$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101012581839011843/0/3130332e3233332e3133382e302f32342d3234203d3e203633363937.roa File: 3130332e3233332e3133382e302f32342d3234203d3e203633363937.roa (raw, json) Hash identifier: rm3DnKUZiRzyrB9MIhtg+3yts5DolytZ1bDtJ/yPMew= Subject key identifier: 31:B3:88:2E:CA:C0:83:B5:C5:61:78:DE:80:C2:15:12:E9:D1:6E:E3 Certificate issuer: /CN=7E97B2869243296A265D98767FC04F1998D143DE Certificate serial: 1F317DD4101F81EB541EC3B6A7EBA212B60C413F Authority key identifier: 7E:97:B2:86:92:43:29:6A:26:5D:98:76:7F:C0:4F:19:98:D1:43:DE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7E97B2869243296A265D98767FC04F1998D143DE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101012581839011843/0/3130332e3233332e3133382e302f32342d3234203d3e203633363937.roa Signing time: Mon 27 Apr 2026 05:16:20 +0000 ROA not before: Mon 27 Apr 2026 05:11:20 +0000 ROA not after: Mon 26 Apr 2027 05:16:20 +0000 asID: 63697 IP address blocks: 103.233.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101012581839011843/0/7E97B2869243296A265D98767FC04F1998D143DE.crl rsync://rpki-rps.cnnic.cn/repo/A1101012581839011843/0/7E97B2869243296A265D98767FC04F1998D143DE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7E97B2869243296A265D98767FC04F1998D143DE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:31:7d:d4:10:1f:81:eb:54:1e:c3:b6:a7:eb:a2:12:b6:0c:41:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E97B2869243296A265D98767FC04F1998D143DE Validity Not Before: Apr 27 05:11:20 2026 GMT Not After : Apr 26 05:16:20 2027 GMT Subject: CN=31B3882ECAC083B5C56178DE80C21512E9D16EE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:18:08:36:31:aa:53:8d:07:57:c3:79:ec:0d: 57:7a:bd:bf:1b:ed:13:42:a9:09:27:27:e6:8d:49: 1f:06:13:2e:c4:e2:7c:39:d0:18:10:92:5c:81:3f: 5f:a8:e6:57:cb:7f:f8:98:0f:fd:72:de:c2:63:7d: da:5a:bd:55:40:2e:ee:03:eb:bd:8a:c8:be:c4:44: 22:6c:c0:d3:f4:3c:cb:8a:fa:47:6b:61:c0:ee:df: 50:08:6b:1a:5e:d2:62:f7:92:3c:27:31:3c:e6:43: d3:48:ee:84:04:71:9c:a6:8f:50:62:81:f9:df:c5: 37:21:07:95:f2:86:7b:a7:d6:bb:bc:a5:83:de:b4: ce:13:a0:05:a8:22:a5:7c:37:a4:da:9c:d9:bb:e6: a8:e8:b6:7c:67:ac:0f:e6:c3:97:4e:49:7a:d0:13: 61:c9:6f:24:66:93:57:da:99:57:34:fa:8f:bd:76: 34:94:48:e3:17:8f:72:f8:e2:f8:2f:fe:a8:ab:23: 6e:d4:c9:0b:8f:dc:7b:a5:03:b9:71:f2:c9:34:1a: 9d:ba:0f:07:13:1e:b3:28:5e:3d:29:76:1b:8b:62: 23:26:2f:01:20:17:b7:ba:90:47:b8:45:47:11:1a: aa:d6:2c:71:1f:a8:47:76:7d:07:11:5c:b3:ff:4f: a9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B3:88:2E:CA:C0:83:B5:C5:61:78:DE:80:C2:15:12:E9:D1:6E:E3 X509v3 Authority Key Identifier: