$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e38392e3131332e302f32342d3234203d3e203633353939.roa File: 3130332e38392e3131332e302f32342d3234203d3e203633353939.roa (raw, json) Hash identifier: hQKB7wKD7sK/SrxmBN5jMLs19OSDy2v58Jdv0HOGrB4= Subject key identifier: C1:42:D2:44:DD:4C:74:D9:33:00:B2:7D:FF:B0:9E:A4:B7:8F:BC:3F Certificate issuer: /CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Certificate serial: 666F320C0B1554AA7A530B46CAEA628653EBCB60 Authority key identifier: 48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e38392e3131332e302f32342d3234203d3e203633353939.roa Signing time: Thu 30 Apr 2026 07:05:03 +0000 ROA not before: Thu 30 Apr 2026 07:00:03 +0000 ROA not after: Thu 29 Apr 2027 07:05:03 +0000 asID: 63599 IP address blocks: 103.89.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:6f:32:0c:0b:15:54:aa:7a:53:0b:46:ca:ea:62:86:53:eb:cb:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Validity Not Before: Apr 30 07:00:03 2026 GMT Not After : Apr 29 07:05:03 2027 GMT Subject: CN=C142D244DD4C74D93300B27DFFB09EA4B78FBC3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:e9:c9:0a:89:86:05:7e:a4:86:ba:7a:de:8d: 32:e6:ca:7a:56:82:d3:9b:39:e9:26:1f:a5:23:9a: 2c:ef:d2:a8:88:6b:ee:45:a2:b8:30:6d:e4:c5:30: e1:0a:8c:85:65:69:6a:55:c4:26:9e:96:aa:0f:a9: eb:62:a0:ca:a9:89:84:7b:f2:65:28:13:e3:88:2f: 96:df:da:1a:d2:ab:fb:bb:54:21:a0:54:32:36:b6: 9a:fd:ef:ef:e5:1c:e5:cd:29:f3:63:b4:12:6b:3a: c7:c7:49:9e:9d:78:54:b1:cc:49:1d:38:c6:23:1b: f5:fd:87:24:73:27:32:04:5c:ab:df:ff:eb:35:4a: b8:9e:2c:c6:87:20:7d:c1:a3:b8:cc:3f:8b:8f:b3: 37:6e:2c:36:41:29:75:e0:78:d4:04:47:28:f0:9b: 6b:b8:96:db:c0:73:c4:4b:d2:96:39:2a:37:6b:f9: 2f:8f:45:58:f8:d4:66:5e:20:db:2c:6c:15:b4:3b: 73:f4:6a:a8:d3:94:92:27:97:e6:6d:c3:4c:17:8d: d9:21:e5:b5:4b:80:95:9e:17:8d:35:85:f9:17:ad: 55:fc:d3:e9:7f:9c:41:96:4a:53:71:b7:4a:c2:18: fe:97:50:c8:44:29:df:40:37:21:58:88:f3:10:e9: 64:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:42:D2:44:DD:4C:74:D9:33:00:B2:7D:FF:B0:9E:A4:B7:8F:BC:3F X509v3 Authority Key Identifier: keyid:48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e38392e3131332e302f32342d3234203d3e203633353939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.113.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:10:cd:96:e6:39:46:ee:ad:f2:11:1d:bd:c1:f8:8c:8a:f5: 16:2a:ef:c5:55:7b:fa:c4:fd:a1:e7:8f:ee:52:64:d6:12:f0: 2f:35:99:4f:26:d5:15:9f:a5:e6:a0:2c:61:b3:60:a4:a2:54: 42:b8:58:60:75:19:e7:8d:ea:70:13:75:0c:ad:8b:68:a0:ce: 84:7e:51:e5:65:32:c3:a5:d5:b4:73:9a:73:0c:8e:21:1e:eb: 10:ec:c1:5c:ed:4f:2b:5b:12:6f:82:e0:5b:7d:9b:34:6c:99: 87:6a:b8:90:02:6e:b7:72:7d:f3:b3:5c:df:64:0f:0d:ab:b2: 24:1a:0b:12:46:73:2d:78:4e:e7:fc:62:ef:0f:2d:fa:fd:a8: a7:7a:23:d6:4b:d0:07:d7:43:ad:28:ac:a7:c4:98:40:fa:30: 1a:9e:43:87:a7:60:0d:25:cf:45:38:20:2f:a1:36:a3:e5:81: 25:f4:ce:22:da:be:7f:7e:28:36:fc:f7:6e:9b:96:45:a6:f4: b8:4e:d6:e1:d2:f6:01:e1:4c:93:b0:a3:fa:3c:ba:b3:e0:46: 46:dd:23:ab:4e:a4:d5:9b:c3:d4:12:cc:f9:16:1a:8e:0b:23: 27:fc:53:91:84:0a:eb:80:18:fe:6b:9a:a6:14:54:2f:e1:d8: 5f:ae:d9:f6 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUZm8yDAsVVKp6UwtGyupihlPry2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJG NUFCNjEzMzAeFw0yNjA0MzAwNzAwMDNaFw0yNzA0MjkwNzA1MDNaMDMxMTAvBgNV BAMTKEMxNDJEMjQ0REQ0Qzc0RDkzMzAwQjI3REZGQjA5RUE0Qjc4RkJDM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCF6ckKiYYFfqSGunrejTLmynpW gtObOekmH6Ujmizv0qiIa+5ForgwbeTFMOEKjIVlaWpVxCaelqoPqetioMqpiYR7 8mUoE+OIL5bf2hrSq/u7VCGgVDI2tpr97+/lHOXNKfNjtBJrOsfHSZ6deFSxzEkd OMYjG/X9hyRzJzIEXKvf/+s1SrieLMaHIH3Bo7jMP4uPszduLDZBKXXgeNQERyjw m2u4ltvAc8RL0pY5Kjdr+S+PRVj41GZeINssbBW0O3P0aqjTlJInl+Ztw0wXjdkh 5bVLgJWeF401hfkXrVX80+l/nEGWSlNxt0rCGP6XUMhEKd9ANyFYiPMQ6WSfAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUwULSRN1MdNkzALJ9/7CepLePvD8wHwYDVR0j BBgwFoAUSFOhsxfEeqcrRf0IaxvZ4vWrYTMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODI0MTkyMy8wLzQ4NTNBMUIzMTdDNDdBQTcyQjQ1RkQwODZCMUJE OUUyRjVBQjYxMzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJGNUFCNjEzMy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODI0MTkyMy8wLzMxMzAzMzJlMzgz OTJlMzEzMTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM1MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGdZcTANBgkqhkiG9w0BAQsFAAOCAQEAXxDNluY5Ru6t8hEdvcH4jIr1 FirvxVV7+sT9oeeP7lJk1hLwLzWZTybVFZ+l5qAsYbNgpKJUQrhYYHUZ543qcBN1 DK2LaKDOhH5R5WUyw6XVtHOacwyOIR7rEOzBXO1PK1sSb4LgW32bNGyZh2q4kAJu t3J987Nc32QPDauyJBoLEkZzLXhO5/xi7w8t+v2op3oj1kvQB9dDrSisp8SYQPow Gp5Dh6dgDSXPRTggL6E2o+WBJfTOItq+f34oNvz3bpuWRab0uE7W4dL2AeFMk7Cj +jy6s+BGRt0jq06k1ZvD1BLM+RYajgsjJ/xTkYQK64AY/muaphRUL+HYX67Z9g== -----END CERTIFICATE-----Generated at Wed May 13 15:56:31 2026 by rpki-client