$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094498863600893954/0/3130332e33302e39362e302f32322d3232203d3e2030.roa File: 3130332e33302e39362e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: wZLSzYpHhbp1Z9qyC1a2LGCTkcXv5D87rPj068v2abM= Subject key identifier: 68:CB:85:02:A7:C4:C0:35:CC:1F:A8:D1:4A:30:14:DC:06:EC:F9:4C Certificate issuer: /CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Certificate serial: 4D7E412761E50EF4C3400D23C8B806F09B20169E Authority key identifier: 60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/3130332e33302e39362e302f32322d3232203d3e2030.roa Signing time: Wed 22 Apr 2026 07:03:32 +0000 ROA not before: Wed 22 Apr 2026 06:58:32 +0000 ROA not after: Wed 21 Apr 2027 07:03:32 +0000 asID: 0 IP address blocks: 103.30.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 13:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:7e:41:27:61:e5:0e:f4:c3:40:0d:23:c8:b8:06:f0:9b:20:16:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Validity Not Before: Apr 22 06:58:32 2026 GMT Not After : Apr 21 07:03:32 2027 GMT Subject: CN=68CB8502A7C4C035CC1FA8D14A3014DC06ECF94C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fc:da:01:06:9d:06:3f:0e:4e:ed:38:03:ed: fc:12:c1:63:53:db:11:71:e5:eb:08:e7:5a:c7:15: 01:d8:e2:12:05:58:aa:8d:87:9e:40:e2:e2:fd:a5: 74:53:72:f9:fe:54:21:ac:37:ea:52:74:c2:6a:1a: fa:65:9b:3f:dc:dd:bd:44:bf:60:e6:37:fc:30:47: 1e:6d:54:cc:80:6a:af:51:23:cb:1d:ed:0c:49:71: b5:40:8e:11:c0:24:46:50:ba:88:ae:31:2e:ca:18: fe:12:e2:4c:a6:0c:08:19:c4:3a:85:62:e7:2d:22: e6:ef:54:84:ce:78:9c:f5:6c:b3:71:1a:2b:ca:38: b0:77:c4:3e:e5:d3:58:83:bb:bd:d0:7a:70:5b:b8: 4f:be:49:21:2c:3c:2b:5b:5d:db:d9:43:1a:9e:ad: af:c3:09:68:5a:6c:89:f8:b8:55:64:c0:0e:d5:5f: e9:d8:ee:17:ed:9b:42:36:5a:47:53:20:fe:d6:a4: 7e:96:b8:5e:9f:38:3a:df:12:00:d6:78:61:0b:ae: f4:95:5b:45:62:4d:20:4a:7c:31:41:20:b5:17:b2: 10:40:a7:e0:4d:37:44:4b:6f:8e:aa:46:22:2f:53: 25:c4:0c:ac:2d:2d:97:53:0b:f2:f2:cb:f9:5e:48: 60:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:CB:85:02:A7:C4:C0:35:CC:1F:A8:D1:4A:30:14:DC:06:EC:F9:4C X509v3 Authority Key Identifier: keyid:60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/3130332e33302e39362e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.96.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:e0:85:db:77:1c:e2:5b:9d:d8:36:ae:30:33:8f:3d:17:cc: ae:45:4a:fa:ee:45:ac:b5:8d:63:d3:f5:95:a5:36:dc:54:15: b7:f9:92:d5:88:fa:19:7d:de:bb:86:bc:cf:dc:50:95:36:e3: 39:33:5d:86:d7:d9:7e:30:26:6b:19:ea:d0:32:6e:22:49:28: f9:b0:aa:41:96:1b:2d:90:9d:ad:a7:66:f4:01:68:ac:dd:55: 36:43:d4:57:ed:bd:33:ce:2a:20:e8:23:7f:7f:25:11:c7:11: 0a:a0:55:1d:db:c7:da:0a:05:88:23:fa:e0:d6:4f:8c:f3:cc: d8:ac:b1:61:57:43:13:ce:be:6c:af:6c:e3:fe:be:c2:6f:db: be:c6:5c:ec:e4:f6:93:c4:73:96:ce:c8:a5:77:e0:c7:ae:16: 35:91:79:13:94:f8:07:c7:e1:5a:6c:87:e1:92:72:24:5c:ea: 25:50:c6:43:0a:4d:9e:80:92:b6:85:e9:5b:2b:7b:3b:14:d9: 6c:2c:a6:1b:b9:d9:55:a5:bd:11:6e:20:c5:bf:04:b9:6c:02: d4:3a:dd:a1:42:f1:ae:18:71:5f:7d:20:7b:72:4b:04:3a:03: 24:07:31:93:bd:16:ac:b1:87:c0:7e:c9:e2:79:ab:fe:f4:73: 02:71:6d:b6 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUTX5BJ2HlDvTDQA0jyLgG8JsgFp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZG NTRFREM0RTAeFw0yNjA0MjIwNjU4MzJaFw0yNzA0MjEwNzAzMzJaMDMxMTAvBgNV BAMTKDY4Q0I4NTAyQTdDNEMwMzVDQzFGQThEMTRBMzAxNERDMDZFQ0Y5NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5/NoBBp0GPw5O7TgD7fwSwWNT 2xFx5esI51rHFQHY4hIFWKqNh55A4uL9pXRTcvn+VCGsN+pSdMJqGvplmz/c3b1E v2DmN/wwRx5tVMyAaq9RI8sd7QxJcbVAjhHAJEZQuoiuMS7KGP4S4kymDAgZxDqF YuctIubvVITOeJz1bLNxGivKOLB3xD7l01iDu73QenBbuE++SSEsPCtbXdvZQxqe ra/DCWhabIn4uFVkwA7VX+nY7hftm0I2WkdTIP7WpH6WuF6fODrfEgDWeGELrvSV W0ViTSBKfDFBILUXshBAp+BNN0RLb46qRiIvUyXEDKwtLZdTC/Lyy/leSGCZAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUaMuFAqfEwDXMH6jRSjAU3Abs+UwwHwYDVR0j BBgwFoAUYBqaijtQWl7iKDJD96vnpvVO3E4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQ5ODg2MzYwMDg5Mzk1NC8wLzYwMUE5QThBM0I1MDVBNUVFMjI4MzI0M0Y3QUJF N0E2RjU0RURDNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZGNTRFREM0RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0NDk4ODYzNjAwODkzOTU0LzAvMzEzMDMzMmUzMzMw MmUzOTM2MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnHmAw DQYJKoZIhvcNAQELBQADggEBAA3ghdt3HOJbndg2rjAzjz0XzK5FSvruRay1jWPT 9ZWlNtxUFbf5ktWI+hl93ruGvM/cUJU24zkzXYbX2X4wJmsZ6tAybiJJKPmwqkGW Gy2Qna2nZvQBaKzdVTZD1FftvTPOKiDoI39/JRHHEQqgVR3bx9oKBYgj+uDWT4zz zNissWFXQxPOvmyvbOP+vsJv277GXOzk9pPEc5bOyKV34MeuFjWReROU+AfH4Vps h+GSciRc6iVQxkMKTZ6AkraF6VsrezsU2Wwsphu52VWlvRFuIMW/BLlsAtQ63aFC 8a4YcV99IHtySwQ6AyQHMZO9Fqyxh8B+yeJ5q/70cwJxbbY= -----END CERTIFICATE-----Generated at Tue May 12 21:48:21 2026 by rpki-client