$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1108596109183287315/0/3130332e3131382e35322e302f32322d3232203d3e2034383038.roa File: 3130332e3131382e35322e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: Xoed/rVl3qutv9Zq8jRPphX8ViBicQo/g46B0NkCxg4= Subject key identifier: 8E:BD:D4:7E:87:98:C4:45:AA:88:0E:84:B3:F1:91:87:57:66:79:E0 Certificate issuer: /CN=CDBB1B3CD7BAA378B01A15F29F332F480ECDCDF8 Certificate serial: 6803FCEDA27E627D428BD3EBD1438F9179F14498 Authority key identifier: CD:BB:1B:3C:D7:BA:A3:78:B0:1A:15:F2:9F:33:2F:48:0E:CD:CD:F8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDBB1B3CD7BAA378B01A15F29F332F480ECDCDF8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1108596109183287315/0/3130332e3131382e35322e302f32322d3232203d3e2034383038.roa Signing time: Thu 21 May 2026 07:59:20 +0000 ROA not before: Thu 21 May 2026 07:54:20 +0000 ROA not after: Thu 20 May 2027 07:59:20 +0000 asID: 4808 IP address blocks: 103.118.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1108596109183287315/0/CDBB1B3CD7BAA378B01A15F29F332F480ECDCDF8.crl rsync://rpki-rps.cnnic.cn/repo/A1108596109183287315/0/CDBB1B3CD7BAA378B01A15F29F332F480ECDCDF8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDBB1B3CD7BAA378B01A15F29F332F480ECDCDF8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:03:fc:ed:a2:7e:62:7d:42:8b:d3:eb:d1:43:8f:91:79:f1:44:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDBB1B3CD7BAA378B01A15F29F332F480ECDCDF8 Validity Not Before: May 21 07:54:20 2026 GMT Not After : May 20 07:59:20 2027 GMT Subject: CN=8EBDD47E8798C445AA880E84B3F19187576679E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:19:6a:2d:38:e4:6d:6f:16:ac:03:27:0c: 30:0f:55:a9:62:a4:59:2a:4e:b7:b7:b5:a2:57:4e: ef:a6:c3:af:af:35:aa:18:5f:67:dc:ab:d8:d9:26: 13:7d:f3:0b:74:0d:2b:dc:69:2d:19:7c:f8:ef:68: e6:fb:50:6d:68:bf:db:d6:97:e8:48:30:2f:ab:1d: 95:91:98:77:11:cc:ce:28:9c:52:72:69:b8:5d:29: 7b:c8:e4:b4:09:2d:68:fa:32:6b:66:9d:b0:8d:28: c6:93:53:29:f1:c8:a9:d3:1b:4c:59:5b:e4:57:57: dc:82:36:86:df:ac:5d:01:3d:cb:c8:71:b5:b3:ad: e9:c7:81:88:60:d5:b5:0d:31:ae:6d:90:56:89:48: b4:77:3d:cf:0c:ce:e3:5b:52:6d:9f:1f:f4:85:15: d0:9d:76:89:e8:80:bb:04:b8:3b:2e:34:64:bc:d9: 27:a4:a3:e3:cd:00:b4:24:13:3c:d2:7d:f8:40:93: ea:54:43:28:d5:61:d6:14:25:8b:c6:a2:ff:47:20: 63:f0:fc:c3:db:c2:5f:07:11:47:72:d7:78:b1:2b: 08:02:f2:5c:05:d8:3d:00:38:5b:da:a9:ad:42:aa: 58:ac:b7:25:89:a6:9e:0d:97:fb:49:93:8e:29:c7: af:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:BD:D4:7E:87:98:C4:45:AA:88:0E:84:B3:F1:91:87:57:66:79:E0 X509v3 Authority Key Identifier: