$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094821744662806529/0/3130332e3137302e352e302f32342d3234203d3e2034383136.roa File: 3130332e3137302e352e302f32342d3234203d3e2034383136.roa (raw, json) Hash identifier: Z+WCsVa8vpGSdv/j12ozL1JGdG7SKuVWZI7M4QvuGFI= Subject key identifier: 86:98:09:F7:5E:81:65:31:BC:C1:04:2C:01:5C:C1:C5:B8:EB:41:1B Certificate issuer: /CN=A0156195ADCF332776D96A9CE2D7A36C4A1B42EC Certificate serial: 03152DCD31B0B194907340148C94EAA1CB44834F Authority key identifier: A0:15:61:95:AD:CF:33:27:76:D9:6A:9C:E2:D7:A3:6C:4A:1B:42:EC Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A0156195ADCF332776D96A9CE2D7A36C4A1B42EC.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094821744662806529/0/3130332e3137302e352e302f32342d3234203d3e2034383136.roa Signing time: Fri 10 Apr 2026 03:11:49 +0000 ROA not before: Fri 10 Apr 2026 03:06:49 +0000 ROA not after: Fri 09 Apr 2027 03:11:49 +0000 asID: 4816 IP address blocks: 103.170.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094821744662806529/0/A0156195ADCF332776D96A9CE2D7A36C4A1B42EC.crl rsync://rpki-rps.cnnic.cn/repo/A1094821744662806529/0/A0156195ADCF332776D96A9CE2D7A36C4A1B42EC.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A0156195ADCF332776D96A9CE2D7A36C4A1B42EC.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 05:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:15:2d:cd:31:b0:b1:94:90:73:40:14:8c:94:ea:a1:cb:44:83:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0156195ADCF332776D96A9CE2D7A36C4A1B42EC Validity Not Before: Apr 10 03:06:49 2026 GMT Not After : Apr 9 03:11:49 2027 GMT Subject: CN=869809F75E816531BCC1042C015CC1C5B8EB411B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:65:e0:26:91:f8:08:54:e7:06:82:3d:f1: b5:bd:66:85:22:d9:a6:8f:65:bd:4b:f3:7e:42:34: 6b:6a:fa:b6:02:ed:15:8c:91:e3:05:80:f3:36:2f: f4:bf:19:8b:30:d7:76:51:ce:02:87:bb:2a:e0:67: 2c:47:45:fd:84:78:93:73:a2:fd:ef:1d:34:25:fd: fa:54:55:c1:9e:c3:47:38:76:2a:6f:34:ec:4f:47: a8:3b:b3:99:ea:05:80:f4:38:aa:fe:c6:4c:3c:d8: 9e:14:14:1f:39:db:b3:72:25:67:b8:bd:25:27:81: 3f:92:e1:96:aa:91:a9:34:f1:a6:99:c3:b0:81:34: d4:45:82:4d:09:9d:c2:7d:04:c0:49:60:69:44:ec: 09:13:c2:e9:a6:61:02:37:29:08:63:7a:81:37:70: 71:0d:47:f9:df:fd:fb:65:45:f0:3a:6f:8c:14:f3: 3c:d3:f9:8d:91:63:4c:ad:f7:98:18:61:eb:2f:00: 14:73:bd:1a:aa:10:38:23:af:09:b0:73:59:f2:16: 97:05:77:61:38:86:67:fb:7f:82:d1:c6:4b:65:c1: a3:82:37:59:ca:c2:0c:02:de:09:39:8d:a3:1b:a2: 90:77:0f:c0:7e:28:95:0a:a6:39:4d:34:9a:19:ca: 70:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:98:09:F7:5E:81:65:31:BC:C1:04:2C:01:5C:C1:C5:B8:EB:41:1B X509v3 Authority Key Identifier: keyid:A0:15:61:95:AD:CF:33:27:76:D9:6A:9C:E2:D7:A3:6C:4A:1B:42:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094821744662806529/0/A0156195ADCF332776D96A9CE2D7A36C4A1B42EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A0156195ADCF332776D96A9CE2D7A36C4A1B42EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094821744662806529/0/3130332e3137302e352e302f32342d3234203d3e2034383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.5.