$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e3233382e3133342e302f32332d3233203d3e2039383038.roa File: 3130332e3233382e3133342e302f32332d3233203d3e2039383038.roa (raw, json) Hash identifier: D4+WvghZhQFK1KFUbS58S0zX3Is3QDfqmf24mXEzYCw= Subject key identifier: 52:F4:A4:31:E3:DA:F4:AD:CE:6E:21:5B:0C:76:43:43:A4:7D:1A:B0 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 2A28DCF5CF64F9FFB6EE0B53F8B1C9A2738CD5D3 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e3233382e3133342e302f32332d3233203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:09:27 +0000 ROA not before: Mon 13 Apr 2026 07:04:27 +0000 ROA not after: Mon 12 Apr 2027 07:09:27 +0000 asID: 9808 IP address blocks: 103.238.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:28:dc:f5:cf:64:f9:ff:b6:ee:0b:53:f8:b1:c9:a2:73:8c:d5:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:27 2026 GMT Not After : Apr 12 07:09:27 2027 GMT Subject: CN=52F4A431E3DAF4ADCE6E215B0C764343A47D1AB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:19:f1:00:57:5f:fd:8c:5b:b2:c9:58:e3:6c: a1:13:83:87:b9:23:4a:55:c0:00:b4:9f:bb:77:2b: c8:5b:3e:a1:53:e6:69:d9:d5:93:0c:44:9f:ce:f0: 6c:04:b8:83:fd:d2:ce:3c:00:db:c3:fa:18:fe:9e: 0b:6a:4a:59:8b:d1:bc:34:99:25:5f:8c:e2:72:3c: 49:50:7c:8d:e8:a7:c3:98:d6:25:80:c5:36:49:3e: 6c:6f:33:98:60:ed:a9:92:4b:f8:b3:78:15:9f:81: d0:04:6d:97:ab:c1:ba:d6:53:bc:b3:4c:a9:33:c0: aa:a8:75:2f:91:eb:ab:0f:27:51:e6:68:6d:1e:36: 39:6c:32:48:c7:b9:3c:40:c9:bf:b2:0f:5b:8a:d4: 84:34:9b:5f:4c:c3:a4:6a:54:99:f8:0a:78:a2:3c: 97:6d:3b:7d:4a:9c:0d:ba:96:5e:d2:60:2d:54:37: d8:16:ff:3f:48:a9:cd:be:ec:e8:9e:aa:87:86:d8: 32:c6:38:d4:1f:49:4c:bd:5b:28:85:d7:5b:65:df: e3:e5:bd:33:17:05:ac:60:93:84:20:4c:36:5f:a9: 4a:17:51:e8:3a:a2:9e:10:1f:4c:1c:cf:bb:63:e4: 86:b6:c4:da:cd:34:d0:0a:bc:7c:c6:b3:dd:92:b6: f6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F4:A4:31:E3:DA:F4:AD:CE:6E:21:5B:0C:76:43:43:A4:7D:1A:B0 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e3233382e3133342e302f32332d3233203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.134.0/23 Signature Algorithm: sha256WithRSAEncryption 14:9f:99:a9:17:90:a4:8f:79:46:04:07:af:98:b8:4a:59:55: 1c:41:56:01:c8:25:dc:74:8d:09:1d:bf:e5:da:36:b1:2c:0f: 67:41:3d:06:31:1a:22:17:32:14:96:43:1c:50:3b:17:d3:60: 6b:49:8f:7e:5b:11:45:c0:ab:c3:c3:84:77:2d:fe:7f:1f:62: c7:5a:0a:ab:12:51:f3:29:54:88:4c:ba:26:85:2f:64:06:8c: b4:85:6b:2b:3c:47:de:5b:d3:50:94:51:64:99:f3:7b:8c:78: 6a:96:07:83:17:35:c3:82:8a:ee:de:8e:e7:89:67:50:8d:03: 30:66:20:02:2e:81:50:2e:eb:5d:e5:bb:52:c3:25:1b:c1:53: f3:7a:37:99:3c:9d:60:f5:8d:f0:3d:b1:8c:eb:36:5a:cc:9c: 09:17:a2:b2:a8:fb:71:f5:70:91:1d:0c:17:31:96:e5:aa:c3: d4:e8:b4:11:be:37:7d:c1:d5:57:c4:06:de:64:9c:9e:a3:66: 56:40:49:55:90:fc:a3:16:69:f0:01:ac:46:90:4f:c6:51:33: 96:f4:41:20:dc:32:f4:9b:78:b7:e6:0a:06:f9:2b:38:9c:45: c4:ff:4e:64:14:01:2b:46:84:f8:20:11:22:1d:3c:be:87:2d: bd:8e:a0:ad -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUKijc9c9k+f+27gtT+LHJonOM1dMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjdaFw0yNzA0MTIwNzA5MjdaMDMxMTAvBgNV BAMTKDUyRjRBNDMxRTNEQUY0QURDRTZFMjE1QjBDNzY0MzQzQTQ3RDFBQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2GfEAV1/9jFuyyVjjbKETg4e5 I0pVwAC0n7t3K8hbPqFT5mnZ1ZMMRJ/O8GwEuIP90s48ANvD+hj+ngtqSlmL0bw0 mSVfjOJyPElQfI3op8OY1iWAxTZJPmxvM5hg7amSS/izeBWfgdAEbZerwbrWU7yz TKkzwKqodS+R66sPJ1HmaG0eNjlsMkjHuTxAyb+yD1uK1IQ0m19Mw6RqVJn4Cnii PJdtO31KnA26ll7SYC1UN9gW/z9Iqc2+7OieqoeG2DLGONQfSUy9WyiF11tl3+Pl vTMXBaxgk4QgTDZfqUoXUeg6op4QH0wcz7tj5Ia2xNrNNNAKvHzGs92StvYDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUUvSkMePa9K3ObiFbDHZDQ6R9GrAwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk2MzIxNTM3Nzk4OTYzNS8wLzMxMzAzMzJlMzIz MzM4MmUzMTMzMzQyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzOTM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWfuhjANBgkqhkiG9w0BAQsFAAOCAQEAFJ+ZqReQpI95RgQHr5i4SllV HEFWAcgl3HSNCR2/5do2sSwPZ0E9BjEaIhcyFJZDHFA7F9Nga0mPflsRRcCrw8OE dy3+fx9ix1oKqxJR8ylUiEy6JoUvZAaMtIVrKzxH3lvTUJRRZJnze4x4apYHgxc1 w4KK7t6O54lnUI0DMGYgAi6BUC7rXeW7UsMlG8FT83o3mTydYPWN8D2xjOs2Wsyc CReisqj7cfVwkR0MFzGW5arD1Oi0Eb43fcHVV8QG3mScnqNmVkBJVZD8oxZp8AGs RpBPxlEzlvRBINwy9Jt4t+YKBvkrOJxFxP9OZBQBK0aE+CARIh08voctvY6grQ== -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:03 2026 by rpki-client