$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3232332e37322e302f32322d3232203d3e2030.roa File: 3130332e3232332e37322e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: FqYstaJDjg7tmxEGtum6iSsLgTAPX+rihadYFc4vywQ= Subject key identifier: 2D:1A:F3:76:EB:24:A9:48:37:3C:56:2C:FC:DB:0A:E8:BD:87:B6:5C Certificate issuer: /CN=BF2CC5E7AE1027E33C5247AB67FBD696135E32B3 Certificate serial: 698808E4B3CC19B1A05258D7E018E184AF7F198B Authority key identifier: BF:2C:C5:E7:AE:10:27:E3:3C:52:47:AB:67:FB:D6:96:13:5E:32:B3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3232332e37322e302f32322d3232203d3e2030.roa Signing time: Mon 27 Apr 2026 03:44:05 +0000 ROA not before: Mon 27 Apr 2026 03:39:05 +0000 ROA not after: Mon 26 Apr 2027 03:44:05 +0000 asID: 0 IP address blocks: 103.223.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 07:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:88:08:e4:b3:cc:19:b1:a0:52:58:d7:e0:18:e1:84:af:7f:19:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF2CC5E7AE1027E33C5247AB67FBD696135E32B3 Validity Not Before: Apr 27 03:39:05 2026 GMT Not After : Apr 26 03:44:05 2027 GMT Subject: CN=2D1AF376EB24A948373C562CFCDB0AE8BD87B65C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6b:33:4d:d3:56:6c:38:52:a7:6f:03:2c:de: 5e:b2:b9:a5:83:31:36:c2:99:f9:30:65:f6:c5:1f: 33:5a:9b:ce:7a:bc:46:04:a7:3e:43:c6:06:c1:61: a9:fd:c1:da:49:a0:e0:5e:e8:b4:1e:4b:a6:9c:7a: fe:df:ed:a6:56:4c:af:23:4a:cd:de:87:b7:39:0f: 80:92:40:b1:2f:43:08:67:6f:c9:d6:c3:f3:5a:19: 54:ca:6f:b2:bb:4a:07:ee:f8:24:02:6e:12:de:5b: 46:ae:2d:85:65:0f:72:68:37:d0:a2:c4:30:13:27: 0f:9f:f3:a9:8f:da:a4:92:b3:70:a0:d8:d4:17:b7: a6:6b:4f:95:8f:fc:d4:73:0a:84:eb:c0:8f:a0:1f: c7:8e:1c:3a:4f:17:29:82:d7:78:9c:73:80:ca:fb: 6e:ed:62:d1:4e:16:11:0f:bc:ee:98:05:3b:74:2d: 0d:75:b6:03:34:eb:df:23:e4:04:c2:cf:c0:21:5e: 8b:0a:f0:8f:ad:10:d8:63:59:90:ed:e7:0d:ae:ba: c7:91:c1:60:f5:88:08:8e:b2:c2:77:de:10:59:82: 60:23:48:14:50:31:65:04:bb:0c:7a:db:c9:65:f6: 35:45:8d:17:64:9c:a4:99:5e:a6:9a:bf:a4:cd:19: 41:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1A:F3:76:EB:24:A9:48:37:3C:56:2C:FC:DB:0A:E8:BD:87:B6:5C X509v3 Authority Key Identifier: keyid:BF:2C:C5:E7:AE:10:27:E3:3C:52:47:AB:67:FB:D6:96:13:5E:32:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3232332e37322e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.72.0/22 Signature Algorithm: sha256WithRSAEncryption 