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:5a:58:bc:dd:78:53:ef:35:b9:e2:53:97:80:89:1f:f0:b3: bb:ab:58:be:be:1c:46:55:5f:32:74:ee:ed:f9:e4:0d:f7:68: 32:a0:dc:a0:41:6f:ca:f1:61:fc:51:66:11:f8:d4:c1:2c:3b: 79:dd:e7:40:24:8e:5c:78:ad:42:ba:36:18:bb:66:65:7b:78: a1:77:c3:44:80:23:0b:46:d5:56:1c:f4:02:3a:e4:ff:ac:88: ef:b1:f4:68:c8:28:fd:05:65:03:0e:9b:35:36:53:12:20:1a: 90:fa:9a:40:bf:b3:90:7b:21:f7:70:32:99:52:86:da:6f:23: 11:33:55:cb:4c:e6:16:d4:d2:8d:e9:19:a8:8b:47:4f:c6:93: 27:38:d4:8f:22:61:90:72:9a:dc:ec:5e:96:e5:a0:bd:28:1d: e4:e3:79:d9:89:2b:3e:a4:07:f2:c9:54:39:f9:c2:71:2c:be: c5:5e:ba:4d:97:e3:d3:c4:c2:ee:87:09:46:a1:13:10:a2:f8: 3f:81:a1:46:ab:b4:dc:76:d5:a7:0f:de:8d:7a:0f:67:59:af: 72:99:0b:1a:19:c0:63:c9:13:84:50:65:33:ce:b7:2a:23:2c: ce:a1:0b:66:fa:f9:04:4c:b0:d7:3b:d3:65:44:4a:b9:75:14: e1:3f:fe:34 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUAxUtzTGwsZSQc0AUjJTqoctEg08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAxNTYxOTVBRENGMzMyNzc2RDk2QTlDRTJEN0EzNkM0 QTFCNDJFQzAeFw0yNjA0MTAwMzA2NDlaFw0yNzA0MDkwMzExNDlaMDMxMTAvBgNV BAMTKDg2OTgwOUY3NUU4MTY1MzFCQ0MxMDQyQzAxNUNDMUM1QjhFQjQxMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwTmXgJpH4CFTnBoI98bW9ZoUi 2aaPZb1L835CNGtq+rYC7RWMkeMFgPM2L/S/GYsw13ZRzgKHuyrgZyxHRf2EeJNz ov3vHTQl/fpUVcGew0c4dipvNOxPR6g7s5nqBYD0OKr+xkw82J4UFB8527NyJWe4 vSUngT+S4Zaqkak08aaZw7CBNNRFgk0JncJ9BMBJYGlE7AkTwummYQI3KQhjeoE3 cHENR/nf/ftlRfA6b4wU8zzT+Y2RY0yt95gYYesvABRzvRqqEDgjrwmwc1nyFpcF d2E4hmf7f4LRxktlwaOCN1nKwgwC3gk5jaMbopB3D8B+KJUKpjlNNJoZynC9AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUhpgJ916BZTG8wQQsAVzBxbjrQRswHwYDVR0j BBgwFoAUoBVhla3PMyd22Wqc4tejbEobQuwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgyMTc0NDY2MjgwNjUyOS8wL0EwMTU2MTk1QURDRjMzMjc3NkQ5NkE5Q0UyRDdB MzZDNEExQjQyRUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTAxNTYxOTVBRENGMzMyNzc2RDk2QTlDRTJEN0EzNkM0QTFCNDJFQy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODIxNzQ0NjYyODA2NTI5LzAvMzEzMDMzMmUzMTM3 MzAyZTM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMxMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnqgUwDQYJKoZIhvcNAQELBQADggEBAA1aWLzdeFPvNbniU5eAiR/ws7urWL6+ HEZVXzJ07u355A33aDKg3KBBb8rxYfxRZhH41MEsO3nd50Akjlx4rUK6Nhi7ZmV7 eKF3w0SAIwtG1VYc9AI65P+siO+x9GjIKP0FZQMOmzU2UxIgGpD6mkC/s5B7Ifdw MplShtpvIxEzVctM5hbU0o3pGaiLR0/Gkyc41I8iYZBymtzsXpbloL0oHeTjedmJ Kz6kB/LJVDn5wnEsvsVeuk2X49PEwu6HCUahExCi+D+BoUartNx21acP3o16D2dZ r3KZCxoZwGPJE4RQZTPOtyojLM6hC2b6+QRMsNc702VESrl1FOE//jQ= -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:14 2026 by rpki-client