$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099622320097460225/0/3130332e3234322e3231322e302f32322d3232203d3e203538383532.roa File: 3130332e3234322e3231322e302f32322d3232203d3e203538383532.roa (raw, json) Hash identifier: 7YLOWSplaC6A9YgX/81dw0AOBbV73OAfQnQ7fMmRL3M= Subject key identifier: D6:47:E5:5F:16:F4:6E:97:4B:5C:46:1D:1E:18:99:C1:DE:F1:89:C7 Certificate issuer: /CN=49343D2BE4A543AC3AFE9189955CC08AAB3BF772 Certificate serial: 253EC801CBF0C65A9028500C74FF4A9BC9577A2B Authority key identifier: 49:34:3D:2B:E4:A5:43:AC:3A:FE:91:89:95:5C:C0:8A:AB:3B:F7:72 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/3130332e3234322e3231322e302f32322d3232203d3e203538383532.roa Signing time: Thu 23 Apr 2026 09:10:10 +0000 ROA not before: Thu 23 Apr 2026 09:05:10 +0000 ROA not after: Thu 22 Apr 2027 09:10:10 +0000 asID: 58852 IP address blocks: 103.242.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.crl rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:3e:c8:01:cb:f0:c6:5a:90:28:50:0c:74:ff:4a:9b:c9:57:7a:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49343D2BE4A543AC3AFE9189955CC08AAB3BF772 Validity Not Before: Apr 23 09:05:10 2026 GMT Not After : Apr 22 09:10:10 2027 GMT Subject: CN=D647E55F16F46E974B5C461D1E1899C1DEF189C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:4d:d8:85:51:92:40:4a:90:eb:39:03:04:8e: bb:42:85:38:40:bc:1b:fb:44:30:b9:a1:1d:f0:08: fd:b0:b7:23:83:25:c3:99:f4:3f:20:30:b4:13:7d: b1:9d:5d:a0:c1:bc:49:3d:c0:de:fb:ba:f1:32:1c: d5:58:9d:0c:c1:c3:18:62:ff:f8:f1:fe:bf:44:82: d3:40:70:ed:a7:f2:a9:03:eb:d2:86:4e:f2:bf:82: 51:07:d5:e9:6e:c0:ab:83:ea:d1:cd:b1:ef:62:e0: 65:8e:55:4d:45:cd:cd:7f:93:44:e6:66:6f:84:e3: 20:4a:91:37:97:d0:aa:7a:26:cf:48:ca:f8:25:0e: f8:86:ae:3b:8f:c8:bd:05:72:e4:81:ab:2e:1c:8b: 5b:1d:fa:20:75:a7:70:3a:9c:02:a4:66:70:d1:26: de:ec:a0:6e:d9:3e:8e:d7:2a:e3:8d:7e:1a:bf:f6: 3d:26:4d:c7:cd:af:fc:c5:c0:82:19:69:c2:3b:7a: 4f:51:30:9b:cb:01:df:bf:f3:50:fb:e1:fd:70:d7: 02:0c:9b:54:1e:5d:4a:78:ba:94:ca:c2:b6:1e:8e: e1:82:df:87:78:73:a8:4b:71:b5:0f:08:aa:cf:52: 0b:b4:f0:e5:13:c4:7b:3a:d1:32:f6:fc:51:85:6e: 59:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:47:E5:5F:16:F4:6E:97:4B:5C:46:1D:1E:18:99:C1:DE:F1:89:C7 X509v3 Authority Key Identifier: keyid:49:34:3D:2B:E4:A5:43:AC:3A:FE:91:89:95:5C:C0:8A:AB:3B:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/49343D2BE4A543AC3AFE9189955CC08AAB3BF772.