keyid:CD:BB:1B:3C:D7:BA:A3:78:B0:1A:15:F2:9F:33:2F:48:0E:CD:CD:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1108596109183287315/0/CDBB1B3CD7BAA378B01A15F29F332F480ECDCDF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDBB1B3CD7BAA378B01A15F29F332F480ECDCDF8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1108596109183287315/0/3130332e3131382e35322e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.52.0/22 Signature Algorithm: sha256WithRSAEncryption 90:3a:57:d3:0d:04:dc:6e:4d:80:29:b1:ba:cb:8e:35:28:49: c2:6a:7d:99:98:58:c9:18:e4:dc:72:f7:52:76:ad:7f:b7:55: b5:75:1c:f2:25:fa:b1:71:de:c1:5d:a4:d7:1b:7e:46:c1:a5: 27:40:cb:af:15:a4:b8:37:ad:03:ac:70:6a:18:27:da:c9:ed: e2:b2:dd:2f:da:d6:7d:f9:4e:10:9b:3d:25:0b:35:58:0a:00: b8:7e:48:ae:55:22:16:04:f8:8d:23:bb:9a:4e:f6:25:58:8b: 8f:b1:d4:ae:31:e4:dc:17:f2:4f:05:a3:67:bc:d6:ca:6f:77: e8:43:c1:32:9d:73:85:f8:fe:a1:a0:2b:4f:f7:9a:1e:ff:38: 44:c9:5b:ce:91:d6:6d:7b:a4:aa:38:5e:ba:96:c0:e1:93:2f: 86:1b:8d:13:cf:a6:14:ae:fd:eb:89:81:41:f9:fe:7e:92:c9: 40:42:b5:cc:37:ce:68:a6:2f:01:ff:0f:47:6e:4d:84:4e:1c: cf:54:83:7d:28:c9:95:c0:66:bf:33:10:5f:10:89:db:d3:b4: 90:3c:84:73:76:0f:29:78:20:61:0e:c7:f3:18:1f:a3:52:b5: 89:ea:42:34:91:5d:db:ed:89:ee:ca:ab:3c:bc:b9:f1:19:b9: b4:db:31:c5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUaAP87aJ+Yn1Ci9Pr0UOPkXnxRJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RCQjFCM0NEN0JBQTM3OEIwMUExNUYyOUYzMzJGNDgw RUNEQ0RGODAeFw0yNjA1MjEwNzU0MjBaFw0yNzA1MjAwNzU5MjBaMDMxMTAvBgNV BAMTKDhFQkRENDdFODc5OEM0NDVBQTg4MEU4NEIzRjE5MTg3NTc2Njc5RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4xRlqLTjkbW8WrAMnDDAPVali pFkqTre3taJXTu+mw6+vNaoYX2fcq9jZJhN98wt0DSvcaS0ZfPjvaOb7UG1ov9vW l+hIMC+rHZWRmHcRzM4onFJyabhdKXvI5LQJLWj6MmtmnbCNKMaTUynxyKnTG0xZ W+RXV9yCNobfrF0BPcvIcbWzrenHgYhg1bUNMa5tkFaJSLR3Pc8MzuNbUm2fH/SF FdCddonogLsEuDsuNGS82Seko+PNALQkEzzSffhAk+pUQyjVYdYUJYvGov9HIGPw /MPbwl8HEUdy13ixKwgC8lwF2D0AOFvaqa1CqlistyWJpp4Nl/tJk44px6/bAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUjr3UfoeYxEWqiA6Es/GRh1dmeeAwHwYDVR0j BBgwFoAUzbsbPNe6o3iwGhXynzMvSA7NzfgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw ODU5NjEwOTE4MzI4NzMxNS8wL0NEQkIxQjNDRDdCQUEzNzhCMDFBMTVGMjlGMzMy RjQ4MEVDRENERjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RCQjFCM0NEN0JBQTM3OEIwMUExNUYyOUYzMzJGNDgwRUNEQ0RGOC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA4NTk2MTA5MTgzMjg3MzE1LzAvMzEzMDMzMmUzMTMx MzgyZTM1MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmd2NDANBgkqhkiG9w0BAQsFAAOCAQEAkDpX0w0E3G5NgCmxusuONShJwmp9 mZhYyRjk3HL3Unatf7dVtXUc8iX6sXHewV2k1xt+RsGlJ0DLrxWkuDetA6xwahgn 2snt4rLdL9rWfflOEJs9JQs1WAoAuH5IrlUiFgT4jSO7mk72JViLj7HUrjHk3Bfy TwWjZ7zWym936EPBMp1zhfj+oaArT/eaHv84RMlbzpHWbXukqjheupbA4ZMvhhuN E8+mFK7964mBQfn+fpLJQEK1zDfOaKYvAf8PR25NhE4cz1SDfSjJlcBmvzMQXxCJ 29O0kDyEc3YPKXggYQ7H8xgfo1K1iepCNJFd2+2J7sqrPLy58Rm5tNsxxQ== -----END CERTIFICATE-----Generated at Fri May 29 23:50:54 2026 by rpki-client