$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3230342e302f32322d3232203d3e2030.roa File: 3130332e38362e3230342e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: agoHHy52COUP93e1I32mEs9cwzRJsqWHN2XqCJri4sk= Subject key identifier: 22:C9:E4:C8:FF:79:0A:93:56:F0:19:B5:35:4D:A7:F8:FE:31:93:F2 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 47DF02ECADC31AF0D8C231455197E43453FFED00 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3230342e302f32322d3232203d3e2030.roa Signing time: Thu 23 Apr 2026 07:54:10 +0000 ROA not before: Thu 23 Apr 2026 07:49:10 +0000 ROA not after: Thu 22 Apr 2027 07:54:10 +0000 asID: 0 IP address blocks: 103.86.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:df:02:ec:ad:c3:1a:f0:d8:c2:31:45:51:97:e4:34:53:ff:ed:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:49:10 2026 GMT Not After : Apr 22 07:54:10 2027 GMT Subject: CN=22C9E4C8FF790A9356F019B5354DA7F8FE3193F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5c:08:32:db:46:6c:da:d0:be:44:ad:ab:4a: fc:09:74:d7:bb:c6:55:a2:b9:97:44:ed:00:87:4b: 50:46:61:40:07:91:62:2d:58:b9:98:22:ba:42:6d: eb:52:1c:45:27:75:65:bc:c4:e1:7c:f2:93:9b:81: 3b:29:a4:5b:ca:6a:b9:38:39:de:fc:31:eb:96:93: ca:fa:51:15:1d:b5:b5:d8:60:6c:92:2c:bd:68:59: 96:37:45:82:e4:8d:e3:c8:0a:36:31:ec:1e:f0:e7: 82:9c:51:fa:75:9f:a0:85:cc:7c:d4:cc:4e:40:1b: 98:b5:5a:bb:43:c1:78:3e:1d:77:e1:31:7e:ba:41: b1:eb:4a:20:63:56:30:71:11:eb:bd:06:7e:b5:c2: 76:5e:4d:9b:2a:cd:23:26:da:80:49:5f:f3:19:c5: b1:02:fc:09:8e:0f:ad:58:98:64:35:27:e8:b1:ab: d0:08:58:cb:5e:71:76:1e:62:8d:77:70:89:b7:ab: 0c:5e:8c:6f:3f:ce:c0:99:0a:02:9b:47:fb:3c:9e: 32:89:70:d4:bc:91:cc:64:54:38:d4:25:00:53:88: 4c:f6:fb:ec:30:88:06:c6:c7:18:dd:a8:df:1e:61: 32:d9:65:e2:24:01:b5:58:9f:08:20:18:29:e2:aa: 80:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C9:E4:C8:FF:79:0A:93:56:F0:19:B5:35:4D:A7:F8:FE:31:93:F2 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3230342e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.204.0/22 Signature Algorithm: sha256WithRSAEncryption b0:eb:a4:29:18:09:e4:c9:c5:68:0a:a4:3e:91:48:1f:ce:b7: 58:71:22:f7:2a:68:a9:8e:0b:a6:b7:20:3a:b3:96:44:99:7b: 27:14:05:1f:0d:05:5f:a2:bf:e2:5d:5e:e4:89:62:a1:b4:5d: 29:10:ad:7d:46:32:7d:f7:7b:7b:ef:5c:7c:88:37:03:6a:76: 30:98:cc:07:7a:3e:6e:86:44:b6:28:46:e9:47:be:26:ea:7d: 5a:f0:31:67:08:af:df:ba:96:66:3b:6e:76:a6:46:5c:1f:04: aa:14:93:c6:97:f6:bd:c8:48:5b:58:35:d4:c4:85:06:5c:8f: 80:94:1d:3d:5c:4c:f0:e3:22:d8:8a:1b:77:0d:33:82:d9:5d: ca:11:3f:c3:b4:0f:97:15:7c:8a:31:c2:37:5e:bc:83:f4:99: d7:17:3f:0e:62:49:66:29:01:a5:f2:6e:7f:38:f5:a7:32:b8: f9:bc:ea:f7:45:84:cc:79:9b:65:0c:05:73:e1:55:a7:0e:a1: 49:ff:04:3a:d9:d6:a7:f7:62:17:4c:b4:46:51:d3:f6:fc:e6: b0:70:18:c8:6a:5e:e8:cd:1b:5d:93:17:7b:71:18:b4:03:af: 4d:a5:2c:0b:0c:28:b7:6e:42:cd:06:2e:44:f4:b1:08:4f:dc: bc:4a:60:e9 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUR98C7K3DGvDYwjFFUZfkNFP/7QAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ5MTBaFw0yNzA0MjIwNzU0MTBaMDMxMTAvBgNV BAMTKDIyQzlFNEM4RkY3OTBBOTM1NkYwMTlCNTM1NERBN0Y4RkUzMTkzRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoXAgy20Zs2tC+RK2rSvwJdNe7 xlWiuZdE7QCHS1BGYUAHkWItWLmYIrpCbetSHEUndWW8xOF88pObgTsppFvKark4 Od78MeuWk8r6URUdtbXYYGySLL1oWZY3RYLkjePICjYx7B7w54KcUfp1n6CFzHzU zE5AG5i1WrtDwXg+HXfhMX66QbHrSiBjVjBxEeu9Bn61wnZeTZsqzSMm2oBJX/MZ xbEC/AmOD61YmGQ1J+ixq9AIWMtecXYeYo13cIm3qwxejG8/zsCZCgKbR/s8njKJ cNS8kcxkVDjUJQBTiEz2++wwiAbGxxjdqN8eYTLZZeIkAbVYnwggGCniqoDBAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUIsnkyP95CpNW8Bm1NU2n+P4xk/IwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzEzMDMzMmUzODM2 MmUzMjMwMzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdW zDANBgkqhkiG9w0BAQsFAAOCAQEAsOukKRgJ5MnFaAqkPpFIH863WHEi9ypoqY4L prcgOrOWRJl7JxQFHw0FX6K/4l1e5IliobRdKRCtfUYyffd7e+9cfIg3A2p2MJjM B3o+boZEtihG6Ue+Jup9WvAxZwiv37qWZjtudqZGXB8EqhSTxpf2vchIW1g11MSF BlyPgJQdPVxM8OMi2Iobdw0zgtldyhE/w7QPlxV8ijHCN168g/SZ1xc/DmJJZikB pfJufzj1pzK4+bzq90WEzHmbZQwFc+FVpw6hSf8EOtnWp/diF0y0RlHT9vzmsHAY yGpe6M0bXZMXe3EYtAOvTaUsCwwot25CzQYuRPSxCE/cvEpg6Q== -----END CERTIFICATE-----Generated at Tue May 12 21:48:26 2026 by rpki-client