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099622320097460225/0/3130332e3234322e3231322e302f32322d3232203d3e203538383532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.212.0/22 Signature Algorithm: sha256WithRSAEncryption 87:7d:09:c0:ef:6f:42:b2:22:1d:6b:62:30:5d:4a:0f:3c:57: 45:32:4f:21:c9:84:72:21:4b:54:6f:e1:e5:47:67:f4:22:12: b1:f8:bf:e8:77:2a:67:c4:ce:72:04:db:e1:34:a0:9c:62:3c: f6:0b:be:1b:95:f3:87:5b:99:f0:a2:a6:42:1c:6b:5b:26:24: 8f:a3:bf:d7:28:de:32:4e:5f:9e:c4:31:0c:1a:56:a6:3a:90: 5e:e3:82:16:d2:4b:d7:2b:42:23:52:2e:bf:7b:c7:a7:30:26: 06:d7:d4:3e:6b:f7:53:04:ba:40:91:6c:a9:d0:e3:d8:c1:bf: 25:ea:b6:e4:b4:3b:9e:1b:b8:7c:3d:af:21:bc:ae:6e:5b:3e: 12:1c:f3:b1:1d:08:bb:00:e1:19:b7:0a:6d:08:a1:be:4f:92: e4:62:2b:9c:1e:61:36:9d:3b:10:30:9f:55:de:ee:04:c6:8f: de:dc:3a:30:f3:af:84:00:53:ad:41:4c:4f:9a:17:27:cb:64: 15:0f:7b:c9:c7:c6:17:a6:20:63:05:23:e0:87:ac:5f:49:64: 61:8d:f2:14:c7:30:87:e5:5d:a9:46:33:c5:f3:56:e6:dd:0d: e1:44:3b:c1:ef:1b:fd:49:f4:15:3e:d9:2f:a9:83:b7:b4:bd: cf:5c:8c:0b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJT7IAcvwxlqQKFAMdP9Km8lXeiswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkzNDNEMkJFNEE1NDNBQzNBRkU5MTg5OTU1Q0MwOEFB QjNCRjc3MjAeFw0yNjA0MjMwOTA1MTBaFw0yNzA0MjIwOTEwMTBaMDMxMTAvBgNV BAMTKEQ2NDdFNTVGMTZGNDZFOTc0QjVDNDYxRDFFMTg5OUMxREVGMTg5QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCBTdiFUZJASpDrOQMEjrtChThA vBv7RDC5oR3wCP2wtyODJcOZ9D8gMLQTfbGdXaDBvEk9wN77uvEyHNVYnQzBwxhi //jx/r9EgtNAcO2n8qkD69KGTvK/glEH1eluwKuD6tHNse9i4GWOVU1Fzc1/k0Tm Zm+E4yBKkTeX0Kp6Js9IyvglDviGrjuPyL0FcuSBqy4ci1sd+iB1p3A6nAKkZnDR Jt7soG7ZPo7XKuONfhq/9j0mTcfNr/zFwIIZacI7ek9RMJvLAd+/81D74f1w1wIM m1QeXUp4upTKwrYejuGC34d4c6hLcbUPCKrPUgu08OUTxHs60TL2/FGFbllfAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU1kflXxb0bpdLXEYdHhiZwd7xiccwHwYDVR0j BBgwFoAUSTQ9K+SlQ6w6/pGJlVzAiqs793IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYyMjMyMDA5NzQ2MDIyNS8wLzQ5MzQzRDJCRTRBNTQzQUMzQUZFOTE4OTk1NUND MDhBQUIzQkY3NzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDkzNDNEMkJFNEE1NDNBQzNBRkU5MTg5OTU1Q0MwOEFBQjNCRjc3Mi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTk2MjIzMjAwOTc0NjAyMjUvMC8zMTMwMzMyZTMy MzQzMjJlMzIzMTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzODM4MzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfy1DANBgkqhkiG9w0BAQsFAAOCAQEAh30JwO9vQrIiHWtiMF1K DzxXRTJPIcmEciFLVG/h5Udn9CISsfi/6HcqZ8TOcgTb4TSgnGI89gu+G5Xzh1uZ 8KKmQhxrWyYkj6O/1yjeMk5fnsQxDBpWpjqQXuOCFtJL1ytCI1Iuv3vHpzAmBtfU Pmv3UwS6QJFsqdDj2MG/Jeq25LQ7nhu4fD2vIbyubls+EhzzsR0IuwDhGbcKbQih vk+S5GIrnB5hNp07EDCfVd7uBMaP3tw6MPOvhABTrUFMT5oXJ8tkFQ97ycfGF6Yg YwUj4IesX0lkYY3yFMcwh+VdqUYzxfNW5t0N4UQ7we8b/Un0FT7ZL6mDt7S9z1yM Cw== -----END CERTIFICATE-----Generated at Wed May 13 21:31:42 2026 by rpki-client