$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e38322e3232342e302f32332d3233203d3e2039383038.roa File: 3130332e38322e3232342e302f32332d3233203d3e2039383038.roa (raw, json) Hash identifier: CRWc/ZpOVsmUvzEkOS+sjvS4gQ4/l0GeW09tGz/OjW8= Subject key identifier: 77:47:8B:EC:CB:37:35:4E:DB:CD:83:4A:F6:A1:E3:B4:04:8F:C2:DD Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 70A5BD921DDD10CEA4C42416B91ABE2A98BAECEF Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e38322e3232342e302f32332d3233203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:09:26 +0000 ROA not before: Mon 13 Apr 2026 07:04:26 +0000 ROA not after: Mon 12 Apr 2027 07:09:26 +0000 asID: 9808 IP address blocks: 103.82.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:a5:bd:92:1d:dd:10:ce:a4:c4:24:16:b9:1a:be:2a:98:ba:ec:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:26 2026 GMT Not After : Apr 12 07:09:26 2027 GMT Subject: CN=77478BECCB37354EDBCD834AF6A1E3B4048FC2DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:52:bc:14:f7:f1:b5:d8:8d:51:1c:d4:ac:2d: ec:cd:90:9e:51:be:aa:0d:a6:9f:51:12:63:61:ed: 3a:7a:bf:80:b5:37:20:8f:45:96:95:2e:b6:af:2d: 2b:f9:3e:83:23:89:f1:44:5b:0e:99:27:c7:d4:3f: 2f:e1:0e:9d:f9:82:a1:f3:6d:af:11:78:a5:65:64: 03:5a:30:b1:87:f8:9f:8d:a5:f0:a6:e9:97:f6:55: 37:e6:8f:a6:25:d3:26:2c:14:4c:aa:96:a5:e1:72: 6f:64:3a:23:34:91:20:28:35:b8:44:9b:26:34:2e: d2:f2:f8:87:4c:90:0f:5f:2f:da:3a:8a:d3:9c:b1: 1f:4d:8b:21:ca:e2:26:fe:fd:27:06:5a:b3:76:30: 0a:88:0d:fd:07:2a:9d:9a:90:8b:79:f9:82:96:2d: 2e:8b:a3:2e:4b:14:25:62:c0:80:cc:05:96:57:f5: 9e:98:c7:b4:7a:77:1e:3b:88:b0:c3:72:fc:46:e1: 50:bb:37:76:9d:82:f2:f2:3c:a6:8b:ab:8a:4f:58: 69:c2:83:4f:22:ae:ef:71:74:30:0a:67:5b:9c:59: 5c:5c:55:5d:a9:e7:6b:d6:b1:09:12:1e:b8:e0:47: 81:fd:0e:33:c3:f6:35:c4:8c:6d:6e:65:3f:33:d8: 38:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:47:8B:EC:CB:37:35:4E:DB:CD:83:4A:F6:A1:E3:B4:04:8F:C2:DD X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/3130332e38322e3232342e302f32332d3233203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.224.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:69:f3:48:dd:4a:8b:01:e1:49:f6:a4:e5:39:d7:f1:74:3c: af:dd:81:d1:66:27:3f:9a:98:2c:bc:99:c1:23:91:01:aa:d1: 7b:32:b3:ab:4b:11:82:7d:4c:90:ea:0b:02:89:75:0b:54:1d: c4:9d:b7:d2:b5:df:d0:95:9b:ce:4b:72:0f:45:cc:96:e9:9d: 04:45:b6:81:c3:f5:a1:c2:83:3e:03:37:4f:65:1d:8f:eb:69: 08:56:ba:0c:c0:d2:b3:89:c7:2f:bb:e9:a1:01:13:1e:f1:ec: 4f:81:c5:18:4a:ac:77:09:d9:6d:c8:94:1d:65:d8:68:00:3b: b1:bd:a1:23:f6:07:23:cc:26:30:45:3c:63:4c:2c:e5:cd:ce: 0a:2c:b1:95:60:be:eb:75:17:66:0c:b7:00:e3:13:fd:f6:a4: 3b:8f:94:38:a2:e1:5f:42:fc:eb:02:7b:83:f2:25:34:06:ee: 8f:05:93:f4:7c:74:0d:d0:58:f8:42:74:81:58:49:51:b0:e8: cb:ae:86:02:ab:1f:7f:99:d7:af:bd:a6:e7:1e:0e:ec:7f:27: 0f:20:8f:fe:4c:e7:e7:ea:f8:a8:76:9e:7f:3d:a3:b7:b4:ba: 32:b0:d8:10:18:35:d3:8c:f9:83:d7:ea:cb:5f:bd:df:0b:a2: b4:4c:61:c2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUcKW9kh3dEM6kxCQWuRq+Kpi67O8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjZaFw0yNzA0MTIwNzA5MjZaMDMxMTAvBgNV BAMTKDc3NDc4QkVDQ0IzNzM1NEVEQkNEODM0QUY2QTFFM0I0MDQ4RkMyREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQUrwU9/G12I1RHNSsLezNkJ5R vqoNpp9REmNh7Tp6v4C1NyCPRZaVLravLSv5PoMjifFEWw6ZJ8fUPy/hDp35gqHz ba8ReKVlZANaMLGH+J+NpfCm6Zf2VTfmj6Yl0yYsFEyqlqXhcm9kOiM0kSAoNbhE myY0LtLy+IdMkA9fL9o6itOcsR9NiyHK4ib+/ScGWrN2MAqIDf0HKp2akIt5+YKW LS6Loy5LFCViwIDMBZZX9Z6Yx7R6dx47iLDDcvxG4VC7N3adgvLyPKaLq4pPWGnC g08iru9xdDAKZ1ucWVxcVV2p52vWsQkSHrjgR4H9DjPD9jXEjG1uZT8z2DghAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUd0eL7Ms3NU7bzYNK9qHjtASPwt0wHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzEzMDMzMmUzODMy MmUzMjMyMzQyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzOTM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWdS4DANBgkqhkiG9w0BAQsFAAOCAQEAXGnzSN1KiwHhSfak5TnX8XQ8r92B 0WYnP5qYLLyZwSORAarRezKzq0sRgn1MkOoLAol1C1QdxJ230rXf0JWbzktyD0XM lumdBEW2gcP1ocKDPgM3T2Udj+tpCFa6DMDSs4nHL7vpoQETHvHsT4HFGEqsdwnZ bciUHWXYaAA7sb2hI/YHI8wmMEU8Y0ws5c3OCiyxlWC+63UXZgy3AOMT/fakO4+U OKLhX0L86wJ7g/IlNAbujwWT9Hx0DdBY+EJ0gVhJUbDoy66GAqsff5nXr72m5x4O 7H8nDyCP/kzn5+r4qHaefz2jt7S6MrDYEBg104z5g9fqy1+93wuitExhwg== -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:03 2026 by rpki-client