$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106851549713268755/0/3130332e3230322e3133322e302f32322d3232203d3e203137363231.roa File: 3130332e3230322e3133322e302f32322d3232203d3e203137363231.roa (raw, json) Hash identifier: Aumh8y6o3pI4V0y50hbJeWvUeM3D1va9c/SvCsdC0L8= Subject key identifier: 2C:C6:73:7B:38:ED:D4:D0:CD:4A:38:73:DB:71:6E:DA:1D:EF:B6:94 Certificate issuer: /CN=4D87AFCA5675517956358C896C21C3E70D906F20 Certificate serial: 3D98D4433C544C12311423811E01F8EE765CCAEA Authority key identifier: 4D:87:AF:CA:56:75:51:79:56:35:8C:89:6C:21:C3:E7:0D:90:6F:20 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4D87AFCA5675517956358C896C21C3E70D906F20.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/3130332e3230322e3133322e302f32322d3232203d3e203137363231.roa Signing time: Wed 13 May 2026 10:11:15 +0000 ROA not before: Wed 13 May 2026 10:06:15 +0000 ROA not after: Wed 12 May 2027 10:11:15 +0000 asID: 17621 IP address blocks: 103.202.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/4D87AFCA5675517956358C896C21C3E70D906F20.crl rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/4D87AFCA5675517956358C896C21C3E70D906F20.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4D87AFCA5675517956358C896C21C3E70D906F20.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:98:d4:43:3c:54:4c:12:31:14:23:81:1e:01:f8:ee:76:5c:ca:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D87AFCA5675517956358C896C21C3E70D906F20 Validity Not Before: May 13 10:06:15 2026 GMT Not After : May 12 10:11:15 2027 GMT Subject: CN=2CC6737B38EDD4D0CD4A3873DB716EDA1DEFB694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:40:a6:95:f7:f3:fa:fb:09:a8:e9:55:b4:16: 8e:bd:4f:a5:2f:75:23:bb:35:44:b3:0b:af:3c:14: 97:46:f5:cf:4c:25:ce:fe:09:33:08:39:5d:49:7f: 38:66:9b:c8:5c:f3:14:19:d0:0d:1b:3b:6f:60:a5: ec:77:44:11:db:a6:a5:bc:f8:76:95:93:60:3b:d5: 04:c1:4b:32:1e:e8:75:a9:c1:de:88:a3:70:81:f6: 34:a2:49:7e:24:a7:77:c5:65:6a:06:00:75:36:c6: 6c:ed:08:ea:81:83:61:4f:8f:bc:70:ea:9f:03:a2: 96:f2:d5:08:d4:5c:51:88:b2:0e:57:5d:51:02:bd: 6c:c4:33:c5:5f:f2:00:2e:00:cc:05:b0:ba:65:66: 22:bc:16:fe:92:07:cb:83:20:cf:35:f1:61:ab:2b: c0:8a:67:37:94:50:18:95:1c:83:2e:d7:f1:f4:00: e8:53:d1:46:35:b2:2a:b8:ad:f8:c6:66:d2:97:32: ef:77:4e:5d:3a:04:73:16:22:66:4a:86:9a:b2:6d: 3a:cb:8f:a1:cf:17:07:2a:af:91:6e:93:25:cf:3d: 23:18:83:ff:5b:ff:42:9c:49:c1:ce:60:7a:33:9b: 0d:86:18:2a:54:25:b8:d7:67:40:09:86:81:5a:66: c7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C6:73:7B:38:ED:D4:D0:CD:4A:38:73:DB:71:6E:DA:1D:EF:B6:94 X509v3 Authority Key Identifier: keyid:4D:87:AF:CA:56:75:51:79:56:35:8C:89:6C:21:C3:E7:0D:90:6F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/4D87AFCA5675517956358C896C21C3E70D906F20.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4D87AFCA5675517956358C896C21C3E70D906F20.