$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3130332e3232382e3133382e302f32342d3234203d3e2034363131.roa File: 3130332e3232382e3133382e302f32342d3234203d3e2034363131.roa (raw, json) Hash identifier: yTCamlVpkLTaQtiao0McbVEofmqZPgYyOVfZcUXNIMg= Subject key identifier: EC:BC:C1:11:6B:90:3C:D0:B7:63:2E:6F:BD:00:6D:2B:98:29:31:41 Certificate issuer: /CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Certificate serial: 7B2EAF1006CDE9A0FBD68C9EB56E3C0C08C8CC82 Authority key identifier: 4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3130332e3232382e3133382e302f32342d3234203d3e2034363131.roa Signing time: Tue 12 May 2026 01:54:33 +0000 ROA not before: Tue 12 May 2026 01:49:33 +0000 ROA not after: Tue 11 May 2027 01:54:33 +0000 asID: 4611 IP address blocks: 103.228.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:2e:af:10:06:cd:e9:a0:fb:d6:8c:9e:b5:6e:3c:0c:08:c8:cc:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB Validity Not Before: May 12 01:49:33 2026 GMT Not After : May 11 01:54:33 2027 GMT Subject: CN=ECBCC1116B903CD0B7632E6FBD006D2B98293141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:58:ea:b4:46:9c:6e:5c:9a:7f:11:5c:17:d8: 85:7b:97:62:12:59:fd:57:9d:87:f8:bb:b3:b3:83: f1:67:c4:0b:84:9f:5c:8d:b2:73:12:74:50:1d:69: 19:57:94:a7:2f:e1:a7:89:cd:ea:6f:28:30:4d:1b: 26:27:78:a3:b7:1d:f1:b4:7d:24:f1:27:c0:b6:14: 60:5f:c5:d8:c0:e2:7e:b3:b0:e1:45:33:94:31:6d: 85:bd:93:c6:f5:fa:f1:d9:db:bb:9d:6f:f7:02:e9: 76:72:12:5c:7d:15:e4:e0:6a:4e:cd:89:e2:37:29: f1:69:7e:91:94:a0:fa:a5:a7:4b:79:69:93:ca:9e: 08:c1:82:2f:52:d6:bd:c1:4d:25:04:0b:19:90:d7: 28:8a:52:49:93:38:02:b2:55:51:97:26:98:75:09: 2c:38:b6:e5:f3:b0:ae:d7:a0:a4:3a:be:ce:78:fb: 77:62:4e:19:f7:ae:96:d2:99:32:09:c5:c8:25:81: 11:8f:1b:32:a0:da:43:78:80:d7:7e:07:af:3c:40: 9b:fb:12:28:30:12:da:90:59:b8:f5:42:60:95:33: 13:fc:10:b0:59:3b:40:de:21:7c:d9:4c:85:86:e1: 32:06:b0:3a:29:36:6c:f6:ec:8e:dd:1d:7a:f9:72: ac:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BC:C1:11:6B:90:3C:D0:B7:63:2E:6F:BD:00:6D:2B:98:29:31:41 X509v3 Authority Key Identifier: keyid:4A:F5:DD:93:98:EB:C3:3E:A0:CA:E0:41:D7:F5:2E:E2:CA:DD:0A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4AF5DD9398EBC33EA0CAE041D7F52EE2CADD0AFB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106398388187824147/0/3130332e3232382e3133382e302f32342d3234203d3e2034363131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.138.