$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e203633363134.roa File: 3130332e3139362e38382e302f32312d3231203d3e203633363134.roa (raw, json) Hash identifier: cnOQyI9/iTYFqYZQPtmuhSuhepMxk0VUqXtLkgaM4sE= Subject key identifier: E9:1A:D0:40:E8:9A:68:6B:0B:06:8D:F4:8F:D7:24:82:41:C4:CF:C4 Certificate issuer: /CN=40D86726DB14F9E5E06610928FF6C77226F14874 Certificate serial: 73353C25F8DFF9BD356D48D05921EA975609CE96 Authority key identifier: 40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e203633363134.roa Signing time: Tue 12 May 2026 09:04:03 +0000 ROA not before: Tue 12 May 2026 08:59:03 +0000 ROA not after: Tue 11 May 2027 09:04:03 +0000 asID: 63614 IP address blocks: 103.196.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:35:3c:25:f8:df:f9:bd:35:6d:48:d0:59:21:ea:97:56:09:ce:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D86726DB14F9E5E06610928FF6C77226F14874 Validity Not Before: May 12 08:59:03 2026 GMT Not After : May 11 09:04:03 2027 GMT Subject: CN=E91AD040E89A686B0B068DF48FD7248241C4CFC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:df:ba:dc:4a:35:cc:2f:1c:84:4b:f2:e6:2b: f3:b8:b8:66:89:9b:f4:03:9d:6e:c7:98:4a:5f:25: f2:81:b1:8e:c1:96:03:72:03:53:6b:f0:3a:03:b2: 21:7b:5d:8e:5c:23:5d:33:71:e5:c7:1c:5c:c1:17: 72:5e:16:ad:1c:8f:dc:3d:20:40:42:58:8a:df:d2: 49:63:cc:08:65:b9:d2:87:be:03:89:9c:30:13:4f: 77:4e:4f:68:ab:73:a6:06:c7:2c:e0:83:f1:1d:7c: ee:c9:9e:0a:f6:64:c0:1a:87:83:56:70:42:35:f9: 91:c6:97:d2:ef:45:25:ff:b6:4b:79:64:fb:44:65: b1:41:c7:c4:f3:ca:ba:e1:5d:1a:68:d8:d5:67:21: e5:fe:1a:8c:a4:db:16:aa:fc:c0:74:8a:fd:7a:5e: 09:77:89:8a:e8:63:6f:87:f2:f9:18:dc:6f:8e:ca: ea:98:b3:66:48:96:8d:6f:9f:bc:a9:4d:57:9e:8f: 0e:88:17:7f:6b:a4:1a:ee:0a:75:2c:f3:e6:e0:06: 04:f3:7f:df:42:fd:3b:be:d1:bb:83:47:c7:19:ab: 67:4e:9e:9b:ab:da:5d:d5:ce:29:fe:cd:11:2b:a1: e2:c9:6b:6c:a9:9d:c0:cb:0a:4c:df:ce:3d:74:11: 46:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:1A:D0:40:E8:9A:68:6B:0B:06:8D:F4:8F:D7:24:82:41:C4:CF:C4 X509v3 Authority Key Identifier: keyid:40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e3139362e38382e302f32312d3231203d3e203633363134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.88.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:2e:15:81:0c:2a:b0:46:23:43:c0:91:be:a2:b4:8e:f6:e5: 53:0b:2f:d0:f3:27:bb:bc:ec:1f:21:80:e0:11:18:4d:a5:b3: 80:8f:94:b6:6f:97:44:d3:8e:f9:83:33:8a:68:ca:f3:c3:f5: 3d:52:9c:22:ec:f3:81:f8:03:10:51:a5:25:3c:34:a2:14:7f: dc:e3:9e:14:88:e6:63:98:69:37:f2:56:28:d1:65:c7:a8:49: d0:0a:96:af:3a:07:5f:44:b4:b2:a0:47:f8:64:cf:ca:6a:f0: 47:66:fa:ea:af:40:99:d3:1c:6b:42:24:8f:88:d0:cb:09:50: f5:5f:32:e7:29:16:79:31:41:90:97:cf:55:7f:ca:57:e9:05: 9b:3b:57:25:10:9f:27:f5:a9:04:23:f1:bc:13:80:0e:06:b7: 6e:c8:52:c1:b2:b5:98:1a:c4:cd:24:ce:c4:c0:c7:68:d8:57: f7:71:0e:5b:75:54:ea:87:dc:3f:97:59:6e:c8:1a:51:fb:83: 60:cd:3a:1f:8b:fd:3d:e4:eb:12:f1:cb:b8:03:cd:c3:8a:0b: b8:20:17:b2:d2:28:79:b9:77:29:f2:81:26:a1:e9:5b:11:b8: 7d:8b:f4:ab:35:ad:bd:da:e8:d8:4b:34:2b:e5:0c:ee:d5:51: 82:8d:33:1e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUczU8Jfjf+b01bUjQWSHql1YJzpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIy NkYxNDg3NDAeFw0yNjA1MTIwODU5MDNaFw0yNzA1MTEwOTA0MDNaMDMxMTAvBgNV BAMTKEU5MUFEMDQwRTg5QTY4NkIwQjA2OERGNDhGRDcyNDgyNDFDNENGQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi37rcSjXMLxyES/LmK/O4uGaJ m/QDnW7HmEpfJfKBsY7BlgNyA1Nr8DoDsiF7XY5cI10zceXHHFzBF3JeFq0cj9w9 IEBCWIrf0kljzAhludKHvgOJnDATT3dOT2irc6YGxyzgg/EdfO7Jngr2ZMAah4NW cEI1+ZHGl9LvRSX/tkt5ZPtEZbFBx8TzyrrhXRpo2NVnIeX+Goyk2xaq/MB0iv16 Xgl3iYroY2+H8vkY3G+OyuqYs2ZIlo1vn7ypTVeejw6IF39rpBruCnUs8+bgBgTz f99C/Tu+0buDR8cZq2dOnpur2l3Vzin+zREroeLJa2ypncDLCkzfzj10EUa5AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU6RrQQOiaaGsLBo30j9ckgkHEz8QwHwYDVR0j BBgwFoAUQNhnJtsU+eXgZhCSj/bHcibxSHQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwMzE1NTY2MDYxOTc5My8wLzQwRDg2NzI2REIxNEY5RTVFMDY2MTA5MjhGRjZD NzcyMjZGMTQ4NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIyNkYxNDg3NC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwNjUwMzE1NTY2MDYxOTc5My8wLzMxMzAzMzJlMzEz OTM2MmUzODM4MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzYzMzM2MzEzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2fEWDANBgkqhkiG9w0BAQsFAAOCAQEAjy4VgQwqsEYjQ8CRvqK0jvbl Uwsv0PMnu7zsHyGA4BEYTaWzgI+Utm+XRNOO+YMzimjK88P1PVKcIuzzgfgDEFGl JTw0ohR/3OOeFIjmY5hpN/JWKNFlx6hJ0AqWrzoHX0S0sqBH+GTPymrwR2b66q9A mdMca0Ikj4jQywlQ9V8y5ykWeTFBkJfPVX/KV+kFmztXJRCfJ/WpBCPxvBOADga3 bshSwbK1mBrEzSTOxMDHaNhX93EOW3VU6ofcP5dZbsgaUfuDYM06H4v9PeTrEvHL uAPNw4oLuCAXstIoebl3KfKBJqHpWxG4fYv0qzWtvdro2Es0K+UM7tVRgo0zHg== -----END CERTIFICATE-----Generated at Wed May 13 14:58:04 2026 by rpki-client