keyid:7E:97:B2:86:92:43:29:6A:26:5D:98:76:7F:C0:4F:19:98:D1:43:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101012581839011843/0/7E97B2869243296A265D98767FC04F1998D143DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7E97B2869243296A265D98767FC04F1998D143DE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101012581839011843/0/3130332e3233332e3133382e302f32342d3234203d3e203633363937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.233.138.0/24 Signature Algorithm: sha256WithRSAEncryption 43:7c:ea:c2:fa:47:4a:a4:d0:e6:28:0f:f1:c8:b7:4e:f0:44: b8:bf:ec:da:bc:4c:92:7a:a1:b7:18:b9:45:8b:30:f2:ab:ca: d2:29:e8:d1:d8:09:34:b7:34:5c:d6:d2:f1:fa:17:76:91:dd: a8:2e:dd:62:28:d2:2a:41:de:40:1b:6e:9a:cc:da:a7:cb:ab: a2:a0:9c:c0:02:da:9c:a9:22:5c:bd:8d:95:ac:b2:e2:f3:28: 51:0e:a9:1b:f1:f6:f1:91:55:db:4d:90:08:96:28:e3:1d:04: a4:89:bb:51:72:6f:5d:ac:9c:f4:1d:8b:47:aa:ff:b3:d1:a3: c3:af:9d:23:ad:2d:ed:c6:4d:85:0d:50:b6:4c:4b:fe:1f:fb: e1:ab:05:5c:b4:90:6c:e8:6c:0f:96:48:88:dc:e9:18:4b:25: ce:b3:15:06:8b:00:00:54:f8:72:5b:65:1e:03:8f:c4:1e:c9: ef:4b:ca:0b:48:46:e0:b6:ca:3a:38:1f:56:1e:85:39:71:45: 1f:e0:07:d6:94:b3:d6:4c:8a:1b:95:bb:c4:c9:4b:c8:6b:10: 0e:3b:c6:48:4a:4f:84:b8:6f:37:75:d8:e1:f4:27:c4:30:6d: 54:ea:33:69:c7:40:13:f8:58:95:e8:a9:01:73:7a:b3:78:6e: d4:6a:09:d0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUHzF91BAfgetUHsO2p+uiErYMQT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0U5N0IyODY5MjQzMjk2QTI2NUQ5ODc2N0ZDMDRGMTk5 OEQxNDNERTAeFw0yNjA0MjcwNTExMjBaFw0yNzA0MjYwNTE2MjBaMDMxMTAvBgNV BAMTKDMxQjM4ODJFQ0FDMDgzQjVDNTYxNzhERTgwQzIxNTEyRTlEMTZFRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrGAg2MapTjQdXw3nsDVd6vb8b 7RNCqQknJ+aNSR8GEy7E4nw50BgQklyBP1+o5lfLf/iYD/1y3sJjfdpavVVALu4D 672KyL7ERCJswNP0PMuK+kdrYcDu31AIaxpe0mL3kjwnMTzmQ9NI7oQEcZymj1Bi gfnfxTchB5Xyhnun1ru8pYPetM4ToAWoIqV8N6TanNm75qjotnxnrA/mw5dOSXrQ E2HJbyRmk1famVc0+o+9djSUSOMXj3L44vgv/qirI27UyQuP3HulA7lx8sk0Gp26 DwcTHrMoXj0pdhuLYiMmLwEgF7e6kEe4RUcRGqrWLHEfqEd2fQcRXLP/T6nzAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUMbOILsrAg7XFYXjegMIVEunRbuMwHwYDVR0j BBgwFoAUfpeyhpJDKWomXZh2f8BPGZjRQ94wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTAxMjU4MTgzOTAxMTg0My8wLzdFOTdCMjg2OTI0MzI5NkEyNjVEOTg3NjdGQzA0 RjE5OThEMTQzREUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvN0U5N0IyODY5MjQzMjk2QTI2NUQ5ODc2N0ZDMDRGMTk5OEQxNDNERS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDEwMTI1ODE4MzkwMTE4NDMvMC8zMTMwMzMyZTMy MzMzMzJlMzEzMzM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzkzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGfpijANBgkqhkiG9w0BAQsFAAOCAQEAQ3zqwvpHSqTQ5igP8ci3 TvBEuL/s2rxMknqhtxi5RYsw8qvK0ino0dgJNLc0XNbS8foXdpHdqC7dYijSKkHe QBtumszap8uroqCcwALanKkiXL2Nlayy4vMoUQ6pG/H28ZFV202QCJYo4x0EpIm7 UXJvXayc9B2LR6r/s9Gjw6+dI60t7cZNhQ1QtkxL/h/74asFXLSQbOhsD5ZIiNzp GEslzrMVBosAAFT4cltlHgOPxB7J70vKC0hG4LbKOjgfVh6FOXFFH+AH1pSz1kyK G5W7xMlLyGsQDjvGSEpPhLhvN3XY4fQnxDBtVOozacdAE/hYleipAXN6s3hu1GoJ 0A== -----END CERTIFICATE-----Generated at Wed May 13 20:55:26 2026 by rpki-client