F9:87:B7:0B:D4:79:0E:73:8F:A5:76:EA:AA:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C38BD0765C4FF987B70BD4790E738FA576EAAA15.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/3130332e3233362e38342e302f32322d3232203d3e20313334373638.roa Signing time: Thu 09 Apr 2026 09:15:58 +0000 ROA not before: Thu 09 Apr 2026 09:10:58 +0000 ROA not after: Thu 08 Apr 2027 09:15:58 +0000 asID: 134768 IP address blocks: 103.236.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/C38BD0765C4FF987B70BD4790E738FA576EAAA15.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/C38BD0765C4FF987B70BD4790E738FA576EAAA15.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C38BD0765C4FF987B70BD4790E738FA576EAAA15.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 07:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2d:51:63:6e:8a:66:56:7a:7e:af:09:f9:e8:b7:69:28:05:ae:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C38BD0765C4FF987B70BD4790E738FA576EAAA15 Validity Not Before: Apr 9 09:10:58 2026 GMT Not After : Apr 8 09:15:58 2027 GMT Subject: CN=032AD6A1FEED48FAF9E7A40FE6B4378944A7E03A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ad:f5:e2:bf:56:b6:a6:5e:65:db:f3:92:51: 26:eb:b7:5a:46:a0:65:0b:c8:62:35:63:59:c9:c3: b2:25:91:cc:4e:b2:3c:b0:97:35:a8:3f:d9:a1:ef: c9:c4:95:b1:d6:ae:85:7a:6e:2c:62:d4:f2:b0:21: f3:f8:a0:df:fb:66:25:3e:6e:cf:be:09:dc:75:07: b0:b7:b2:78:ac:90:b7:a9:a9:af:c9:6a:73:12:b7: 5e:9e:c2:c0:0a:e9:68:db:d8:81:6e:1e:a6:98:16: 80:69:4a:ec:8f:fe:62:80:cc:13:36:3a:90:1a:78: f3:a5:d9:bb:64:25:03:ab:a0:3e:43:14:4c:f0:cf: 06:58:5e:0f:2b:7a:62:2a:8c:67:e9:e8:fe:35:a2: 54:b1:13:67:b3:dd:26:ea:c8:82:b9:e9:3e:71:55: d2:33:f4:23:ab:67:e9:2e:99:a0:5b:6b:16:18:a7: d2:5e:33:c0:45:65:55:85:cd:9f:65:a6:51:4b:25: 0a:90:e4:f3:fd:39:0a:38:16:01:7d:3a:1d:30:a0: b0:e2:53:df:47:e1:18:56:87:d0:10:6d:a9:d9:1a: 72:66:f2:17:71:44:4e:55:12:32:fd:93:27:11:3e: d7:d7:33:e2:48:b5:30:76:fe:9e:bf:43:18:c5:e9: 46:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:2A:D6:A1:FE:ED:48:FA:F9:E7:A4:0F:E6:B4:37:89:44:A7:E0:3A X509v3 Authority Key Identifier: keyid:C3:8B:D0:76:5C:4F:F9:87:B7:0B:D4:79:0E:73:8F:A5:76:EA:AA:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/C38BD0765C4FF987B70BD4790E738FA576EAAA15.