$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3232342e302f32322d3232203d3e2030.roa File: 3130332e38362e3232342e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: 5cAtXgEBbRD8LSaDKHd4TEuADUZ6K8UoaCCJ7YslJ2I= Subject key identifier: 28:90:B8:A9:D8:21:79:0F:28:56:0F:B7:AA:F9:C1:B9:AB:59:0D:F0 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 1A2D6E5A15ECAB6764E24FF06C5165D6A906A7F1 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3232342e302f32322d3232203d3e2030.roa Signing time: Thu 23 Apr 2026 07:54:10 +0000 ROA not before: Thu 23 Apr 2026 07:49:10 +0000 ROA not after: Thu 22 Apr 2027 07:54:10 +0000 asID: 0 IP address blocks: 103.86.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:2d:6e:5a:15:ec:ab:67:64:e2:4f:f0:6c:51:65:d6:a9:06:a7:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:49:10 2026 GMT Not After : Apr 22 07:54:10 2027 GMT Subject: CN=2890B8A9D821790F28560FB7AAF9C1B9AB590DF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:31:f7:06:33:26:ef:9d:50:75:1e:2b:4a:21: a2:c1:3c:35:33:4a:93:39:b6:be:bb:a6:9c:89:56: 5f:63:f7:b1:4f:12:db:04:55:57:b9:5b:e3:5e:f0: 9e:b9:67:91:4c:68:02:67:5d:e7:45:0f:ab:6d:0b: 6b:dd:01:03:61:a0:8c:d4:4a:28:ea:a7:db:08:ff: 3c:28:73:e5:21:48:00:fd:e2:5c:d3:fe:30:f2:d7: b0:3b:89:74:e2:b0:cb:b5:59:66:c9:55:f7:ab:05: 4c:b5:3c:3b:73:6e:56:fb:70:ce:6d:e1:f3:bf:89: 60:15:fc:98:81:fb:e3:c5:7d:c4:ac:69:2b:70:1d: 12:d6:cd:69:ae:42:48:84:fc:ec:b7:f6:ff:df:e4: 11:a2:08:4b:5d:20:72:ea:30:16:9d:c5:02:8d:99: c7:b8:6a:e0:a8:88:95:4b:74:99:b5:4d:dd:7a:38: 6b:fe:6d:7c:aa:38:df:37:92:8e:94:ae:b2:16:95: fe:1b:a6:7e:29:57:79:ff:28:83:3f:13:0d:a4:31: ba:fd:75:74:0d:6a:b6:90:33:a2:93:10:22:50:6b: 9c:38:bf:f4:ee:1b:72:d2:85:21:78:74:8b:d7:1d: 58:76:d9:4e:5b:a2:db:e6:32:dc:82:5c:0b:7d:6c: e4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:90:B8:A9:D8:21:79:0F:28:56:0F:B7:AA:F9:C1:B9:AB:59:0D:F0 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3232342e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.224.0/22 Signature Algorithm: sha256WithRSAEncryption 87:e7:43:e4:7e:70:c0:e2:39:6c:9d:17:02:82:02:76:cc:da: 44:fe:e3:c6:58:61:bc:69:05:1a:cf:65:e9:5f:d3:1f:9b:62: ac:5e:ed:46:7b:2a:88:2e:df:e3:7a:ba:81:a4:53:42:74:d2: 22:0b:cc:cf:80:7d:f7:3b:1f:79:35:46:e5:44:f9:02:c6:a3: 15:fb:a8:f5:d6:05:a0:2c:08:5b:54:72:1b:bc:28:93:1e:bb: 06:f7:32:73:dc:1e:19:44:5e:dc:b2:3c:b0:ba:e6:e9:be:87: 1a:2e:d5:a6:cf:cb:10:e8:d4:24:4b:1d:67:e4:07:8c:0a:c6: 96:35:1f:6c:a1:3a:30:a1:aa:be:46:43:88:61:e6:0e:a8:ba: 1f:d3:bc:72:37:de:1d:d5:84:8f:e8:dd:59:d5:fa:a1:70:d9: 36:e5:84:b3:dd:52:61:3e:c3:06:d4:ed:18:1b:3a:45:9c:83: 4f:f1:78:0b:79:c6:b2:b2:4f:6c:5d:02:0c:27:51:4a:73:76: 43:9a:0c:30:b2:dd:71:cf:ce:b7:4b:47:40:9b:0e:4b:bc:09: 05:af:44:e0:5e:1f:f5:11:3a:2f:8d:5b:20:75:fd:ad:0f:74: ce:df:74:27:68:7e:95:c2:32:ca:d9:bf:2a:dd:2b:54:59:40: e1:61:33:ec -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUGi1uWhXsq2dk4k/wbFFl1qkGp/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ5MTBaFw0yNzA0MjIwNzU0MTBaMDMxMTAvBgNV BAMTKDI4OTBCOEE5RDgyMTc5MEYyODU2MEZCN0FBRjlDMUI5QUI1OTBERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlMfcGMybvnVB1HitKIaLBPDUz SpM5tr67ppyJVl9j97FPEtsEVVe5W+Ne8J65Z5FMaAJnXedFD6ttC2vdAQNhoIzU Sijqp9sI/zwoc+UhSAD94lzT/jDy17A7iXTisMu1WWbJVferBUy1PDtzblb7cM5t 4fO/iWAV/JiB++PFfcSsaStwHRLWzWmuQkiE/Oy39v/f5BGiCEtdIHLqMBadxQKN mce4auCoiJVLdJm1Td16OGv+bXyqON83ko6UrrIWlf4bpn4pV3n/KIM/Ew2kMbr9 dXQNaraQM6KTECJQa5w4v/TuG3LShSF4dIvXHVh22U5botvmMtyCXAt9bOTnAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUKJC4qdgheQ8oVg+3qvnBuatZDfAwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzEzMDMzMmUzODM2 MmUzMjMyMzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdW 4DANBgkqhkiG9w0BAQsFAAOCAQEAh+dD5H5wwOI5bJ0XAoICdszaRP7jxlhhvGkF Gs9l6V/TH5tirF7tRnsqiC7f43q6gaRTQnTSIgvMz4B99zsfeTVG5UT5AsajFfuo 9dYFoCwIW1RyG7wokx67Bvcyc9weGURe3LI8sLrm6b6HGi7Vps/LEOjUJEsdZ+QH jArGljUfbKE6MKGqvkZDiGHmDqi6H9O8cjfeHdWEj+jdWdX6oXDZNuWEs91SYT7D BtTtGBs6RZyDT/F4C3nGsrJPbF0CDCdRSnN2Q5oMMLLdcc/Ot0tHQJsOS7wJBa9E 4F4f9RE6L41bIHX9rQ90zt90J2h+lcIyytm/Kt0rVFlA4WEz7A== -----END CERTIFICATE-----Generated at Tue May 12 21:38:48 2026 by rpki-client