$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094874090583359489/0/3130332e3232382e3230382e302f32322d3232203d3e203633353831.roa File: 3130332e3232382e3230382e302f32322d3232203d3e203633353831.roa (raw, json) Hash identifier: WBrX/HFk3yWwGFq1SUduc3MgL8gsNnc9qwlO7cLpdow= Subject key identifier: BC:1E:54:D1:3E:28:AA:7B:D7:80:FA:0B:9C:81:CF:23:62:57:B8:A4 Certificate issuer: /CN=5F34DAD9FF1D8B00C9B687A71C090794B9E91E93 Certificate serial: 2A8AEEBECF0AABC4320E01BAD1AADD84412512C7 Authority key identifier: 5F:34:DA:D9:FF:1D:8B:00:C9:B6:87:A7:1C:09:07:94:B9:E9:1E:93 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5F34DAD9FF1D8B00C9B687A71C090794B9E91E93.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094874090583359489/0/3130332e3232382e3230382e302f32322d3232203d3e203633353831.roa Signing time: Fri 10 Apr 2026 07:45:48 +0000 ROA not before: Fri 10 Apr 2026 07:40:48 +0000 ROA not after: Fri 09 Apr 2027 07:45:48 +0000 asID: 63581 IP address blocks: 103.228.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094874090583359489/0/5F34DAD9FF1D8B00C9B687A71C090794B9E91E93.crl rsync://rpki-rps.cnnic.cn/repo/A1094874090583359489/0/5F34DAD9FF1D8B00C9B687A71C090794B9E91E93.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5F34DAD9FF1D8B00C9B687A71C090794B9E91E93.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 21:47:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:8a:ee:be:cf:0a:ab:c4:32:0e:01:ba:d1:aa:dd:84:41:25:12:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F34DAD9FF1D8B00C9B687A71C090794B9E91E93 Validity Not Before: Apr 10 07:40:48 2026 GMT Not After : Apr 9 07:45:48 2027 GMT Subject: CN=BC1E54D13E28AA7BD780FA0B9C81CF236257B8A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cb:a0:d5:6b:4f:6b:8b:90:42:cd:7e:1a:c4: 35:f7:ea:ff:23:27:ea:a6:02:12:d7:b1:89:2a:04: ef:2e:ed:d9:df:54:bb:5d:97:ef:95:9a:4e:01:27: 96:9a:6f:50:39:c7:ea:dd:25:05:10:0b:2c:2f:fc: 42:4e:60:a2:1a:78:e4:ae:0c:26:0b:78:9e:e5:27: 4b:ad:46:8f:3e:aa:4d:05:66:af:20:fd:5e:7d:e2: ee:1a:66:a4:ca:4f:7a:f0:ac:95:72:47:35:0d:9b: 7e:05:ff:6c:58:9b:4f:1e:cb:42:6f:73:ba:c2:10: 6c:c0:5f:4a:db:fa:62:3e:7b:c8:98:cc:c4:6d:fe: 76:a4:bf:85:5f:3b:b4:83:2f:74:38:c6:69:69:e4: 5c:26:8c:92:5e:b2:d0:e6:40:08:c2:54:2f:8a:67: e9:0a:cc:6f:e4:f8:6c:db:de:fb:1c:67:b2:50:43: ea:5f:44:07:25:d6:54:a0:69:2a:e0:f7:dc:10:e6: fd:a3:f5:f9:34:db:0b:59:43:7d:ae:47:d1:a9:a1: 5c:d9:15:24:e1:a1:3e:b9:a3:af:8f:72:7c:51:c7: 09:8f:96:f9:34:3c:6f:0f:12:38:e0:9f:b8:f9:5f: 42:c2:50:19:1b:86:fb:82:32:41:c0:67:24:d1:cd: 86:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1E:54:D1:3E:28:AA:7B:D7:80:FA:0B:9C:81:CF:23:62:57:B8:A4 X509v3 Authority Key Identifier: keyid:5F:34:DA:D9:FF:1D:8B:00:C9:B6:87:A7:1C:09:07:94:B9:E9:1E:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094874090583359489/0/5F34DAD9FF1D8B00C9B687A71C090794B9E91E93.