$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098786411550605315/0/3130332e3137372e32382e302f32332d3233203d3e203137363231.roa File: 3130332e3137372e32382e302f32332d3233203d3e203137363231.roa (raw, json) Hash identifier: Dlx7lY1z0/XlUn+WKI8O1sXJXbvyarBPWXacwzytkh4= Subject key identifier: 00:A2:E3:06:9C:9A:03:BE:69:57:29:CE:91:16:E8:0A:66:66:71:0A Certificate issuer: /CN=8DC9C03E9DEC6A8F91CB72215C9A4A9B8C681794 Certificate serial: 39163CA013A406BD35F7E3B66301418E4268329D Authority key identifier: 8D:C9:C0:3E:9D:EC:6A:8F:91:CB:72:21:5C:9A:4A:9B:8C:68:17:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8DC9C03E9DEC6A8F91CB72215C9A4A9B8C681794.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098786411550605315/0/3130332e3137372e32382e302f32332d3233203d3e203137363231.roa Signing time: Tue 21 Apr 2026 01:50:03 +0000 ROA not before: Tue 21 Apr 2026 01:45:03 +0000 ROA not after: Tue 20 Apr 2027 01:50:03 +0000 asID: 17621 IP address blocks: 103.177.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098786411550605315/0/8DC9C03E9DEC6A8F91CB72215C9A4A9B8C681794.crl rsync://rpki-rps.cnnic.cn/repo/A1098786411550605315/0/8DC9C03E9DEC6A8F91CB72215C9A4A9B8C681794.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8DC9C03E9DEC6A8F91CB72215C9A4A9B8C681794.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 00:49:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:16:3c:a0:13:a4:06:bd:35:f7:e3:b6:63:01:41:8e:42:68:32:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DC9C03E9DEC6A8F91CB72215C9A4A9B8C681794 Validity Not Before: Apr 21 01:45:03 2026 GMT Not After : Apr 20 01:50:03 2027 GMT Subject: CN=00A2E3069C9A03BE695729CE9116E80A6666710A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fb:ff:7d:de:b2:a1:d7:7e:c7:94:68:b3:7f: 6e:b5:f1:19:0e:27:73:c2:1e:f3:f6:40:7e:eb:05: 9e:b1:fd:b4:71:25:85:35:ae:f1:60:98:63:b2:e7: b8:8f:90:56:18:b8:79:c2:91:25:5f:cb:31:22:0a: 11:e0:6e:08:57:0c:26:0e:79:25:92:2b:d1:05:ae: 04:a5:8f:50:c8:f1:99:a2:a1:0f:b9:c0:ac:91:1d: 85:fa:f0:f3:6b:cf:7a:8c:01:70:7f:53:b8:99:93: 39:51:0e:3c:f2:4a:19:9d:ff:74:47:c2:fc:eb:3c: 74:75:14:67:a0:4f:aa:0b:a3:d8:2b:fc:b7:74:e0: 3a:f8:25:c1:d5:6f:14:35:00:0d:f0:2e:bf:52:69: 1e:40:08:cf:d0:f0:78:7e:6b:94:d6:6e:8f:62:16: 15:02:77:75:96:6e:df:96:02:14:86:b5:65:0a:a5: f2:e8:dc:25:e9:b7:b5:65:65:36:11:53:e9:8b:35: 10:c5:b5:14:f5:ef:b3:06:ce:28:6c:7c:e4:ce:e8: c9:ac:f3:ac:57:42:72:42:d3:b1:eb:5b:4c:ae:f2: cd:d6:96:b6:77:d7:7e:1e:c1:09:e4:ad:98:88:ee: d6:aa:bb:fc:d4:ce:37:6d:84:32:d4:34:a1:7a:2a: 32:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A2:E3:06:9C:9A:03:BE:69:57:29:CE:91:16:E8:0A:66:66:71:0A X509v3 Authority Key Identifier: keyid:8D:C9:C0:3E:9D:EC:6A:8F:91:CB:72:21:5C:9A:4A:9B:8C:68:17:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098786411550605315/0/8DC9C03E9DEC6A8F91CB72215C9A4A9B8C681794.