$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3130332e39372e3134342e302f32322d3232203d3e20313438393831.roa File: 3130332e39372e3134342e302f32322d3232203d3e20313438393831.roa (raw, json) Hash identifier: MfdRQaw6dKI2vYbfjGkq+2yJP/vN4fhhKm/YhPY4QcM= Subject key identifier: B9:CE:91:46:3B:7E:3C:C4:94:27:82:CC:F6:82:3D:FC:EC:FF:93:46 Certificate issuer: /CN=825E5C73B7552363E0F92261ADC637585EBE0362 Certificate serial: 295CDCD42BB4217B7C5392C6BBA21155AF0B7998 Authority key identifier: 82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3130332e39372e3134342e302f32322d3232203d3e20313438393831.roa Signing time: Fri 29 May 2026 07:33:30 +0000 ROA not before: Fri 29 May 2026 07:28:30 +0000 ROA not after: Fri 28 May 2027 07:33:30 +0000 asID: 148981 IP address blocks: 103.97.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 07:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:5c:dc:d4:2b:b4:21:7b:7c:53:92:c6:bb:a2:11:55:af:0b:79:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=825E5C73B7552363E0F92261ADC637585EBE0362 Validity Not Before: May 29 07:28:30 2026 GMT Not After : May 28 07:33:30 2027 GMT Subject: CN=B9CE91463B7E3CC4942782CCF6823DFCECFF9346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c1:1d:42:29:4f:fc:f5:31:1c:c3:18:f3:72: 0c:9a:45:c2:a2:3c:72:a3:9a:ea:f5:a7:09:23:5a: 44:89:de:fa:38:43:73:a4:44:44:b7:44:e0:0b:29: 1b:1d:f4:8a:69:e2:03:e7:8e:fa:4d:4c:f0:e5:8c: 41:a9:d6:53:ba:ea:e9:90:73:45:48:73:51:c5:69: 05:61:ec:e6:10:5d:d8:e8:cb:7d:2b:13:e3:53:6e: 6a:6e:c9:61:f5:c6:f8:4e:fa:fa:6c:39:ab:38:1e: 5c:83:e1:e1:bd:72:85:94:72:e1:e6:4b:05:9b:fc: 95:a0:33:93:ce:d7:55:22:91:39:79:fe:b9:1b:51: 7d:6e:96:3c:f5:4a:9c:da:e3:63:bb:c1:1a:19:bc: 3f:75:f5:68:92:c2:13:5d:0f:d2:27:37:98:a7:9d: 37:ce:68:08:41:06:43:eb:81:a7:f0:90:e4:c8:0a: b4:46:17:e3:15:c1:61:24:c5:e9:1e:3d:1c:a0:22: a4:7b:7a:7c:3b:6b:82:2e:13:b3:27:03:0f:d9:b0: 75:a9:fe:af:3f:9f:bb:4d:7b:d6:89:e7:26:e1:63: b5:0e:79:35:17:66:f1:c2:d3:4d:af:6d:07:cc:2f: 69:c5:f7:09:1b:49:2b:42:ef:41:62:a7:92:18:18: e9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:CE:91:46:3B:7E:3C:C4:94:27:82:CC:F6:82:3D:FC:EC:FF:93:46 X509v3 Authority Key Identifier: keyid:82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/3130332e39372e3134342e302f32322d3232203d3e20313438393831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.144.0/22 Signature Algorithm: sha256WithRSAEncryption 39:72:5d:57:72:62:7b:98:97:0b:05:c9:93:75:42:6a:5f:47: 