$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3235322e302f32322d3232203d3e2030.roa File: 3130332e38362e3235322e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: ZLQdV2+HVjRxyhMHPKyTEsDsSukSJ6WYTLBPHAPbnQg= Subject key identifier: 36:57:F0:8F:35:60:BC:67:38:2E:3A:AB:39:04:0A:28:8F:13:0E:06 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 3FDC2E81D970A9149687913D9636A82CF7A9164C Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3235322e302f32322d3232203d3e2030.roa Signing time: Thu 23 Apr 2026 07:54:11 +0000 ROA not before: Thu 23 Apr 2026 07:49:11 +0000 ROA not after: Thu 22 Apr 2027 07:54:11 +0000 asID: 0 IP address blocks: 103.86.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:dc:2e:81:d9:70:a9:14:96:87:91:3d:96:36:a8:2c:f7:a9:16:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:49:11 2026 GMT Not After : Apr 22 07:54:11 2027 GMT Subject: CN=3657F08F3560BC67382E3AAB39040A288F130E06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7e:f4:74:c9:59:a7:94:a8:78:f2:38:fc:05: 40:23:d4:b2:d9:32:0f:3f:7b:47:ab:1a:9a:36:98: 26:f9:80:5d:ef:20:63:35:c8:83:a0:65:df:6a:65: e8:2e:a1:90:64:80:fc:95:0b:78:1b:ef:5b:76:d6: 2c:46:8a:25:10:7b:87:89:7d:82:7f:f5:95:1f:79: d3:0b:62:69:62:75:1e:29:b3:4c:21:09:f7:12:c1: 92:a4:03:b1:e2:d9:eb:9b:7d:90:a8:b9:28:89:74: 97:7f:c4:76:c5:90:db:5e:37:df:e5:2a:a8:0a:88: 0c:27:e2:54:28:97:e6:ef:33:ee:0d:89:84:ad:9d: 8b:95:e6:83:fc:b1:78:c4:bc:ef:b3:49:7d:40:72: a5:77:a8:69:2c:dc:a0:c5:f1:cb:8b:51:d8:b5:e0: 58:8a:0d:18:6f:61:66:d0:96:b9:fe:01:4b:d3:cf: fe:5d:55:b6:0e:5e:5b:57:8a:99:06:30:da:17:98: 2f:bb:66:76:64:f0:33:32:b2:f4:3e:bf:50:cc:f1: 4f:6f:d8:07:60:d9:09:95:a7:a4:83:bb:2c:49:9b: 09:b4:60:26:0a:67:a4:bb:cf:44:e0:3e:b3:86:36: 45:be:f1:cf:7d:fd:fb:a7:d2:cb:6a:9b:1e:1a:d9: 89:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:57:F0:8F:35:60:BC:67:38:2E:3A:AB:39:04:0A:28:8F:13:0E:06 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38362e3235322e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.252.0/22 Signature Algorithm: sha256WithRSAEncryption df:4e:ef:8e:b4:fa:27:0a:7b:76:4f:d1:35:6b:a6:4b:69:6d: 2e:e8:c5:1e:38:d1:a9:6b:f5:4d:ba:a6:10:5b:2a:88:f7:3f: 1a:1b:8a:c7:47:80:b5:15:e6:83:72:2a:54:3b:b4:a9:3e:2f: 6e:36:80:92:64:43:75:88:cb:83:b3:2f:04:ba:44:cd:a6:eb: 0a:18:b6:07:27:dd:a0:24:ad:67:0c:fa:fb:33:cc:64:fb:21: f9:a3:43:6a:a6:4e:56:2e:0d:92:65:2d:35:a0:9f:cc:c2:31: 60:e9:b6:0c:57:1c:35:fd:25:e4:3d:36:9c:1e:bf:dd:21:d4: b4:8e:bc:20:6d:17:ec:d7:0d:be:d0:96:59:6a:c4:e4:14:d4: 4d:fe:f5:01:8e:0a:d2:5a:05:6a:39:5a:d4:ed:ab:6d:3d:a1: a1:b7:40:9f:59:78:2d:d2:a8:fd:87:11:ee:41:e1:ea:3d:94: 44:ad:3e:a8:5a:8b:c7:af:af:4a:87:d5:a7:d3:bd:10:24:bb: 86:ee:28:ce:1f:08:ad:36:b4:71:ca:7f:84:b7:ab:26:b9:39: e6:b7:e0:56:16:53:d9:19:f6:98:4c:5e:72:bf:cf:9f:39:32: bb:fd:89:f8:50:59:e8:9c:71:03:40:f1:d6:de:74:c6:7a:4f: 71:8c:41:ed -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUP9wugdlwqRSWh5E9ljaoLPepFkwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ5MTFaFw0yNzA0MjIwNzU0MTFaMDMxMTAvBgNV BAMTKDM2NTdGMDhGMzU2MEJDNjczODJFM0FBQjM5MDQwQTI4OEYxMzBFMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0fvR0yVmnlKh48jj8BUAj1LLZ Mg8/e0erGpo2mCb5gF3vIGM1yIOgZd9qZeguoZBkgPyVC3gb71t21ixGiiUQe4eJ fYJ/9ZUfedMLYmlidR4ps0whCfcSwZKkA7Hi2eubfZCouSiJdJd/xHbFkNteN9/l KqgKiAwn4lQol+bvM+4NiYStnYuV5oP8sXjEvO+zSX1AcqV3qGks3KDF8cuLUdi1 4FiKDRhvYWbQlrn+AUvTz/5dVbYOXltXipkGMNoXmC+7ZnZk8DMysvQ+v1DM8U9v 2Adg2QmVp6SDuyxJmwm0YCYKZ6S7z0TgPrOGNkW+8c99/fun0stqmx4a2YknAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUNlfwjzVgvGc4LjqrOQQKKI8TDgYwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzEzMDMzMmUzODM2 MmUzMjM1MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdW /DANBgkqhkiG9w0BAQsFAAOCAQEA307vjrT6Jwp7dk/RNWumS2ltLujFHjjRqWv1 TbqmEFsqiPc/GhuKx0eAtRXmg3IqVDu0qT4vbjaAkmRDdYjLg7MvBLpEzabrChi2 ByfdoCStZwz6+zPMZPsh+aNDaqZOVi4NkmUtNaCfzMIxYOm2DFccNf0l5D02nB6/ 3SHUtI68IG0X7NcNvtCWWWrE5BTUTf71AY4K0loFajla1O2rbT2hobdAn1l4LdKo /YcR7kHh6j2URK0+qFqLx6+vSofVp9O9ECS7hu4ozh8IrTa0ccp/hLerJrk55rfg VhZT2Rn2mExecr/Pnzkyu/2J+FBZ6JxxA0Dx1t50xnpPcYxB7Q== -----END CERTIFICATE-----Generated at Wed May 13 06:27:04 2026 by rpki-client