$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100991880549629955/0/3130332e3231362e34302e302f32322d3232203d3e2030.roa File: 3130332e3231362e34302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: CJGUWXnox0zuB6o/j+gb69TVgAVyeUqTs1YSv3rOyk4= Subject key identifier: 20:23:8A:C3:D0:B4:44:85:2E:66:0E:49:15:54:F6:8C:E7:5C:44:19 Certificate issuer: /CN=060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD Certificate serial: 695CDB21F9515D20CA846ECB6DA2D7F238554ED0 Authority key identifier: 06:06:77:FF:DB:8F:A3:C6:C6:DC:2F:18:ED:F7:BE:DA:06:5F:B8:AD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/3130332e3231362e34302e302f32322d3232203d3e2030.roa Signing time: Mon 27 Apr 2026 03:50:24 +0000 ROA not before: Mon 27 Apr 2026 03:45:24 +0000 ROA not after: Mon 26 Apr 2027 03:50:24 +0000 asID: 0 IP address blocks: 103.216.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.crl rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:5c:db:21:f9:51:5d:20:ca:84:6e:cb:6d:a2:d7:f2:38:55:4e:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD Validity Not Before: Apr 27 03:45:24 2026 GMT Not After : Apr 26 03:50:24 2027 GMT Subject: CN=20238AC3D0B444852E660E491554F68CE75C4419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1a:58:97:3b:e4:cd:47:e3:56:09:83:38:11: a2:78:43:ce:1c:4f:bf:33:78:e9:09:61:d4:99:44: 93:f6:04:e6:ab:d9:a6:b0:54:a1:e0:5f:04:15:65: eb:13:47:f8:52:67:b2:21:4e:5a:f0:58:1d:77:90: 5d:cc:cb:25:8d:8b:c4:9c:84:37:e9:65:b2:07:cb: 2f:7b:b2:a0:3f:68:ab:94:4b:28:6e:f7:3b:7e:07: b7:92:d7:46:b5:be:8f:cb:6e:83:14:43:d3:d6:05: 7d:84:dd:9e:15:e8:c6:1e:90:d0:7e:3e:ff:31:67: c2:18:92:aa:80:5f:61:3e:e0:cb:49:cc:6b:5e:a8: 37:cb:1b:22:03:ad:0b:33:57:97:bc:6c:c4:02:60: 5b:48:d6:e4:53:35:69:41:e5:9d:bd:0d:d0:2a:97: 6e:ef:b1:e2:85:d7:ca:a4:f9:81:8d:37:8c:de:fa: 4f:46:dd:37:12:3e:29:45:71:45:0d:c2:84:48:f5: 9b:35:a8:45:e1:9c:5f:d3:3f:f9:2a:69:b2:b5:9c: 8e:ce:d4:e1:da:ac:9d:bd:37:69:00:5f:7f:a1:ee: 4e:68:9c:f3:74:a4:7a:67:92:4d:52:8c:cc:54:c3: 11:de:3d:74:f9:2f:00:a9:4c:d7:20:38:3b:1a:1e: ba:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:23:8A:C3:D0:B4:44:85:2E:66:0E:49:15:54:F6:8C:E7:5C:44:19 X509v3 Authority Key Identifier: keyid:06:06:77:FF:DB:8F:A3:C6:C6:DC:2F:18:ED:F7:BE:DA:06:5F:B8:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/060677FFDB8FA3C6C6DC2F18EDF7BEDA065FB8AD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100991880549629955/0/3130332e3231362e34302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.40.0/22 Signature