$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094551670852943873/0/3130332e39382e34302e302f32322d3232203d3e2030.roa File: 3130332e39382e34302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: e8iEGGHTv4+FgS9wkri7Y69nnBMxrR4pBM+NO8acXaE= Subject key identifier: 2F:6F:98:99:C5:88:89:60:AB:9F:65:05:7F:AB:1A:36:A7:78:9F:86 Certificate issuer: /CN=6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72 Certificate serial: 3562181314185FBF96EC8896121E7A8BB357F1E5 Authority key identifier: 6B:86:BD:3F:A0:FB:0B:37:BA:C6:4D:6C:8D:2D:9F:66:36:53:6E:72 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/3130332e39382e34302e302f32322d3232203d3e2030.roa Signing time: Thu 09 Apr 2026 09:21:36 +0000 ROA not before: Thu 09 Apr 2026 09:16:36 +0000 ROA not after: Thu 08 Apr 2027 09:21:36 +0000 asID: 0 IP address blocks: 103.98.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.crl rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:62:18:13:14:18:5f:bf:96:ec:88:96:12:1e:7a:8b:b3:57:f1:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72 Validity Not Before: Apr 9 09:16:36 2026 GMT Not After : Apr 8 09:21:36 2027 GMT Subject: CN=2F6F9899C5888960AB9F65057FAB1A36A7789F86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b8:5d:06:91:13:f7:71:2d:6d:c1:12:b5:6f: f3:22:45:66:69:4a:43:b8:a3:18:b4:a2:94:8c:ec: f1:bf:cf:39:dc:11:bb:41:d5:a8:03:4a:46:54:fc: db:9e:23:eb:98:b6:29:be:b9:ea:a9:d8:75:1f:58: c3:3e:61:cc:6b:11:37:d4:67:6f:9f:95:91:7d:64: 2b:47:28:06:ae:a3:d2:6e:9b:3d:03:ac:f8:28:26: 19:bb:20:38:17:da:4e:f7:7d:33:fc:62:60:ee:f9: 37:48:4a:70:80:c2:5f:f6:a2:24:f8:f7:db:9a:b6: 7f:92:42:26:24:ed:07:d1:bb:a9:7b:8f:52:62:b0: 8a:95:21:1e:cc:0f:ff:b7:c0:82:02:02:85:10:d2: 09:72:be:eb:d8:d6:7c:81:94:1d:44:15:7b:a6:7f: c1:32:c8:a2:e7:87:a5:2d:7d:48:e2:5a:7e:14:75: ba:02:e9:37:4f:2d:71:ba:2b:8e:e1:56:94:da:e1: 90:23:3b:1d:c9:3c:a1:98:1d:6f:cc:dc:1e:1d:9c: e2:3d:d9:a9:b4:3b:fa:d3:12:c5:9b:9f:56:c7:ca: d2:50:d0:e0:f3:59:9f:b5:ee:d8:01:eb:10:f6:b2: 53:e8:36:a2:a2:35:45:4b:72:ec:26:90:3d:1f:77: 0e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6F:98:99:C5:88:89:60:AB:9F:65:05:7F:AB:1A:36:A7:78:9F:86 X509v3 Authority Key Identifier: keyid:6B:86:BD:3F:A0:FB:0B:37:BA:C6:4D:6C:8D:2D:9F:66:36:53:6E:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/3130332e39382e34302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.40.0/22 Signature Algorithm: sha256WithRSAEncryption