$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3137372e302f32342d3234203d3e203538343636.roa File: 3130332e3232322e3137372e302f32342d3234203d3e203538343636.roa (raw, json) Hash identifier: sH7OowcFHJCcPwvZJv25D4lUlZf+T7s/iYMS2TGzZjc= Subject key identifier: FD:8A:3E:3D:4A:6C:2E:C6:17:E8:4B:77:EE:53:27:01:21:8C:AA:01 Certificate issuer: /CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Certificate serial: 71CAD233C1965B717C9217542F4282E5DF572FDD Authority key identifier: 48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3137372e302f32342d3234203d3e203538343636.roa Signing time: Fri 08 May 2026 08:33:30 +0000 ROA not before: Fri 08 May 2026 08:28:30 +0000 ROA not after: Fri 07 May 2027 08:33:30 +0000 asID: 58466 IP address blocks: 103.222.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ca:d2:33:c1:96:5b:71:7c:92:17:54:2f:42:82:e5:df:57:2f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Validity Not Before: May 8 08:28:30 2026 GMT Not After : May 7 08:33:30 2027 GMT Subject: CN=FD8A3E3D4A6C2EC617E84B77EE532701218CAA01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8b:66:51:57:38:be:32:3c:65:0d:3c:be:44: 14:98:82:84:52:06:1c:90:e1:fe:25:0f:dc:63:dd: 1f:c5:96:8c:4e:40:eb:ce:df:87:ae:f1:39:d3:f1: 0d:17:9c:93:f9:0d:da:32:22:f1:d9:63:14:70:44: d2:ec:3f:c0:83:1d:84:a5:be:92:11:bc:75:73:a9: 78:fe:36:d5:69:61:42:45:96:da:98:ad:b1:27:f5: d7:6f:78:67:14:5d:80:00:6f:df:7e:20:cc:d4:26: d1:60:11:eb:9e:2d:05:ec:1a:b5:14:e6:90:b8:51: 57:3c:02:85:0e:81:c2:70:63:29:1d:b7:f5:aa:e2: 49:ed:e4:d8:de:a7:dc:7a:01:57:7a:e6:b1:92:55: 61:02:96:23:9b:d6:6e:7c:d1:c6:47:1d:4c:48:39: 12:7d:9b:26:29:ab:52:dd:36:68:3c:46:32:69:77: d8:44:90:05:6d:c4:77:73:e7:d1:45:05:f0:4b:fd: 87:b0:b5:40:2e:c6:7b:43:64:85:40:db:2a:50:bd: b0:54:f3:c4:d3:8a:08:32:02:57:e3:90:50:30:51: d5:83:42:14:11:2b:24:2a:a2:fb:87:8f:67:33:71: 7a:d3:b7:f1:d5:e8:68:64:38:fc:f0:51:0f:71:eb: 11:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:8A:3E:3D:4A:6C:2E:C6:17:E8:4B:77:EE:53:27:01:21:8C:AA:01 X509v3 Authority Key Identifier: keyid:48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3137372e302f32342d3234203d3e203538343636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.222.177.0/24 Signature Algorithm: sha256WithRSAEncryption 53:bc:72:6d:6b:e4:a0:75:58:21:d3:8c:78:b5:a8:c2:fb:0b: b9:d1:c6:c7:04:43:07:38:92:58:b1:b1:85:eb:15:57:df:a7: 7e:bd:c7:1d:d9:b7:ec:31:d4:75:e3:83:4e:06:3f:e2:85:f8: f8:2b:63:be:79:2c:9d:bf:97:8c:65:7b:49:e4:77:20:52:1c: b5:6a:ea:11:fb:f9:07:c6:3a:50:a7:44:63:62:5f:ac:4d:30: da:a9:9a:3a:b9:ea:0b:11:4b:e8:91:d1:d5:40:b2:45:61:74: cf:75:fb:84:0a:19:49:17:e3:7f:c6:11:02:5d:0d:e8:03:b9: db:12:70:84:0c:73:f7:70:ba:cb:e2:91:4f:1c:73:a8:25:39: bc:a8:57:b2:fb:07:ac:fa:b0:8c:1e:c1:84:68:35:e0:a3:17: 41:4d:5e:54:e5:23:95:14:3b:68:a8:c3:26:da:3c:66:1b:1b: 2a:f8:7c:98:17:6b:a7:83:d3:b6:bc:30:72:dd:5e:1f:1c:e2: 5b:eb:77:65:f1:d7:75:52:55:31:36:58:68:45:dc:5e:d8:6f: c4:bd:00:23:d3:32:64:7d:04:a5:05:a7:4f:d8:1e:17:6e:3d: 34:4e:ea:b5:77:63:21:d4:9d:6b:42:ff:69:08:f8:97:59:03: 4c:aa:de:28 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUccrSM8GWW3F8khdUL0KC5d9XL90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJG NUFCNjEzMzAeFw0yNjA1MDgwODI4MzBaFw0yNzA1MDcwODMzMzBaMDMxMTAvBgNV BAMTKEZEOEEzRTNENEE2QzJFQzYxN0U4NEI3N0VFNTMyNzAxMjE4Q0FBMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyi2ZRVzi+MjxlDTy+RBSYgoRS BhyQ4f4lD9xj3R/FloxOQOvO34eu8TnT8Q0XnJP5DdoyIvHZYxRwRNLsP8CDHYSl vpIRvHVzqXj+NtVpYUJFltqYrbEn9ddveGcUXYAAb99+IMzUJtFgEeueLQXsGrUU 5pC4UVc8AoUOgcJwYykdt/Wq4knt5Njep9x6AVd65rGSVWECliOb1m580cZHHUxI ORJ9myYpq1LdNmg8RjJpd9hEkAVtxHdz59FFBfBL/YewtUAuxntDZIVA2ypQvbBU 88TTiggyAlfjkFAwUdWDQhQRKyQqovuHj2czcXrTt/HV6GhkOPzwUQ9x6xGvAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU/Yo+PUpsLsYX6Et37lMnASGMqgEwHwYDVR0j BBgwFoAUSFOhsxfEeqcrRf0IaxvZ4vWrYTMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODI0MTkyMy8wLzQ4NTNBMUIzMTdDNDdBQTcyQjQ1RkQwODZCMUJE OUUyRjVBQjYxMzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJGNUFCNjEzMy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTcwNDc0MzA3NDgyNDE5MjMvMC8zMTMwMzMyZTMy MzIzMjJlMzEzNzM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODM0MzYzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfesTANBgkqhkiG9w0BAQsFAAOCAQEAU7xybWvkoHVYIdOMeLWo wvsLudHGxwRDBziSWLGxhesVV9+nfr3HHdm37DHUdeODTgY/4oX4+Ctjvnksnb+X jGV7SeR3IFIctWrqEfv5B8Y6UKdEY2JfrE0w2qmaOrnqCxFL6JHR1UCyRWF0z3X7 hAoZSRfjf8YRAl0N6AO52xJwhAxz93C6y+KRTxxzqCU5vKhXsvsHrPqwjB7BhGg1 4KMXQU1eVOUjlRQ7aKjDJto8ZhsbKvh8mBdrp4PTtrwwct1eHxziW+t3ZfHXdVJV MTZYaEXcXthvxL0AI9MyZH0EpQWnT9geF249NE7qtXdjIdSda0L/aQj4l1kDTKre KA== -----END CERTIFICATE-----Generated at Wed May 13 19:06:30 2026 by rpki-client