$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3233362e302f32322d3232203d3e2030.roa File: 3130332e38362e3233362e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: sKWYp12JjyRbhke+checgQyVeMiPZdJP8CL6ILv1+dU= Subject key identifier: 7A:E1:2F:30:E2:A6:97:A6:D3:5C:3F:D5:0A:E4:CF:C2:1C:10:37:BE Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 42A5268E6C59C7D45466740893452E54C76B00AB Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3233362e302f32322d3232203d3e2030.roa Signing time: Thu 23 Apr 2026 07:54:10 +0000 ROA not before: Thu 23 Apr 2026 07:49:10 +0000 ROA not after: Thu 22 Apr 2027 07:54:10 +0000 asID: 0 IP address blocks: 103.86.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a5:26:8e:6c:59:c7:d4:54:66:74:08:93:45:2e:54:c7:6b:00:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:49:10 2026 GMT Not After : Apr 22 07:54:10 2027 GMT Subject: CN=7AE12F30E2A697A6D35C3FD50AE4CFC21C1037BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1d:ae:e4:2f:7b:cb:fc:e2:c0:d4:3c:cc:a3: bb:62:64:69:3c:6f:24:8c:d8:b6:e9:75:ee:51:ee: 55:39:b9:af:22:5f:11:4c:33:1f:b9:9f:f8:4c:82: 5b:30:4c:9c:ea:e6:d4:0f:54:f8:3e:e5:34:b3:98: 2f:ae:e3:c0:43:ec:6d:47:8b:50:e9:b7:38:a5:41: 75:5f:79:f6:dc:76:35:92:f2:c8:58:5a:96:90:5c: d5:83:85:3a:53:b7:97:1c:56:ac:a8:34:96:ab:b7: 28:74:6d:03:a9:c6:86:e3:3f:b9:88:05:95:bf:f9: c4:b4:64:e4:39:f4:4e:ef:ea:03:5c:65:5c:51:2d: d3:ed:27:b9:58:e3:4e:8c:69:d4:3a:6a:f6:fd:1c: ff:94:6e:3e:7f:58:84:c2:09:8e:3b:5a:2a:0a:2b: 93:39:dc:f6:fc:66:7b:b7:8a:76:23:83:1f:dc:9d: 71:f9:28:41:75:f7:38:5e:f6:43:3d:5b:26:c9:57: bc:9a:1c:26:87:76:c2:2a:4e:63:f4:2f:b9:ad:1d: 9a:f8:f1:9b:15:d4:2c:78:92:d3:71:3b:a2:21:be: 58:28:75:2c:d2:f9:21:19:f6:f4:8b:4f:aa:6f:84: a2:f3:71:6b:90:7d:05:f8:5c:b6:ae:c2:7f:a3:85: 65:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E1:2F:30:E2:A6:97:A6:D3:5C:3F:D5:0A:E4:CF:C2:1C:10:37:BE X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3233362e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.236.0/22 Signature Algorithm: sha256WithRSAEncryption 43:01:f4:59:60:f0:67:64:3e:bd:bd:c5:8b:65:ae:01:65:ac: 7a:67:6b:a0:2e:4f:77:2d:7c:c9:0a:b3:94:e8:7d:7e:17:b2: 04:da:b5:ea:14:20:41:33:ec:eb:53:67:ca:6c:ee:97:63:d5: c9:2c:01:50:91:ba:e6:1d:6f:23:95:28:7c:79:0b:47:f6:de: c5:86:71:77:4c:b6:f1:33:36:a0:e2:5a:5f:92:d4:39:b5:56: 90:d8:11:f3:55:1c:2c:a7:88:4d:2c:7b:c6:21:0a:31:18:29: de:ae:27:d2:d4:1d:e5:47:e8:5a:53:88:c3:33:0f:ca:de:90: 9c:62:9f:0a:7c:44:c7:05:83:3e:15:a0:8c:70:fc:ae:3b:0a: d1:51:9f:14:5d:98:62:be:b0:7d:fc:fb:37:c1:b8:42:c4:4e: 6b:ce:23:5a:62:b5:0b:19:fb:a3:09:74:b8:84:2c:5c:8a:96: b8:12:dc:44:c7:09:62:b7:0f:f3:c3:24:2c:18:82:55:5a:02: 67:d2:09:2a:d0:3e:cc:6b:29:93:32:19:02:f8:69:34:13:4c: 30:80:fa:45:a8:b9:77:a3:95:17:5b:5d:59:6d:5d:97:f4:b1: 25:b1:b4:37:02:72:36:29:ad:47:5b:6b:76:5e:35:f2:30:dc: 59:1e:9a:4a -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUQqUmjmxZx9RUZnQIk0UuVMdrAKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ5MTBaFw0yNzA0MjIwNzU0MTBaMDMxMTAvBgNV BAMTKDdBRTEyRjMwRTJBNjk3QTZEMzVDM0ZENTBBRTRDRkMyMUMxMDM3QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaHa7kL3vL/OLA1DzMo7tiZGk8 bySM2Lbpde5R7lU5ua8iXxFMMx+5n/hMglswTJzq5tQPVPg+5TSzmC+u48BD7G1H i1DptzilQXVfefbcdjWS8shYWpaQXNWDhTpTt5ccVqyoNJartyh0bQOpxobjP7mI BZW/+cS0ZOQ59E7v6gNcZVxRLdPtJ7lY406MadQ6avb9HP+Ubj5/WITCCY47WioK K5M53Pb8Znu3inYjgx/cnXH5KEF19zhe9kM9WybJV7yaHCaHdsIqTmP0L7mtHZr4 8ZsV1Cx4ktNxO6IhvlgodSzS+SEZ9vSLT6pvhKLzcWuQfQX4XLauwn+jhWXPAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUeuEvMOKml6bTXD/VCuTPwhwQN74wHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzEzMDMzMmUzODM2 MmUzMjMzMzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdW 7DANBgkqhkiG9w0BAQsFAAOCAQEAQwH0WWDwZ2Q+vb3Fi2WuAWWsemdroC5Pdy18 yQqzlOh9fheyBNq16hQgQTPs61Nnymzul2PVySwBUJG65h1vI5UofHkLR/bexYZx d0y28TM2oOJaX5LUObVWkNgR81UcLKeITSx7xiEKMRgp3q4n0tQd5UfoWlOIwzMP yt6QnGKfCnxExwWDPhWgjHD8rjsK0VGfFF2YYr6wffz7N8G4QsROa84jWmK1Cxn7 owl0uIQsXIqWuBLcRMcJYrcP88MkLBiCVVoCZ9IJKtA+zGspkzIZAvhpNBNMMID6 Rai5d6OVF1tdWW1dl/SxJbG0NwJyNimtR1trdl418jDcWR6aSg== -----END CERTIFICATE-----Generated at Wed May 13 05:54:51 2026 by rpki-client