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/3130332e3230322e3133322e302f32322d3232203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.202.132.0/22 Signature Algorithm: sha256WithRSAEncryption 24:56:5d:2e:c7:1b:05:b7:7b:af:e4:03:c2:1a:ec:f6:c8:a6: 37:82:75:2e:64:5c:4d:90:c0:c5:d1:d6:23:94:cc:bc:4b:a2: f5:3c:ee:5f:7f:ce:cd:ee:75:66:47:02:f1:78:d5:90:d4:54: 1f:61:ec:b4:ed:41:c6:08:91:a3:75:2d:54:6d:17:ad:06:2a: 21:e1:ba:d3:0b:9e:98:1a:76:a2:c3:fc:52:b1:7b:67:92:ea: 9d:dd:22:12:2c:cc:20:8b:63:11:ec:5a:2a:e8:b2:d4:df:e5: dd:06:5a:50:47:3b:d5:b5:52:b2:74:8c:38:4e:0a:c6:08:9f: e1:3f:2d:2a:b1:31:89:14:2a:90:7c:bd:4d:13:12:c2:e3:02: 5f:2a:5b:4f:25:d6:d4:9c:97:9a:91:91:25:6f:98:64:bb:9f: fa:31:f8:79:d2:45:cf:40:dc:a3:dc:10:d4:de:32:4a:13:6d: ec:93:7c:fd:5e:a6:77:f5:ff:13:e5:2e:da:50:59:4a:d0:d2: 00:e1:24:16:57:64:7d:43:81:7f:33:d7:e6:92:3c:7e:a8:98: 2a:70:1d:ae:67:56:a7:d8:1d:11:7c:97:45:de:3f:69:76:8d: b7:16:69:39:19:09:13:0a:ac:0f:bb:af:6d:ab:33:c9:7b:da: 04:87:64:53 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUPZjUQzxUTBIxFCOBHgH47nZcyuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ4N0FGQ0E1Njc1NTE3OTU2MzU4Qzg5NkMyMUMzRTcw RDkwNkYyMDAeFw0yNjA1MTMxMDA2MTVaFw0yNzA1MTIxMDExMTVaMDMxMTAvBgNV BAMTKDJDQzY3MzdCMzhFREQ0RDBDRDRBMzg3M0RCNzE2RURBMURFRkI2OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDQKaV9/P6+wmo6VW0Fo69T6Uv dSO7NUSzC688FJdG9c9MJc7+CTMIOV1Jfzhmm8hc8xQZ0A0bO29gpex3RBHbpqW8 +HaVk2A71QTBSzIe6HWpwd6Io3CB9jSiSX4kp3fFZWoGAHU2xmztCOqBg2FPj7xw 6p8Dopby1QjUXFGIsg5XXVECvWzEM8Vf8gAuAMwFsLplZiK8Fv6SB8uDIM818WGr K8CKZzeUUBiVHIMu1/H0AOhT0UY1siq4rfjGZtKXMu93Tl06BHMWImZKhpqybTrL j6HPFwcqr5FukyXPPSMYg/9b/0KcScHOYHozmw2GGCpUJbjXZ0AJhoFaZscNAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQULMZzezjt1NDNSjhz23Fu2h3vtpQwHwYDVR0j BBgwFoAUTYevylZ1UXlWNYyJbCHD5w2QbyAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw Njg1MTU0OTcxMzI2ODc1NS8wLzREODdBRkNBNTY3NTUxNzk1NjM1OEM4OTZDMjFD M0U3MEQ5MDZGMjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNEQ4N0FGQ0E1Njc1NTE3OTU2MzU4Qzg5NkMyMUMzRTcwRDkwNkYyMC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDY4NTE1NDk3MTMyNjg3NTUvMC8zMTMwMzMyZTMy MzAzMjJlMzEzMzMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzEzNzM2MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfKhDANBgkqhkiG9w0BAQsFAAOCAQEAJFZdLscbBbd7r+QDwhrs 9simN4J1LmRcTZDAxdHWI5TMvEui9TzuX3/Oze51ZkcC8XjVkNRUH2HstO1BxgiR o3UtVG0XrQYqIeG60wuemBp2osP8UrF7Z5Lqnd0iEizMIItjEexaKuiy1N/l3QZa UEc71bVSsnSMOE4Kxgif4T8tKrExiRQqkHy9TRMSwuMCXypbTyXW1JyXmpGRJW+Y ZLuf+jH4edJFz0Dco9wQ1N4yShNt7JN8/V6md/X/E+Uu2lBZStDSAOEkFldkfUOB fzPX5pI8fqiYKnAdrmdWp9gdEXyXRd4/aXaNtxZpORkJEwqsD7uvbaszyXvaBIdk Uw== -----END CERTIFICATE-----Generated at Wed May 13 21:34:32 2026 by rpki-client