$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101059168732708865/0/3130332e3139382e3132342e302f32322d3332203d3e2034383132.roa File: 3130332e3139382e3132342e302f32322d3332203d3e2034383132.roa (raw, json) Hash identifier: l20mQBMrYLf5Wq5MznRX5BSW2+IC0U4zBJVGZ6jKOmY= Subject key identifier: B6:7C:89:B5:8E:68:14:BA:AB:AA:27:1A:76:34:0F:91:E2:A1:53:15 Certificate issuer: /CN=D8E9745B505CCD7D22105CB89D5574E599B45E13 Certificate serial: 397E7C6673D5330A05C1DCBEF18BC532A6A0F4EA Authority key identifier: D8:E9:74:5B:50:5C:CD:7D:22:10:5C:B8:9D:55:74:E5:99:B4:5E:13 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/3130332e3139382e3132342e302f32322d3332203d3e2034383132.roa Signing time: Tue 28 Apr 2026 03:00:55 +0000 ROA not before: Tue 28 Apr 2026 02:55:55 +0000 ROA not after: Tue 27 Apr 2027 03:00:55 +0000 asID: 4812 IP address blocks: 103.198.124.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.crl rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:7e:7c:66:73:d5:33:0a:05:c1:dc:be:f1:8b:c5:32:a6:a0:f4:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8E9745B505CCD7D22105CB89D5574E599B45E13 Validity Not Before: Apr 28 02:55:55 2026 GMT Not After : Apr 27 03:00:55 2027 GMT Subject: CN=B67C89B58E6814BAABAA271A76340F91E2A15315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:29:76:03:2d:e8:e7:2c:03:72:86:a7:71:97: 28:2f:df:5a:74:4a:1d:48:79:c3:fa:25:c5:0d:02: db:d8:a6:3c:20:49:e4:3d:96:30:75:24:83:7b:26: a6:81:bb:68:ff:8b:e3:09:64:63:a8:8d:29:5f:dd: 7d:59:6d:42:7c:a3:16:b5:78:7a:97:8d:0c:21:c5: b3:7d:d6:ba:6f:b9:f0:fb:20:e6:70:4b:c4:ec:b5: 59:ba:81:4d:6d:64:17:1b:9c:fc:86:ca:80:06:f0: 1e:1c:27:42:6b:d3:15:e3:54:26:c1:79:38:9b:97: 9d:d1:28:5e:73:e6:05:a1:74:fe:61:a0:78:c8:bf: ae:27:64:3a:50:e3:ef:5a:61:2c:7a:2c:7d:eb:4e: eb:be:45:9a:23:1a:36:01:5d:f2:c7:3a:70:3c:c1: f1:67:90:49:e0:3b:1f:65:2c:73:20:9f:e8:86:66: 27:32:b8:90:46:2f:81:cf:06:4a:3a:3f:69:24:e5: e6:46:e2:5a:e2:c1:58:f3:be:4c:90:b3:fa:19:fa: 1c:58:c9:88:4b:36:58:bd:d7:45:be:98:27:2f:72: 3c:af:c4:25:89:ab:4b:b4:e0:41:9e:13:98:b7:78: 22:d6:64:c3:e3:10:bf:54:ec:12:e1:0e:82:46:81: 57:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:7C:89:B5:8E:68:14:BA:AB:AA:27:1A:76:34:0F:91:E2:A1:53:15 X509v3 Authority Key Identifier: keyid:D8:E9:74:5B:50:5C:CD:7D:22:10:5C:B8:9D:55:74:E5:99:B4:5E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/3130332e3139382e3132342e302f32322d3332203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.198.124.