$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217455107/0/3130332e3233362e38382e302f32322d3232203d3e20313334373638.roa File: 3130332e3233362e38382e302f32322d3232203d3e20313334373638.roa (raw, json) Hash identifier: HmKTEynkwJNY27vtlMK52XNhpOmzam9n76ECrzYLsdU= Subject key identifier: E8:68:7B:F6:23:DD:FA:47:70:F8:D1:43:F0:CA:0D:C9:24:7A:47:DD Certificate issuer: /CN=C38BD0765C4FF987B70BD4790E738FA576EAAA15 Certificate serial: 15A00D44BD17D5F8A32598B211482FE5B896EF38 Authority key identifier: C3:8B:D0:76:5C:4F:F9:87:B7:0B:D4:79:0E:73:8F:A5:76:EA:AA:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C38BD0765C4FF987B70BD4790E738FA576EAAA15.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/3130332e3233362e38382e302f32322d3232203d3e20313334373638.roa Signing time: Thu 09 Apr 2026 09:15:57 +0000 ROA not before: Thu 09 Apr 2026 09:10:57 +0000 ROA not after: Thu 08 Apr 2027 09:15:57 +0000 asID: 134768 IP address blocks: 103.236.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/C38BD0765C4FF987B70BD4790E738FA576EAAA15.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/C38BD0765C4FF987B70BD4790E738FA576EAAA15.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C38BD0765C4FF987B70BD4790E738FA576EAAA15.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 07:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a0:0d:44:bd:17:d5:f8:a3:25:98:b2:11:48:2f:e5:b8:96:ef:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C38BD0765C4FF987B70BD4790E738FA576EAAA15 Validity Not Before: Apr 9 09:10:57 2026 GMT Not After : Apr 8 09:15:57 2027 GMT Subject: CN=E8687BF623DDFA4770F8D143F0CA0DC9247A47DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d9:2a:9d:93:09:d8:bd:53:56:fb:aa:9a:52: 81:17:ce:ff:2d:7e:fb:9f:4f:f3:60:85:96:d0:ae: 1e:e9:1a:ec:24:aa:47:93:66:6d:73:99:11:19:bf: 48:a1:9f:10:f4:97:dc:81:38:2c:19:c2:45:e0:3e: fe:e5:7d:9d:ae:5b:34:2d:9d:a3:17:f1:f4:3c:c8: 79:b0:a2:45:43:ea:f5:dc:a9:1a:13:f6:f0:b5:62: 09:e0:57:02:7b:21:54:11:a4:5a:d1:55:54:66:6e: 1b:df:a7:33:44:38:04:0b:c8:64:fa:de:68:8b:9f: 80:65:41:ef:ea:c3:42:58:48:20:64:85:1d:af:74: 9a:31:80:cc:a6:b7:07:fe:12:a5:22:57:ff:43:bb: b6:89:e4:51:d2:46:60:76:19:7b:21:cf:51:82:ec: 37:07:25:86:b4:32:6d:fd:00:76:08:20:26:5c:fe: 86:51:ed:c4:6f:83:1d:ce:79:a8:2c:52:2f:a1:81: 3c:dc:0e:93:d6:2d:f3:ec:dc:7d:e4:c4:0f:6a:15: a4:63:35:65:17:a2:67:16:43:24:e6:87:7f:b5:c2: b3:a0:95:c7:08:d6:c0:5f:86:ec:10:23:f7:aa:6c: 71:28:7d:7d:b8:51:13:48:9c:ec:58:48:aa:8d:e5: 5f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:68:7B:F6:23:DD:FA:47:70:F8:D1:43:F0:CA:0D:C9:24:7A:47:DD X509v3 Authority Key Identifier: keyid:C3:8B:D0:76:5C:4F:F9:87:B7:0B:D4:79:0E:73:8F:A5:76:EA:AA:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/C38BD0765C4FF987B70BD4790E738FA576EAAA15.