$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3233382e302e302f32322d3332203d3e203536303438.roa File: 3130332e3233382e302e302f32322d3332203d3e203536303438.roa (raw, json) Hash identifier: unApuc/e3kfVSaMeRVUTrLeBIAxkoNwZX+7xHbEwxiA= Subject key identifier: EE:27:8F:97:5C:38:96:B4:EB:BB:A7:A7:06:34:A2:EF:6D:F2:3D:B7 Certificate issuer: /CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Certificate serial: 09BB0419B55C19933664DB26BE12A2C82D8DCFBC Authority key identifier: 20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3233382e302e302f32322d3332203d3e203536303438.roa Signing time: Mon 11 May 2026 02:43:50 +0000 ROA not before: Mon 11 May 2026 02:38:50 +0000 ROA not after: Mon 10 May 2027 02:43:50 +0000 asID: 56048 IP address blocks: 103.238.0.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:bb:04:19:b5:5c:19:93:36:64:db:26:be:12:a2:c8:2d:8d:cf:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Validity Not Before: May 11 02:38:50 2026 GMT Not After : May 10 02:43:50 2027 GMT Subject: CN=EE278F975C3896B4EBBBA7A70634A2EF6DF23DB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:74:b8:b7:a8:47:b2:ea:8b:54:15:f1:72:5f: 46:95:c9:f8:57:0a:d5:f7:0e:52:1b:20:36:37:1f: f9:26:4a:b0:73:aa:9b:9a:ae:38:e6:0b:e6:c8:86: 37:46:c2:83:a3:89:37:14:ae:3a:f4:0a:87:74:19: bf:00:28:5a:ce:89:5e:8b:a0:f5:7a:eb:c2:16:65: bf:59:80:91:d0:04:5e:64:44:92:4a:40:6a:38:3f: ea:b3:21:a1:f9:ba:49:17:bf:e4:e1:a6:06:d2:cf: 74:6c:55:46:58:fb:06:26:6c:3f:b5:d8:36:bc:ac: 31:c3:c7:e4:7b:01:bd:19:4f:35:3e:af:12:76:24: 20:9a:5e:c0:d9:3a:5f:47:40:e6:2b:45:7a:1d:b7: fa:31:2a:1e:0f:78:31:cd:04:a6:8d:f7:20:9e:1b: df:f1:0d:80:b0:44:7f:22:70:45:4f:98:3f:31:ba: 8f:fc:d2:eb:3c:4a:bd:ed:66:a1:21:2d:75:af:ea: 6d:9c:54:2a:f6:aa:23:87:a3:26:22:95:e2:d0:eb: 34:7f:71:d5:6c:4b:34:6c:76:a2:49:3a:fa:97:48: a5:35:0c:a8:ea:a7:d4:bc:0a:69:ec:44:76:ca:a4: 4c:3a:9c:59:c6:54:52:ff:7f:c3:72:ea:fb:81:a8: 58:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:27:8F:97:5C:38:96:B4:EB:BB:A7:A7:06:34:A2:EF:6D:F2:3D:B7 X509v3 Authority Key Identifier: keyid:20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3233382e302e302f32322d3332203d3e203536303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.0.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:e9:a2:1c:f8:fa:02:a9:91:d1:4d:19:0e:d7:e4:55:f6:c1: 47:a8:0d:cb:3a:1b:84:ca:82:fe:a1:1e:dd:28:39:1c:dd:20: 12:49:48:2c:00:2d:18:02:56:11:ec:13:e6:5d:89:dc:fa:0d: e7:fb:d9:83:42:48:23:89:20:15:9e:40:e5:ea:2d:22:19:f6: 0d:72:f4:50:75:fa:6e:8c:99:40:ea:ae:33:b0:f1:a2:47:ee: ad:bb:18:3a:a0:14:34:67:e6:a2:0a:31:d4:fa:17:76:64:fb: 3f:ca:e6:d3:14:ba:ca:2e:78:fe:6c:bc:84:d3:8d:d1:b9:7d: 85:59:57:7b:a7:01:ee:df:a4:3b:4a:10:69:ea:60:70:3a:e3: 9f:84:39:1e:4b:ce:fa:b1:23:50:c5:d9:7b:fb:62:3a:2b:96: 30:13:b0:3e:c9:af:3c:fa:9d:e8:94:95:99:28:b2:3f:9c:28: 13:91:fa:5c:8f:ab:e9:c0:d7:a2:c7:71:c3:69:61:e2:df:b1: 21:19:aa:f8:cb:46:8f:f6:c1:24:c9:1f:5f:00:03:72:c1:f3: 57:7e:f0:9e:db:44:3d:b8:b0:ef:61:03:ec:20:37:fb:b8:8d: de:6b:78:1f:57:0e:1a:e0:d7:d2:4b:27:37:37:3a:e3:e2:e3: 18:f4:fb:92 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUCbsEGbVcGZM2ZNsmvhKiyC2Nz7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3 OEMxRTMxNTAeFw0yNjA1MTEwMjM4NTBaFw0yNzA1MTAwMjQzNTBaMDMxMTAvBgNV BAMTKEVFMjc4Rjk3NUMzODk2QjRFQkJCQTdBNzA2MzRBMkVGNkRGMjNEQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGdLi3qEey6otUFfFyX0aVyfhX CtX3DlIbIDY3H/kmSrBzqpuarjjmC+bIhjdGwoOjiTcUrjr0Cod0Gb8AKFrOiV6L oPV668IWZb9ZgJHQBF5kRJJKQGo4P+qzIaH5ukkXv+ThpgbSz3RsVUZY+wYmbD+1 2Da8rDHDx+R7Ab0ZTzU+rxJ2JCCaXsDZOl9HQOYrRXodt/oxKh4PeDHNBKaN9yCe G9/xDYCwRH8icEVPmD8xuo/80us8Sr3tZqEhLXWv6m2cVCr2qiOHoyYileLQ6zR/ cdVsSzRsdqJJOvqXSKU1DKjqp9S8CmnsRHbKpEw6nFnGVFL/f8Ny6vuBqFiLAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU7iePl1w4lrTru6enBjSi723yPbcwHwYDVR0j BBgwFoAUIMrI5wtcswlOR/8FFiOphXjB4xUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk4NDI5NDc2NzA5OTkwNS8wLzIwQ0FDOEU3MEI1Q0IzMDk0RTQ3RkYwNTE2MjNB OTg1NzhDMUUzMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3OEMxRTMxNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTg0Mjk0NzY3MDk5OTA1LzAvMzEzMDMzMmUzMjMz MzgyZTMwMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzUzNjMwMzQzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfuADANBgkqhkiG9w0BAQsFAAOCAQEAbemiHPj6AqmR0U0ZDtfkVfbBR6gN yzobhMqC/qEe3Sg5HN0gEklILAAtGAJWEewT5l2J3PoN5/vZg0JII4kgFZ5A5eot Ihn2DXL0UHX6boyZQOquM7DxokfurbsYOqAUNGfmogox1PoXdmT7P8rm0xS6yi54 /my8hNON0bl9hVlXe6cB7t+kO0oQaepgcDrjn4Q5HkvO+rEjUMXZe/tiOiuWMBOw PsmvPPqd6JSVmSiyP5woE5H6XI+r6cDXosdxw2lh4t+xIRmq+MtGj/bBJMkfXwAD csHzV37wnttEPbiw72ED7CA3+7iN3mt4H1cOGuDX0ksnNzc64+LjGPT7kg== -----END CERTIFICATE-----Generated at Wed May 13 15:03:38 2026 by rpki-client