$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3139322e3231322e302f32322d3234203d3e203539303438.roa File: 3130332e3139322e3231322e302f32322d3234203d3e203539303438.roa (raw, json) Hash identifier: 4mdz7nc4Xv5ByY/oZb5Z+oQexq/WNGJ9vsPtZxxuioc= Subject key identifier: 71:DD:51:F8:64:B1:B7:EA:8F:B8:DE:02:F7:EC:43:74:F9:70:5B:FC Certificate issuer: /CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Certificate serial: 4F9D5AA6CE9D95F993E41308DCDD5E89E0600188 Authority key identifier: 0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3139322e3231322e302f32322d3234203d3e203539303438.roa Signing time: Mon 11 May 2026 07:00:48 +0000 ROA not before: Mon 11 May 2026 06:55:48 +0000 ROA not after: Mon 10 May 2027 07:00:48 +0000 asID: 59048 IP address blocks: 103.192.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:9d:5a:a6:ce:9d:95:f9:93:e4:13:08:dc:dd:5e:89:e0:60:01:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Validity Not Before: May 11 06:55:48 2026 GMT Not After : May 10 07:00:48 2027 GMT Subject: CN=71DD51F864B1B7EA8FB8DE02F7EC4374F9705BFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:60:9c:b1:8b:49:53:e7:05:dd:34:71:39:81: d1:b6:dc:1e:66:59:6f:1a:6a:3b:f2:5d:53:7a:44: 9c:7e:a2:2d:64:9e:17:c6:9c:cd:53:d4:19:5a:44: 58:ef:82:3b:cd:1f:df:51:84:ee:68:fd:f5:c5:98: e8:b3:e0:d9:c2:b4:72:35:07:69:52:50:0f:25:a4: 66:02:8a:fc:da:bc:fc:20:e0:b2:43:eb:e4:87:e7: 4c:e3:16:41:dc:b6:e9:d7:35:df:1d:ba:ec:c6:b0: ef:9a:8f:87:fb:44:41:33:52:c2:35:db:db:ba:6d: a5:83:a7:99:6b:8f:71:2a:e3:a9:4c:d1:0c:91:c8: dc:3b:13:4c:f3:f8:06:df:93:84:a8:9a:f2:c6:bc: bf:52:7a:79:f2:4c:b5:f4:80:76:56:fc:f1:4a:7e: ba:58:b6:f1:27:6d:1e:4f:66:cd:e0:4a:02:c8:fb: 33:a2:a1:fb:1f:ff:55:69:fd:1f:57:cf:71:a6:42: 85:f4:2b:00:2b:4c:45:f7:0d:23:61:c8:ce:2f:7d: 54:a9:cb:31:f1:c4:9b:9a:72:45:bf:63:ce:ce:75: 84:71:e8:40:30:e5:6f:f7:89:92:19:7e:46:7f:55: e1:9f:a3:7d:8e:ce:58:48:59:af:07:6c:ba:47:57: 63:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:DD:51:F8:64:B1:B7:EA:8F:B8:DE:02:F7:EC:43:74:F9:70:5B:FC X509v3 Authority Key Identifier: keyid:0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3139322e3231322e302f32322d3234203d3e203539303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.212.0/22 Signature Algorithm: sha256WithRSAEncryption a5:4b:f5:93:d8:26:6b:63:d1:89:09:fe:b8:a4:b8:59:6e:8f: bc:8d:75:5c:e7:41:7f:ec:11:bf:a3:96:94:d6:42:aa:54:85: 17:0c:69:0d:6c:50:8f:aa:c7:aa:25:08:9a:e5:e5:ea:a1:39: 1b:95:86:a9:71:23:bc:71:cb:58:54:fc:a0:dd:d3:e5:c4:e8: af:a7:25:a3:30:ce:00:50:cd:6a:a4:a1:cb:2a:15:0e:6b:52: 57:27:0d:5a:84:cd:ae:32:f1:0a:48:44:b1:8b:6b:c0:4b:86: 56:c8:43:26:60:d0:77:1a:de:13:59:d3:77:67:b6:0c:db:3d: c6:6a:99:84:0e:9e:ee:0b:d1:b9:3b:1c:89:36:f0:a5:36:b1: 66:8d:e2:0f:fa:fd:62:2b:36:37:88:5e:ad:f4:77:ae:6c:d2: 37:a8:01:38:36:bd:27:3a:2e:6c:bc:7a:94:04:f2:03:3d:ba: 36:64:96:7b:e9:fe:1c:60:42:c0:29:7f:d3:23:d2:51:d5:f4: 24:49:79:ac:d8:b5:dc:90:ad:05:e0:7a:91:29:68:fe:90:96: 8a:20:81:d4:df:de:22:e9:ca:30:d2:77:61:51:7a:ba:2e:a9: 65:ea:8d:72:4d:3e:06:06:4f:cf:26:b2:fe:3e:1e:76:65:9e: c9:67:0d:8b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUT51aps6dlfmT5BMI3N1eieBgAYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3 NjlGREY4QjAeFw0yNjA1MTEwNjU1NDhaFw0yNzA1MTAwNzAwNDhaMDMxMTAvBgNV BAMTKDcxREQ1MUY4NjRCMUI3RUE4RkI4REUwMkY3RUM0Mzc0Rjk3MDVCRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiYJyxi0lT5wXdNHE5gdG23B5m WW8aajvyXVN6RJx+oi1knhfGnM1T1BlaRFjvgjvNH99RhO5o/fXFmOiz4NnCtHI1 B2lSUA8lpGYCivzavPwg4LJD6+SH50zjFkHctunXNd8duuzGsO+aj4f7REEzUsI1 29u6baWDp5lrj3Eq46lM0QyRyNw7E0zz+Abfk4SomvLGvL9SennyTLX0gHZW/PFK frpYtvEnbR5PZs3gSgLI+zOiofsf/1Vp/R9Xz3GmQoX0KwArTEX3DSNhyM4vfVSp yzHxxJuackW/Y87OdYRx6EAw5W/3iZIZfkZ/VeGfo32OzlhIWa8HbLpHV2OTAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUcd1R+GSxt+qPuN4C9+xDdPlwW/wwHwYDVR0j BBgwFoAUDkpkqQtIyO1KooboiD1ZW3af34swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkxMjQxMDg1OTk2MjM3MS8wLzBFNEE2NEE5MEI0OEM4RUQ0QUEyODZFODg4M0Q1 OTVCNzY5RkRGOEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3NjlGREY4Qi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MTI0MTA4NTk5NjIzNzEvMC8zMTMwMzMyZTMx MzkzMjJlMzIzMTMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfA1DANBgkqhkiG9w0BAQsFAAOCAQEApUv1k9gma2PRiQn+uKS4 WW6PvI11XOdBf+wRv6OWlNZCqlSFFwxpDWxQj6rHqiUImuXl6qE5G5WGqXEjvHHL WFT8oN3T5cTor6clozDOAFDNaqShyyoVDmtSVycNWoTNrjLxCkhEsYtrwEuGVshD JmDQdxreE1nTd2e2DNs9xmqZhA6e7gvRuTsciTbwpTaxZo3iD/r9Yis2N4herfR3 rmzSN6gBODa9JzoubLx6lATyAz26NmSWe+n+HGBCwCl/0yPSUdX0JEl5rNi13JCt BeB6kSlo/pCWiiCB1N/eIunKMNJ3YVF6ui6pZeqNck0+BgZPzyay/j4edmWeyWcN iw== -----END CERTIFICATE-----Generated at Wed May 13 14:58:37 2026 by rpki-client