$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e38322e3232342e302f32322d3232203d3e2034383437.roa File: 3130332e38322e3232342e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: O5+B/XEcCM+Xw2RoaIuyBWOtgLer2JKjzqemuzrUt00= Subject key identifier: C7:F6:CC:53:E1:46:0E:C6:FB:F4:F6:C8:6A:6F:36:72:F8:A2:FF:E7 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 5C140A4D791BB6EC3D02D1C240140437E2E70F15 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e38322e3232342e302f32322d3232203d3e2034383437.roa Signing time: Mon 13 Apr 2026 07:09:27 +0000 ROA not before: Mon 13 Apr 2026 07:04:27 +0000 ROA not after: Mon 12 Apr 2027 07:09:27 +0000 asID: 4847 IP address blocks: 103.82.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:14:0a:4d:79:1b:b6:ec:3d:02:d1:c2:40:14:04:37:e2:e7:0f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:27 2026 GMT Not After : Apr 12 07:09:27 2027 GMT Subject: CN=C7F6CC53E1460EC6FBF4F6C86A6F3672F8A2FFE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cb:86:81:d3:c6:c1:08:a8:e9:2b:77:de:b7: fe:53:ad:be:dd:fb:1e:d5:d6:3d:24:cf:ff:f1:a4: 5b:0e:62:b5:a1:fa:d6:59:eb:14:a5:0f:e5:d5:61: 9c:a9:b5:1f:5d:44:fe:7f:f2:24:4e:26:0c:2c:7f: 96:fc:ad:60:fa:3f:47:9f:f6:fc:ca:c9:ed:92:ec: ad:f2:8a:1f:c5:67:7e:17:07:11:9a:1a:58:ba:67: 53:88:3a:1c:84:5b:74:6d:83:86:e0:46:d7:a5:b0: ff:5f:0e:f1:cd:41:a3:cf:44:ef:a7:6a:d3:4b:af: e2:f3:1d:ff:ed:f3:ea:61:56:21:07:ab:00:78:63: 36:05:9e:52:1f:6f:5a:3d:df:58:11:b4:53:ea:9b: b6:f4:a6:ce:9f:d9:28:99:ed:bc:31:e1:55:c3:25: 52:b2:51:1a:55:ea:88:b5:c8:58:b7:d7:94:99:7a: 3c:ac:6a:5d:1f:18:91:90:d1:77:fe:c8:d8:4d:c7: 5a:54:42:a9:86:8e:9c:0d:36:7e:c8:c6:45:3f:7e: ff:d2:91:34:bd:ef:91:31:c2:4a:dd:ca:1f:4b:af: 99:aa:a7:d4:0d:cb:bd:29:5f:bb:33:a3:99:7e:e5: b9:52:19:a9:f5:7b:09:bc:12:88:7a:18:f0:68:99: c4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F6:CC:53:E1:46:0E:C6:FB:F4:F6:C8:6A:6F:36:72:F8:A2:FF:E7 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e38322e3232342e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.224.0/22 Signature Algorithm: sha256WithRSAEncryption ba:09:83:0e:78:99:6f:fd:f4:cd:5e:11:11:71:be:db:ac:d7: 52:bd:a1:6c:f9:b8:f2:f2:84:bf:f3:54:c7:2c:e1:78:07:5c: ca:66:1b:af:a5:42:1b:aa:53:ed:32:ca:94:e9:7c:ac:df:b5: e7:c6:bc:ef:0f:58:d0:d6:7f:04:8a:32:a0:15:54:dc:9f:d6: a8:58:6d:98:2c:40:7f:20:42:48:ea:a0:e3:a6:bb:b4:d2:e9: 97:14:89:f6:0e:2d:9c:e5:10:e7:dc:ff:a7:40:bb:c6:36:b5: 24:d3:e7:c0:80:1a:40:05:61:f7:6d:c2:5a:62:52:3e:3f:80: 99:59:07:88:99:f9:1a:7a:6c:1f:84:56:92:7e:1d:73:eb:1f: c3:a9:c2:e5:90:15:5b:b2:5f:4b:a0:ac:f1:6a:e2:dd:f6:10: 2a:67:6a:59:9f:df:c8:1a:a0:3a:96:ed:3c:e1:78:7d:40:2d: c0:a0:57:9e:e6:b5:3c:87:ac:ef:39:a8:0b:99:6b:11:8f:42: 57:e5:09:6b:c1:81:95:03:97:71:20:10:99:10:5e:c8:4b:d2: b3:bb:02:f9:b9:63:0c:d3:57:e5:4a:6c:d8:b7:25:a5:af:24: a7:a2:51:f2:22:a4:91:2b:a4:08:cf:d1:26:fa:a6:f1:a3:fc: bf:77:49:6a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUXBQKTXkbtuw9AtHCQBQEN+LnDxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjdaFw0yNzA0MTIwNzA5MjdaMDMxMTAvBgNV BAMTKEM3RjZDQzUzRTE0NjBFQzZGQkY0RjZDODZBNkYzNjcyRjhBMkZGRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFy4aB08bBCKjpK3fet/5Trb7d +x7V1j0kz//xpFsOYrWh+tZZ6xSlD+XVYZyptR9dRP5/8iROJgwsf5b8rWD6P0ef 9vzKye2S7K3yih/FZ34XBxGaGli6Z1OIOhyEW3Rtg4bgRtelsP9fDvHNQaPPRO+n atNLr+LzHf/t8+phViEHqwB4YzYFnlIfb1o931gRtFPqm7b0ps6f2SiZ7bwx4VXD JVKyURpV6oi1yFi315SZejysal0fGJGQ0Xf+yNhNx1pUQqmGjpwNNn7IxkU/fv/S kTS975Exwkrdyh9Lr5mqp9QNy70pX7szo5l+5blSGan1ewm8Eoh6GPBomcT5AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUx/bMU+FGDsb79PbIam82cvii/+cwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzEzMDMzMmUzODMy MmUzMjMyMzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdS4DANBgkqhkiG9w0BAQsFAAOCAQEAugmDDniZb/30zV4REXG+26zXUr2h bPm48vKEv/NUxyzheAdcymYbr6VCG6pT7TLKlOl8rN+158a87w9Y0NZ/BIoyoBVU 3J/WqFhtmCxAfyBCSOqg46a7tNLplxSJ9g4tnOUQ59z/p0C7xja1JNPnwIAaQAVh 923CWmJSPj+AmVkHiJn5GnpsH4RWkn4dc+sfw6nC5ZAVW7JfS6Cs8Wri3fYQKmdq WZ/fyBqgOpbtPOF4fUAtwKBXnua1PIes7zmoC5lrEY9CV+UJa8GBlQOXcSAQmRBe yEvSs7sC+bljDNNX5Ups2Lclpa8kp6JR8iKkkSukCM/RJvqm8aP8v3dJag== -----END CERTIFICATE-----Generated at Mon Apr 13 17:47:16 2026 by rpki-client