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:a7:84:99:39:20:65:6f:c1:00:09:8c:9c:0d:7e:fc:e1:08: d6:3e:cc:d0:b8:50:38:e8:f8:12:00:09:58:88:ea:31:f6:f8: 23:da:ec:7b:06:ca:7c:cb:b2:2c:7d:6e:5e:e7:5a:6a:d0:0a: a7:3e:2f:1f:1a:ec:97:6c:45:0b:14:12:7f:5c:04:f2:b7:1a: 60:b3:75:3f:b6:d3:ec:a8:ef:21:78:b6:36:91:58:37:35:0e: e1:45:01:22:be:52:00:b7:50:a0:bc:71:eb:c6:1d:da:5c:9b: 91:6c:4a:38:73:06:da:3f:3b:2f:7c:0b:39:38:47:93:5e:9f: f8:1a:ba:6b:4e:2f:04:ce:4e:22:26:f6:1a:03:5c:c3:d6:20: 77:dd:62:44:25:42:12:d7:3b:99:01:fd:9f:c9:e5:ef:65:08: d1:c1:d7:09:ee:ac:cc:bd:1e:77:15:29:61:32:32:ca:4b:65: 18:e2:e6:d2:f7:15:c9:ae:a3:9b:e8:43:97:40:9f:63:df:6c: 9a:6b:87:88:3c:74:92:d3:9d:0f:fe:f4:6b:df:cd:32:2c:a7: 4d:5e:f8:40:2d:4c:ae:db:4b:c1:9c:0b:84:be:d9:bf:1b:04: 44:e3:dc:b9:7a:f3:b0:fe:42:60:ee:45:0d:85:2c:58:7b:de: 87:c5:b4:a9 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUey6vEAbN6aD71oyetW48DAjIzIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJD QUREMEFGQjAeFw0yNjA1MTIwMTQ5MzNaFw0yNzA1MTEwMTU0MzNaMDMxMTAvBgNV BAMTKEVDQkNDMTExNkI5MDNDRDBCNzYzMkU2RkJEMDA2RDJCOTgyOTMxNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqWOq0RpxuXJp/EVwX2IV7l2IS Wf1XnYf4u7Ozg/FnxAuEn1yNsnMSdFAdaRlXlKcv4aeJzepvKDBNGyYneKO3HfG0 fSTxJ8C2FGBfxdjA4n6zsOFFM5QxbYW9k8b1+vHZ27udb/cC6XZyElx9FeTgak7N ieI3KfFpfpGUoPqlp0t5aZPKngjBgi9S1r3BTSUECxmQ1yiKUkmTOAKyVVGXJph1 CSw4tuXzsK7XoKQ6vs54+3diThn3rpbSmTIJxcglgRGPGzKg2kN4gNd+B688QJv7 EigwEtqQWbj1QmCVMxP8ELBZO0DeIXzZTIWG4TIGsDopNmz27I7dHXr5cqxxAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU7LzBEWuQPNC3Yy5vvQBtK5gpMUEwHwYDVR0j BBgwFoAUSvXdk5jrwz6gyuBB1/Uu4srdCvswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjM5ODM4ODE4NzgyNDE0Ny8wLzRBRjVERDkzOThFQkMzM0VBMENBRTA0MUQ3RjUy RUUyQ0FERDBBRkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNEFGNUREOTM5OEVCQzMzRUEwQ0FFMDQxRDdGNTJFRTJDQUREMEFGQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwNjM5ODM4ODE4NzgyNDE0Ny8wLzMxMzAzMzJlMzIz MjM4MmUzMTMzMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM2MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGfkijANBgkqhkiG9w0BAQsFAAOCAQEAHaeEmTkgZW/BAAmMnA1+/OEI 1j7M0LhQOOj4EgAJWIjqMfb4I9rsewbKfMuyLH1uXudaatAKpz4vHxrsl2xFCxQS f1wE8rcaYLN1P7bT7KjvIXi2NpFYNzUO4UUBIr5SALdQoLxx68Yd2lybkWxKOHMG 2j87L3wLOThHk16f+Bq6a04vBM5OIib2GgNcw9Ygd91iRCVCEtc7mQH9n8nl72UI 0cHXCe6szL0edxUpYTIyyktlGOLm0vcVya6jm+hDl0CfY99smmuHiDx0ktOdD/70 a9/NMiynTV74QC1MrttLwZwLhL7ZvxsEROPcuXrzsP5CYO5FDYUsWHveh8W0qQ== -----END CERTIFICATE-----Generated at Wed May 13 21:31:40 2026 by rpki-client