$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1105017083869003783/0/3130332e33382e34302e302f32322d3232203d3e2034383337.roa File: 3130332e33382e34302e302f32322d3232203d3e2034383337.roa (raw, json) Hash identifier: 4GHv8joM/5RN0bEMErPJBuhi5iOtTFOrvEdUPol9R3o= Subject key identifier: 5A:BC:53:80:B3:73:D9:28:F9:F3:1D:E4:59:60:DD:6B:AE:7F:59:51 Certificate issuer: /CN=CF709CC85A3788918F778EC5F4257016F4294457 Certificate serial: 2909CC615F10FC5CE00473BDEA5458EAE865EBDA Authority key identifier: CF:70:9C:C8:5A:37:88:91:8F:77:8E:C5:F4:25:70:16:F4:29:44:57 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF709CC85A3788918F778EC5F4257016F4294457.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1105017083869003783/0/3130332e33382e34302e302f32322d3232203d3e2034383337.roa Signing time: Fri 08 May 2026 06:46:56 +0000 ROA not before: Fri 08 May 2026 06:41:56 +0000 ROA not after: Fri 07 May 2027 06:46:56 +0000 asID: 4837 IP address blocks: 103.38.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1105017083869003783/0/CF709CC85A3788918F778EC5F4257016F4294457.crl rsync://rpki-rps.cnnic.cn/repo/A1105017083869003783/0/CF709CC85A3788918F778EC5F4257016F4294457.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF709CC85A3788918F778EC5F4257016F4294457.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:09:cc:61:5f:10:fc:5c:e0:04:73:bd:ea:54:58:ea:e8:65:eb:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF709CC85A3788918F778EC5F4257016F4294457 Validity Not Before: May 8 06:41:56 2026 GMT Not After : May 7 06:46:56 2027 GMT Subject: CN=5ABC5380B373D928F9F31DE45960DD6BAE7F5951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a2:0f:83:06:6d:c2:85:45:73:94:e6:32:17: 43:b9:cf:b3:bd:4c:47:af:47:2c:fb:e7:bb:ff:6a: f4:98:6c:f2:bf:3e:d4:7e:6a:f3:d0:13:62:22:73: 03:16:68:64:5d:77:91:73:87:4e:05:bd:85:0e:70: 13:b6:81:e3:dc:31:c1:3e:c5:f0:9e:a5:8e:40:a8: d0:e1:8c:de:9a:61:01:27:bd:0f:d8:6a:71:7b:f7: cb:d3:f3:24:91:3f:2e:d9:29:85:c1:e4:bd:66:a7: 92:70:84:18:1f:9d:43:e9:ef:88:9a:76:09:60:af: a7:bf:24:57:59:3d:fd:4c:66:bd:ad:b4:d4:d9:32: 1c:61:73:15:13:af:7e:c5:40:28:1a:ce:0a:1c:68: d8:87:93:3a:b2:a5:d9:d9:de:ef:5f:95:24:32:c9: 94:38:7c:24:78:cc:2f:9a:4a:9f:de:e8:61:c3:d7: 56:65:cf:be:76:d2:0e:16:31:79:e2:26:9a:74:90: fa:71:9c:80:62:bb:f7:8c:16:4a:70:5b:a3:e8:c6: 18:ed:84:68:89:bf:d6:d4:e4:cd:41:9c:81:e4:3f: 6e:e4:01:e0:cf:3c:4d:80:75:08:e6:4b:01:78:26: fd:c8:42:77:1b:1d:43:39:04:d8:af:9d:61:99:ca: 6d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:BC:53:80:B3:73:D9:28:F9:F3:1D:E4:59:60:DD:6B:AE:7F:59:51 X509v3 Authority Key Identifier: keyid:CF:70:9C:C8:5A:37:88:91:8F:77:8E:C5:F4:25:70:16:F4:29:44:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1105017083869003783/0/CF709CC85A3788918F778EC5F4257016F4294457.