$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098515682171092993/0/3130332e32312e3134302e302f32332d3233203d3e2034383131.roa File: 3130332e32312e3134302e302f32332d3233203d3e2034383131.roa (raw, json) Hash identifier: tcwtXl101EjdJnvoeZCk6mNf34pYvQGTfA6kEOpTAGA= Subject key identifier: 26:83:1D:31:3D:9A:3C:EC:44:BC:9A:B8:2D:C3:12:7F:A9:1F:96:1B Certificate issuer: /CN=B479B9B47F8AFC1062B8D469F62A6689067D35EA Certificate serial: 699F95C22930980C5F4DA9BF60958F7DDEF14556 Authority key identifier: B4:79:B9:B4:7F:8A:FC:10:62:B8:D4:69:F6:2A:66:89:06:7D:35:EA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B479B9B47F8AFC1062B8D469F62A6689067D35EA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098515682171092993/0/3130332e32312e3134302e302f32332d3233203d3e2034383131.roa Signing time: Mon 20 Apr 2026 08:16:34 +0000 ROA not before: Mon 20 Apr 2026 08:11:34 +0000 ROA not after: Mon 19 Apr 2027 08:16:34 +0000 asID: 4811 IP address blocks: 103.21.140.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098515682171092993/0/B479B9B47F8AFC1062B8D469F62A6689067D35EA.crl rsync://rpki-rps.cnnic.cn/repo/A1098515682171092993/0/B479B9B47F8AFC1062B8D469F62A6689067D35EA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B479B9B47F8AFC1062B8D469F62A6689067D35EA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 03:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:9f:95:c2:29:30:98:0c:5f:4d:a9:bf:60:95:8f:7d:de:f1:45:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B479B9B47F8AFC1062B8D469F62A6689067D35EA Validity Not Before: Apr 20 08:11:34 2026 GMT Not After : Apr 19 08:16:34 2027 GMT Subject: CN=26831D313D9A3CEC44BC9AB82DC3127FA91F961B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ca:af:bb:22:6a:95:30:f4:84:33:d8:8f:57: f1:66:c4:87:24:e0:b1:2f:0a:55:b9:5e:bd:c8:be: a1:73:d9:11:8d:14:7e:00:61:29:cd:46:59:22:2f: 55:54:aa:5b:65:09:30:9a:36:0a:89:d1:1c:45:7a: 48:59:0f:cc:78:4e:45:4d:0a:35:fc:9e:cf:36:2f: 92:3b:d9:97:a9:64:ff:93:9a:ec:30:5d:3b:88:0a: 57:53:bb:13:90:82:66:e0:f1:23:47:c1:de:d7:b8: 07:c0:f0:9b:f3:51:b1:07:90:d5:e5:70:7b:17:97: aa:47:13:e9:36:41:98:5c:86:8c:93:38:f2:8f:9d: b4:36:2f:49:de:03:59:d9:8d:63:cd:e7:d7:84:43: 15:57:3f:3d:b5:15:b2:30:b7:21:bf:77:32:5b:62: 9a:4e:4b:26:7c:f8:7a:b5:92:17:00:03:0c:22:49: eb:76:a7:13:d9:a7:26:ca:55:fa:2a:44:20:da:bd: c2:f8:e2:8b:15:ec:14:25:53:60:6c:a9:5b:0f:cb: 58:18:b2:16:40:2a:08:9d:e6:97:a2:dc:56:7b:56: 8d:ce:39:83:57:49:1f:b9:ef:9c:a8:23:13:e9:7b: ac:1b:97:5d:84:20:9d:45:58:7d:09:dd:52:4a:c7: 87:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:83:1D:31:3D:9A:3C:EC:44:BC:9A:B8:2D:C3:12:7F:A9:1F:96:1B X509v3 Authority Key Identifier: