$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1112680023891902481/0/3130332e3232322e3138342e302f32332d3332203d3e203633363231.roa File: 3130332e3232322e3138342e302f32332d3332203d3e203633363231.roa (raw, json) Hash identifier: 3gphk5x3j2J0BJiGenAxNyQuiTgJ7Y3umxZHzII5mxo= Subject key identifier: F0:32:E8:3B:2E:57:A8:E2:F5:70:0A:75:34:E9:AE:C9:4E:7E:93:6A Certificate issuer: /CN=320188B3FA38DA0F4192F7201AD7D377656BF5C0 Certificate serial: 2804E6E8EE50D3952434E3D4C4FBDD26A7918243 Authority key identifier: 32:01:88:B3:FA:38:DA:0F:41:92:F7:20:1A:D7:D3:77:65:6B:F5:C0 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/320188B3FA38DA0F4192F7201AD7D377656BF5C0.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1112680023891902481/0/3130332e3232322e3138342e302f32332d3332203d3e203633363231.roa Signing time: Fri 29 May 2026 10:05:07 +0000 ROA not before: Fri 29 May 2026 10:00:07 +0000 ROA not after: Fri 28 May 2027 10:05:07 +0000 asID: 63621 IP address blocks: 103.222.184.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1112680023891902481/0/320188B3FA38DA0F4192F7201AD7D377656BF5C0.crl rsync://rpki-rps.cnnic.cn/repo/A1112680023891902481/0/320188B3FA38DA0F4192F7201AD7D377656BF5C0.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/320188B3FA38DA0F4192F7201AD7D377656BF5C0.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 10:53:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:04:e6:e8:ee:50:d3:95:24:34:e3:d4:c4:fb:dd:26:a7:91:82:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=320188B3FA38DA0F4192F7201AD7D377656BF5C0 Validity Not Before: May 29 10:00:07 2026 GMT Not After : May 28 10:05:07 2027 GMT Subject: CN=F032E83B2E57A8E2F5700A7534E9AEC94E7E936A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:48:76:c2:b6:fa:b5:c4:a5:bc:ea:4a:22:b2: 19:09:62:0c:70:81:da:1f:21:5d:d3:0d:71:ce:9a: b2:bb:a2:e9:16:11:39:7d:ae:53:5f:78:b1:11:06: ac:c9:ce:16:22:06:c2:7c:5d:59:ef:f8:cd:35:75: f0:49:47:cf:fb:e5:bf:7c:fe:e0:aa:09:4a:40:58: f9:fc:e3:40:ba:47:84:3c:ae:96:36:58:17:98:5d: cd:50:a7:ee:71:d1:2d:50:9e:09:e5:fd:80:03:54: 89:95:41:1a:b8:1a:19:e0:40:a7:e5:ef:d8:57:19: 2c:10:7f:a1:e1:e8:60:12:7a:80:cd:b5:2c:9e:83: f4:7a:22:89:df:79:f0:dc:42:2c:c9:32:30:81:60: 22:63:88:ce:f3:4c:bc:92:ef:e0:af:cc:81:b9:a6: ae:4d:3f:ec:59:6f:69:8a:39:08:94:54:75:49:63: 18:81:94:30:e2:25:d2:ff:4f:18:2d:5b:15:01:04: b6:07:90:20:9b:f8:b4:d5:64:aa:01:e5:09:ae:f5: 66:88:a5:7f:1c:1c:65:6b:96:84:c2:c7:5f:14:4e: a6:48:e7:5a:d6:42:d6:09:a9:67:48:88:99:d4:dc: 86:ab:3f:67:91:36:4f:56:50:cb:ab:6d:9e:55:a1: ec:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:32:E8:3B:2E:57:A8:E2:F5:70:0A:75:34:E9:AE:C9:4E:7E:93:6A X509v3 Authority Key Identifier: keyid:32:01:88:B3:FA:38:DA:0F:41:92:F7:20:1A:D7:D3:77:65:6B:F5:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1112680023891902481/0/320188B3FA38DA0F4192F7201AD7D377656BF5C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/320188B3FA38DA0F4192F7201AD7D377656BF5C0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1112680023891902481/0/3130332e3232322e3138342e302f32332d3332203d3e203633363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.222.184.