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:d4:a2:d4:e6:86:74:ea:06:60:5c:f4:b0:5b:ee:a2:ab:ab: 50:14:78:dc:c8:fd:aa:4b:4f:6e:6b:ab:cd:7c:08:1f:82:00: 38:74:a5:5f:3d:88:32:a0:57:3e:fa:2e:d0:02:a9:77:6d:a6: 69:25:84:99:3a:17:27:69:5f:41:1a:83:f2:cb:1b:94:56:14: 1a:0d:e6:fa:d5:27:49:da:8a:5b:9a:bc:60:da:5d:7b:0f:62: cb:f7:f0:87:35:f8:a8:49:5c:17:a0:68:88:50:83:d5:2f:65: 0d:26:19:79:ed:bf:fe:1c:36:b8:5b:9c:fc:a2:98:70:e5:20: 3a:5b:31:a1:cd:77:7a:ed:8a:6b:2f:2f:df:0f:ac:99:6a:c6: e5:0c:2a:e6:96:f6:5d:f7:67:a7:b1:f8:7d:6f:55:05:bc:17: 3b:19:49:42:32:80:26:dd:83:19:20:1e:dd:fe:70:a2:d6:b7: 2b:b1:fd:a4:99:45:1a:63:5b:1d:f3:97:de:0d:3c:89:0b:27: f6:f8:bd:ad:76:23:4d:40:6f:92:14:6e:a9:c7:87:82:e8:d5: 4f:27:b2:a7:44:e5:34:1f:b5:b2:b3:07:46:0e:0b:6f:4f:e3: 75:25:00:b5:13:67:3c:3b:56:dc:c0:fb:01:c4:c6:cf:21:97: 01:6a:a6:57 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUOX58ZnPVMwoFwdy+8YvFMqag9OowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhFOTc0NUI1MDVDQ0Q3RDIyMTA1Q0I4OUQ1NTc0RTU5 OUI0NUUxMzAeFw0yNjA0MjgwMjU1NTVaFw0yNzA0MjcwMzAwNTVaMDMxMTAvBgNV BAMTKEI2N0M4OUI1OEU2ODE0QkFBQkFBMjcxQTc2MzQwRjkxRTJBMTUzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTKXYDLejnLANyhqdxlygv31p0 Sh1IecP6JcUNAtvYpjwgSeQ9ljB1JIN7JqaBu2j/i+MJZGOojSlf3X1ZbUJ8oxa1 eHqXjQwhxbN91rpvufD7IOZwS8TstVm6gU1tZBcbnPyGyoAG8B4cJ0Jr0xXjVCbB eTibl53RKF5z5gWhdP5hoHjIv64nZDpQ4+9aYSx6LH3rTuu+RZojGjYBXfLHOnA8 wfFnkEngOx9lLHMgn+iGZicyuJBGL4HPBko6P2kk5eZG4lriwVjzvkyQs/oZ+hxY yYhLNli910W+mCcvcjyvxCWJq0u04EGeE5i3eCLWZMPjEL9U7BLhDoJGgVftAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUtnyJtY5oFLqrqicadjQPkeKhUxUwHwYDVR0j BBgwFoAU2Ol0W1BczX0iEFy4nVV05Zm0XhMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTA1OTE2ODczMjcwODg2NS8wL0Q4RTk3NDVCNTA1Q0NEN0QyMjEwNUNCODlENTU3 NEU1OTlCNDVFMTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDhFOTc0NUI1MDVDQ0Q3RDIyMTA1Q0I4OUQ1NTc0RTU5OUI0NUUxMy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwMTA1OTE2ODczMjcwODg2NS8wLzMxMzAzMzJlMzEz OTM4MmUzMTMyMzQyZTMwMmYzMjMyMmQzMzMyMjAzZDNlMjAzNDM4MzEzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmfGfDANBgkqhkiG9w0BAQsFAAOCAQEAf9Si1OaGdOoGYFz0sFvuoqur UBR43Mj9qktPbmurzXwIH4IAOHSlXz2IMqBXPvou0AKpd22maSWEmToXJ2lfQRqD 8ssblFYUGg3m+tUnSdqKW5q8YNpdew9iy/fwhzX4qElcF6BoiFCD1S9lDSYZee2/ /hw2uFuc/KKYcOUgOlsxoc13eu2Kay8v3w+smWrG5Qwq5pb2Xfdnp7H4fW9VBbwX OxlJQjKAJt2DGSAe3f5wota3K7H9pJlFGmNbHfOX3g08iQsn9vi9rXYjTUBvkhRu qceHgujVTyeyp0TlNB+1srMHRg4Lb0/jdSUAtRNnPDtW3MD7AcTGzyGXAWqmVw== -----END CERTIFICATE-----Generated at Wed May 13 12:12:28 2026 by rpki-client