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C38BD0765C4FF987B70BD4790E738FA576EAAA15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/3130332e3233362e38342e302f32322d3232203d3e20313334373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.84.0/22 Signature Algorithm: sha256WithRSAEncryption 41:05:86:03:fd:9f:06:a9:aa:36:5c:f1:27:c4:e2:bc:51:b2: 7d:ef:2d:ea:18:86:ba:19:f9:38:be:40:91:a2:36:12:2d:b3: 27:40:28:88:e6:69:e2:a3:e2:b1:e5:e0:b2:0d:24:b7:29:ec: 21:28:2a:f8:da:60:bc:b2:a6:97:95:e6:9d:64:b7:94:22:75: b0:9a:23:ec:02:72:c3:3f:ee:b2:6e:95:5d:86:88:29:a7:cc: 61:5b:33:95:d7:4a:9e:2e:a8:b9:f9:05:31:3c:2e:ab:c0:ea: 98:0c:0a:be:4a:39:c9:02:53:5b:99:9e:0e:31:c4:fb:06:9c: a6:4f:20:dc:dc:c6:cb:fa:83:00:a4:42:65:a9:ce:1c:eb:ac: 86:56:cc:3e:38:b2:11:40:5d:32:56:6c:4d:f6:fa:bf:f0:dc: 27:f5:44:26:8e:93:49:5e:c6:36:fe:9c:ed:30:31:e4:fc:19: 6f:82:b3:8a:cf:ce:df:01:24:55:9b:0a:19:48:54:e5:ba:7a: e9:75:f5:08:2c:17:a6:6b:00:6b:30:49:df:23:ed:5e:3f:f1: 25:71:f1:c9:e0:00:ea:a9:ad:3d:93:fa:d0:09:95:35:54:47: 35:32:a4:ca:d0:6d:8a:12:02:f8:cc:ff:f1:1b:d6:c5:89:c8: bc:c6:1d:5a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUZy1RY26KZlZ6fq8J+ei3aSgFruEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM4QkQwNzY1QzRGRjk4N0I3MEJENDc5MEU3MzhGQTU3 NkVBQUExNTAeFw0yNjA0MDkwOTEwNThaFw0yNzA0MDgwOTE1NThaMDMxMTAvBgNV BAMTKDAzMkFENkExRkVFRDQ4RkFGOUU3QTQwRkU2QjQzNzg5NDRBN0UwM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRrfXiv1a2pl5l2/OSUSbrt1pG oGULyGI1Y1nJw7IlkcxOsjywlzWoP9mh78nElbHWroV6bixi1PKwIfP4oN/7ZiU+ bs++Cdx1B7C3sniskLepqa/JanMSt16ewsAK6Wjb2IFuHqaYFoBpSuyP/mKAzBM2 OpAaePOl2btkJQOroD5DFEzwzwZYXg8remIqjGfp6P41olSxE2ez3SbqyIK56T5x VdIz9COrZ+kumaBbaxYYp9JeM8BFZVWFzZ9lplFLJQqQ5PP9OQo4FgF9Oh0woLDi U99H4RhWh9AQbanZGnJm8hdxRE5VEjL9kycRPtfXM+JItTB2/p6/QxjF6UZnAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUAyrWof7tSPr556QP5rQ3iUSn4DowHwYDVR0j BBgwFoAUw4vQdlxP+Ye3C9R5DnOPpXbqqhUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzQ1NTEwNy8wL0MzOEJEMDc2NUM0RkY5ODdCNzBCRDQ3OTBFNzM4 RkE1NzZFQUFBMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzM4QkQwNzY1QzRGRjk4N0I3MEJENDc5MEU3MzhGQTU3NkVBQUExNS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTc0NTUxMDcvMC8zMTMwMzMyZTMy MzMzNjJlMzgzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzNDM3MzYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfsVDANBgkqhkiG9w0BAQsFAAOCAQEAQQWGA/2fBqmqNlzxJ8Ti vFGyfe8t6hiGuhn5OL5AkaI2Ei2zJ0AoiOZp4qPiseXgsg0ktynsISgq+NpgvLKm l5XmnWS3lCJ1sJoj7AJywz/usm6VXYaIKafMYVszlddKni6oufkFMTwuq8DqmAwK vko5yQJTW5meDjHE+wacpk8g3NzGy/qDAKRCZanOHOushlbMPjiyEUBdMlZsTfb6 v/DcJ/VEJo6TSV7GNv6c7TAx5PwZb4Kzis/O3wEkVZsKGUhU5bp66XX1CCwXpmsA azBJ3yPtXj/xJXHxyeAA6qmtPZP60AmVNVRHNTKkytBtihIC+Mz/8RvWxYnIvMYd Wg== -----END CERTIFICATE-----Generated at Mon Apr 13 13:51:36 2026 by rpki-client