$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101394207139954693/0/3130332e3233382e3230342e302f32322d3332203d3e203435303634.roa File: 3130332e3233382e3230342e302f32322d3332203d3e203435303634.roa (raw, json) Hash identifier: 6nmUohYzQh1DovxE/l757nsAlZA4qyNhKUPD8waHzxU= Subject key identifier: D8:B8:96:5D:BC:31:E7:AA:A5:9C:BA:07:C1:2A:88:C4:D3:DF:C9:F4 Certificate issuer: /CN=334B93F76F5BCAAA2030E5BDD8CEF220A61CE061 Certificate serial: 61B0E88E6D4EF9EAEFE1CE6A93D840D15C2A0C71 Authority key identifier: 33:4B:93:F7:6F:5B:CA:AA:20:30:E5:BD:D8:CE:F2:20:A6:1C:E0:61 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/334B93F76F5BCAAA2030E5BDD8CEF220A61CE061.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101394207139954693/0/3130332e3233382e3230342e302f32322d3332203d3e203435303634.roa Signing time: Tue 28 Apr 2026 06:37:06 +0000 ROA not before: Tue 28 Apr 2026 06:32:06 +0000 ROA not after: Tue 27 Apr 2027 06:37:06 +0000 asID: 45064 IP address blocks: 103.238.204.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101394207139954693/0/334B93F76F5BCAAA2030E5BDD8CEF220A61CE061.crl rsync://rpki-rps.cnnic.cn/repo/A1101394207139954693/0/334B93F76F5BCAAA2030E5BDD8CEF220A61CE061.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/334B93F76F5BCAAA2030E5BDD8CEF220A61CE061.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b0:e8:8e:6d:4e:f9:ea:ef:e1:ce:6a:93:d8:40:d1:5c:2a:0c:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=334B93F76F5BCAAA2030E5BDD8CEF220A61CE061 Validity Not Before: Apr 28 06:32:06 2026 GMT Not After : Apr 27 06:37:06 2027 GMT Subject: CN=D8B8965DBC31E7AAA59CBA07C12A88C4D3DFC9F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1a:4b:e8:ff:8d:ee:9f:e1:d2:22:b4:1f:55: a3:1a:79:bc:ac:07:da:c9:1f:df:4d:82:1b:42:7d: 2e:5f:fb:da:f8:8c:82:25:91:8b:7c:2b:fd:75:9c: a1:77:31:be:34:51:e2:5e:c7:b4:e8:1b:c3:93:3c: 88:28:07:1d:40:7b:ca:88:70:95:29:8c:d9:01:f2: 92:84:0b:00:e4:70:e4:99:1a:26:2d:a5:46:bd:1c: d4:a4:40:e1:35:d9:03:33:7d:11:a6:dd:b3:ee:79: 83:a4:2e:e5:cd:ed:19:d0:e2:e9:a6:b1:58:73:dc: 3d:e9:00:09:e4:ac:1b:7f:c6:0f:f0:8e:b9:f6:87: 57:33:31:ff:d8:4e:40:4a:51:eb:92:54:3a:ea:cf: d3:8d:09:cc:4c:bb:e5:33:27:ee:de:f9:f8:9c:e3: 1d:17:8e:9c:a6:f8:ec:43:d0:23:da:3c:83:3c:03: e3:84:45:74:a9:aa:a4:6f:60:6d:63:61:63:0b:6d: 8c:f1:ca:7c:d9:a3:8f:df:37:c4:92:ec:52:ef:83: ee:fc:b9:59:1d:e5:a4:b6:07:9e:b5:48:f3:9f:80: 3f:18:71:84:4b:9f:bf:9f:e3:0f:99:ab:15:20:ee: 27:ce:2c:94:1d:83:3a:99:7a:3e:06:54:d2:8b:6c: af:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B8:96:5D:BC:31:E7:AA:A5:9C:BA:07:C1:2A:88:C4:D3:DF:C9:F4 X509v3 Authority Key Identifier: keyid:33:4B:93:F7:6F:5B:CA:AA:20:30:E5:BD:D8:CE:F2:20:A6:1C:E0:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101394207139954693/0/334B93F76F5BCAAA2030E5BDD8CEF220A61CE061.