$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3232332e36342e302f32322d3232203d3e2030.roa File: 3130332e3232332e36342e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: rIF3hyIEEl6Mher4Y63kJzfGvu+uKEDr/8wbeQZhnQc= Subject key identifier: 9B:74:98:3A:09:43:9D:D0:04:17:84:D5:0E:20:32:71:BE:95:4F:36 Certificate issuer: /CN=BF2CC5E7AE1027E33C5247AB67FBD696135E32B3 Certificate serial: 616455E349604C11ED53815FEEA0F0CA8BE54154 Authority key identifier: BF:2C:C5:E7:AE:10:27:E3:3C:52:47:AB:67:FB:D6:96:13:5E:32:B3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3232332e36342e302f32322d3232203d3e2030.roa Signing time: Mon 27 Apr 2026 03:44:04 +0000 ROA not before: Mon 27 Apr 2026 03:39:04 +0000 ROA not after: Mon 26 Apr 2027 03:44:04 +0000 asID: 0 IP address blocks: 103.223.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 07:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:64:55:e3:49:60:4c:11:ed:53:81:5f:ee:a0:f0:ca:8b:e5:41:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF2CC5E7AE1027E33C5247AB67FBD696135E32B3 Validity Not Before: Apr 27 03:39:04 2026 GMT Not After : Apr 26 03:44:04 2027 GMT Subject: CN=9B74983A09439DD0041784D50E203271BE954F36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a2:a4:3c:96:10:d1:bf:58:ac:4b:54:5d:91: 23:43:c5:37:60:8b:b8:92:7e:3a:9b:71:35:26:bb: 29:c2:af:81:65:df:61:11:88:15:1f:bc:35:70:56: d8:bf:98:bb:6c:c9:61:49:a4:25:c6:00:8f:63:6c: 99:0b:ac:2a:9d:2e:0f:77:f3:11:65:d6:8b:12:69: e0:90:c4:52:7f:86:1d:b4:a5:31:47:a8:b0:4a:2e: 46:ef:d8:fa:af:f7:95:20:7f:d2:c5:1e:72:cf:78: 5d:6b:e9:4a:70:eb:7d:a8:55:b2:c3:1f:28:b4:26: 53:75:64:d6:24:97:c4:25:1c:df:bf:7f:35:16:79: aa:07:5d:36:bf:7a:7d:45:c0:96:92:3e:a5:ff:b8: 37:4d:fb:d2:ea:e9:0c:d6:e7:07:89:52:f2:36:62: 1b:25:6d:e3:dc:24:a8:59:3c:b0:26:f6:29:1c:8e: 84:a0:4c:5f:5c:a2:f3:19:e0:a8:ed:a3:58:34:30: 83:70:48:69:98:57:fe:40:53:a6:18:d4:90:a8:a5: d6:35:8f:bb:7e:ba:4e:b2:6d:85:0d:9a:c6:86:d1: f4:6e:36:4f:c0:13:38:0d:5b:6c:24:71:29:a0:1f: 05:06:81:09:33:b6:dc:e1:94:68:d7:d1:e2:14:c3: 7f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:74:98:3A:09:43:9D:D0:04:17:84:D5:0E:20:32:71:BE:95:4F:36 X509v3 Authority Key Identifier: keyid:BF:2C:C5:E7:AE:10:27:E3:3C:52:47:AB:67:FB:D6:96:13:5E:32:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3232332e36342e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.64.0/22 Signature Algorithm: sha256WithRSAEncryption b4:04:94:10:24:44:0e:a7:05:df:ab:72:3f:87:ac:73:8d:7c: 