3d:b9:c0:ff:44:ed:6d:f7:65:3d:7d:4b:e7:5e:cd:69:26:ed: cb:20:3b:b1:27:55:54:20:ba:24:7f:e9:17:de:e8:73:e5:00: 27:ea:3b:77:31:70:02:ce:d0:fa:68:ff:87:b2:00:66:7d:21: 01:8b:b4:41:b3:35:80:de:48:a8:a0:fc:91:b2:82:a0:7f:ac: 59:06:7b:40:5b:7d:4c:8b:51:ee:87:22:32:fa:6c:21:7a:65: a9:21:d7:16:f7:0f:f9:d8:8c:7c:78:24:12:70:ed:db:30:e7: f4:e1:39:b8:ad:ab:9b:89:06:6f:c6:e4:11:aa:59:6a:86:34: 86:82:e5:5e:66:a2:36:68:58:46:40:54:3b:67:51:24:b6:dc: c2:54:90:d7:cc:c2:b9:9c:ec:71:26:51:86:94:3f:66:39:c6: 98:c6:0f:23:df:2c:82:98:7a:39:52:a4:59:2f:03:43:25:8e: 60:fd:d6:7e:df:0b:e4:e3:e3:78:fe:00:7f:5f:57:3c:7f:5a: eb:f3:40:50:b1:fd:87:4e:15:c8:0d:87:1c:0f:b6:d1:93:67: b6:5f:10:33:9a:f1:8d:2d:25:97:ee:db:cc:7d:7d:41:04:09: 7f:49:69:05 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKVzc1Cu0IXt8U5LGu6IRVa8LeZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1 RUJFMDM2MjAeFw0yNjA1MjkwNzI4MzBaFw0yNzA1MjgwNzMzMzBaMDMxMTAvBgNV BAMTKEI5Q0U5MTQ2M0I3RTNDQzQ5NDI3ODJDQ0Y2ODIzREZDRUNGRjkzNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClwR1CKU/89TEcwxjzcgyaRcKi PHKjmur1pwkjWkSJ3vo4Q3OkRES3ROALKRsd9Ipp4gPnjvpNTPDljEGp1lO66umQ c0VIc1HFaQVh7OYQXdjoy30rE+NTbmpuyWH1xvhO+vpsOas4HlyD4eG9coWUcuHm SwWb/JWgM5PO11UikTl5/rkbUX1uljz1Spza42O7wRoZvD919WiSwhNdD9InN5in nTfOaAhBBkPrgafwkOTICrRGF+MVwWEkxekePRygIqR7enw7a4IuE7MnAw/ZsHWp /q8/n7tNe9aJ5ybhY7UOeTUXZvHC002vbQfML2nF9wkbSStC70Fip5IYGOnZAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUuc6RRjt+PMSUJ4LM9oI9/Oz/k0YwHwYDVR0j BBgwFoAUgl5cc7dVI2Pg+SJhrcY3WF6+A2IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NTA1ODA3Mjk0MzkxOTExNy8wLzgyNUU1QzczQjc1NTIzNjNFMEY5MjI2MUFEQzYz NzU4NUVCRTAzNjIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1RUJFMDM2Mi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDUwNTgwNzI5NDM5MTkxMTcvMC8zMTMwMzMyZTM5 MzcyZTMxMzQzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzQzODM5MzgzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmdhkDANBgkqhkiG9w0BAQsFAAOCAQEAOXJdV3Jie5iXCwXJk3VC al9HPbnA/0TtbfdlPX1L517NaSbtyyA7sSdVVCC6JH/pF97oc+UAJ+o7dzFwAs7Q +mj/h7IAZn0hAYu0QbM1gN5IqKD8kbKCoH+sWQZ7QFt9TItR7ociMvpsIXplqSHX FvcP+diMfHgkEnDt2zDn9OE5uK2rm4kGb8bkEapZaoY0hoLlXmaiNmhYRkBUO2dR JLbcwlSQ18zCuZzscSZRhpQ/ZjnGmMYPI98sgph6OVKkWS8DQyWOYP3Wft8L5OPj eP4Af19XPH9a6/NAULH9h04VyA2HHA+20ZNntl8QM5rxjS0ll+7bzH19QQQJf0lp BQ== -----END CERTIFICATE-----Generated at Fri May 29 22:57:35 2026 by rpki-client