b5:e9:ad:92:e0:3b:25:3d:8b:b8:93:cb:41:dd:a2:b8:05:b1: 99:4c:80:7f:d3:68:69:7f:b1:f1:e1:54:dc:de:c7:31:df:46: 40:63:1b:51:ba:81:e4:3b:29:74:19:ad:5d:e1:e2:04:a4:f4: cc:7e:76:80:7a:be:e1:81:91:09:d7:c9:37:ab:ae:8d:6e:5a: 61:c2:6d:20:61:c1:a0:89:37:82:90:8e:da:ac:29:0f:d8:95: 60:79:91:fb:38:1d:b9:2e:6e:4c:cc:58:33:5a:01:7b:bf:24: 57:5f:d8:3b:f7:8f:1c:c8:8e:08:d3:9d:80:00:73:20:58:dc: 72:82:0b:4a:b0:1f:46:f8:6f:ac:cf:53:96:47:eb:be:ce:13: 1b:38:2c:ce:e6:3d:de:30:87:7e:f0:f1:02:95:53:60:76:54: cf:95:1e:2a:f3:1a:d4:c4:cf:20:79:c9:e2:7b:97:02:10:24: 87:4a:9c:b2:c4:09:65:36:35:41:db:9c:3e:3a:65:09:01:22: 4f:cb:de:21:23:22:81:e8:2c:29:eb:33:7c:32:d2:7d:c0:d1: 86:24:a1:ae:c9:16:67:f1:cd:35:48:25:fd:cc:21:05:6a:ab: d4:a2:8b:37:f8:6d:77:d4:87:36:58:25:54:fc:8c:2f:91:20: 00:a7:da:81 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUNWIYExQYX7+W7IiWEh56i7NX8eUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI4NkJEM0ZBMEZCMEIzN0JBQzY0RDZDOEQyRDlGNjYz NjUzNkU3MjAeFw0yNjA0MDkwOTE2MzZaFw0yNzA0MDgwOTIxMzZaMDMxMTAvBgNV BAMTKDJGNkY5ODk5QzU4ODg5NjBBQjlGNjUwNTdGQUIxQTM2QTc3ODlGODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/uF0GkRP3cS1twRK1b/MiRWZp SkO4oxi0opSM7PG/zzncEbtB1agDSkZU/NueI+uYtim+ueqp2HUfWMM+YcxrETfU Z2+flZF9ZCtHKAauo9Jumz0DrPgoJhm7IDgX2k73fTP8YmDu+TdISnCAwl/2oiT4 99uatn+SQiYk7QfRu6l7j1JisIqVIR7MD/+3wIICAoUQ0glyvuvY1nyBlB1EFXum f8EyyKLnh6UtfUjiWn4UdboC6TdPLXG6K47hVpTa4ZAjOx3JPKGYHW/M3B4dnOI9 2am0O/rTEsWbn1bHytJQ0ODzWZ+17tgB6xD2slPoNqKiNUVLcuwmkD0fdw6tAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUL2+YmcWIiWCrn2UFf6saNqd4n4YwHwYDVR0j BBgwFoAUa4a9P6D7Cze6xk1sjS2fZjZTbnIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDU1MTY3MDg1Mjk0Mzg3My8wLzZCODZCRDNGQTBGQjBCMzdCQUM2NEQ2QzhEMkQ5 RjY2MzY1MzZFNzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI4NkJEM0ZBMEZCMEIzN0JBQzY0RDZDOEQyRDlGNjYzNjUzNkU3Mi5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0NTUxNjcwODUyOTQzODczLzAvMzEzMDMzMmUzOTM4 MmUzNDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnYigw DQYJKoZIhvcNAQELBQADggEBALXprZLgOyU9i7iTy0HdorgFsZlMgH/TaGl/sfHh VNzexzHfRkBjG1G6geQ7KXQZrV3h4gSk9Mx+doB6vuGBkQnXyTerro1uWmHCbSBh waCJN4KQjtqsKQ/YlWB5kfs4HbkubkzMWDNaAXu/JFdf2Dv3jxzIjgjTnYAAcyBY 3HKCC0qwH0b4b6zPU5ZH677OExs4LM7mPd4wh37w8QKVU2B2VM+VHirzGtTEzyB5 yeJ7lwIQJIdKnLLECWU2NUHbnD46ZQkBIk/L3iEjIoHoLCnrM3wy0n3A0YYkoa7J FmfxzTVIJf3MIQVqq9Siizf4bXfUhzZYJVT8jC+RIACn2oE= -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:30 2026 by rpki-client