$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099216366411448321/0/3130332e32342e3137362e302f32322d3232203d3e20313335303631.roa File: 3130332e32342e3137362e302f32322d3232203d3e20313335303631.roa (raw, json) Hash identifier: sXBIyQqRHVSZNcPR9Xrj9U2Y6sS9BHJ6YoFqJ54U90c= Subject key identifier: 94:D5:8C:44:7E:03:EA:F5:1F:F5:04:2D:96:BF:64:4C:A7:A4:C1:45 Certificate issuer: /CN=158B95F55D548B072B42C2C2820ACE7D9908E60F Certificate serial: 5E64A389A5D8C065B0926526E48030F060838DFB Authority key identifier: 15:8B:95:F5:5D:54:8B:07:2B:42:C2:C2:82:0A:CE:7D:99:08:E6:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/3130332e32342e3137362e302f32322d3232203d3e20313335303631.roa Signing time: Wed 22 Apr 2026 06:18:52 +0000 ROA not before: Wed 22 Apr 2026 06:13:52 +0000 ROA not after: Wed 21 Apr 2027 06:18:52 +0000 asID: 135061 IP address blocks: 103.24.176.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.crl rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 11:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:64:a3:89:a5:d8:c0:65:b0:92:65:26:e4:80:30:f0:60:83:8d:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=158B95F55D548B072B42C2C2820ACE7D9908E60F Validity Not Before: Apr 22 06:13:52 2026 GMT Not After : Apr 21 06:18:52 2027 GMT Subject: CN=94D58C447E03EAF51FF5042D96BF644CA7A4C145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b6:98:79:ce:e4:55:35:8d:12:24:d3:15:68: 65:14:32:fc:9f:e7:52:e5:70:25:9f:50:3d:1b:e3: 57:17:cc:de:b0:7c:dd:18:a0:4a:46:e4:a1:47:87: e9:fe:fd:61:b4:bd:a9:7f:fb:da:59:ca:1f:22:68: 18:7a:c0:ab:73:b8:df:07:44:f3:c2:09:34:3c:3b: 87:94:7a:ca:f1:a8:d2:8a:d2:ae:ec:b8:4b:fd:88: de:34:3c:ee:87:13:f9:ea:af:5c:d8:96:a6:5c:44: d2:c1:49:c1:ca:38:d0:c6:a7:c1:ec:4f:59:c2:d7: 90:f0:1d:d5:c5:59:c7:ce:34:90:1a:d3:8b:93:ba: 4d:47:5d:a1:19:67:03:c0:5b:95:49:ba:a8:ca:eb: 41:a9:a7:60:4d:2b:bc:6e:da:a0:e5:21:03:78:d2: 5f:7e:73:72:d0:de:1f:18:74:04:ce:d2:65:4e:87: 93:c1:19:c1:f7:be:99:f4:8c:18:f8:f0:b3:2b:ee: ae:ae:50:94:b2:39:fb:89:82:a1:4b:cb:6d:74:2d: 4c:bd:6a:f4:3d:c1:de:77:8a:d1:bd:4b:c1:d0:fd: 25:3e:68:38:c3:65:41:46:3f:ba:ce:74:b0:a2:15: 69:48:fe:d8:e7:71:49:d4:f1:7d:7b:48:c2:4c:d7: 30:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D5:8C:44:7E:03:EA:F5:1F:F5:04:2D:96:BF:64:4C:A7:A4:C1:45 X509v3 Authority Key Identifier: keyid:15:8B:95:F5:5D:54:8B:07:2B:42:C2:C2:82:0A:CE:7D:99:08:E6:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/3130332e32342e3137362e302f32322d3232203d3e20313335303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.176.