$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e2034383038.roa File: 3130332e3139362e38382e302f32312d3231203d3e2034383038.roa (raw, json) Hash identifier: APJaFNxQRg6Dn/91z5uTQjOHDylXgTlfMZYVN20xnWw= Subject key identifier: 1E:05:3F:8E:66:F6:E5:81:47:F5:77:52:1E:F9:21:67:4E:F0:A5:56 Certificate issuer: /CN=40D86726DB14F9E5E06610928FF6C77226F14874 Certificate serial: 1AACD3AEA4879FD61E64126760005F4FBF1815A7 Authority key identifier: 40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e2034383038.roa Signing time: Tue 12 May 2026 09:04:03 +0000 ROA not before: Tue 12 May 2026 08:59:03 +0000 ROA not after: Tue 11 May 2027 09:04:03 +0000 asID: 4808 IP address blocks: 103.196.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ac:d3:ae:a4:87:9f:d6:1e:64:12:67:60:00:5f:4f:bf:18:15:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D86726DB14F9E5E06610928FF6C77226F14874 Validity Not Before: May 12 08:59:03 2026 GMT Not After : May 11 09:04:03 2027 GMT Subject: CN=1E053F8E66F6E58147F577521EF921674EF0A556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:52:c0:b3:f9:c6:04:3f:15:d6:9c:ad:0b:1a: 65:57:94:3d:86:5d:91:23:da:08:91:d4:88:f2:fb: ca:5b:01:aa:59:99:39:3a:8b:f6:70:1d:75:25:ee: 60:e9:dc:0e:69:49:74:ed:81:5d:8a:43:99:3c:ed: 7d:b7:2b:49:87:62:d3:f9:6e:20:b0:61:1f:df:ea: 1e:c6:77:5f:bd:3c:13:49:dd:57:f8:0b:b2:c5:cf: 87:76:9c:01:50:fa:8d:ea:f4:03:0c:62:8c:b4:00: aa:0a:08:33:25:81:51:16:42:7a:c7:50:0e:6e:cb: c3:cc:89:27:f7:f3:87:60:61:76:da:74:09:20:02: 1c:16:32:a3:68:90:34:3b:ec:86:98:f6:ba:fb:c7: 5c:63:4b:8d:65:7c:af:e1:fd:f9:80:36:fc:7e:de: 04:c9:b2:c7:24:ce:02:87:00:d4:65:a5:e8:22:b1: 25:76:eb:da:ba:ed:2f:a9:16:b2:e1:22:62:67:28: 9a:3a:24:25:95:1f:70:c1:cc:b4:18:fb:af:6f:95: ba:11:c6:af:27:5d:58:e1:1b:63:26:2a:cb:a4:5b: 27:03:ea:de:0a:dd:82:59:ab:43:0e:3d:d5:b1:6d: a8:19:79:29:11:5d:ba:91:fb:f3:73:27:90:92:fc: ee:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:05:3F:8E:66:F6:E5:81:47:F5:77:52:1E:F9:21:67:4E:F0:A5:56 X509v3 Authority Key Identifier: keyid:40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.88.0/21 Signature Algorithm: sha256WithRSAEncryption 98:a6:36:b8:ba:46:b1:63:cc:5d:91:ba:1a:bc:c9:a9:c2:7c: c3:08:89:53:ef:b2:e1:44:be:83:28:df:ca:5e:2e:95:70:da: 2d:98:c7:e4:10:93:0a:7c:93:80:48:96:29:0c:b4:68:26:0d: b5:07:52:e5:01:5f:39:2a:e0:9d:9c:67:84:9c:c5:50:3c:a2: 5a:ca:20:bb:46:79:b8:77:73:2d:eb:7d:ad:ea:7d:c2:d6:69: 3f:80:d0:a6:30:75:61:c9:a9:9d:9d:67:20:4f:2c:bb:b0:83: ff:36:71:2f:f2:4b:9e:f2:0f:98:68:86:b1:e9:93:f1:77:68: af:45:12:b7:48:e2:b0:a1:29:25:dd:56:06:16:99:bb:01:9f: f9:4f:e3:72:40:f8:79:51:93:15:32:f3:e7:41:60:71:f8:21: 66:97:1d:da:15:d1:d3:88:ab:89:da:ce:cf:f0:2d:13:a4:77: 34:c1:00:28:14:cf:af:a4:f7:19:8b:75:8b:4d:32:15:98:66: 48:18:fb:3a:ad:e8:d3:7c:96:2b:cf:9e:9b:fe:2d:12:2d:66: 1a:eb:a5:de:68:83:a2:05:24:e6:22:21:15:8b:8d:a6:fd:d3: 73:70:52:38:40:af:7a:e9:9f:7c:7f:cd:8c:62:12:d9:70:c4: 33:72:ad:c9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUGqzTrqSHn9YeZBJnYABfT78YFacwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIy NkYxNDg3NDAeFw0yNjA1MTIwODU5MDNaFw0yNzA1MTEwOTA0MDNaMDMxMTAvBgNV BAMTKDFFMDUzRjhFNjZGNkU1ODE0N0Y1Nzc1MjFFRjkyMTY3NEVGMEE1NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtUsCz+cYEPxXWnK0LGmVXlD2G XZEj2giR1Ijy+8pbAapZmTk6i/ZwHXUl7mDp3A5pSXTtgV2KQ5k87X23K0mHYtP5 biCwYR/f6h7Gd1+9PBNJ3Vf4C7LFz4d2nAFQ+o3q9AMMYoy0AKoKCDMlgVEWQnrH UA5uy8PMiSf384dgYXbadAkgAhwWMqNokDQ77IaY9rr7x1xjS41lfK/h/fmANvx+ 3gTJssckzgKHANRlpegisSV269q67S+pFrLhImJnKJo6JCWVH3DBzLQY+69vlboR xq8nXVjhG2MmKsukWycD6t4K3YJZq0MOPdWxbagZeSkRXbqR+/NzJ5CS/O7zAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUHgU/jmb25YFH9XdSHvkhZ07wpVYwHwYDVR0j BBgwFoAUQNhnJtsU+eXgZhCSj/bHcibxSHQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwMzE1NTY2MDYxOTc5My8wLzQwRDg2NzI2REIxNEY5RTVFMDY2MTA5MjhGRjZD NzcyMjZGMTQ4NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIyNkYxNDg3NC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2NTAzMTU1NjYwNjE5NzkzLzAvMzEzMDMzMmUzMTM5 MzYyZTM4MzgyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA2fEWDANBgkqhkiG9w0BAQsFAAOCAQEAmKY2uLpGsWPMXZG6GrzJqcJ8wwiJ U++y4US+gyjfyl4ulXDaLZjH5BCTCnyTgEiWKQy0aCYNtQdS5QFfOSrgnZxnhJzF UDyiWsogu0Z5uHdzLet9rep9wtZpP4DQpjB1YcmpnZ1nIE8su7CD/zZxL/JLnvIP mGiGsemT8Xdor0USt0jisKEpJd1WBhaZuwGf+U/jckD4eVGTFTLz50FgcfghZpcd 2hXR04iridrOz/AtE6R3NMEAKBTPr6T3GYt1i00yFZhmSBj7Oq3o03yWK8+em/4t Ei1mGuul3miDogUk5iIhFYuNpv3Tc3BSOECveumffH/NjGIS2XDEM3KtyQ== -----END CERTIFICATE-----Generated at Wed May 13 14:40:34 2026 by rpki-client