$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3232332e3134302e302f32322d3234203d3e203539303438.roa File: 3130332e3232332e3134302e302f32322d3234203d3e203539303438.roa (raw, json) Hash identifier: 0njmA/JMXhkQbnUUMCnpXBtHobjFAa1sQaEz8kbokeY= Subject key identifier: F8:78:C1:12:39:37:EC:AB:B3:8D:62:ED:17:81:04:B2:51:07:D9:79 Certificate issuer: /CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Certificate serial: 27481C2E4AB6F2E190407D806CBEE64745D22123 Authority key identifier: 0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3232332e3134302e302f32322d3234203d3e203539303438.roa Signing time: Mon 11 May 2026 07:01:36 +0000 ROA not before: Mon 11 May 2026 06:56:36 +0000 ROA not after: Mon 10 May 2027 07:01:36 +0000 asID: 59048 IP address blocks: 103.223.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:48:1c:2e:4a:b6:f2:e1:90:40:7d:80:6c:be:e6:47:45:d2:21:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Validity Not Before: May 11 06:56:36 2026 GMT Not After : May 10 07:01:36 2027 GMT Subject: CN=F878C1123937ECABB38D62ED178104B25107D979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9c:b8:ef:dc:4b:32:11:5b:8a:2f:a6:6e:3c: 36:62:56:3f:4d:40:ec:ca:59:a8:99:84:d0:6e:22: 24:b6:28:5d:fd:53:fd:c2:81:bb:ae:3e:cb:93:5c: 98:47:cc:98:96:29:8c:a7:3c:f7:ab:10:8f:1c:ea: ea:94:a0:a4:52:62:0a:37:5b:7d:1f:d2:d8:65:6d: 30:62:da:eb:0a:2c:f8:b3:6d:ec:0f:a5:a1:7d:67: 97:de:9c:73:54:fa:15:c4:07:ce:70:b1:b9:0e:e1: 86:e8:be:84:5a:3e:4a:b1:e4:31:0f:b4:15:f8:4e: 78:08:34:32:7e:c6:74:24:0e:db:82:5c:c9:96:bb: 6a:db:51:1c:a7:11:17:19:95:37:f4:05:dc:20:8a: f4:7d:bc:23:fa:3e:b6:b0:93:f7:d9:2a:05:b6:6e: 38:09:14:4c:ce:05:ed:e5:eb:af:b0:a8:9c:07:58: ce:38:90:6a:14:a6:a7:b3:b3:47:57:b8:f9:a8:1e: 5d:e1:ec:70:2a:db:b7:4c:45:cb:ca:d5:52:1f:d8: cb:1b:f0:d1:e8:f4:5c:a7:28:0c:d5:5d:87:fe:b4: d6:90:70:37:96:98:24:01:b9:a1:6a:72:cc:ba:df: 09:29:26:57:38:f8:18:04:e4:49:af:6f:0b:78:83: 85:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:78:C1:12:39:37:EC:AB:B3:8D:62:ED:17:81:04:B2:51:07:D9:79 X509v3 Authority Key Identifier: keyid:0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/3130332e3232332e3134302e302f32322d3234203d3e203539303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.223.140.0/22 Signature Algorithm: sha256WithRSAEncryption 97:aa:de:35:27:f7:15:c8:04:10:69:6b:be:17:98:5f:62:11: f6:dc:29:df:01:c1:8a:42:89:20:6b:9b:5a:a2:d6:45:58:44: ef:b2:54:42:7a:dc:5e:c9:47:20:20:d3:ac:df:74:5c:9d:94: 57:24:bb:44:5d:3d:ee:d2:ad:f7:68:9c:df:51:68:0b:1f:96: 9a:2f:78:b7:9c:9f:bc:69:79:2a:0f:91:73:7e:12:d2:dd:00: 3b:07:75:db:13:dd:22:62:5f:3a:92:a8:b2:9c:6e:cc:a9:ce: da:72:a1:f5:4e:61:1a:5f:d3:d9:5e:19:19:a0:20:bd:c7:cd: c6:b0:ef:89:30:a2:40:3c:4c:b2:d4:b8:d4:92:b5:4c:57:6c: 25:2a:13:db:3b:f6:ed:4b:ea:45:2d:ce:c6:13:8d:79:31:6b: 46:34:40:4a:de:db:13:51:f1:46:b0:6a:50:64:f8:b4:99:52: d7:29:0a:2d:25:70:37:59:81:87:02:71:aa:1f:f0:a8:24:fb: 44:9c:84:51:b9:c1:98:8f:77:0f:81:64:2e:ab:2c:74:14:c3: 7a:e3:3f:cb:70:d9:75:e8:ae:66:db:2e:6c:af:c7:43:ed:d8: 8d:e3:c8:2f:0d:67:4b:d9:bd:ec:30:df:43:c5:ac:f0:e8:ac: 79:4c:b8:04 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJ0gcLkq28uGQQH2AbL7mR0XSISMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3 NjlGREY4QjAeFw0yNjA1MTEwNjU2MzZaFw0yNzA1MTAwNzAxMzZaMDMxMTAvBgNV BAMTKEY4NzhDMTEyMzkzN0VDQUJCMzhENjJFRDE3ODEwNEIyNTEwN0Q5NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFnLjv3EsyEVuKL6ZuPDZiVj9N QOzKWaiZhNBuIiS2KF39U/3CgbuuPsuTXJhHzJiWKYynPPerEI8c6uqUoKRSYgo3 W30f0thlbTBi2usKLPizbewPpaF9Z5fenHNU+hXEB85wsbkO4YbovoRaPkqx5DEP tBX4TngINDJ+xnQkDtuCXMmWu2rbURynERcZlTf0BdwgivR9vCP6Prawk/fZKgW2 bjgJFEzOBe3l66+wqJwHWM44kGoUpqezs0dXuPmoHl3h7HAq27dMRcvK1VIf2Msb 8NHo9FynKAzVXYf+tNaQcDeWmCQBuaFqcsy63wkpJlc4+BgE5Emvbwt4g4UbAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU+HjBEjk37KuzjWLtF4EEslEH2XkwHwYDVR0j BBgwFoAUDkpkqQtIyO1KooboiD1ZW3af34swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkxMjQxMDg1OTk2MjM3MS8wLzBFNEE2NEE5MEI0OEM4RUQ0QUEyODZFODg4M0Q1 OTVCNzY5RkRGOEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3NjlGREY4Qi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5MTI0MTA4NTk5NjIzNzEvMC8zMTMwMzMyZTMy MzIzMzJlMzEzNDMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmffjDANBgkqhkiG9w0BAQsFAAOCAQEAl6reNSf3FcgEEGlrvheY X2IR9twp3wHBikKJIGubWqLWRVhE77JUQnrcXslHICDTrN90XJ2UVyS7RF097tKt 92ic31FoCx+Wmi94t5yfvGl5Kg+Rc34S0t0AOwd12xPdImJfOpKospxuzKnO2nKh 9U5hGl/T2V4ZGaAgvcfNxrDviTCiQDxMstS41JK1TFdsJSoT2zv27UvqRS3OxhON eTFrRjRASt7bE1HxRrBqUGT4tJlS1ykKLSVwN1mBhwJxqh/wqCT7RJyEUbnBmI93 D4FkLqssdBTDeuM/y3DZdeiuZtsubK/HQ+3YjePILw1nS9m97DDfQ8Ws8OiseUy4 BA== -----END CERTIFICATE-----Generated at Wed May 13 14:39:55 2026 by rpki-client