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:d5:d5:c3:4a:4d:55:8a:9e:42:6a:af:e0:01:f9:69:74:e9: e7:4f:fb:73:df:f7:04:70:2b:36:3c:53:bf:fa:81:dc:00:76: a3:03:bb:da:cf:7e:70:54:4b:6a:9e:ca:bb:60:02:16:0e:0c: 5b:80:f5:8b:32:0f:26:aa:68:05:8e:2d:3e:6a:d2:8c:ff:61: 3b:19:98:1a:80:fa:8e:36:52:0d:3a:da:31:3d:9e:1d:fa:0b: 2d:a9:15:a8:c2:a8:21:ce:cd:76:59:a4:df:56:1a:3c:49:83: 14:e7:b2:7a:61:bf:b7:ed:05:a4:b6:9f:85:a6:2b:fd:60:af: 1e:29:db:3d:82:dd:44:1b:06:c1:b4:c6:aa:c7:0e:9b:8f:d9: da:76:af:f7:45:1e:1f:d4:25:4e:25:f0:2f:c4:8b:81:ca:b0: b5:2f:e2:fe:f3:e1:c1:7b:6b:20:56:29:0e:d7:ca:3e:29:a8: 5f:0d:0a:46:45:00:0a:53:6c:66:e1:4f:42:e3:91:63:6c:68: 23:b3:c8:25:86:7f:b5:94:f9:87:c9:61:71:86:68:ca:70:64: 8f:63:0c:2f:da:d3:83:42:8f:6f:e3:5a:f1:51:1f:f2:d0:95: 2e:6c:e9:f8:cc:27:c5:29:37:23:42:36:8a:d5:f1:a7:46:1b: 87:36:b3:65 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKATm6O5Q05UkNOPUxPvdJqeRgkMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzIwMTg4QjNGQTM4REEwRjQxOTJGNzIwMUFEN0QzNzc2 NTZCRjVDMDAeFw0yNjA1MjkxMDAwMDdaFw0yNzA1MjgxMDA1MDdaMDMxMTAvBgNV BAMTKEYwMzJFODNCMkU1N0E4RTJGNTcwMEE3NTM0RTlBRUM5NEU3RTkzNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtSHbCtvq1xKW86koishkJYgxw gdofIV3TDXHOmrK7oukWETl9rlNfeLERBqzJzhYiBsJ8XVnv+M01dfBJR8/75b98 /uCqCUpAWPn840C6R4Q8rpY2WBeYXc1Qp+5x0S1Qngnl/YADVImVQRq4GhngQKfl 79hXGSwQf6Hh6GASeoDNtSyeg/R6IonfefDcQizJMjCBYCJjiM7zTLyS7+CvzIG5 pq5NP+xZb2mKOQiUVHVJYxiBlDDiJdL/TxgtWxUBBLYHkCCb+LTVZKoB5Qmu9WaI pX8cHGVrloTCx18UTqZI51rWQtYJqWdIiJnU3IarP2eRNk9WUMurbZ5Voez9AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU8DLoOy5XqOL1cAp1NOmuyU5+k2owHwYDVR0j BBgwFoAUMgGIs/o42g9BkvcgGtfTd2Vr9cAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MjY4MDAyMzg5MTkwMjQ4MS8wLzMyMDE4OEIzRkEzOERBMEY0MTkyRjcyMDFBRDdE Mzc3NjU2QkY1QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzIwMTg4QjNGQTM4REEwRjQxOTJGNzIwMUFEN0QzNzc2NTZCRjVDMC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTI2ODAwMjM4OTE5MDI0ODEvMC8zMTMwMzMyZTMy MzIzMjJlMzEzODM0MmUzMDJmMzIzMzJkMzMzMjIwM2QzZTIwMzYzMzM2MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAWfeuDANBgkqhkiG9w0BAQsFAAOCAQEAb9XVw0pNVYqeQmqv4AH5 aXTp50/7c9/3BHArNjxTv/qB3AB2owO72s9+cFRLap7Ku2ACFg4MW4D1izIPJqpo BY4tPmrSjP9hOxmYGoD6jjZSDTraMT2eHfoLLakVqMKoIc7Ndlmk31YaPEmDFOey emG/t+0FpLafhaYr/WCvHinbPYLdRBsGwbTGqscOm4/Z2nav90UeH9QlTiXwL8SL gcqwtS/i/vPhwXtrIFYpDtfKPimoXw0KRkUAClNsZuFPQuORY2xoI7PIJYZ/tZT5 h8lhcYZoynBkj2MML9rTg0KPb+Na8VEf8tCVLmzp+MwnxSk3I0I2itXxp0Ybhzaz ZQ== -----END CERTIFICATE-----Generated at Fri May 29 22:57:06 2026 by rpki-client