$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096686730825760771/0/3130332e33362e3136352e302f32342d3234203d3e20313334373731.roa File: 3130332e33362e3136352e302f32342d3234203d3e20313334373731.roa (raw, json) Hash identifier: G9v1KPz5Flcq9LDq1tg8DoL6SKebPJ1ejmcmypa8BD8= Subject key identifier: 64:4A:02:3A:90:E7:7D:8C:5A:7F:1C:B3:07:81:FD:5D:BD:C1:BD:0C Certificate issuer: /CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Certificate serial: 03C64AD07F05BB3FD99EC63B8AAA74050E197ADB Authority key identifier: 69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/3130332e33362e3136352e302f32342d3234203d3e20313334373731.roa Signing time: Tue 21 Apr 2026 02:01:54 +0000 ROA not before: Tue 21 Apr 2026 01:56:54 +0000 ROA not after: Tue 20 Apr 2027 02:01:54 +0000 asID: 134771 IP address blocks: 103.36.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:c6:4a:d0:7f:05:bb:3f:d9:9e:c6:3b:8a:aa:74:05:0e:19:7a:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Validity Not Before: Apr 21 01:56:54 2026 GMT Not After : Apr 20 02:01:54 2027 GMT Subject: CN=644A023A90E77D8C5A7F1CB30781FD5DBDC1BD0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:69:fd:2b:21:85:1e:02:1f:c1:8e:59:0f:9a: c3:2c:7c:5e:0a:d0:8a:7f:31:27:2f:85:e6:2f:dc: b8:13:5b:93:bb:5b:fe:3b:30:8d:ab:82:d4:1f:81: e9:26:47:0c:6d:b0:27:19:09:5c:8d:01:24:a1:93: fc:dd:30:d0:8b:c4:a1:3e:55:5e:1c:ce:a2:18:a8: bd:46:d3:b6:5b:f2:bd:ff:07:66:99:e6:ee:56:81: 0d:6e:be:72:71:3c:c4:bc:e9:70:a4:dc:cb:d6:51: 33:50:cc:fd:3a:5d:c8:59:de:73:40:5f:03:ed:99: f6:ad:9a:c3:00:ec:ac:59:1a:23:bd:a0:f4:1c:33: 09:e2:b9:6f:1d:49:3a:dd:49:cf:ea:03:c3:e7:7e: 5f:a7:63:e0:b5:2c:79:04:40:6b:cc:07:9a:79:3d: 94:90:dc:d3:7b:4d:97:0f:da:41:7e:dc:d6:4e:78: a0:ea:65:29:68:75:9a:ec:9a:2e:c8:87:84:b3:30: b1:af:9e:44:2f:21:da:9b:5b:fd:89:75:0d:59:a1: 7f:38:9f:17:5f:1c:f8:13:65:2f:78:04:61:f8:cf: 8c:44:95:c0:f4:d0:f8:c2:2c:17:93:79:e1:35:e5: 1f:9e:f1:ef:d7:5f:65:dd:a9:bb:d9:57:ac:0d:ac: ce:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4A:02:3A:90:E7:7D:8C:5A:7F:1C:B3:07:81:FD:5D:BD:C1:BD:0C X509v3 Authority Key Identifier: keyid:69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/3130332e33362e3136352e302f32342d3234203d3e20313334373731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.165.