$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3138312e302f32342d3234203d3e203538343636.roa File: 3130332e3232322e3138312e302f32342d3234203d3e203538343636.roa (raw, json) Hash identifier: uKysvU2wPaXdqx5np2DX47AZPrvFjLAnDA6TLyNZjPM= Subject key identifier: 42:14:FC:6B:42:A3:48:14:84:E6:7C:C3:55:34:D2:E0:FE:04:2E:A2 Certificate issuer: /CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Certificate serial: AEEF46EB40A7AACB757639DD07AA4511BA50D0 Authority key identifier: 48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3138312e302f32342d3234203d3e203538343636.roa Signing time: Fri 08 May 2026 08:33:29 +0000 ROA not before: Fri 08 May 2026 08:28:29 +0000 ROA not after: Fri 07 May 2027 08:33:29 +0000 asID: 58466 IP address blocks: 103.222.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ae:ef:46:eb:40:a7:aa:cb:75:76:39:dd:07:aa:45:11:ba:50:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Validity Not Before: May 8 08:28:29 2026 GMT Not After : May 7 08:33:29 2027 GMT Subject: CN=4214FC6B42A3481484E67CC35534D2E0FE042EA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:07:14:19:02:cc:c9:c1:8c:9c:c9:de:35:4a: 02:8e:bb:f8:ea:9f:ac:c8:dc:c0:23:38:f9:0b:12: e8:19:19:6f:c0:8c:43:eb:10:da:b2:05:d7:bd:bf: 5b:e2:f6:77:b4:27:12:79:be:a4:e4:dd:ee:d9:7e: b0:61:22:5f:f0:cb:2d:6a:6e:f0:81:23:45:53:bf: ec:6c:69:81:74:5c:2e:40:bf:a2:5d:21:f6:d2:31: 35:ae:2e:fe:45:52:d4:75:c7:2f:37:89:e4:51:56: e7:8d:a9:bf:e4:0f:9c:c8:18:22:63:8b:9d:62:7c: 85:10:7d:42:d3:e7:89:a8:eb:aa:af:09:7a:84:7c: 0b:84:c6:2d:fe:33:50:7b:ff:29:ad:af:69:c7:2a: 65:23:09:ab:12:b6:f4:e6:99:b8:25:63:7e:e8:04: d2:99:fc:94:da:d8:0e:c3:18:5a:3b:90:ef:47:66: 12:a2:d6:04:89:00:26:64:d2:1a:bd:37:a9:17:ec: 60:42:0f:d7:5c:ed:36:2d:36:8c:73:35:2c:cd:4f: 6a:7d:77:9e:b8:c1:80:74:25:f7:b2:ae:01:97:34: 20:50:00:2c:f6:0b:c4:14:0b:9a:75:8b:fd:83:3e: 8d:aa:9a:a7:7c:9e:a3:53:a1:3c:e5:a6:93:f5:39: 11:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:14:FC:6B:42:A3:48:14:84:E6:7C:C3:55:34:D2:E0:FE:04:2E:A2 X509v3 Authority Key Identifier: keyid:48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3138312e302f32342d3234203d3e203538343636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.222.181.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:d5:f7:1a:ad:bf:f1:7c:c7:3e:f5:62:93:ce:79:94:15:14: 23:7b:6e:ea:62:28:a9:17:13:a2:fa:9e:4b:c1:1c:77:1e:84: 8c:dc:49:e9:44:7d:80:5a:4a:c0:6c:9c:4b:80:00:24:1f:32: 9b:87:de:b0:ce:ac:58:f9:dd:84:c9:57:72:f0:b1:a8:ae:cf: ea:41:82:c1:be:4a:fe:bf:29:c2:56:fe:29:6b:03:4b:6d:6b: 5d:de:90:10:31:56:f9:5a:15:84:54:83:0c:f7:30:6d:41:cc: 4e:ee:70:f8:ef:df:31:a5:7d:df:6e:aa:a7:55:1d:a4:70:1f: ea:49:17:da:3d:4a:d5:d6:49:cc:dd:70:dd:ed:94:a9:02:f4: 8e:65:73:3a:ce:f6:2f:fb:a6:06:79:1a:b0:c1:81:09:13:99: 75:7e:60:97:f9:68:32:18:4d:07:a0:19:b6:bc:bb:0b:7d:67: d3:fa:8b:79:12:c9:51:80:4a:a6:05:c6:7e:fa:ca:f0:dc:28: 57:3c:7c:de:bd:d2:5a:09:e7:f9:67:71:83:0c:ca:40:26:44: 05:4e:af:19:73:9c:6c:bb:7d:f8:aa:3e:9a:38:cc:6b:5d:e3: ba:8b:02:2c:66:fb:3e:76:16:72:8f:aa:30:47:19:62:77:68: 48:f9:d4:fd -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUAK7vRutAp6rLdXY53QeqRRG6UNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJG NUFCNjEzMzAeFw0yNjA1MDgwODI4MjlaFw0yNzA1MDcwODMzMjlaMDMxMTAvBgNV BAMTKDQyMTRGQzZCNDJBMzQ4MTQ4NEU2N0NDMzU1MzREMkUwRkUwNDJFQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbBxQZAszJwYycyd41SgKOu/jq n6zI3MAjOPkLEugZGW/AjEPrENqyBde9v1vi9ne0JxJ5vqTk3e7ZfrBhIl/wyy1q bvCBI0VTv+xsaYF0XC5Av6JdIfbSMTWuLv5FUtR1xy83ieRRVueNqb/kD5zIGCJj i51ifIUQfULT54mo66qvCXqEfAuExi3+M1B7/ymtr2nHKmUjCasStvTmmbglY37o BNKZ/JTa2A7DGFo7kO9HZhKi1gSJACZk0hq9N6kX7GBCD9dc7TYtNoxzNSzNT2p9 d564wYB0JfeyrgGXNCBQACz2C8QUC5p1i/2DPo2qmqd8nqNToTzlppP1ORFXAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUQhT8a0KjSBSE5nzDVTTS4P4ELqIwHwYDVR0j BBgwFoAUSFOhsxfEeqcrRf0IaxvZ4vWrYTMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODI0MTkyMy8wLzQ4NTNBMUIzMTdDNDdBQTcyQjQ1RkQwODZCMUJE OUUyRjVBQjYxMzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJGNUFCNjEzMy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTcwNDc0MzA3NDgyNDE5MjMvMC8zMTMwMzMyZTMy MzIzMjJlMzEzODMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODM0MzYzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfetTANBgkqhkiG9w0BAQsFAAOCAQEAjtX3Gq2/8XzHPvVik855 lBUUI3tu6mIoqRcTovqeS8Ecdx6EjNxJ6UR9gFpKwGycS4AAJB8ym4fesM6sWPnd hMlXcvCxqK7P6kGCwb5K/r8pwlb+KWsDS21rXd6QEDFW+VoVhFSDDPcwbUHMTu5w +O/fMaV9326qp1UdpHAf6kkX2j1K1dZJzN1w3e2UqQL0jmVzOs72L/umBnkasMGB CROZdX5gl/loMhhNB6AZtry7C31n0/qLeRLJUYBKpgXGfvrK8NwoVzx83r3SWgnn +WdxgwzKQCZEBU6vGXOcbLt9+Ko+mjjMa13juosCLGb7PnYWco+qMEcZYndoSPnU /Q== -----END CERTIFICATE-----Generated at Wed May 13 15:03:20 2026 by rpki-client