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/334B93F76F5BCAAA2030E5BDD8CEF220A61CE061.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101394207139954693/0/3130332e3233382e3230342e302f32322d3332203d3e203435303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.204.0/22 Signature Algorithm: sha256WithRSAEncryption 85:b7:23:fd:18:7d:f4:be:ce:30:dd:45:55:08:a0:20:c1:e5: db:c6:7a:8a:f8:a9:5e:d5:55:ab:1e:d3:7d:a5:6a:03:1a:32: 1d:fa:dc:cd:55:e6:84:64:ee:9d:1d:61:e4:2a:a8:21:c7:6d: fd:5c:76:52:49:bf:50:ef:7c:c8:a5:1c:42:8b:9d:ac:47:14: eb:a8:3a:ff:38:c6:fe:c5:e2:cc:c7:6d:d8:88:23:31:92:bb: cb:45:af:17:b7:0a:b7:7f:5b:ab:ac:b9:2d:bb:ad:ad:9a:47: 69:45:24:2b:f9:03:a2:e1:a5:5d:91:fe:32:e8:a0:3c:36:de: af:47:4c:b7:43:ad:63:fc:0f:a1:e7:42:70:b5:17:fd:e2:0e: 5e:a0:84:51:91:07:fb:e4:94:eb:84:59:b2:1d:7d:48:c5:f2: a1:2b:7e:78:6f:6e:b9:e9:4d:bc:2c:9e:76:4d:11:60:a1:81: 15:bf:40:4c:08:bc:3a:e8:77:fd:35:28:7f:b3:b0:ff:9c:be: 9c:04:b5:04:13:56:5f:9f:bc:14:60:0b:08:21:11:e9:07:56: 2f:58:66:47:1a:78:76:26:39:a2:23:4b:93:43:9a:56:14:5f: d7:34:34:56:72:c0:d0:19:fd:dc:06:d5:92:3e:49:1a:cb:95: 50:3a:cd:fa -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUYbDojm1O+erv4c5qk9hA0VwqDHEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzM0QjkzRjc2RjVCQ0FBQTIwMzBFNUJERDhDRUYyMjBB NjFDRTA2MTAeFw0yNjA0MjgwNjMyMDZaFw0yNzA0MjcwNjM3MDZaMDMxMTAvBgNV BAMTKEQ4Qjg5NjVEQkMzMUU3QUFBNTlDQkEwN0MxMkE4OEM0RDNERkM5RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzGkvo/43un+HSIrQfVaMaebys B9rJH99NghtCfS5f+9r4jIIlkYt8K/11nKF3Mb40UeJex7ToG8OTPIgoBx1Ae8qI cJUpjNkB8pKECwDkcOSZGiYtpUa9HNSkQOE12QMzfRGm3bPueYOkLuXN7RnQ4umm sVhz3D3pAAnkrBt/xg/wjrn2h1czMf/YTkBKUeuSVDrqz9ONCcxMu+UzJ+7e+fic 4x0Xjpym+OxD0CPaPIM8A+OERXSpqqRvYG1jYWMLbYzxynzZo4/fN8SS7FLvg+78 uVkd5aS2B561SPOfgD8YcYRLn7+f4w+ZqxUg7ifOLJQdgzqZej4GVNKLbK/fAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU2LiWXbwx56qlnLoHwSqIxNPfyfQwHwYDVR0j BBgwFoAUM0uT929byqogMOW92M7yIKYc4GEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTM5NDIwNzEzOTk1NDY5My8wLzMzNEI5M0Y3NkY1QkNBQUEyMDMwRTVCREQ4Q0VG MjIwQTYxQ0UwNjEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzM0QjkzRjc2RjVCQ0FBQTIwMzBFNUJERDhDRUYyMjBBNjFDRTA2MS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDEzOTQyMDcxMzk5NTQ2OTMvMC8zMTMwMzMyZTMy MzMzODJlMzIzMDM0MmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzQzNTMwMzYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfuzDANBgkqhkiG9w0BAQsFAAOCAQEAhbcj/Rh99L7OMN1FVQig IMHl28Z6ivipXtVVqx7TfaVqAxoyHfrczVXmhGTunR1h5CqoIcdt/Vx2Ukm/UO98 yKUcQoudrEcU66g6/zjG/sXizMdt2IgjMZK7y0WvF7cKt39bq6y5LbutrZpHaUUk K/kDouGlXZH+MuigPDber0dMt0OtY/wPoedCcLUX/eIOXqCEUZEH++SU64RZsh19 SMXyoSt+eG9uuelNvCyedk0RYKGBFb9ATAi8Ouh3/TUof7Ow/5y+nAS1BBNWX5+8 FGALCCER6QdWL1hmRxp4diY5oiNLk0OaVhRf1zQ0VnLA0Bn93AbVkj5JGsuVUDrN +g== -----END CERTIFICATE-----Generated at Wed May 13 14:27:29 2026 by rpki-client