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:29:3c:b4:e3:3b:42:37:3c:5f:95:23:d9:36:f0:12:45:b2: 24:b2:d8:a9:ab:85:27:cc:37:86:bf:23:a9:87:7f:46:50:20: 91:c0:61:b5:0d:8a:95:0a:96:02:bd:61:d5:9f:67:54:dc:02: 40:b9:c4:fb:7e:3b:ae:a2:30:cc:1e:df:ee:2a:1e:a2:35:28: aa:c5:80:4b:d4:2d:7a:e3:a9:f8:58:6f:8e:40:9f:79:4f:c5: 1b:1d:f6:99:d7:7c:67:95:93:de:84:8f:41:36:03:df:55:8a: da:96:3c:86:ac:de:24:b7:39:e4:bb:81:d2:1e:ac:79:85:9d: 1f:73:e8:f9:81:20:6c:99:8c:78:0f:c6:9b:b3:11:61:97:22: 3c:6f:58:10:0f:e0:bf:20:b9:5d:81:52:b4:4f:f1:9c:75:ac: fb:a6:5f:8a:7b:b1:d0:68:2f:b3:9b:fb:dd:20:04:a1:9a:be: b1:37:a9:e3:2a:5c:5c:04:78:9d:75:5c:c8:f0:4a:47:66:09: 47:f3:b5:46:ea:1e:0a:e3:04:0e:fd:99:a1:77:94:13:a7:76: 2c:af:df:80:b4:62:29:fa:63:34:0f:40:c0:e9:3a:b4:e0:d1: c5:96:52:db:6b:fe:2e:5f:7e:69:69:2b:58:ae:94:85:6c:e7: 4e:6b:6d:6c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUXmSjiaXYwGWwkmUm5IAw8GCDjfswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU4Qjk1RjU1RDU0OEIwNzJCNDJDMkMyODIwQUNFN0Q5 OTA4RTYwRjAeFw0yNjA0MjIwNjEzNTJaFw0yNzA0MjEwNjE4NTJaMDMxMTAvBgNV BAMTKDk0RDU4QzQ0N0UwM0VBRjUxRkY1MDQyRDk2QkY2NDRDQTdBNEMxNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5tph5zuRVNY0SJNMVaGUUMvyf 51LlcCWfUD0b41cXzN6wfN0YoEpG5KFHh+n+/WG0val/+9pZyh8iaBh6wKtzuN8H RPPCCTQ8O4eUesrxqNKK0q7suEv9iN40PO6HE/nqr1zYlqZcRNLBScHKONDGp8Hs T1nC15DwHdXFWcfONJAa04uTuk1HXaEZZwPAW5VJuqjK60Gpp2BNK7xu2qDlIQN4 0l9+c3LQ3h8YdATO0mVOh5PBGcH3vpn0jBj48LMr7q6uUJSyOfuJgqFLy210LUy9 avQ9wd53itG9S8HQ/SU+aDjDZUFGP7rOdLCiFWlI/tjncUnU8X17SMJM1zALAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUlNWMRH4D6vUf9QQtlr9kTKekwUUwHwYDVR0j BBgwFoAUFYuV9V1UiwcrQsLCggrOfZkI5g8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTIxNjM2NjQxMTQ0ODMyMS8wLzE1OEI5NUY1NUQ1NDhCMDcyQjQyQzJDMjgyMEFD RTdEOTkwOEU2MEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTU4Qjk1RjU1RDU0OEIwNzJCNDJDMkMyODIwQUNFN0Q5OTA4RTYwRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTkyMTYzNjY0MTE0NDgzMjEvMC8zMTMwMzMyZTMy MzQyZTMxMzczNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzNTMwMzYzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmcYsDANBgkqhkiG9w0BAQsFAAOCAQEAOyk8tOM7Qjc8X5Uj2Tbw EkWyJLLYqauFJ8w3hr8jqYd/RlAgkcBhtQ2KlQqWAr1h1Z9nVNwCQLnE+347rqIw zB7f7ioeojUoqsWAS9QteuOp+FhvjkCfeU/FGx32mdd8Z5WT3oSPQTYD31WK2pY8 hqzeJLc55LuB0h6seYWdH3Po+YEgbJmMeA/Gm7MRYZciPG9YEA/gvyC5XYFStE/x nHWs+6Zfinux0Ggvs5v73SAEoZq+sTep4ypcXAR4nXVcyPBKR2YJR/O1RuoeCuME Dv2ZoXeUE6d2LK/fgLRiKfpjNA9AwOk6tODRxZZS22v+Ll9+aWkrWK6UhWznTmtt bA== -----END CERTIFICATE-----Generated at Mon Apr 27 19:26:13 2026 by rpki-client