$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e32352e32342e302f32322d3232203d3e2034383437.roa File: 3130332e32352e32342e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: d/3TyUOCiGQwH9RjPKTQ6/QBlrP2JdKDV9tmp3Ln7M4= Subject key identifier: 62:CF:8F:61:80:2B:A9:66:BA:EC:12:39:F1:1F:67:7B:C4:3C:E5:E8 Certificate issuer: /CN=40D86726DB14F9E5E06610928FF6C77226F14874 Certificate serial: 04A725EFF7D5E33DF49FD750D5D037F3A9D699F3 Authority key identifier: 40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e32352e32342e302f32322d3232203d3e2034383437.roa Signing time: Tue 12 May 2026 09:00:32 +0000 ROA not before: Tue 12 May 2026 08:55:32 +0000 ROA not after: Tue 11 May 2027 09:00:32 +0000 asID: 4847 IP address blocks: 103.25.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a7:25:ef:f7:d5:e3:3d:f4:9f:d7:50:d5:d0:37:f3:a9:d6:99:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D86726DB14F9E5E06610928FF6C77226F14874 Validity Not Before: May 12 08:55:32 2026 GMT Not After : May 11 09:00:32 2027 GMT Subject: CN=62CF8F61802BA966BAEC1239F11F677BC43CE5E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e0:4b:f5:1b:b6:cd:1c:eb:ff:5e:c1:49:02: 70:7e:2e:d8:a5:09:d3:b2:38:4b:bf:f6:bf:81:f4: 7a:49:60:ba:2e:09:54:4d:63:28:c9:81:7b:03:66: 50:93:fb:40:7f:54:c3:b6:16:44:0a:14:4e:3d:d0: 82:24:fa:b2:cf:67:01:31:47:7b:b4:89:a7:6c:d9: c3:5e:49:e8:36:48:ff:6f:0a:13:12:71:27:01:3c: 0c:ca:f8:c1:ea:64:0e:8f:01:1e:d8:01:c5:a3:9b: 5f:bc:c1:38:81:d8:16:5c:33:6a:67:a8:9a:32:87: 79:89:97:aa:9a:22:e3:60:07:74:20:5e:1b:14:a4: e0:a4:57:11:1d:ae:28:24:89:c7:31:68:2b:12:64: 6a:58:c1:65:5b:9d:a4:79:91:a2:ea:96:cb:07:60: 9e:ea:7f:36:ad:00:74:5c:31:fb:69:2d:67:48:4d: 09:0d:ea:e3:67:87:39:06:aa:d8:88:3c:76:17:fd: e2:a1:40:10:c9:14:84:3b:38:ad:1f:48:de:28:3e: c9:d4:74:f3:99:5f:1e:70:21:76:cf:89:57:31:32: 64:16:b2:91:51:d1:02:61:df:38:74:da:3e:dc:54: 6e:e5:6e:5f:f8:70:64:ce:df:6f:72:f3:ee:c7:84: 2a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CF:8F:61:80:2B:A9:66:BA:EC:12:39:F1:1F:67:7B:C4:3C:E5:E8 X509v3 Authority Key Identifier: keyid:40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/3130332e32352e32342e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.24.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:79:f4:8e:c0:dc:5d:6e:17:b5:e0:67:1e:74:7f:44:d0:70: cb:7a:c3:9a:77:eb:95:52:f8:1b:33:46:65:26:19:55:2e:34: a1:b9:e3:9e:03:ce:49:ae:66:23:df:99:82:ec:78:6b:76:d4: d2:46:e4:49:19:f2:d7:8c:01:01:46:f2:86:12:ed:b2:27:ea: 9a:13:61:ec:1a:a1:a2:90:8a:02:60:00:5a:aa:53:48:0b:38: fe:32:80:de:0e:b7:35:e1:61:a4:19:7c:d5:36:e1:3b:a2:7c: 7e:c1:15:73:06:00:c4:33:9f:02:b0:32:10:97:bc:e0:d5:85: 58:cb:44:82:11:a6:dc:8b:87:39:da:0a:85:f2:8f:cb:58:45: 8c:ab:d9:c6:f6:57:4f:71:df:c8:e3:f6:75:96:cf:62:73:99: 01:14:e2:e4:db:b9:28:ee:df:2d:a5:6b:03:7d:69:23:cd:56: 5a:21:c1:3e:62:ba:4e:24:4f:0e:c5:88:32:8c:0c:96:43:c4: b5:65:86:32:44:e5:d6:07:da:a2:7b:bb:04:ea:f7:b8:b4:66: 59:c9:fe:50:3b:9e:b6:36:46:15:1f:f1:57:b1:91:63:0e:ef: 41:7c:a5:e4:ab:26:6a:9f:92:98:7e:70:4a:30:12:63:3a:93: 5d:aa:d1:76 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUBKcl7/fV4z30n9dQ1dA386nWmfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIy NkYxNDg3NDAeFw0yNjA1MTIwODU1MzJaFw0yNzA1MTEwOTAwMzJaMDMxMTAvBgNV BAMTKDYyQ0Y4RjYxODAyQkE5NjZCQUVDMTIzOUYxMUY2NzdCQzQzQ0U1RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC14Ev1G7bNHOv/XsFJAnB+Ltil CdOyOEu/9r+B9HpJYLouCVRNYyjJgXsDZlCT+0B/VMO2FkQKFE490IIk+rLPZwEx R3u0iads2cNeSeg2SP9vChMScScBPAzK+MHqZA6PAR7YAcWjm1+8wTiB2BZcM2pn qJoyh3mJl6qaIuNgB3QgXhsUpOCkVxEdrigkiccxaCsSZGpYwWVbnaR5kaLqlssH YJ7qfzatAHRcMftpLWdITQkN6uNnhzkGqtiIPHYX/eKhQBDJFIQ7OK0fSN4oPsnU dPOZXx5wIXbPiVcxMmQWspFR0QJh3zh02j7cVG7lbl/4cGTO329y8+7HhCrRAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUYs+PYYArqWa67BI58R9ne8Q85egwHwYDVR0j BBgwFoAUQNhnJtsU+eXgZhCSj/bHcibxSHQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwMzE1NTY2MDYxOTc5My8wLzQwRDg2NzI2REIxNEY5RTVFMDY2MTA5MjhGRjZD NzcyMjZGMTQ4NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIyNkYxNDg3NC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2NTAzMTU1NjYwNjE5NzkzLzAvMzEzMDMzMmUzMjM1 MmUzMjM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnGRgwDQYJKoZIhvcNAQELBQADggEBADp59I7A3F1uF7XgZx50f0TQcMt6w5p3 65VS+BszRmUmGVUuNKG5454DzkmuZiPfmYLseGt21NJG5EkZ8teMAQFG8oYS7bIn 6poTYewaoaKQigJgAFqqU0gLOP4ygN4OtzXhYaQZfNU24TuifH7BFXMGAMQznwKw MhCXvODVhVjLRIIRptyLhznaCoXyj8tYRYyr2cb2V09x38jj9nWWz2JzmQEU4uTb uSju3y2lawN9aSPNVlohwT5iuk4kTw7FiDKMDJZDxLVlhjJE5dYH2qJ7uwTq97i0 ZlnJ/lA7nrY2RhUf8VexkWMO70F8peSrJmqfkph+cEowEmM6k12q0XY= -----END CERTIFICATE-----Generated at Wed May 13 07:38:41 2026 by rpki-client