28:e9:a3:7e:8c:a6:0f:11:06:e2:8f:7d:c1:99:5e:62:b6:be: f7:d3:bf:49:5e:2a:29:06:3e:9e:08:d4:33:4f:63:90:0c:7f: dd:a1:dd:0c:48:90:b0:6f:39:eb:c9:ff:98:a7:99:51:43:1c: 56:b5:33:4c:3a:23:23:9f:c7:e3:34:95:83:24:6f:60:25:f1: d0:56:37:a1:3e:2c:d8:5e:fa:2d:c0:10:ef:9d:b0:a6:80:37: 1d:c8:ce:d2:ca:63:8c:13:72:f2:82:7b:46:c0:4b:af:c6:53: 20:11:fa:9b:3a:c5:46:7c:37:91:9d:a4:d4:41:47:99:03:7f: fa:af:df:46:b2:27:31:de:49:5f:c6:9a:17:66:c8:dd:36:b1: 2b:75:7a:05:ec:37:e0:9a:2c:8c:d6:ad:0f:18:34:cb:99:cf: 05:7a:f2:fa:1b:5e:d9:98:05:41:ff:80:86:8f:02:80:78:5a: 38:0a:b4:46:a0:6e:66:7d:fb:f0:c6:a4:c7:b3:09:b3:e5:0b: 0b:41:8a:74:61:e9:bd:bc:34:77:d6:5f:5f:3c:5b:51:2e:dc: 5d:8f:d2:5b:61:d2:b5:06:d3:dd:29:81:56:99:2b:41:83:04: 82:ee:f3:3d:d7:24:b5:f1:15:7c:ed:0a:ac:ad:03:86:5d:d2: 4c:e3:bb:d2 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUaYgI5LPMGbGgUljX4BjhhK9/GYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYyQ0M1RTdBRTEwMjdFMzNDNTI0N0FCNjdGQkQ2OTYx MzVFMzJCMzAeFw0yNjA0MjcwMzM5MDVaFw0yNzA0MjYwMzQ0MDVaMDMxMTAvBgNV BAMTKDJEMUFGMzc2RUIyNEE5NDgzNzNDNTYyQ0ZDREIwQUU4QkQ4N0I2NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWazNN01ZsOFKnbwMs3l6yuaWD MTbCmfkwZfbFHzNam856vEYEpz5DxgbBYan9wdpJoOBe6LQeS6acev7f7aZWTK8j Ss3eh7c5D4CSQLEvQwhnb8nWw/NaGVTKb7K7Sgfu+CQCbhLeW0auLYVlD3JoN9Ci xDATJw+f86mP2qSSs3Cg2NQXt6ZrT5WP/NRzCoTrwI+gH8eOHDpPFymC13icc4DK +27tYtFOFhEPvO6YBTt0LQ11tgM0698j5ATCz8AhXosK8I+tENhjWZDt5w2uuseR wWD1iAiOssJ33hBZgmAjSBRQMWUEuwx628ll9jVFjRdknKSZXqaav6TNGUGFAgMB AAGjggILMIICBzAdBgNVHQ4EFgQULRrzduskqUg3PFYs/NsK6L2HtlwwHwYDVR0j BBgwFoAUvyzF564QJ+M8UkerZ/vWlhNeMrMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcxNjI5OTQ1Njc0MTM3Ny8wL0JGMkNDNUU3QUUxMDI3RTMzQzUyNDdBQjY3RkJE Njk2MTM1RTMyQjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkYyQ0M1RTdBRTEwMjdFMzNDNTI0N0FCNjdGQkQ2OTYxMzVFMzJCMy5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NzE2Mjk5NDU2NzQxMzc3LzAvMzEzMDMzMmUzMjMy MzMyZTM3MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmff SDANBgkqhkiG9w0BAQsFAAOCAQEAKOmjfoymDxEG4o99wZleYra+99O/SV4qKQY+ ngjUM09jkAx/3aHdDEiQsG8568n/mKeZUUMcVrUzTDojI5/H4zSVgyRvYCXx0FY3 oT4s2F76LcAQ752wpoA3HcjO0spjjBNy8oJ7RsBLr8ZTIBH6mzrFRnw3kZ2k1EFH mQN/+q/fRrInMd5JX8aaF2bI3TaxK3V6Bew34JosjNatDxg0y5nPBXry+hte2ZgF Qf+Aho8CgHhaOAq0RqBuZn378Makx7MJs+ULC0GKdGHpvbw0d9ZfXzxbUS7cXY/S W2HStQbT3SmBVpkrQYMEgu7zPdcktfEVfO0KrK0Dhl3STOO70g== -----END CERTIFICATE-----Generated at Mon Apr 27 16:37:56 2026 by rpki-client