$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094498863600893954/0/3130332e3232302e3131362e302f32322d3232203d3e2030.roa File: 3130332e3232302e3131362e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: if/xm2ZmxEWHRHPBv5cvIrLrrTMi5u7rlBXqn+knNDE= Subject key identifier: DE:4A:EA:12:45:45:F3:D9:AE:BA:E9:F1:E5:AF:C7:09:53:D4:B5:97 Certificate issuer: /CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Certificate serial: 6473ACC53945B07EB06992ED2E6B56A3FF46188D Authority key identifier: 60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/3130332e3232302e3131362e302f32322d3232203d3e2030.roa Signing time: Wed 22 Apr 2026 07:03:32 +0000 ROA not before: Wed 22 Apr 2026 06:58:32 +0000 ROA not after: Wed 21 Apr 2027 07:03:32 +0000 asID: 0 IP address blocks: 103.220.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:73:ac:c5:39:45:b0:7e:b0:69:92:ed:2e:6b:56:a3:ff:46:18:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Validity Not Before: Apr 22 06:58:32 2026 GMT Not After : Apr 21 07:03:32 2027 GMT Subject: CN=DE4AEA124545F3D9AEBAE9F1E5AFC70953D4B597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1d:42:71:47:bf:91:df:e1:36:42:a7:f2:4e: a6:fe:37:cc:48:3b:52:71:fa:a7:02:79:69:4d:03: bb:5d:aa:0b:4b:b4:40:79:5d:18:c6:54:4b:45:53: 28:87:74:3e:f1:c7:80:f8:62:50:6d:b4:a5:28:0f: 3e:a7:e2:39:98:af:f5:8d:6d:fd:41:a4:da:02:d0: 17:08:7f:59:df:14:1c:45:78:8b:30:83:e9:0c:27: 06:c8:9c:14:ad:62:46:0f:73:a0:5d:c8:99:2a:1a: d0:db:43:bc:ce:ac:fd:8d:f4:0c:47:f7:04:71:e8: ce:95:48:39:eb:12:77:fc:07:0d:fa:27:2f:3b:cc: 36:c3:e5:3f:3d:c8:d3:f1:25:bc:4b:7d:da:97:09: 51:df:72:38:6c:9a:6f:dd:c3:14:70:ce:a2:11:1b: 01:57:cc:aa:53:bd:e9:10:1a:b8:8d:b1:09:da:a2: db:52:a8:e6:40:69:5b:a2:9d:54:82:a5:46:70:42: 61:19:c4:f3:31:80:fa:9e:4d:4b:97:03:7c:81:4f: d1:44:ec:49:ee:6e:10:bb:40:ac:92:30:c3:e8:58: 97:5c:b9:9a:dd:6e:03:fa:07:ce:84:c6:ea:48:98: ad:08:ac:ab:56:fd:75:35:73:12:13:4a:a6:9a:b7: 36:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:4A:EA:12:45:45:F3:D9:AE:BA:E9:F1:E5:AF:C7:09:53:D4:B5:97 X509v3 Authority Key Identifier: keyid:60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/3130332e3232302e3131362e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.116.0/22 Signature Algorithm: sha256WithRSAEncryption 36:2a:64:f2:21:6d:00:f0:99:18:be:33:be:85:3a:d6:2d:01: d7:13:ca:f3:0a:37:e5:96:eb:8d:fd:65:fc:6a:9c:e6:ec:37: 42:f2:77:f4:56:68:d4:e1:1a:d1:7f:49:cd:7e:4b:8a:83:76: 44:18:d4:ee:1f:ab:98:e7:1a:7e:68:1d:f8:a0:dd:aa:38:4e: 1e:8e:6a:cc:36:62:22:21:86:9d:94:97:63:4c:05:6b:3a:8f: c1:a9:6e:1f:8f:68:6a:d7:4b:63:a7:58:26:b9:23:ab:be:68: 16:78:68:44:d6:ec:5b:41:ae:77:b7:38:2b:c7:4c:32:97:fa: 35:ed:b8:ee:b3:7b:ce:ac:4b:17:e5:83:5f:4a:96:63:8c:fb: 0e:bb:90:ce:47:1c:72:2c:7d:47:3c:0d:65:b7:54:4e:cd:97: 75:d1:b5:39:98:4b:5e:77:d3:53:d4:4a:33:49:76:a8:90:0a: f7:8b:d1:97:a2:85:73:34:95:32:b3:5d:83:17:39:0b:45:38: 4c:0f:c4:92:6e:cf:45:9d:36:6c:9b:ed:56:eb:cd:cd:0c:17: 4a:c0:d1:b1:8f:b5:e9:2f:4a:72:e0:c7:80:8b:00:9e:6f:2c: 0b:fd:73:f2:5e:c0:ac:fc:8c:1b:f7:b9:ce:da:ff:aa:2b:fb: b6:a0:8b:67 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUZHOsxTlFsH6waZLtLmtWo/9GGI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZG NTRFREM0RTAeFw0yNjA0MjIwNjU4MzJaFw0yNzA0MjEwNzAzMzJaMDMxMTAvBgNV BAMTKERFNEFFQTEyNDU0NUYzRDlBRUJBRTlGMUU1QUZDNzA5NTNENEI1OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpHUJxR7+R3+E2QqfyTqb+N8xI O1Jx+qcCeWlNA7tdqgtLtEB5XRjGVEtFUyiHdD7xx4D4YlBttKUoDz6n4jmYr/WN bf1BpNoC0BcIf1nfFBxFeIswg+kMJwbInBStYkYPc6BdyJkqGtDbQ7zOrP2N9AxH 9wRx6M6VSDnrEnf8Bw36Jy87zDbD5T89yNPxJbxLfdqXCVHfcjhsmm/dwxRwzqIR GwFXzKpTvekQGriNsQnaottSqOZAaVuinVSCpUZwQmEZxPMxgPqeTUuXA3yBT9FE 7EnubhC7QKySMMPoWJdcuZrdbgP6B86ExupImK0IrKtW/XU1cxITSqaatzaVAgMB AAGjggINMIICCTAdBgNVHQ4EFgQU3krqEkVF89muuunx5a/HCVPUtZcwHwYDVR0j BBgwFoAUYBqaijtQWl7iKDJD96vnpvVO3E4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQ5ODg2MzYwMDg5Mzk1NC8wLzYwMUE5QThBM0I1MDVBNUVFMjI4MzI0M0Y3QUJF N0E2RjU0RURDNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZGNTRFREM0RS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0NDk4ODYzNjAwODkzOTU0LzAvMzEzMDMzMmUzMjMy MzAyZTMxMzEzNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC Z9x0MA0GCSqGSIb3DQEBCwUAA4IBAQA2KmTyIW0A8JkYvjO+hTrWLQHXE8rzCjfl luuN/WX8apzm7DdC8nf0VmjU4RrRf0nNfkuKg3ZEGNTuH6uY5xp+aB34oN2qOE4e jmrMNmIiIYadlJdjTAVrOo/BqW4fj2hq10tjp1gmuSOrvmgWeGhE1uxbQa53tzgr x0wyl/o17bjus3vOrEsX5YNfSpZjjPsOu5DORxxyLH1HPA1lt1ROzZd10bU5mEte d9NT1EozSXaokAr3i9GXooVzNJUys12DFzkLRThMD8SSbs9FnTZsm+1W683NDBdK wNGxj7XpL0py4MeAiwCebywL/XPyXsCs/Iwb97nO2v+qK/u2oItn -----END CERTIFICATE-----Generated at Wed May 13 08:24:27 2026 by rpki-client