$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3130332e33362e3138382e302f32322d3234203d3e203535393939.roa File: 3130332e33362e3138382e302f32322d3234203d3e203535393939.roa (raw, json) Hash identifier: CSVfya++arvHuYMasShJSRsQQS2NF/zkIZBUVm3nf70= Subject key identifier: F9:EE:51:48:60:F9:61:54:3A:17:C7:FF:99:4B:15:A4:BC:E1:12:6A Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 4210F7938D5020FA2B15DE335EE15D42E87DADC3 Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3130332e33362e3138382e302f32322d3234203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:41 +0000 ROA not before: Fri 08 May 2026 15:24:41 +0000 ROA not after: Fri 07 May 2027 15:29:41 +0000 asID: 55999 IP address blocks: 103.36.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:10:f7:93:8d:50:20:fa:2b:15:de:33:5e:e1:5d:42:e8:7d:ad:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:41 2026 GMT Not After : May 7 15:29:41 2027 GMT Subject: CN=F9EE514860F961543A17C7FF994B15A4BCE1126A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c2:7e:3c:be:ab:a0:c8:56:77:d2:1f:5c:9b: 9e:13:b2:b8:42:67:71:e2:7d:33:00:1d:0e:0f:08: 35:32:1a:83:c6:31:2f:30:fc:d9:5e:ef:7a:8f:ea: 27:2a:0c:2a:b3:b9:05:d8:0a:4d:9a:94:20:52:79: a0:5c:74:06:96:a4:0c:17:16:dd:38:64:b2:34:ef: bd:71:29:f8:eb:12:e1:78:13:92:8e:62:c8:00:e2: a3:42:35:93:cf:5f:bf:4d:ca:dc:3c:08:3b:e3:11: b6:d1:ca:e7:82:59:90:a9:a1:bf:ca:57:41:51:eb: dd:4b:1f:26:40:66:00:e2:ae:3c:5a:b2:fc:0f:35: 13:f0:17:e3:60:65:48:09:4d:69:5c:8a:c2:c0:d6: 49:a1:5e:60:41:51:27:1e:f6:43:fc:dd:af:aa:0d: 5e:fe:12:af:68:2c:94:72:a9:36:3d:6b:60:81:47: 68:00:d0:88:c7:56:50:a8:d1:a7:43:25:13:af:fe: a4:31:27:53:09:52:d0:02:14:a6:33:e5:d6:f1:0d: 16:2e:e6:6e:7a:51:34:76:18:3c:cc:77:2f:6c:c0: 59:26:f6:e4:b5:53:e3:41:8a:53:85:41:b2:d4:16: 01:77:8e:94:32:58:ef:44:de:80:c1:7a:6c:3b:4c: c5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:EE:51:48:60:F9:61:54:3A:17:C7:FF:99:4B:15:A4:BC:E1:12:6A X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/3130332e33362e3138382e302f32322d3234203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.188.0/22 Signature Algorithm: sha256WithRSAEncryption 47:60:7b:dd:04:cf:32:e8:5d:74:b5:1f:ee:87:96:a3:de:5c: 78:64:76:8d:c0:df:28:d0:e0:34:54:80:cb:28:49:f9:a1:96: fe:78:06:d9:04:68:26:54:34:c8:f7:14:16:d6:c8:47:36:53: 9d:ae:68:7d:05:b2:aa:da:28:6d:de:d5:33:c0:40:8e:b0:39: 8b:62:0e:be:32:1c:5f:c8:98:7f:0c:89:8f:04:fc:c0:ad:46: 6d:29:66:ae:1c:2f:05:21:f2:bd:f0:dc:04:98:bf:61:49:44: 3a:c7:ba:cf:01:54:53:18:2f:99:8f:97:97:bb:f2:c4:ef:08: 26:a9:a4:6f:c0:82:57:3a:9a:9a:8e:74:66:aa:7e:ed:b5:2c: 97:c9:72:10:47:7f:88:58:f1:00:0a:10:0a:71:26:25:40:4c: ac:ff:4c:c2:a3:21:cb:d3:3d:62:ac:6b:92:2d:e7:92:f1:f7: a6:b4:99:ae:dd:12:80:ee:b9:e5:87:16:ee:72:f3:3f:29:a0: 08:2d:cc:1e:e7:c5:7b:70:aa:17:d9:b3:a0:45:b1:26:fc:57: 60:94:cd:54:be:cf:92:21:85:55:73:5a:b2:0c:3a:a3:1b:e0: fc:65:e9:1c:53:2f:2b:a5:c0:07:06:0c:a0:65:19:68:e6:f4: 48:5e:1b:20 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQhD3k41QIPorFd4zXuFdQuh9rcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDFaFw0yNzA1MDcxNTI5NDFaMDMxMTAvBgNV BAMTKEY5RUU1MTQ4NjBGOTYxNTQzQTE3QzdGRjk5NEIxNUE0QkNFMTEyNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJwn48vqugyFZ30h9cm54TsrhC Z3HifTMAHQ4PCDUyGoPGMS8w/Nle73qP6icqDCqzuQXYCk2alCBSeaBcdAaWpAwX Ft04ZLI0771xKfjrEuF4E5KOYsgA4qNCNZPPX79Nytw8CDvjEbbRyueCWZCpob/K V0FR691LHyZAZgDirjxasvwPNRPwF+NgZUgJTWlcisLA1kmhXmBBUSce9kP83a+q DV7+Eq9oLJRyqTY9a2CBR2gA0IjHVlCo0adDJROv/qQxJ1MJUtACFKYz5dbxDRYu 5m56UTR2GDzMdy9swFkm9uS1U+NBilOFQbLUFgF3jpQyWO9E3oDBemw7TMUnAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU+e5RSGD5YVQ6F8f/mUsVpLzhEmowHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY5Mzg5OTU5NTg3NDMwNS8wLzMxMzAzMzJlMzMz NjJlMzEzODM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmckvDANBgkqhkiG9w0BAQsFAAOCAQEAR2B73QTPMuhddLUf7oeWo95c eGR2jcDfKNDgNFSAyyhJ+aGW/ngG2QRoJlQ0yPcUFtbIRzZTna5ofQWyqtoobd7V M8BAjrA5i2IOvjIcX8iYfwyJjwT8wK1GbSlmrhwvBSHyvfDcBJi/YUlEOse6zwFU UxgvmY+Xl7vyxO8IJqmkb8CCVzqamo50Zqp+7bUsl8lyEEd/iFjxAAoQCnEmJUBM rP9MwqMhy9M9Yqxrki3nkvH3prSZrt0SgO655YcW7nLzPymgCC3MHufFe3CqF9mz oEWxJvxXYJTNVL7PkiGFVXNasgw6oxvg/GXpHFMvK6XABwYMoGUZaOb0SF4bIA== -----END CERTIFICATE-----Generated at Wed May 13 21:32:20 2026 by rpki-client