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5F34DAD9FF1D8B00C9B687A71C090794B9E91E93.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094874090583359489/0/3130332e3232382e3230382e302f32322d3232203d3e203633353831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.208.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:ec:0f:19:6a:64:0e:56:29:5d:0c:60:39:23:01:a3:63:c0: b3:a8:09:07:6a:4c:df:df:71:e0:03:2f:bd:1d:a3:77:aa:15: f1:4a:ce:98:cf:35:55:4d:fc:66:fc:10:78:46:c3:c7:38:d3: a1:43:5e:33:57:2d:76:9f:2d:03:47:88:bb:0b:ca:e5:a8:13: 8f:75:db:66:e9:14:f9:c9:8a:fb:ff:cd:ec:c3:6c:97:78:8b: dd:47:b9:a3:03:4a:67:85:8e:b0:ec:63:13:39:81:36:0c:bf: fb:cc:05:12:90:76:63:df:ce:27:4f:b9:b8:10:22:df:c0:d6: 9a:36:7f:6f:2e:c1:57:74:ea:f2:7d:79:9d:2c:70:0d:6a:c5: 7a:4e:b9:5c:37:87:66:c3:1d:4f:87:d0:63:bd:8b:2c:ea:6c: 6b:33:2f:33:6e:c0:e7:e0:98:83:ca:6e:0b:ed:9d:55:22:20: 8e:aa:68:a4:8c:9a:9b:52:5f:0b:f3:fa:a2:94:66:fc:e1:d2: 97:95:65:fe:8c:b8:2c:bf:00:d5:9f:cc:c6:19:fb:1b:77:39: 0e:4f:eb:c5:e2:81:a8:b2:97:51:2f:b6:14:49:06:e4:7e:45: 6d:87:21:fc:b0:aa:9a:9a:41:f7:72:02:e9:4e:a8:a9:4d:35: 2f:9f:37:2b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKoruvs8Kq8QyDgG60ardhEElEscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUYzNERBRDlGRjFEOEIwMEM5QjY4N0E3MUMwOTA3OTRC OUU5MUU5MzAeFw0yNjA0MTAwNzQwNDhaFw0yNzA0MDkwNzQ1NDhaMDMxMTAvBgNV BAMTKEJDMUU1NEQxM0UyOEFBN0JENzgwRkEwQjlDODFDRjIzNjI1N0I4QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6y6DVa09ri5BCzX4axDX36v8j J+qmAhLXsYkqBO8u7dnfVLtdl++Vmk4BJ5aab1A5x+rdJQUQCywv/EJOYKIaeOSu DCYLeJ7lJ0utRo8+qk0FZq8g/V594u4aZqTKT3rwrJVyRzUNm34F/2xYm08ey0Jv c7rCEGzAX0rb+mI+e8iYzMRt/nakv4VfO7SDL3Q4xmlp5FwmjJJestDmQAjCVC+K Z+kKzG/k+Gzb3vscZ7JQQ+pfRAcl1lSgaSrg99wQ5v2j9fk02wtZQ32uR9GpoVzZ FSThoT65o6+PcnxRxwmPlvk0PG8PEjjgn7j5X0LCUBkbhvuCMkHAZyTRzYb9AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUvB5U0T4oqnvXgPoLnIHPI2JXuKQwHwYDVR0j BBgwFoAUXzTa2f8diwDJtoenHAkHlLnpHpMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg3NDA5MDU4MzM1OTQ4OS8wLzVGMzREQUQ5RkYxRDhCMDBDOUI2ODdBNzFDMDkw Nzk0QjlFOTFFOTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUYzNERBRDlGRjFEOEIwMEM5QjY4N0E3MUMwOTA3OTRCOUU5MUU5My5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4NzQwOTA1ODMzNTk0ODkvMC8zMTMwMzMyZTMy MzIzODJlMzIzMDM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM1MzgzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfk0DANBgkqhkiG9w0BAQsFAAOCAQEATewPGWpkDlYpXQxgOSMB o2PAs6gJB2pM399x4AMvvR2jd6oV8UrOmM81VU38ZvwQeEbDxzjToUNeM1ctdp8t A0eIuwvK5agTj3XbZukU+cmK+//N7MNsl3iL3Ue5owNKZ4WOsOxjEzmBNgy/+8wF EpB2Y9/OJ0+5uBAi38DWmjZ/by7BV3Tq8n15nSxwDWrFek65XDeHZsMdT4fQY72L LOpsazMvM27A5+CYg8puC+2dVSIgjqpopIyam1JfC/P6opRm/OHSl5Vl/oy4LL8A 1Z/Mxhn7G3c5Dk/rxeKBqLKXUS+2FEkG5H5FbYch/LCqmppB93IC6U6oqU01L583 Kw== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:27 2026 by rpki-client