$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3130332e33362e3138302e302f32322d3234203d3e203535393939.roa File: 3130332e33362e3138302e302f32322d3234203d3e203535393939.roa (raw, json) Hash identifier: O6P1nJZq+NIRw0lpZM4G5mpjEJVkMUy02Fgiskir+iw= Subject key identifier: 41:8D:FE:39:89:78:C3:85:97:F1:64:CF:5C:32:74:C0:8D:8F:64:A1 Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 412C97F2F14C49FAF3EA424C074769CCDC8909BA Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3130332e33362e3138302e302f32322d3234203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:41 +0000 ROA not before: Fri 08 May 2026 15:24:41 +0000 ROA not after: Fri 07 May 2027 15:29:41 +0000 asID: 55999 IP address blocks: 103.36.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:2c:97:f2:f1:4c:49:fa:f3:ea:42:4c:07:47:69:cc:dc:89:09:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:41 2026 GMT Not After : May 7 15:29:41 2027 GMT Subject: CN=418DFE398978C38597F164CF5C3274C08D8F64A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:23:8f:6d:ea:42:c5:08:2c:c2:17:9c:cd:25: 96:76:28:2c:f2:fa:99:d9:72:a1:6c:5e:61:0c:73: 4e:14:36:2c:9f:04:2e:ae:1d:3b:fc:91:1c:d9:94: f6:c0:4b:30:75:ef:e6:05:03:ab:80:32:0a:3a:e7: 85:a5:32:fb:82:a8:29:f0:e6:91:6f:b9:3a:70:9e: 10:f2:f7:c0:da:75:21:1f:92:b8:f5:33:df:26:a4: 2e:66:4f:42:90:56:25:9d:7b:ec:c2:78:9d:fb:24: 4f:b6:9e:44:f2:49:1b:be:44:a8:48:c6:d4:8f:84: 11:15:e2:9b:e6:8f:ad:2e:02:93:2d:83:b0:0f:bc: 40:bd:b4:d1:51:20:79:97:ac:a7:26:5f:b2:74:20: ba:8f:a4:3b:5c:44:ee:21:d4:ae:39:2f:aa:d4:3e: ef:f3:a8:97:cd:99:7c:62:b3:93:df:e8:c5:d7:3d: 44:05:fe:f0:7a:10:24:e9:c6:b4:64:92:49:59:10: b3:06:08:d8:f1:7c:ce:30:7b:2e:07:4c:1a:0d:02: ee:6d:5b:d9:7c:09:0e:65:35:6d:5f:6d:60:f3:95: 0a:de:38:f1:2a:29:0a:90:36:f2:b2:b5:93:62:9a: 94:8d:80:50:14:d5:86:25:e7:b5:0c:0b:1e:87:88: a3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:8D:FE:39:89:78:C3:85:97:F1:64:CF:5C:32:74:C0:8D:8F:64:A1 X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3130332e33362e3138302e302f32322d3234203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.180.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:ba:8a:d8:05:27:bf:96:ab:8b:9a:90:28:d7:77:44:67:d6: 61:09:0c:ab:2c:e1:89:97:43:8c:fb:d9:94:fa:2b:b5:8b:9a: 30:17:a4:c1:d9:66:7b:fe:89:32:90:0d:48:6d:53:f9:2d:f3: a3:59:d2:c2:9e:ae:a5:b6:9d:56:0b:64:aa:fe:ea:a4:f2:8c: e6:a8:d6:4d:9d:17:a9:53:7f:70:18:e8:6c:99:ce:6a:8c:c4: 7c:ad:92:a7:a2:04:6d:8a:57:5c:8b:7f:73:22:54:46:db:28: 74:32:00:92:c1:4f:b8:b0:da:3a:fa:fb:13:86:14:84:e6:9d: 33:48:b0:be:a8:ff:8e:30:78:b1:fb:d0:6d:e9:db:89:99:56: 94:d8:40:54:d6:88:3b:d3:b0:24:03:72:16:4c:da:5c:8e:2f: 30:b7:9e:ce:9a:b3:8b:58:66:1c:c1:e5:c2:64:1e:59:67:9b: 63:57:1b:f8:0b:19:92:1a:29:78:98:67:80:c6:96:d8:71:68: 2b:75:b9:ad:66:c1:20:8a:f9:82:e9:96:9b:12:59:a2:af:39: fe:a2:18:31:1d:88:35:60:7a:bd:f8:1c:d6:50:12:ae:96:63: 54:c3:14:35:fb:8f:41:da:f9:91:84:d7:4d:a8:fa:99:94:17: 28:9a:cb:51 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQSyX8vFMSfrz6kJMB0dpzNyJCbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDFaFw0yNzA1MDcxNTI5NDFaMDMxMTAvBgNV BAMTKDQxOERGRTM5ODk3OEMzODU5N0YxNjRDRjVDMzI3NEMwOEQ4RjY0QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUI49t6kLFCCzCF5zNJZZ2KCzy +pnZcqFsXmEMc04UNiyfBC6uHTv8kRzZlPbASzB17+YFA6uAMgo654WlMvuCqCnw 5pFvuTpwnhDy98DadSEfkrj1M98mpC5mT0KQViWde+zCeJ37JE+2nkTySRu+RKhI xtSPhBEV4pvmj60uApMtg7APvEC9tNFRIHmXrKcmX7J0ILqPpDtcRO4h1K45L6rU Pu/zqJfNmXxis5Pf6MXXPUQF/vB6ECTpxrRkkklZELMGCNjxfM4wey4HTBoNAu5t W9l8CQ5lNW1fbWDzlQreOPEqKQqQNvKytZNimpSNgFAU1YYl57UMCx6HiKMPAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUQY3+OYl4w4WX8WTPXDJ0wI2PZKEwHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY5Mzg5OTU5NTg3NDMwNS8wLzMxMzAzMzJlMzMz NjJlMzEzODMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmcktDANBgkqhkiG9w0BAQsFAAOCAQEADLqK2AUnv5ari5qQKNd3RGfW YQkMqyzhiZdDjPvZlPortYuaMBekwdlme/6JMpANSG1T+S3zo1nSwp6upbadVgtk qv7qpPKM5qjWTZ0XqVN/cBjobJnOaozEfK2Sp6IEbYpXXIt/cyJURtsodDIAksFP uLDaOvr7E4YUhOadM0iwvqj/jjB4sfvQbenbiZlWlNhAVNaIO9OwJANyFkzaXI4v MLeezpqzi1hmHMHlwmQeWWebY1cb+AsZkhopeJhngMaW2HFoK3W5rWbBIIr5gumW mxJZoq85/qIYMR2INWB6vfgc1lASrpZjVMMUNfuPQdr5kYTXTaj6mZQXKJrLUQ== -----END CERTIFICATE-----Generated at Wed May 13 21:32:09 2026 by rpki-client