$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/3130332e3138332e3132342e302f32332d3234203d3e20313331343833.roa File: 3130332e3138332e3132342e302f32332d3234203d3e20313331343833.roa (raw, json) Hash identifier: DYD3ai6/Fk7Drgmg37f2L+uUKHzKvW77CLSwX3D5aso= Subject key identifier: AC:33:1B:C8:4E:88:E6:EC:4B:BB:0C:64:63:D3:DA:5A:70:27:B6:BD Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 601DD0E89D854DAC331BE55381B8F5D603E25BB4 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/3130332e3138332e3132342e302f32332d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 09:10:49 +0000 ROA not before: Mon 20 Apr 2026 09:05:49 +0000 ROA not after: Mon 19 Apr 2027 09:10:49 +0000 asID: 131483 IP address blocks: 103.183.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:1d:d0:e8:9d:85:4d:ac:33:1b:e5:53:81:b8:f5:d6:03:e2:5b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 09:05:49 2026 GMT Not After : Apr 19 09:10:49 2027 GMT Subject: CN=AC331BC84E88E6EC4BBB0C6463D3DA5A7027B6BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:07:e5:7d:d8:2c:14:c9:cd:9a:7a:84:e3:0d: 43:2d:99:a5:b3:0f:8f:e5:6d:9d:94:91:28:5a:0e: a4:a5:eb:d9:dd:13:90:13:ca:dd:d8:41:80:15:e7: 91:80:f2:5c:f7:b5:5b:8f:aa:a5:42:08:b8:9b:de: 87:f5:89:c3:3d:00:9c:71:55:7d:7a:d5:a0:52:0f: 81:12:f0:14:c6:9b:b4:02:4f:76:b1:b3:a1:4e:bd: fb:d3:f9:e1:c5:ea:23:d9:52:03:55:b7:36:86:a3: 9a:3f:87:5a:d3:dd:99:98:54:06:2c:08:9e:7f:26: d3:90:48:3b:6f:5f:90:12:ef:82:52:32:b8:b1:f9: f1:77:5b:bf:ca:2a:a9:86:07:c6:da:9a:50:0f:ec: c8:c6:67:3c:5b:a8:34:90:b3:18:29:0e:1c:74:f9: af:f0:19:30:14:05:cc:f4:60:11:86:1e:6c:04:8f: 6e:55:93:5b:21:03:76:98:56:d8:6f:b6:fd:37:9f: 4c:81:22:66:a8:6a:08:2b:da:c0:71:ed:dd:24:ea: 20:e4:a7:5d:47:23:e0:04:0b:6e:7e:51:98:76:92: e3:9f:0e:93:77:78:05:dd:76:21:7e:ca:b2:b6:86: 00:c0:b3:86:3e:9e:e4:2d:b5:7d:bc:78:23:25:7f: 3f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:33:1B:C8:4E:88:E6:EC:4B:BB:0C:64:63:D3:DA:5A:70:27:B6:BD X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/3130332e3138332e3132342e302f32332d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.124.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:c6:67:76:e0:96:2c:e9:13:91:fe:c4:37:3a:70:d2:77:d9: f2:eb:77:dc:36:e9:64:f7:b3:ed:e2:32:fc:e7:34:50:1a:da: 66:12:3a:c0:63:58:00:64:69:c8:2a:08:04:f5:6c:66:c9:2d: dd:ff:46:70:9e:8b:e4:d2:27:d9:22:4f:34:a5:df:1b:32:b4: 22:34:8d:54:e6:5c:8d:40:2d:7e:9b:ec:e0:58:44:91:2d:de: 03:b3:66:7e:8a:85:d3:29:fa:32:78:93:aa:c9:2f:70:fc:f2: 5a:96:17:d5:90:45:fd:51:91:31:3f:7a:59:48:77:ad:dd:0d: bd:19:bb:a4:6f:1b:43:12:ee:d8:d9:22:eb:74:8c:6a:06:d8: ca:33:f8:35:7c:44:1f:74:a8:fb:a2:4f:7a:8f:b4:9a:aa:b8: c8:83:f2:e5:ec:a6:c6:00:1f:47:14:38:11:8d:9e:02:12:02: 1e:a3:81:74:2a:a0:8c:31:93:a4:c9:00:1c:db:91:b9:25:a0: 31:47:e2:9a:f4:ed:9b:d5:fc:a6:47:94:17:4b:48:4b:d5:1d: b4:b5:b8:c7:f4:cb:54:56:0f:66:4a:56:9c:14:93:a9:e3:56: 6f:45:21:8c:36:58:81:72:94:79:dd:52:f3:9a:45:99:f6:15: 48:5e:45:c1 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUYB3Q6J2FTawzG+VTgbj11gPiW7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwOTA1NDlaFw0yNzA0MTkwOTEwNDlaMDMxMTAvBgNV BAMTKEFDMzMxQkM4NEU4OEU2RUM0QkJCMEM2NDYzRDNEQTVBNzAyN0I2QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxB+V92CwUyc2aeoTjDUMtmaWz D4/lbZ2UkShaDqSl69ndE5ATyt3YQYAV55GA8lz3tVuPqqVCCLib3of1icM9AJxx VX161aBSD4ES8BTGm7QCT3axs6FOvfvT+eHF6iPZUgNVtzaGo5o/h1rT3ZmYVAYs CJ5/JtOQSDtvX5AS74JSMrix+fF3W7/KKqmGB8bamlAP7MjGZzxbqDSQsxgpDhx0 +a/wGTAUBcz0YBGGHmwEj25Vk1shA3aYVthvtv03n0yBImaoaggr2sBx7d0k6iDk p11HI+AEC25+UZh2kuOfDpN3eAXddiF+yrK2hgDAs4Y+nuQttX28eCMlfz9DAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUrDMbyE6I5uxLuwxkY9PaWnAntr0wHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzEzMDMzMmUz MTM4MzMyZTMxMzIzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzMTM0Mzgz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWe3fDANBgkqhkiG9w0BAQsFAAOCAQEAjMZnduCWLOkTkf7E Nzpw0nfZ8ut33DbpZPez7eIy/Oc0UBraZhI6wGNYAGRpyCoIBPVsZskt3f9GcJ6L 5NIn2SJPNKXfGzK0IjSNVOZcjUAtfpvs4FhEkS3eA7NmfoqF0yn6MniTqskvcPzy WpYX1ZBF/VGRMT96WUh3rd0NvRm7pG8bQxLu2Nki63SMagbYyjP4NXxEH3So+6JP eo+0mqq4yIPy5eymxgAfRxQ4EY2eAhICHqOBdCqgjDGTpMkAHNuRuSWgMUfimvTt m9X8pkeUF0tIS9UdtLW4x/TLVFYPZkpWnBSTqeNWb0UhjDZYgXKUed1S85pFmfYV SF5FwQ== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:04 2026 by rpki-client