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C38BD0765C4FF987B70BD4790E738FA576EAAA15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217455107/0/3130332e3233362e38382e302f32322d3232203d3e20313334373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.236.88.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:49:43:ce:af:1b:82:c7:04:f3:f0:6b:01:ac:4a:56:22:b6: 0f:5c:90:4c:e0:db:5e:d1:17:f7:fc:7b:dc:14:09:0f:e8:58: 44:7d:b5:fa:b1:21:95:ae:72:ab:a2:1a:e7:57:a0:8e:9e:6c: 0e:60:ed:7d:31:d5:a0:36:b3:0e:3c:3e:47:a3:25:d3:3d:a0: 00:20:f9:fb:a1:14:e3:41:fc:a6:04:04:be:a6:66:58:89:74: 8e:ba:97:b6:f2:40:a2:89:23:09:62:8f:78:9d:a5:63:f4:c2: e9:b2:c6:e7:3a:61:a5:95:03:1c:fe:08:86:ec:84:19:d1:e5: ad:fc:70:0b:1a:7e:b1:ca:c6:b8:54:8e:f0:58:ce:b0:bd:80: f7:f5:e5:9f:ed:0c:3f:2d:20:30:f5:16:cf:52:fb:24:a3:da: 3b:f3:58:95:2d:a4:1b:f7:b0:a7:57:91:4f:6b:aa:da:15:7e: 71:3d:54:3f:ba:75:b2:d1:85:c7:d6:67:73:44:65:f7:b8:d7: d6:fb:87:37:62:ec:75:5d:84:fd:61:8c:24:b1:f8:3a:c4:c7: bc:d5:52:b7:3f:c3:90:88:d0:ac:c2:c2:4c:de:5e:18:39:67: 71:d4:0c:bb:b6:0f:3d:b7:cb:64:83:9c:40:12:51:b6:34:3f: c4:07:2b:18 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFaANRL0X1fijJZiyEUgv5biW7zgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM4QkQwNzY1QzRGRjk4N0I3MEJENDc5MEU3MzhGQTU3 NkVBQUExNTAeFw0yNjA0MDkwOTEwNTdaFw0yNzA0MDgwOTE1NTdaMDMxMTAvBgNV BAMTKEU4Njg3QkY2MjNEREZBNDc3MEY4RDE0M0YwQ0EwREM5MjQ3QTQ3REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB2SqdkwnYvVNW+6qaUoEXzv8t fvufT/NghZbQrh7pGuwkqkeTZm1zmREZv0ihnxD0l9yBOCwZwkXgPv7lfZ2uWzQt naMX8fQ8yHmwokVD6vXcqRoT9vC1YgngVwJ7IVQRpFrRVVRmbhvfpzNEOAQLyGT6 3miLn4BlQe/qw0JYSCBkhR2vdJoxgMymtwf+EqUiV/9Du7aJ5FHSRmB2GXshz1GC 7DcHJYa0Mm39AHYIICZc/oZR7cRvgx3OeagsUi+hgTzcDpPWLfPs3H3kxA9qFaRj NWUXomcWQyTmh3+1wrOglccI1sBfhuwQI/eqbHEofX24URNInOxYSKqN5V+pAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU6Gh79iPd+kdw+NFD8MoNySR6R90wHwYDVR0j BBgwFoAUw4vQdlxP+Ye3C9R5DnOPpXbqqhUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzQ1NTEwNy8wL0MzOEJEMDc2NUM0RkY5ODdCNzBCRDQ3OTBFNzM4 RkE1NzZFQUFBMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzM4QkQwNzY1QzRGRjk4N0I3MEJENDc5MEU3MzhGQTU3NkVBQUExNS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODU5MTEyMTc0NTUxMDcvMC8zMTMwMzMyZTMy MzMzNjJlMzgzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzNDM3MzYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfsWDANBgkqhkiG9w0BAQsFAAOCAQEALklDzq8bgscE8/BrAaxK ViK2D1yQTODbXtEX9/x73BQJD+hYRH21+rEhla5yq6Ia51egjp5sDmDtfTHVoDaz Djw+R6Ml0z2gACD5+6EU40H8pgQEvqZmWIl0jrqXtvJAookjCWKPeJ2lY/TC6bLG 5zphpZUDHP4IhuyEGdHlrfxwCxp+scrGuFSO8FjOsL2A9/Xln+0MPy0gMPUWz1L7 JKPaO/NYlS2kG/ewp1eRT2uq2hV+cT1UP7p1stGFx9Znc0Rl97jX1vuHN2LsdV2E /WGMJLH4OsTHvNVStz/DkIjQrMLCTN5eGDlncdQMu7YPPbfLZIOcQBJRtjQ/xAcr GA== -----END CERTIFICATE-----Generated at Mon Apr 13 13:51:34 2026 by rpki-client