5f:c5:e3:bf:3a:7f:af:86:6e:80:0a:a1:0a:64:47:7d:11:26: 87:68:34:a4:5c:36:51:23:2f:43:63:c3:42:51:df:77:53:05: b9:7f:ff:b1:6c:b4:36:f9:35:1b:5e:d7:6e:f7:f9:bc:e3:d9: b9:2f:06:28:fd:e0:2f:e4:b2:03:90:24:56:13:99:ce:6b:87: ce:35:25:d8:58:4b:72:f6:d5:ac:b1:62:69:b9:27:6a:76:52: 37:24:ba:59:40:44:a2:d4:b3:53:f9:9f:d0:3a:15:47:26:fc: 1b:11:18:c8:c4:ff:43:86:ff:2c:91:d1:cb:3c:23:54:60:5f: 68:d1:ea:ff:a4:0a:c4:b1:97:40:c4:38:68:d0:72:0a:81:ac: 02:bf:c8:f0:30:5a:3e:85:10:c0:c6:31:bd:14:9c:a8:b8:d0: a7:6f:18:2a:6f:2d:56:94:20:f9:69:f3:a7:1a:4f:a3:34:5c: cb:07:64:71:ea:3e:45:18:c3:54:29:52:88:42:b4:4b:90:59: a8:c3:8e:be:09:cb:9b:d9:65:af:c9:c3:da:d4:57:1e:fe:b2: 3b:51:c4:d8:9a:05:7e:de:1e:e9:9b:f3:f7:27:8b:2a:31:70: 2b:72:e6:08 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUYWRV40lgTBHtU4Ff7qDwyovlQVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYyQ0M1RTdBRTEwMjdFMzNDNTI0N0FCNjdGQkQ2OTYx MzVFMzJCMzAeFw0yNjA0MjcwMzM5MDRaFw0yNzA0MjYwMzQ0MDRaMDMxMTAvBgNV BAMTKDlCNzQ5ODNBMDk0MzlERDAwNDE3ODRENTBFMjAzMjcxQkU5NTRGMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDroqQ8lhDRv1isS1RdkSNDxTdg i7iSfjqbcTUmuynCr4Fl32ERiBUfvDVwVti/mLtsyWFJpCXGAI9jbJkLrCqdLg93 8xFl1osSaeCQxFJ/hh20pTFHqLBKLkbv2Pqv95Ugf9LFHnLPeF1r6Upw632oVbLD Hyi0JlN1ZNYkl8QlHN+/fzUWeaoHXTa/en1FwJaSPqX/uDdN+9Lq6QzW5weJUvI2 YhslbePcJKhZPLAm9ikcjoSgTF9covMZ4Kjto1g0MINwSGmYV/5AU6YY1JCopdY1 j7t+uk6ybYUNmsaG0fRuNk/AEzgNW2wkcSmgHwUGgQkzttzhlGjX0eIUw38RAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUm3SYOglDndAEF4TVDiAycb6VTzYwHwYDVR0j BBgwFoAUvyzF564QJ+M8UkerZ/vWlhNeMrMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcxNjI5OTQ1Njc0MTM3Ny8wL0JGMkNDNUU3QUUxMDI3RTMzQzUyNDdBQjY3RkJE Njk2MTM1RTMyQjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkYyQ0M1RTdBRTEwMjdFMzNDNTI0N0FCNjdGQkQ2OTYxMzVFMzJCMy5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NzE2Mjk5NDU2NzQxMzc3LzAvMzEzMDMzMmUzMjMy MzMyZTM2MzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmff QDANBgkqhkiG9w0BAQsFAAOCAQEAtASUECREDqcF36tyP4esc418X8Xjvzp/r4Zu gAqhCmRHfREmh2g0pFw2USMvQ2PDQlHfd1MFuX//sWy0Nvk1G17Xbvf5vOPZuS8G KP3gL+SyA5AkVhOZzmuHzjUl2FhLcvbVrLFiabknanZSNyS6WUBEotSzU/mf0DoV Ryb8GxEYyMT/Q4b/LJHRyzwjVGBfaNHq/6QKxLGXQMQ4aNByCoGsAr/I8DBaPoUQ wMYxvRScqLjQp28YKm8tVpQg+WnzpxpPozRcywdkceo+RRjDVClSiEK0S5BZqMOO vgnLm9llr8nD2tRXHv6yO1HE2JoFft4e6Zvz9yeLKjFwK3LmCA== -----END CERTIFICATE-----Generated at Mon Apr 27 16:37:11 2026 by rpki-client