$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e32352e32342e302f32322d3232203d3e2034383038.roa File: 3130332e32352e32342e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: PNdyrG9j75/du4oBuputNlHaaXBtZYc/AFdw/0gOmDE= Subject key identifier: E8:73:9E:A3:09:54:0E:28:35:1B:CE:CE:C6:81:46:28:EB:EA:FD:D9 Certificate issuer: /CN=40D86726DB14F9E5E06610928FF6C77226F14874 Certificate serial: 4B3611820033EAED0B126FB7F0FE8B2693847C79 Authority key identifier: 40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e32352e32342e302f32322d3232203d3e2034383038.roa Signing time: Tue 12 May 2026 09:00:32 +0000 ROA not before: Tue 12 May 2026 08:55:32 +0000 ROA not after: Tue 11 May 2027 09:00:32 +0000 asID: 4808 IP address blocks: 103.25.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:36:11:82:00:33:ea:ed:0b:12:6f:b7:f0:fe:8b:26:93:84:7c:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D86726DB14F9E5E06610928FF6C77226F14874 Validity Not Before: May 12 08:55:32 2026 GMT Not After : May 11 09:00:32 2027 GMT Subject: CN=E8739EA309540E28351BCECEC6814628EBEAFDD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:56:a8:5b:73:a1:18:57:e9:1a:29:ee:73:6c: cb:a5:4c:a5:b9:e3:53:3b:ab:7b:5f:6a:c4:14:b1: 18:c9:77:2f:ad:78:21:61:16:90:6f:8c:9d:c5:f6: fc:f5:55:c7:61:1f:2f:68:e0:c6:64:27:cd:72:23: 16:06:b6:d5:2b:5f:42:c7:a9:7c:d1:a4:8e:45:27: f2:98:1a:6b:4d:d6:39:db:39:5f:cb:db:a8:86:03: da:d6:69:02:fd:00:46:87:fe:6a:5a:3f:e2:a2:c1: 1c:5a:6c:e7:0b:c6:1b:e2:c9:88:18:de:cd:e2:15: e6:5c:33:a2:ec:fe:5a:f6:a4:34:9a:d4:18:7d:2a: a4:5b:86:1e:f3:d4:99:cc:d4:cf:6b:70:7c:06:f4: 7b:0d:c6:11:8f:2e:2a:f1:9f:96:3d:01:2b:d9:9d: 78:43:c0:41:fb:30:77:be:b4:e4:14:8e:df:dc:63: 4b:f2:08:52:9d:41:02:2b:0e:8d:ce:d1:e6:19:55: 81:69:7e:bb:ce:2e:0b:a4:fc:fc:b6:10:2d:ef:ed: 7e:d8:4f:b3:a1:eb:8d:3b:98:b3:49:d7:79:94:35: 38:ee:88:ff:15:0c:09:11:f7:3b:00:48:a2:b1:29: fe:5d:88:3f:f7:7b:06:85:b5:61:31:ac:21:59:ed: c2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:73:9E:A3:09:54:0E:28:35:1B:CE:CE:C6:81:46:28:EB:EA:FD:D9 X509v3 Authority Key Identifier: keyid:40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e32352e32342e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.24.0/22 Signature Algorithm: sha256WithRSAEncryption a2:88:9b:8e:b1:9b:2b:eb:e9:9a:d8:ef:36:24:58:bd:f1:ff: 92:5b:58:92:19:d9:10:90:e3:5f:c2:3f:3a:7d:f2:ad:d3:2d: 27:bf:e8:ca:33:50:58:0e:bb:54:ab:61:6f:22:66:3c:b2:09: cd:f3:4f:6d:18:3f:36:5f:80:29:d2:50:03:8e:a1:89:87:e7: 05:27:92:8a:5d:fb:45:16:ad:6b:9e:8e:5e:d4:80:d9:e9:24: 8d:2b:57:22:18:45:d5:86:15:42:6c:55:bc:b7:a6:83:c2:a6: 96:79:41:de:3c:a8:97:2a:1a:93:3c:84:4d:0e:93:fa:c2:31: 60:a5:28:e1:38:62:c3:9e:ed:b3:62:a6:4f:26:b1:5a:5b:8b: 5b:ed:33:c5:0d:15:d7:dd:fe:83:f9:e2:8d:57:64:ec:64:ea: 38:47:e9:8b:e3:33:69:69:d3:ff:f3:8f:05:25:44:77:95:40: cf:02:6c:27:ca:0c:3d:79:42:e6:0f:e9:d5:7a:cb:4e:75:da: ab:38:0a:26:95:c4:08:02:42:9d:a7:22:e9:16:7c:fb:dd:a1: f7:4b:0d:b3:56:db:a4:7c:ad:f3:d6:8e:8c:cb:27:6b:c4:42: 2a:e8:85:81:ec:dd:d4:b1:4d:9c:22:09:75:a1:b1:d7:84:18: 69:29:8c:cb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUSzYRggAz6u0LEm+38P6LJpOEfHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIy NkYxNDg3NDAeFw0yNjA1MTIwODU1MzJaFw0yNzA1MTEwOTAwMzJaMDMxMTAvBgNV BAMTKEU4NzM5RUEzMDk1NDBFMjgzNTFCQ0VDRUM2ODE0NjI4RUJFQUZERDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSVqhbc6EYV+kaKe5zbMulTKW5 41M7q3tfasQUsRjJdy+teCFhFpBvjJ3F9vz1VcdhHy9o4MZkJ81yIxYGttUrX0LH qXzRpI5FJ/KYGmtN1jnbOV/L26iGA9rWaQL9AEaH/mpaP+KiwRxabOcLxhviyYgY 3s3iFeZcM6Ls/lr2pDSa1Bh9KqRbhh7z1JnM1M9rcHwG9HsNxhGPLirxn5Y9ASvZ nXhDwEH7MHe+tOQUjt/cY0vyCFKdQQIrDo3O0eYZVYFpfrvOLguk/Py2EC3v7X7Y T7Oh6407mLNJ13mUNTjuiP8VDAkR9zsASKKxKf5diD/3ewaFtWExrCFZ7cKVAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU6HOeowlUDig1G87OxoFGKOvq/dkwHwYDVR0j BBgwFoAUQNhnJtsU+eXgZhCSj/bHcibxSHQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwMzE1NTY2MDYxOTc5My8wLzQwRDg2NzI2REIxNEY5RTVFMDY2MTA5MjhGRjZD NzcyMjZGMTQ4NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIyNkYxNDg3NC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2NTAzMTU1NjYwNjE5NzkzLzAvMzEzMDMzMmUzMjM1 MmUzMjM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnGRgwDQYJKoZIhvcNAQELBQADggEBAKKIm46xmyvr6ZrY7zYkWL3x/5JbWJIZ 2RCQ41/CPzp98q3TLSe/6MozUFgOu1SrYW8iZjyyCc3zT20YPzZfgCnSUAOOoYmH 5wUnkopd+0UWrWuejl7UgNnpJI0rVyIYRdWGFUJsVby3poPCppZ5Qd48qJcqGpM8 hE0Ok/rCMWClKOE4YsOe7bNipk8msVpbi1vtM8UNFdfd/oP54o1XZOxk6jhH6Yvj M2lp0//zjwUlRHeVQM8CbCfKDD15QuYP6dV6y0512qs4CiaVxAgCQp2nIukWfPvd ofdLDbNW26R8rfPWjozLJ2vEQirohYHs3dSxTZwiCXWhsdeEGGkpjMs= -----END CERTIFICATE-----Generated at Wed May 13 07:45:02 2026 by rpki-client