$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3231362e302f32322d3232203d3e2030.roa File: 3130332e38362e3231362e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: nUrVbBNIziH+4cEaA7oQYkwBMHCSCEJRwGc4Bb9hDN4= Subject key identifier: 64:4C:0E:48:90:08:B4:D9:99:BE:33:84:BB:08:49:15:E1:FC:0C:F0 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 348EE3537F14098038BAAF5F5A627D9B882925E5 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3231362e302f32322d3232203d3e2030.roa Signing time: Thu 23 Apr 2026 07:54:11 +0000 ROA not before: Thu 23 Apr 2026 07:49:11 +0000 ROA not after: Thu 22 Apr 2027 07:54:11 +0000 asID: 0 IP address blocks: 103.86.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8e:e3:53:7f:14:09:80:38:ba:af:5f:5a:62:7d:9b:88:29:25:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:49:11 2026 GMT Not After : Apr 22 07:54:11 2027 GMT Subject: CN=644C0E489008B4D999BE3384BB084915E1FC0CF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:57:a5:49:49:d4:44:27:d8:45:6c:18:8c:20: 23:08:14:9a:dd:87:27:89:b8:3d:bd:2e:33:b5:54: da:43:5d:b4:18:cf:2f:e7:af:d5:d0:c3:78:0a:cd: 59:88:47:0a:33:5c:4b:c8:eb:0a:5d:17:dd:dd:57: e2:0d:2d:55:51:21:f0:4d:fd:2f:7b:1d:8d:65:84: 7e:df:93:43:5a:41:90:56:ed:de:da:fb:ac:90:c0: 76:7b:2d:3e:0f:0f:16:9a:98:4f:96:29:c0:5b:42: e4:4e:de:b9:ba:b3:c7:6d:d0:53:ea:63:70:ad:62: 7e:17:89:a4:43:49:ef:08:cf:52:07:66:ff:d7:74: 72:13:c8:08:19:e8:d8:4c:1d:69:4c:b2:0e:70:f5: 99:00:cf:c1:db:a2:77:63:78:de:ca:c4:42:67:77: f0:19:dd:6f:9b:b6:11:0a:77:a2:96:55:57:b1:f6: b8:b0:92:ef:57:f0:28:94:31:47:e1:33:14:db:06: 89:10:3c:81:ce:e1:cb:d7:68:8d:07:52:66:19:8b: eb:a2:4c:2a:ce:75:2a:2d:ca:f1:a6:6f:a2:fb:54: 10:70:a8:fb:60:0b:f8:5c:00:c4:52:72:15:b9:ff: fd:8d:1d:b0:14:3d:24:5e:c6:3e:b6:9f:a8:83:82: a8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4C:0E:48:90:08:B4:D9:99:BE:33:84:BB:08:49:15:E1:FC:0C:F0 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3231362e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.216.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:d7:5f:34:bc:7b:75:f6:66:08:45:85:3b:f3:d7:fa:d9:ea: ca:2b:c1:67:d8:4f:39:79:11:0c:20:5d:c4:f2:a9:26:ae:3a: 29:5d:79:95:ea:a8:a3:45:e2:e8:dd:5e:d0:0d:8f:fd:de:e1: 09:54:61:43:d8:06:a4:22:ac:ac:99:ba:6a:26:cb:ab:d9:c8: 35:e3:ff:e2:4e:3a:7e:45:fc:0c:2a:01:62:10:f0:c9:9f:9e: 43:81:8a:e7:c9:3a:9d:14:e2:66:a2:4f:9f:d3:f4:56:2d:b5: e9:ae:92:d7:25:eb:58:7d:03:a3:68:52:a4:a5:2c:99:78:1a: fa:75:e0:38:cd:9e:32:2e:52:66:f2:2d:31:c9:92:ac:40:e1: 3f:59:87:be:fd:a7:e6:80:93:7d:09:30:c0:8b:b3:31:80:09: e4:41:58:7e:d3:13:52:ef:91:bc:c5:65:30:41:05:ba:a6:4a: 58:1d:6d:83:2a:ba:69:76:1e:b9:df:3a:46:cd:82:6d:05:35: 87:e2:4f:61:22:1d:6d:e9:7a:29:c7:38:41:ff:a2:a9:87:7e: 91:d5:bc:90:2c:70:9f:e7:c4:3c:37:5f:fc:af:65:44:47:b4: cc:1f:f3:7a:fa:8d:1c:6f:e0:e0:05:3a:57:95:42:d3:c3:e1: 49:f0:87:49 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUNI7jU38UCYA4uq9fWmJ9m4gpJeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ5MTFaFw0yNzA0MjIwNzU0MTFaMDMxMTAvBgNV BAMTKDY0NEMwRTQ4OTAwOEI0RDk5OUJFMzM4NEJCMDg0OTE1RTFGQzBDRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFV6VJSdREJ9hFbBiMICMIFJrd hyeJuD29LjO1VNpDXbQYzy/nr9XQw3gKzVmIRwozXEvI6wpdF93dV+INLVVRIfBN /S97HY1lhH7fk0NaQZBW7d7a+6yQwHZ7LT4PDxaamE+WKcBbQuRO3rm6s8dt0FPq Y3CtYn4XiaRDSe8Iz1IHZv/XdHITyAgZ6NhMHWlMsg5w9ZkAz8HbondjeN7KxEJn d/AZ3W+bthEKd6KWVVex9riwku9X8CiUMUfhMxTbBokQPIHO4cvXaI0HUmYZi+ui TCrOdSotyvGmb6L7VBBwqPtgC/hcAMRSchW5//2NHbAUPSRexj62n6iDgqhPAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUZEwOSJAItNmZvjOEuwhJFeH8DPAwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzEzMDMzMmUzODM2 MmUzMjMxMzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdW 2DANBgkqhkiG9w0BAQsFAAOCAQEAjddfNLx7dfZmCEWFO/PX+tnqyivBZ9hPOXkR DCBdxPKpJq46KV15leqoo0Xi6N1e0A2P/d7hCVRhQ9gGpCKsrJm6aibLq9nINeP/ 4k46fkX8DCoBYhDwyZ+eQ4GK58k6nRTiZqJPn9P0Vi216a6S1yXrWH0Do2hSpKUs mXga+nXgOM2eMi5SZvItMcmSrEDhP1mHvv2n5oCTfQkwwIuzMYAJ5EFYftMTUu+R vMVlMEEFuqZKWB1tgyq6aXYeud86Rs2CbQU1h+JPYSIdbel6Kcc4Qf+iqYd+kdW8 kCxwn+fEPDdf/K9lREe0zB/zevqNHG/g4AU6V5VC08PhSfCHSQ== -----END CERTIFICATE-----Generated at Wed May 13 06:26:52 2026 by rpki-client