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF709CC85A3788918F778EC5F4257016F4294457.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1105017083869003783/0/3130332e33382e34302e302f32322d3232203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.40.0/22 Signature Algorithm: sha256WithRSAEncryption 23:a2:6c:9f:84:3b:6b:9d:ee:01:05:1c:6a:44:3e:b3:b3:b8: 7f:31:c5:f4:62:cb:33:4c:84:b4:24:35:13:40:7c:a4:7c:3a: 1e:a3:df:34:3e:cc:f0:c4:32:2e:00:79:5b:82:d3:e8:8f:12: 7b:dd:18:d4:f2:b2:52:ec:eb:a9:85:93:37:e6:6d:80:dd:a0: e5:a2:bd:d6:11:b6:2e:f2:ff:ef:32:36:d6:24:b3:b1:60:8d: 8b:4b:cc:4b:4b:6b:5a:c2:b2:98:6d:76:78:fb:7b:ee:7b:2f: dd:07:45:fb:58:92:0e:6d:0b:0a:4a:3b:a4:a1:f0:31:35:0c: ef:a7:ac:8c:8e:0c:b6:e1:10:20:52:3c:33:0c:2d:f4:17:d9: a2:e8:ef:87:e5:3d:35:14:94:dc:27:2b:9a:31:05:79:29:e6: 4c:f2:ad:97:d4:c4:5d:97:fe:5e:22:97:47:67:ec:a7:13:11: aa:28:16:75:ea:47:08:2e:25:76:da:98:3b:fe:52:b9:5a:ba: d6:43:2b:54:59:89:a1:db:8b:78:db:c4:92:5c:00:59:83:db: c8:8a:a9:53:24:98:18:dd:ca:9f:45:14:f9:42:06:52:bf:b8: 9d:62:f0:26:cd:d4:43:a6:7e:1f:2c:8b:cb:17:b3:9f:86:dd: 51:5d:04:57 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUKQnMYV8Q/FzgBHO96lRY6uhl69owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Y3MDlDQzg1QTM3ODg5MThGNzc4RUM1RjQyNTcwMTZG NDI5NDQ1NzAeFw0yNjA1MDgwNjQxNTZaFw0yNzA1MDcwNjQ2NTZaMDMxMTAvBgNV BAMTKDVBQkM1MzgwQjM3M0Q5MjhGOUYzMURFNDU5NjBERDZCQUU3RjU5NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGog+DBm3ChUVzlOYyF0O5z7O9 TEevRyz757v/avSYbPK/PtR+avPQE2IicwMWaGRdd5Fzh04FvYUOcBO2gePcMcE+ xfCepY5AqNDhjN6aYQEnvQ/YanF798vT8ySRPy7ZKYXB5L1mp5JwhBgfnUPp74ia dglgr6e/JFdZPf1MZr2ttNTZMhxhcxUTr37FQCgazgocaNiHkzqypdnZ3u9flSQy yZQ4fCR4zC+aSp/e6GHD11Zlz7520g4WMXniJpp0kPpxnIBiu/eMFkpwW6Poxhjt hGiJv9bU5M1BnIHkP27kAeDPPE2AdQjmSwF4Jv3IQncbHUM5BNivnWGZym2RAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUWrxTgLNz2Sj58x3kWWDda65/WVEwHwYDVR0j BBgwFoAUz3CcyFo3iJGPd47F9CVwFvQpRFcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NTAxNzA4Mzg2OTAwMzc4My8wL0NGNzA5Q0M4NUEzNzg4OTE4Rjc3OEVDNUY0MjU3 MDE2RjQyOTQ0NTcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0Y3MDlDQzg1QTM3ODg5MThGNzc4RUM1RjQyNTcwMTZGNDI5NDQ1Ny5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA1MDE3MDgzODY5MDAzNzgzLzAvMzEzMDMzMmUzMzM4 MmUzNDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnJigwDQYJKoZIhvcNAQELBQADggEBACOibJ+EO2ud7gEFHGpEPrOzuH8xxfRi yzNMhLQkNRNAfKR8Oh6j3zQ+zPDEMi4AeVuC0+iPEnvdGNTyslLs66mFkzfmbYDd oOWivdYRti7y/+8yNtYks7FgjYtLzEtLa1rCsphtdnj7e+57L90HRftYkg5tCwpK O6Sh8DE1DO+nrIyODLbhECBSPDMMLfQX2aLo74flPTUUlNwnK5oxBXkp5kzyrZfU xF2X/l4il0dn7KcTEaooFnXqRwguJXbamDv+UrlautZDK1RZiaHbi3jbxJJcAFmD 28iKqVMkmBjdyp9FFPlCBlK/uJ1i8CbN1EOmfh8si8sXs5+G3VFdBFc= -----END CERTIFICATE-----Generated at Wed May 13 08:00:23 2026 by rpki-client