$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e2034383437.roa File: 3130332e3139362e38382e302f32312d3231203d3e2034383437.roa (raw, json) Hash identifier: ibPGmc1qq4vu3vSBHok34apQbBgadCqjk0sNTeFZ9aI= Subject key identifier: DD:88:A7:14:51:E5:71:84:77:1B:27:6F:1C:89:EA:99:2D:60:BD:29 Certificate issuer: /CN=40D86726DB14F9E5E06610928FF6C77226F14874 Certificate serial: 30FBE6372BCFAD04288912FAF8EDA618C8526F03 Authority key identifier: 40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e2034383437.roa Signing time: Tue 12 May 2026 09:04:03 +0000 ROA not before: Tue 12 May 2026 08:59:03 +0000 ROA not after: Tue 11 May 2027 09:04:03 +0000 asID: 4847 IP address blocks: 103.196.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:fb:e6:37:2b:cf:ad:04:28:89:12:fa:f8:ed:a6:18:c8:52:6f:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D86726DB14F9E5E06610928FF6C77226F14874 Validity Not Before: May 12 08:59:03 2026 GMT Not After : May 11 09:04:03 2027 GMT Subject: CN=DD88A71451E57184771B276F1C89EA992D60BD29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:53:7b:11:63:df:30:16:a8:22:08:7f:a7:12: 02:88:a3:4f:62:45:35:55:6c:16:7b:bb:b4:11:d8: b2:d9:e2:47:84:fb:24:26:8e:ab:62:40:18:29:8e: 79:fc:0e:6f:f9:61:47:40:27:23:be:76:71:1e:22: 2e:26:56:d8:c1:88:c9:05:f5:a0:56:72:82:b7:2e: 6c:13:02:02:e8:48:ed:89:27:da:08:ba:42:b9:90: 11:b9:68:b8:ef:bf:02:1c:7b:51:92:b9:71:08:12: d3:09:1f:83:a3:33:0c:68:35:49:82:61:bc:71:0f: da:33:ae:e6:b9:b7:0e:eb:05:9b:ee:31:0b:69:cf: 56:0d:9b:16:ef:3d:73:f1:a1:2f:bb:57:12:bd:43: c7:e8:13:4b:9a:2e:d1:87:a7:78:2c:24:e8:d8:21: 08:ff:d7:86:fe:5a:50:59:c9:2e:87:d7:a9:97:f3: 73:3a:1a:9b:0a:0e:e1:aa:d4:44:f6:4b:ae:4a:c1: 1c:59:63:0e:cb:86:b9:1c:26:4d:96:ac:b6:97:99: 40:ea:62:a4:24:f5:69:7b:27:2b:a2:f2:f4:e3:aa: fb:b0:4a:7f:f0:e3:d9:67:cc:d8:e6:02:7e:b1:c0: b5:ba:00:f7:8a:fc:2f:79:32:f0:57:30:bc:2b:b9: 90:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:88:A7:14:51:E5:71:84:77:1B:27:6F:1C:89:EA:99:2D:60:BD:29 X509v3 Authority Key Identifier: keyid:40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.88.0/21 Signature Algorithm: sha256WithRSAEncryption 32:54:ec:2d:dd:29:26:c4:c0:c6:5d:25:a5:83:c4:cc:d9:5b: 62:a8:90:00:c5:44:8e:e9:ef:8f:1b:84:fc:64:9c:1b:c7:ad: bb:2e:da:0e:78:2f:94:8c:a4:a2:e7:31:56:40:08:61:8f:df: cb:cc:01:37:d2:b1:74:21:86:32:a3:8c:f9:7d:90:fe:04:36: a0:5f:74:66:0f:16:78:7a:54:d7:a1:71:93:0c:0d:a8:a9:e3: 08:d9:67:79:2a:51:cc:d5:78:1c:b9:8a:1b:6c:b3:24:e5:0a: 99:46:5b:60:c0:a0:5f:f6:66:29:85:cc:76:fe:a9:ff:6c:ba: bd:35:3d:c2:2e:0b:66:45:a0:28:10:10:b0:0d:6f:ea:66:61: 14:0c:eb:cf:79:c9:43:8f:05:f0:67:d1:a3:5a:90:cf:4e:28: d8:a8:75:6e:95:fb:2d:54:98:f1:d3:59:3f:95:98:49:0b:b8: 6c:33:95:3c:8a:ea:b6:6f:8a:a0:3b:20:b6:fd:2a:08:43:bd: 43:2a:73:f6:63:f7:bb:12:d1:d4:a6:60:cc:9d:34:75:2a:60: a0:25:a9:b0:41:8d:6f:51:ad:fe:46:69:5c:e4:d0:52:6e:eb: 7e:ce:82:e4:e7:04:84:6a:9c:a0:76:ec:b7:89:17:5b:1e:6e: c0:d2:91:93 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUMPvmNyvPrQQoiRL6+O2mGMhSbwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIy NkYxNDg3NDAeFw0yNjA1MTIwODU5MDNaFw0yNzA1MTEwOTA0MDNaMDMxMTAvBgNV BAMTKEREODhBNzE0NTFFNTcxODQ3NzFCMjc2RjFDODlFQTk5MkQ2MEJEMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOU3sRY98wFqgiCH+nEgKIo09i RTVVbBZ7u7QR2LLZ4keE+yQmjqtiQBgpjnn8Dm/5YUdAJyO+dnEeIi4mVtjBiMkF 9aBWcoK3LmwTAgLoSO2JJ9oIukK5kBG5aLjvvwIce1GSuXEIEtMJH4OjMwxoNUmC YbxxD9ozrua5tw7rBZvuMQtpz1YNmxbvPXPxoS+7VxK9Q8foE0uaLtGHp3gsJOjY IQj/14b+WlBZyS6H16mX83M6GpsKDuGq1ET2S65KwRxZYw7LhrkcJk2WrLaXmUDq YqQk9Wl7Jyui8vTjqvuwSn/w49lnzNjmAn6xwLW6APeK/C95MvBXMLwruZCNAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU3YinFFHlcYR3GydvHInqmS1gvSkwHwYDVR0j BBgwFoAUQNhnJtsU+eXgZhCSj/bHcibxSHQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwMzE1NTY2MDYxOTc5My8wLzQwRDg2NzI2REIxNEY5RTVFMDY2MTA5MjhGRjZD NzcyMjZGMTQ4NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIyNkYxNDg3NC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2NTAzMTU1NjYwNjE5NzkzLzAvMzEzMDMzMmUzMTM5 MzYyZTM4MzgyZTMwMmYzMjMxMmQzMjMxMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA2fEWDANBgkqhkiG9w0BAQsFAAOCAQEAMlTsLd0pJsTAxl0lpYPEzNlbYqiQ AMVEjunvjxuE/GScG8etuy7aDngvlIykoucxVkAIYY/fy8wBN9KxdCGGMqOM+X2Q /gQ2oF90Zg8WeHpU16FxkwwNqKnjCNlneSpRzNV4HLmKG2yzJOUKmUZbYMCgX/Zm KYXMdv6p/2y6vTU9wi4LZkWgKBAQsA1v6mZhFAzrz3nJQ48F8GfRo1qQz04o2Kh1 bpX7LVSY8dNZP5WYSQu4bDOVPIrqtm+KoDsgtv0qCEO9Qypz9mP3uxLR1KZgzJ00 dSpgoCWpsEGNb1Gt/kZpXOTQUm7rfs6C5OcEhGqcoHbst4kXWx5uwNKRkw== -----END CERTIFICATE-----Generated at Wed May 13 13:41:21 2026 by rpki-client