keyid:B4:79:B9:B4:7F:8A:FC:10:62:B8:D4:69:F6:2A:66:89:06:7D:35:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098515682171092993/0/B479B9B47F8AFC1062B8D469F62A6689067D35EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B479B9B47F8AFC1062B8D469F62A6689067D35EA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098515682171092993/0/3130332e32312e3134302e302f32332d3233203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.140.0/23 Signature Algorithm: sha256WithRSAEncryption d7:54:7e:de:82:d9:41:1f:72:5f:b8:38:7a:a7:bc:c9:96:fc: 29:cf:8f:e8:20:ff:c6:d9:0f:a7:eb:7d:7a:3c:cd:c3:50:ce: 11:c7:c4:6b:06:15:d5:9a:cc:a1:29:58:bc:66:09:76:bf:d1: 52:65:04:9c:7c:83:ca:74:79:31:61:22:44:fa:84:c0:7d:97: cc:90:dd:96:03:18:8f:99:3d:6a:b8:fc:01:bc:b9:ed:09:49: 23:a7:c6:79:41:5f:ca:9d:16:31:af:2e:e9:9d:83:b9:85:bc: 66:75:b7:42:61:76:59:24:45:85:f9:76:1c:96:b2:c2:2d:32: a4:ce:c9:ac:cd:d3:b8:40:d9:a5:f3:4f:e2:c9:27:33:0c:ce: 6e:72:25:2e:6f:2f:38:02:00:83:e4:d8:18:cd:de:88:8b:46: d7:a8:a0:67:04:b3:f5:2a:73:99:8a:44:eb:29:14:44:ef:35: e3:5e:bf:a1:f9:60:9d:12:1f:08:9c:bd:3d:70:94:0c:2a:f1: 7f:55:49:62:6d:29:c5:5c:e6:bb:97:4a:88:72:e3:fa:3c:a6: d5:03:f1:ae:94:46:43:b9:f9:49:02:81:04:4c:71:a1:47:de: 61:dc:cf:9a:fe:fc:1d:b4:71:fa:22:df:43:da:df:36:e1:22: c8:fd:0e:9b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUaZ+VwikwmAxfTam/YJWPfd7xRVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ3OUI5QjQ3RjhBRkMxMDYyQjhENDY5RjYyQTY2ODkw NjdEMzVFQTAeFw0yNjA0MjAwODExMzRaFw0yNzA0MTkwODE2MzRaMDMxMTAvBgNV BAMTKDI2ODMxRDMxM0Q5QTNDRUM0NEJDOUFCODJEQzMxMjdGQTkxRjk2MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAyq+7ImqVMPSEM9iPV/FmxIck 4LEvClW5Xr3IvqFz2RGNFH4AYSnNRlkiL1VUqltlCTCaNgqJ0RxFekhZD8x4TkVN CjX8ns82L5I72ZepZP+TmuwwXTuICldTuxOQgmbg8SNHwd7XuAfA8JvzUbEHkNXl cHsXl6pHE+k2QZhchoyTOPKPnbQ2L0neA1nZjWPN59eEQxVXPz21FbIwtyG/dzJb YppOSyZ8+Hq1khcAAwwiSet2pxPZpybKVfoqRCDavcL44osV7BQlU2BsqVsPy1gY shZAKgid5pei3FZ7Vo3OOYNXSR+575yoIxPpe6wbl12EIJ1FWH0J3VJKx4cpAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUJoMdMT2aPOxEvJq4LcMSf6kflhswHwYDVR0j BBgwFoAUtHm5tH+K/BBiuNRp9ipmiQZ9NeowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODUxNTY4MjE3MTA5Mjk5My8wL0I0NzlCOUI0N0Y4QUZDMTA2MkI4RDQ2OUY2MkE2 Njg5MDY3RDM1RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjQ3OUI5QjQ3RjhBRkMxMDYyQjhENDY5RjYyQTY2ODkwNjdEMzVFQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NTE1NjgyMTcxMDkyOTkzLzAvMzEzMDMzMmUzMjMx MmUzMTM0MzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzEzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWcVjDANBgkqhkiG9w0BAQsFAAOCAQEA11R+3oLZQR9yX7g4eqe8yZb8Kc+P 6CD/xtkPp+t9ejzNw1DOEcfEawYV1ZrMoSlYvGYJdr/RUmUEnHyDynR5MWEiRPqE wH2XzJDdlgMYj5k9arj8Aby57QlJI6fGeUFfyp0WMa8u6Z2DuYW8ZnW3QmF2WSRF hfl2HJaywi0ypM7JrM3TuEDZpfNP4sknMwzObnIlLm8vOAIAg+TYGM3eiItG16ig ZwSz9SpzmYpE6ykURO81416/oflgnRIfCJy9PXCUDCrxf1VJYm0pxVzmu5dKiHLj +jym1QPxrpRGQ7n5SQKBBExxoUfeYdzPmv78HbRx+iLfQ9rfNuEiyP0Omw== -----END CERTIFICATE-----Generated at Mon Apr 27 11:00:43 2026 by rpki-client