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8DC9C03E9DEC6A8F91CB72215C9A4A9B8C681794.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098786411550605315/0/3130332e3137372e32382e302f32332d3233203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.28.0/23 Signature Algorithm: sha256WithRSAEncryption 25:bd:73:f7:00:eb:46:5f:c5:37:50:94:1a:6b:de:70:7b:9b: e7:6d:ba:f6:50:05:e8:e0:cb:b3:70:46:c5:14:ab:27:a8:17: c4:60:33:b4:3f:ea:87:33:4a:8f:3d:45:54:b9:31:69:c1:b1: 92:28:02:23:5e:f2:e9:c0:64:f5:1b:64:2e:73:9c:c7:fe:51: 31:5e:23:73:28:83:0b:ff:ba:19:39:ce:83:cc:2c:85:6e:83: 96:29:21:3c:1f:62:f8:46:f8:e1:e0:64:99:a7:83:de:69:b9: 33:95:b2:e4:ee:2e:3e:c4:99:8c:c6:b4:fa:0a:af:8c:0a:ca: bf:0d:de:02:6e:39:3a:bd:56:29:92:2a:88:fb:a1:db:9d:f8: c3:a5:93:68:4e:c2:43:cb:60:9e:bc:f1:34:dc:98:97:d3:4e: 33:b1:23:0e:7b:6d:17:c7:58:fd:bf:67:00:5a:ca:ae:ea:55: 9e:b2:87:5e:a7:70:a6:61:18:da:59:21:f9:e2:28:e4:ce:b3: a4:30:cb:27:fe:6e:09:a5:7c:86:b5:ce:b3:49:06:a7:4d:ef: 24:89:ed:2e:35:3c:4f:81:74:2d:ca:61:21:e0:54:86:9f:2d: 0b:6e:11:f6:07:02:62:c3:d6:85:fe:7c:46:4e:63:a0:6d:0c: d4:6b:6d:12 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUORY8oBOkBr019+O2YwFBjkJoMp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERDOUMwM0U5REVDNkE4RjkxQ0I3MjIxNUM5QTRBOUI4 QzY4MTc5NDAeFw0yNjA0MjEwMTQ1MDNaFw0yNzA0MjAwMTUwMDNaMDMxMTAvBgNV BAMTKDAwQTJFMzA2OUM5QTAzQkU2OTU3MjlDRTkxMTZFODBBNjY2NjcxMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz+/993rKh137HlGizf2618RkO J3PCHvP2QH7rBZ6x/bRxJYU1rvFgmGOy57iPkFYYuHnCkSVfyzEiChHgbghXDCYO eSWSK9EFrgSlj1DI8ZmioQ+5wKyRHYX68PNrz3qMAXB/U7iZkzlRDjzyShmd/3RH wvzrPHR1FGegT6oLo9gr/Ld04Dr4JcHVbxQ1AA3wLr9SaR5ACM/Q8Hh+a5TWbo9i FhUCd3WWbt+WAhSGtWUKpfLo3CXpt7VlZTYRU+mLNRDFtRT177MGzihsfOTO6Mms 86xXQnJC07HrW0yu8s3WlrZ3134ewQnkrZiI7taqu/zUzjdthDLUNKF6KjIRAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUAKLjBpyaA75pVynOkRboCmZmcQowHwYDVR0j BBgwFoAUjcnAPp3sao+Ry3IhXJpKm4xoF5QwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODc4NjQxMTU1MDYwNTMxNS8wLzhEQzlDMDNFOURFQzZBOEY5MUNCNzIyMTVDOUE0 QTlCOEM2ODE3OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOERDOUMwM0U5REVDNkE4RjkxQ0I3MjIxNUM5QTRBOUI4QzY4MTc5NC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODc4NjQxMTU1MDYwNTMxNS8wLzMxMzAzMzJlMzEz NzM3MmUzMjM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzEzNzM2MzIzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWexHDANBgkqhkiG9w0BAQsFAAOCAQEAJb1z9wDrRl/FN1CUGmvecHub 52269lAF6ODLs3BGxRSrJ6gXxGAztD/qhzNKjz1FVLkxacGxkigCI17y6cBk9Rtk LnOcx/5RMV4jcyiDC/+6GTnOg8wshW6DlikhPB9i+Eb44eBkmaeD3mm5M5Wy5O4u PsSZjMa0+gqvjArKvw3eAm45Or1WKZIqiPuh2534w6WTaE7CQ8tgnrzxNNyYl9NO M7EjDnttF8dY/b9nAFrKrupVnrKHXqdwpmEY2lkh+eIo5M6zpDDLJ/5uCaV8hrXO s0kGp03vJIntLjU8T4F0LcphIeBUhp8tC24R9gcCYsPWhf58Rk5joG0M1GttEg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:00:48 2026 by rpki-client