$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e3233382e3133322e302f32322d3232203d3e2034383437.roa File: 3130332e3233382e3133322e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: zC6dfsFpb++USXLE9pC6r1Co2yIH5OQk4shMFIVRCms= Subject key identifier: 8C:F4:B4:18:63:D5:AD:E4:13:A5:FC:CE:4E:FF:DA:E9:D5:84:55:9B Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 70E6AE84B8C4EDC7173E022708BAC6471A425788 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e3233382e3133322e302f32322d3232203d3e2034383437.roa Signing time: Mon 13 Apr 2026 07:09:26 +0000 ROA not before: Mon 13 Apr 2026 07:04:26 +0000 ROA not after: Mon 12 Apr 2027 07:09:26 +0000 asID: 4847 IP address blocks: 103.238.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:e6:ae:84:b8:c4:ed:c7:17:3e:02:27:08:ba:c6:47:1a:42:57:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:26 2026 GMT Not After : Apr 12 07:09:26 2027 GMT Subject: CN=8CF4B41863D5ADE413A5FCCE4EFFDAE9D584559B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ce:46:aa:85:f9:41:ab:3a:17:c5:bf:f0:94: 9c:b7:0b:b2:c5:df:07:42:7d:20:04:ff:01:b5:09: a1:1c:16:aa:a4:3f:70:be:d4:28:0a:79:f3:76:36: 06:5f:7c:78:ba:4b:61:98:58:ae:15:9f:7f:e4:ce: ec:60:f9:18:4b:c4:7c:b6:5e:7a:06:d5:63:a3:cc: 5b:48:c1:6f:51:74:11:8b:71:0e:4a:9c:3f:13:5f: b7:a3:dc:49:30:92:88:85:52:c1:cd:63:20:fc:43: be:b1:bc:9f:b5:42:b0:24:fd:34:d2:4a:43:e0:66: e4:1d:6d:be:2a:b3:0d:98:a2:b9:9c:12:96:b3:48: 7b:f8:d6:cd:50:9e:91:e4:a7:53:f7:d5:92:62:0a: 0c:32:34:f8:2d:76:2e:3b:92:e6:65:d6:11:e6:13: 74:85:9f:7c:ae:ca:16:16:14:85:69:4e:2a:2f:70: 99:bf:94:2c:8a:b3:8a:92:1c:fc:4c:0d:d7:58:14: b4:4f:47:19:39:d6:d4:85:8a:eb:8e:8f:c7:9b:ec: 5f:df:78:0d:e2:8a:07:b9:76:2f:98:07:e0:1c:4d: 4e:98:55:cd:17:00:1f:66:8f:8d:68:99:3e:b4:12: f3:f5:e0:49:7d:12:13:34:ea:cf:08:ae:30:03:d3: d5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:F4:B4:18:63:D5:AD:E4:13:A5:FC:CE:4E:FF:DA:E9:D5:84:55:9B X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e3233382e3133322e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.132.0/22 Signature Algorithm: sha256WithRSAEncryption c0:9c:8a:58:00:bf:e5:43:81:a9:43:57:43:bc:6f:3c:b3:ef: 45:20:61:b9:f6:75:54:94:7d:a9:8a:95:fa:1e:ed:de:1a:64: c2:33:e7:ba:3e:fa:c1:95:93:c2:84:e6:22:fb:29:bd:e4:5b: a1:20:17:55:57:a2:46:a8:b5:b2:d2:60:35:69:62:11:1b:7d: 06:09:70:8d:08:5c:7c:8b:13:73:9d:5b:4c:9b:68:72:b1:bd: 4a:77:92:55:8e:11:c0:3c:cb:4b:59:dc:6e:12:da:89:73:e2: de:db:ff:41:cf:26:51:85:c2:f2:ff:77:6f:e9:6f:95:41:25: 23:de:cc:77:c2:ad:b1:56:10:ec:e3:da:bc:95:d1:45:6c:0c: 75:06:ad:32:ca:2a:34:8e:42:08:9b:04:ad:72:3d:3d:56:d8: 12:18:72:95:b3:27:96:f6:39:d7:9b:bd:ee:7e:81:a3:6d:b8: ad:1c:cf:d7:67:96:05:31:ad:26:ff:bb:22:b2:1d:0f:e4:78: c7:ae:e6:6e:39:f8:01:cf:a0:ec:54:7f:05:e4:7b:69:da:6a: e8:2b:68:8a:f5:d2:96:1d:74:7b:91:42:6f:93:14:8c:52:13: 3c:5f:cf:ca:b5:d7:ee:71:c8:8d:2c:9b:b4:4c:98:37:aa:f3: 6d:a9:06:0a -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUcOauhLjE7ccXPgInCLrGRxpCV4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjZaFw0yNzA0MTIwNzA5MjZaMDMxMTAvBgNV BAMTKDhDRjRCNDE4NjNENUFERTQxM0E1RkNDRTRFRkZEQUU5RDU4NDU1OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+zkaqhflBqzoXxb/wlJy3C7LF 3wdCfSAE/wG1CaEcFqqkP3C+1CgKefN2NgZffHi6S2GYWK4Vn3/kzuxg+RhLxHy2 XnoG1WOjzFtIwW9RdBGLcQ5KnD8TX7ej3EkwkoiFUsHNYyD8Q76xvJ+1QrAk/TTS SkPgZuQdbb4qsw2YormcEpazSHv41s1QnpHkp1P31ZJiCgwyNPgtdi47kuZl1hHm E3SFn3yuyhYWFIVpTiovcJm/lCyKs4qSHPxMDddYFLRPRxk51tSFiuuOj8eb7F/f eA3iige5di+YB+AcTU6YVc0XAB9mj41omT60EvP14El9EhM06s8IrjAD09WFAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUjPS0GGPVreQTpfzOTv/a6dWEVZswHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMxMzAzMzJlMzIz MzM4MmUzMTMzMzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmfuhDANBgkqhkiG9w0BAQsFAAOCAQEAwJyKWAC/5UOBqUNXQ7xvPLPv RSBhufZ1VJR9qYqV+h7t3hpkwjPnuj76wZWTwoTmIvspveRboSAXVVeiRqi1stJg NWliERt9BglwjQhcfIsTc51bTJtocrG9SneSVY4RwDzLS1ncbhLaiXPi3tv/Qc8m UYXC8v93b+lvlUElI97Md8KtsVYQ7OPavJXRRWwMdQatMsoqNI5CCJsErXI9PVbY EhhylbMnlvY515u97n6Bo224rRzP12eWBTGtJv+7IrIdD+R4x67mbjn4Ac+g7FR/ BeR7adpq6CtoivXSlh10e5FCb5MUjFITPF/PyrXX7nHIjSybtEyYN6rzbakGCg== -----END CERTIFICATE-----Generated at Mon Apr 13 17:47:51 2026 by rpki-client