$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38372e342e302f32322d3232203d3e2030.roa File: 3130332e38372e342e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: lSVmHBhQ97v33RjqKiRKpYU3oIxp6O+hBFVXxjYM9ok= Subject key identifier: C7:05:FF:BC:A3:53:FF:07:7C:21:39:00:14:FD:5F:0F:57:45:D9:44 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 0F7E726A04BD4076C3EE04CA6D8FDDC711D6FB47 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38372e342e302f32322d3232203d3e2030.roa Signing time: Thu 23 Apr 2026 07:54:10 +0000 ROA not before: Thu 23 Apr 2026 07:49:10 +0000 ROA not after: Thu 22 Apr 2027 07:54:10 +0000 asID: 0 IP address blocks: 103.87.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:7e:72:6a:04:bd:40:76:c3:ee:04:ca:6d:8f:dd:c7:11:d6:fb:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:49:10 2026 GMT Not After : Apr 22 07:54:10 2027 GMT Subject: CN=C705FFBCA353FF077C21390014FD5F0F5745D944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ae:1a:da:4d:29:10:b6:83:2d:7c:b6:b9:08: 42:98:8d:53:03:47:d4:97:a3:12:b7:3e:7a:63:df: 54:d5:cf:69:dd:95:c0:cb:e1:4e:c5:01:f8:fc:99: ea:4a:31:e2:08:ec:52:4c:3f:22:a8:04:e5:13:8f: 6d:76:95:33:2e:a0:3a:52:23:6a:97:c7:46:5d:c3: 20:d4:ba:6f:1a:ba:b1:8f:7e:15:3e:ed:98:ca:e8: 18:44:91:24:00:d7:ed:8c:45:37:b8:2a:1c:f8:54: 25:fe:35:7e:3b:79:b6:86:0b:61:e0:68:57:43:18: 76:8c:e2:33:31:9a:5d:bb:92:64:33:80:d1:85:bb: 00:01:99:35:6e:13:08:ff:91:6f:f7:9e:a5:90:24: b5:6f:e2:e0:a4:d9:01:4f:f7:1b:0a:21:9a:68:ca: 13:a9:95:e9:fa:66:d7:4f:26:79:d0:03:db:60:fc: d2:ac:9a:58:b9:b9:94:b4:77:bf:b0:23:35:f3:47: 6b:0f:9d:d2:44:23:98:65:13:83:f2:49:3e:5f:9a: 6d:13:7f:d5:8d:ce:a3:56:0e:3f:55:28:b2:e5:ad: 8a:82:78:86:9c:a8:fd:7d:57:e3:6d:01:2a:b4:f3: 8a:24:23:33:91:cc:f6:b9:c1:fb:a2:1d:92:38:5a: c1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:05:FF:BC:A3:53:FF:07:7C:21:39:00:14:FD:5F:0F:57:45:D9:44 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/3130332e38372e342e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.4.0/22 Signature Algorithm: sha256WithRSAEncryption b7:97:2f:fe:b2:46:53:5d:82:13:a2:41:88:ed:e6:d6:7b:e6: 98:0f:29:a3:b3:8d:65:a0:ed:96:31:db:04:ae:b4:14:9e:9b: a7:dd:0b:75:52:9c:9c:07:71:3c:e4:58:8e:9b:fa:d0:0b:36: e5:11:b2:bc:18:0a:17:7d:c9:0f:eb:73:b7:54:28:92:cb:fa: b8:1d:4d:89:fd:7e:4f:b0:a4:ce:5a:02:9e:8b:aa:5d:eb:ee: 8e:54:ac:af:e2:f5:32:b6:6a:69:9d:cd:89:13:ff:77:f1:cf: fd:26:fe:d6:5e:51:2c:0a:34:c0:72:a4:6f:19:30:13:92:80: bf:87:4f:bc:7a:8b:a1:31:ad:ae:ff:be:4b:75:62:aa:df:0a: b8:13:85:d7:98:1d:41:77:7f:e1:6a:ff:6e:98:f2:21:38:0d: 3c:50:bd:bd:7f:fa:57:17:70:91:1d:17:2f:2a:66:9d:e8:8e: a5:12:7c:63:a8:c8:05:f8:d1:e3:5a:17:28:a0:b0:b2:b3:19: fd:ac:31:89:08:5a:4b:14:ac:58:ce:b2:f1:d3:64:ff:76:2d: 81:58:ba:80:80:d1:65:b2:24:f5:bc:a5:4f:e9:f5:5e:50:7e: 2e:53:09:0e:4e:23:cc:76:4c:85:7b:36:71:5b:cb:a2:8a:e0: 5f:2d:e3:d9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUD35yagS9QHbD7gTKbY/dxxHW+0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ5MTBaFw0yNzA0MjIwNzU0MTBaMDMxMTAvBgNV BAMTKEM3MDVGRkJDQTM1M0ZGMDc3QzIxMzkwMDE0RkQ1RjBGNTc0NUQ5NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/rhraTSkQtoMtfLa5CEKYjVMD R9SXoxK3Pnpj31TVz2ndlcDL4U7FAfj8mepKMeII7FJMPyKoBOUTj212lTMuoDpS I2qXx0ZdwyDUum8aurGPfhU+7ZjK6BhEkSQA1+2MRTe4Khz4VCX+NX47ebaGC2Hg aFdDGHaM4jMxml27kmQzgNGFuwABmTVuEwj/kW/3nqWQJLVv4uCk2QFP9xsKIZpo yhOplen6ZtdPJnnQA9tg/NKsmli5uZS0d7+wIzXzR2sPndJEI5hlE4PyST5fmm0T f9WNzqNWDj9VKLLlrYqCeIacqP19V+NtASq084okIzORzPa5wfuiHZI4WsHpAgMB AAGjggIHMIICAzAdBgNVHQ4EFgQUxwX/vKNT/wd8ITkAFP1fD1dF2UQwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzEzMDMzMmUzODM3 MmUzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ1cEMA0G CSqGSIb3DQEBCwUAA4IBAQC3ly/+skZTXYITokGI7ebWe+aYDymjs41loO2WMdsE rrQUnpun3Qt1UpycB3E85FiOm/rQCzblEbK8GAoXfckP63O3VCiSy/q4HU2J/X5P sKTOWgKei6pd6+6OVKyv4vUytmppnc2JE/938c/9Jv7WXlEsCjTAcqRvGTATkoC/ h0+8eouhMa2u/75LdWKq3wq4E4XXmB1Bd3/hav9umPIhOA08UL29f/pXF3CRHRcv Kmad6I6lEnxjqMgF+NHjWhcooLCysxn9rDGJCFpLFKxYzrLx02T/di2BWLqAgNFl siT1vKVP6fVeUH4uUwkOTiPMdkyFezZxW8uiiuBfLePZ -----END CERTIFICATE-----Generated at Tue May 12 21:38:35 2026 by rpki-client