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:26:76:ce:6e:0b:27:e2:00:da:30:90:ab:79:12:c1:b9:e1: 7d:78:b6:f9:8f:99:04:8b:d3:c5:18:4b:15:31:63:76:63:fa: 55:e7:5a:dc:eb:1c:1d:18:38:ec:2c:a6:1c:a2:9e:43:26:38: a5:b8:66:f5:11:b4:a7:f4:b9:18:ed:1d:1a:d8:c2:33:7c:33: 03:df:62:85:f2:29:5a:7c:30:fc:5d:3d:8f:6b:1b:98:3a:b9: 56:bd:f6:aa:13:08:53:0d:ee:b2:78:6d:f5:e2:82:35:95:48: 1c:64:26:13:aa:62:c3:ae:c8:54:68:63:5a:36:15:a2:63:c4: 4a:72:cc:ba:0e:fd:2f:08:24:eb:56:4f:b4:f8:d6:df:9f:c7: 7f:8b:68:db:7d:db:07:10:63:a2:75:78:df:56:1e:3b:4a:a3: f7:28:83:a5:e8:77:64:49:e5:fc:52:6a:01:1f:a7:95:cf:39: 94:58:e1:ff:a8:07:f5:2a:78:a4:77:78:8f:e2:4a:d2:07:94: 58:d0:44:1a:8b:15:39:74:b4:d8:77:15:2b:fb:e2:4c:e5:1d: 69:f6:f2:9b:29:43:9b:68:ad:a4:84:16:b4:ea:d4:a9:0e:9b: aa:32:54:21:05:bd:68:92:a2:b7:05:7b:f6:09:35:bc:ba:3d: 08:74:2e:83 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUA8ZK0H8Fuz/ZnsY7iqp0BQ4ZetswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5 MTcxQzc5NjAeFw0yNjA0MjEwMTU2NTRaFw0yNzA0MjAwMjAxNTRaMDMxMTAvBgNV BAMTKDY0NEEwMjNBOTBFNzdEOEM1QTdGMUNCMzA3ODFGRDVEQkRDMUJEMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWaf0rIYUeAh/BjlkPmsMsfF4K 0Ip/MScvheYv3LgTW5O7W/47MI2rgtQfgekmRwxtsCcZCVyNASShk/zdMNCLxKE+ VV4czqIYqL1G07Zb8r3/B2aZ5u5WgQ1uvnJxPMS86XCk3MvWUTNQzP06XchZ3nNA XwPtmfatmsMA7KxZGiO9oPQcMwniuW8dSTrdSc/qA8Pnfl+nY+C1LHkEQGvMB5p5 PZSQ3NN7TZcP2kF+3NZOeKDqZSlodZrsmi7Ih4SzMLGvnkQvIdqbW/2JdQ1ZoX84 nxdfHPgTZS94BGH4z4xElcD00PjCLBeTeeE15R+e8e/XX2XdqbvZV6wNrM69AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUZEoCOpDnfYxafxyzB4H9Xb3BvQwwHwYDVR0j BBgwFoAUadiReQKtJKWsZ1FlXCm7fpFxx5YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY4NjczMDgyNTc2MDc3MS8wLzY5RDg5MTc5MDJBRDI0QTVBQzY3NTE2NTVDMjlC QjdFOTE3MUM3OTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5MTcxQzc5Ni5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2ODY3MzA4MjU3NjA3NzEvMC8zMTMwMzMyZTMz MzYyZTMxMzYzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3MzczMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGckpTANBgkqhkiG9w0BAQsFAAOCAQEATiZ2zm4LJ+IA2jCQq3kS wbnhfXi2+Y+ZBIvTxRhLFTFjdmP6Veda3OscHRg47CymHKKeQyY4pbhm9RG0p/S5 GO0dGtjCM3wzA99ihfIpWnww/F09j2sbmDq5Vr32qhMIUw3usnht9eKCNZVIHGQm E6piw67IVGhjWjYVomPESnLMug79Lwgk61ZPtPjW35/Hf4to233bBxBjonV431Ye O0qj9yiDpeh3ZEnl/FJqAR+nlc85lFjh/6gH9Sp4pHd4j+JK0geUWNBEGosVOXS0 2HcVK/viTOUdafbymylDm2itpIQWtOrUqQ6bqjJUIQW9aJKitwV79gk1vLo9CHQu gw== -----END CERTIFICATE-----Generated at Wed May 13 20:55:29 2026 by rpki-client