Algorithm: sha256WithRSAEncryption a3:0f:43:95:dd:4d:19:50:6e:68:e2:32:ec:55:6b:a6:a9:45: 8d:f3:11:08:33:03:bc:04:4d:34:81:a1:2d:48:bf:5a:42:c1: 1f:8a:68:dc:ea:42:b6:5f:bc:f2:1f:63:d1:91:4a:35:ee:ff: db:c6:bd:03:10:40:9c:0a:c4:50:7c:ac:d9:64:65:51:89:f5: bc:c0:98:09:3c:b6:a4:5b:a6:65:b9:b2:cd:e0:6e:cf:2b:e5: f6:d5:3c:38:46:f5:fa:c5:d1:7d:fb:94:49:87:d3:f0:58:b8: b3:55:42:28:e0:89:61:89:7d:36:b5:f2:96:e4:1b:2a:9d:1b: f1:26:a7:37:fb:ab:3d:6b:65:bb:8c:c8:02:a5:5e:ed:48:6d: 42:83:9f:84:e8:f3:31:c0:d6:e4:2d:a0:6a:69:12:43:30:49: eb:47:00:72:02:80:10:0a:5a:f2:23:6e:8d:e8:cb:f6:9c:52: c9:dc:7f:c6:a0:ec:f3:98:54:5c:c1:2a:1f:cb:92:0f:75:e5: bc:be:92:d6:8e:f8:5c:24:ab:d7:2f:c8:ec:eb:96:48:cf:52: ea:85:b7:07:2f:e8:78:ce:80:97:c5:0c:97:9a:d6:9c:7e:e6: 14:d7:7d:d5:d8:36:20:81:1a:11:90:a9:03:bd:3a:2e:3a:dd: 90:88:b9:91 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUaVzbIflRXSDKhG7LbaLX8jhVTtAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDYwNjc3RkZEQjhGQTNDNkM2REMyRjE4RURGN0JFREEw NjVGQjhBRDAeFw0yNjA0MjcwMzQ1MjRaFw0yNzA0MjYwMzUwMjRaMDMxMTAvBgNV BAMTKDIwMjM4QUMzRDBCNDQ0ODUyRTY2MEU0OTE1NTRGNjhDRTc1QzQ0MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPGliXO+TNR+NWCYM4EaJ4Q84c T78zeOkJYdSZRJP2BOar2aawVKHgXwQVZesTR/hSZ7IhTlrwWB13kF3MyyWNi8Sc hDfpZbIHyy97sqA/aKuUSyhu9zt+B7eS10a1vo/LboMUQ9PWBX2E3Z4V6MYekNB+ Pv8xZ8IYkqqAX2E+4MtJzGteqDfLGyIDrQszV5e8bMQCYFtI1uRTNWlB5Z29DdAq l27vseKF18qk+YGNN4ze+k9G3TcSPilFcUUNwoRI9Zs1qEXhnF/TP/kqabK1nI7O 1OHarJ29N2kAX3+h7k5onPN0pHpnkk1SjMxUwxHePXT5LwCpTNcgODsaHrqpAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUICOKw9C0RIUuZg5JFVT2jOdcRBkwHwYDVR0j BBgwFoAUBgZ3/9uPo8bG3C8Y7fe+2gZfuK0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk5MTg4MDU0OTYyOTk1NS8wLzA2MDY3N0ZGREI4RkEzQzZDNkRDMkYxOEVERjdC RURBMDY1RkI4QUQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDYwNjc3RkZEQjhGQTNDNkM2REMyRjE4RURGN0JFREEwNjVGQjhBRC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAwOTkxODgwNTQ5NjI5OTU1LzAvMzEzMDMzMmUzMjMx MzYyZTM0MzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmfY KDANBgkqhkiG9w0BAQsFAAOCAQEAow9Dld1NGVBuaOIy7FVrpqlFjfMRCDMDvARN NIGhLUi/WkLBH4po3OpCtl+88h9j0ZFKNe7/28a9AxBAnArEUHys2WRlUYn1vMCY CTy2pFumZbmyzeBuzyvl9tU8OEb1+sXRffuUSYfT8Fi4s1VCKOCJYYl9NrXyluQb Kp0b8SanN/urPWtlu4zIAqVe7UhtQoOfhOjzMcDW5C2gamkSQzBJ60cAcgKAEApa 8iNujejL9pxSydx/xqDs85hUXMEqH8uSD3XlvL6S1o74XCSr1y/I7OuWSM9S6oW3 By/oeM6Al8UMl5rWnH7mFNd91dg2IIEaEZCpA706LjrdkIi5kQ== -----END CERTIFICATE-----Generated at Mon Apr 27 16:10:47 2026 by rpki-client