$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3232322e3137322e302f32322d3234203d3e203539303438.roa File: 3130332e3232322e3137322e302f32322d3234203d3e203539303438.roa (raw, json) Hash identifier: 8fM4E5RfOML/o7HtadOo6iJnRx4wkfxWzOE/L/LqYTU= Subject key identifier: 32:AE:88:7E:C2:39:9A:09:F2:EC:D6:A8:8C:F1:C7:D0:29:97:44:82 Certificate issuer: /CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Certificate serial: 5B658E5D900F89484C4218E97E1110BBCCA74D33 Authority key identifier: 0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3232322e3137322e302f32322d3234203d3e203539303438.roa Signing time: Mon 11 May 2026 07:01:36 +0000 ROA not before: Mon 11 May 2026 06:56:36 +0000 ROA not after: Mon 10 May 2027 07:01:36 +0000 asID: 59048 IP address blocks: 103.222.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:65:8e:5d:90:0f:89:48:4c:42:18:e9:7e:11:10:bb:cc:a7:4d:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Validity Not Before: May 11 06:56:36 2026 GMT Not After : May 10 07:01:36 2027 GMT Subject: CN=32AE887EC2399A09F2ECD6A88CF1C7D029974482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:1c:25:be:73:b1:94:75:0f:f6:70:be:67: a7:4f:11:c7:f5:f3:35:9c:8f:fd:81:96:4d:60:3f: ce:59:46:1e:da:1c:03:0d:87:95:e7:39:ff:3b:7e: e7:c5:d6:df:3d:66:6b:66:15:c5:ca:06:fc:e7:5c: 99:9c:b7:64:35:40:f6:8e:5a:34:85:d2:0a:1e:7c: 88:6e:8f:86:e4:4a:9c:b1:3f:0d:10:2d:29:6b:7b: 39:5b:80:d5:ff:82:da:b6:de:3a:b0:1a:88:ec:fb: 82:75:af:30:e7:28:e7:70:89:e0:69:63:19:a2:7c: 7d:23:d0:e1:c8:d2:25:ad:2e:27:18:d6:4d:d0:95: 07:e5:6f:a9:e6:1a:87:5d:d0:c7:68:f1:d9:16:ac: 36:71:e2:ce:58:06:91:97:43:f5:d9:2a:8f:3f:6e: 59:fb:c9:fa:39:d2:81:d6:15:c1:e9:ff:98:a8:a2: 4f:b4:94:75:93:99:0f:39:03:6e:9f:94:9c:46:cd: fe:81:43:5d:46:1b:7b:34:24:e3:b4:76:21:8e:84: aa:fc:78:27:6d:25:0c:c3:26:a9:40:4b:35:73:62: c0:fe:b5:dc:cf:0a:18:ee:7c:62:4e:29:dd:ee:8a: d5:d3:04:13:57:9b:8f:29:97:6e:78:9b:52:ae:9e: cd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AE:88:7E:C2:39:9A:09:F2:EC:D6:A8:8C:F1:C7:D0:29:97:44:82 X509v3 Authority Key Identifier: keyid:0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3232322e3137322e302f32322d3234203d3e203539303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.222.172.0/22 Signature Algorithm: sha256WithRSAEncryption 30:d1:fe:a6:68:26:57:c9:00:20:30:99:1c:81:2e:14:91:a9: be:44:c6:9f:9f:a6:c4:12:e5:7b:73:f5:05:14:7f:2f:51:10: fa:15:03:ed:f4:3e:9e:26:d9:32:ad:5b:ac:15:16:da:83:a0: 13:77:30:dd:98:19:04:ec:e3:84:cf:aa:57:15:63:6e:93:0f: 02:05:b6:14:0e:5c:0e:ec:6a:05:78:77:4c:06:53:ec:90:fe: 52:cf:b0:5c:a1:28:d1:7f:a5:6e:7d:f6:2c:53:03:fb:71:5d: ae:62:34:07:3d:4e:33:27:f6:20:f8:e1:2a:21:71:9e:33:20: 82:f9:4b:fc:5e:4e:ea:20:54:80:bc:43:65:90:b5:11:63:98: 0d:14:3b:40:a6:c1:2a:e3:12:a4:47:a4:46:45:0b:b0:95:3b: 05:48:42:97:7f:43:c2:98:ba:c6:dc:7a:e5:2f:41:31:6c:12: 53:3f:09:9e:1a:32:86:2b:69:96:75:53:41:aa:a8:e0:23:e8: 6d:41:90:22:84:87:47:a6:88:73:da:2b:22:ab:e9:b1:74:1a: a1:30:77:ce:e1:55:8b:5e:23:80:90:16:dc:52:65:ff:fc:68: b8:97:ef:76:66:6d:cd:1e:de:51:0a:eb:4e:7b:85:47:70:c1: f7:b4:a3:49 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUW2WOXZAPiUhMQhjpfhEQu8ynTTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3 NjlGREY4QjAeFw0yNjA1MTEwNjU2MzZaFw0yNzA1MTAwNzAxMzZaMDMxMTAvBgNV BAMTKDMyQUU4ODdFQzIzOTlBMDlGMkVDRDZBODhDRjFDN0QwMjk5NzQ0ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAghwlvnOxlHUP9nC+Z6dPEcf1 8zWcj/2Blk1gP85ZRh7aHAMNh5XnOf87fufF1t89ZmtmFcXKBvznXJmct2Q1QPaO WjSF0goefIhuj4bkSpyxPw0QLSlrezlbgNX/gtq23jqwGojs+4J1rzDnKOdwieBp YxmifH0j0OHI0iWtLicY1k3QlQflb6nmGodd0Mdo8dkWrDZx4s5YBpGXQ/XZKo8/ bln7yfo50oHWFcHp/5iook+0lHWTmQ85A26flJxGzf6BQ11GG3s0JOO0diGOhKr8 eCdtJQzDJqlASzVzYsD+tdzPChjufGJOKd3uitXTBBNXm48pl254m1Kuns07AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUMq6IfsI5mgny7NaojPHH0CmXRIIwHwYDVR0j BBgwFoAUDkpkqQtIyO1KooboiD1ZW3af34swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkxMjQxMDg1OTk2MjM3MS8wLzBFNEE2NEE5MEI0OEM4RUQ0QUEyODZFODg4M0Q1 OTVCNzY5RkRGOEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3NjlGREY4Qi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MTI0MTA4NTk5NjIzNzEvMC8zMTMwMzMyZTMy MzIzMjJlMzEzNzMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmferDANBgkqhkiG9w0BAQsFAAOCAQEAMNH+pmgmV8kAIDCZHIEu FJGpvkTGn5+mxBLle3P1BRR/L1EQ+hUD7fQ+nibZMq1brBUW2oOgE3cw3ZgZBOzj hM+qVxVjbpMPAgW2FA5cDuxqBXh3TAZT7JD+Us+wXKEo0X+lbn32LFMD+3FdrmI0 Bz1OMyf2IPjhKiFxnjMggvlL/F5O6iBUgLxDZZC1EWOYDRQ7QKbBKuMSpEekRkUL sJU7BUhCl39Dwpi6xtx65S9BMWwSUz8JnhoyhitplnVTQaqo4CPobUGQIoSHR6aI c9orIqvpsXQaoTB3zuFVi14jgJAW3FJl//xouJfvdmZtzR7eUQrrTnuFR3DB97Sj SQ== -----END CERTIFICATE-----Generated at Wed May 13 13:54:11 2026 by rpki-client