$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106851549713268755/0/3130332e3230322e3133362e302f32322d3232203d3e203137363231.roa File: 3130332e3230322e3133362e302f32322d3232203d3e203137363231.roa (raw, json) Hash identifier: rxdRNY+tzarLotvVeNqPCD1BB+pbFmhIYZ+EWnJDbz0= Subject key identifier: 99:03:64:16:ED:3C:FD:B6:2A:B2:A4:EF:78:0F:A8:4E:C9:84:A3:B1 Certificate issuer: /CN=4D87AFCA5675517956358C896C21C3E70D906F20 Certificate serial: 257C44D25A7F3819EF121B0EE6BD7EF16124C756 Authority key identifier: 4D:87:AF:CA:56:75:51:79:56:35:8C:89:6C:21:C3:E7:0D:90:6F:20 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4D87AFCA5675517956358C896C21C3E70D906F20.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/3130332e3230322e3133362e302f32322d3232203d3e203137363231.roa Signing time: Wed 13 May 2026 10:11:14 +0000 ROA not before: Wed 13 May 2026 10:06:14 +0000 ROA not after: Wed 12 May 2027 10:11:14 +0000 asID: 17621 IP address blocks: 103.202.136.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/4D87AFCA5675517956358C896C21C3E70D906F20.crl rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/4D87AFCA5675517956358C896C21C3E70D906F20.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4D87AFCA5675517956358C896C21C3E70D906F20.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:7c:44:d2:5a:7f:38:19:ef:12:1b:0e:e6:bd:7e:f1:61:24:c7:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4D87AFCA5675517956358C896C21C3E70D906F20 Validity Not Before: May 13 10:06:14 2026 GMT Not After : May 12 10:11:14 2027 GMT Subject: CN=99036416ED3CFDB62AB2A4EF780FA84EC984A3B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4d:dc:84:c6:6e:d0:c6:54:1b:ab:9d:e2:f8: af:a5:a4:07:c4:12:d6:f3:78:ca:6f:4d:d9:8a:fd: 46:38:ef:8c:f9:2a:31:f5:d8:fb:b8:3e:98:e7:55: a9:d7:f8:da:b9:fa:09:b0:0c:05:90:3f:99:34:e3: 3c:dc:91:bb:1e:d9:45:ef:77:ed:25:0c:c4:63:5d: 14:20:7c:3c:c6:23:c4:4e:c1:c9:6b:43:23:6d:0e: ba:75:98:bf:42:ff:ba:b5:17:b4:5e:f9:09:c3:5b: 5b:c9:46:44:8e:54:e0:59:3e:97:13:f9:9b:57:a0: 13:44:fc:c9:35:7c:e6:6b:1f:13:5c:f7:8e:ae:d5: a2:d9:c8:35:2e:13:64:60:ad:15:21:33:de:37:a9: e7:82:40:cb:a7:c8:93:ec:b2:39:eb:06:a7:31:6b: ab:86:9d:2c:97:1e:23:47:4b:1e:1a:90:6d:65:40: 4d:ad:25:9e:18:52:08:08:5d:c3:e5:62:e0:57:7e: 58:49:91:0b:d1:9b:6e:b6:54:a6:36:da:5d:15:69: 19:ab:3a:30:15:e7:74:c4:65:57:b5:5c:5f:87:e6: 30:47:7f:7e:94:bf:69:73:ab:2e:d7:60:58:c6:c3: 86:7d:49:bc:fe:00:4c:89:72:8a:63:79:8b:7b:54: ca:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:03:64:16:ED:3C:FD:B6:2A:B2:A4:EF:78:0F:A8:4E:C9:84:A3:B1 X509v3 Authority Key Identifier: keyid:4D:87:AF:CA:56:75:51:79:56:35:8C:89:6C:21:C3:E7:0D:90:6F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/4D87AFCA5675517956358C896C21C3E70D906F20.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4D87AFCA5675517956358C896C21C3E70D906F20.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106851549713268755/0/3130332e3230322e3133362e302f32322d3232203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.202.136.0/22 Signature Algorithm: sha256WithRSAEncryption a8:95:07:5e:c8:d7:9b:0f:04:c9:14:a9:6e:52:a0:38:d7:12: 45:ca:e5:32:fd:7d:c3:ea:41:84:0e:c6:ea:94:d9:b8:3a:93: 66:d9:2a:bf:83:b9:07:7c:83:15:61:17:01:8b:24:58:0f:9b: e2:cd:dd:f8:75:c4:65:e3:1b:4d:39:82:62:31:9b:36:7e:a8: 05:12:d7:ab:96:24:52:ac:dd:f6:92:37:e1:4a:f7:ac:0f:f5: 0e:cd:26:2a:31:e6:75:f4:d8:ab:35:f0:7d:72:29:4f:fe:65: 38:de:b6:aa:23:06:62:93:46:87:c6:13:bb:fb:b2:26:21:9e: ff:6e:0a:85:d7:d3:90:6e:b5:cc:8b:ec:cb:35:d3:19:65:31: fc:ae:f2:8b:e8:33:d0:f2:a3:09:15:5a:61:59:bc:9d:2d:11: 50:c0:8e:fd:79:6e:3c:04:54:66:20:3a:67:9c:f3:20:97:fc: bd:68:c9:e4:26:cb:8f:89:f2:0f:7a:e9:88:7e:9e:ca:80:ad: 7e:d9:ca:90:d7:0f:37:79:f1:f1:02:a6:f6:32:90:35:db:9f: 31:70:e0:34:86:bc:18:ad:43:3e:b4:3e:c9:28:82:d1:f5:ed: 12:a8:bb:9c:53:14:d1:a6:9d:8d:6a:9b:34:bd:a9:02:19:f4: f3:41:7c:c3 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJXxE0lp/OBnvEhsO5r1+8WEkx1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEQ4N0FGQ0E1Njc1NTE3OTU2MzU4Qzg5NkMyMUMzRTcw RDkwNkYyMDAeFw0yNjA1MTMxMDA2MTRaFw0yNzA1MTIxMDExMTRaMDMxMTAvBgNV BAMTKDk5MDM2NDE2RUQzQ0ZEQjYyQUIyQTRFRjc4MEZBODRFQzk4NEEzQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxTdyExm7QxlQbq53i+K+lpAfE EtbzeMpvTdmK/UY474z5KjH12Pu4PpjnVanX+Nq5+gmwDAWQP5k04zzckbse2UXv d+0lDMRjXRQgfDzGI8ROwclrQyNtDrp1mL9C/7q1F7Re+QnDW1vJRkSOVOBZPpcT +ZtXoBNE/Mk1fOZrHxNc946u1aLZyDUuE2RgrRUhM943qeeCQMunyJPssjnrBqcx a6uGnSyXHiNHSx4akG1lQE2tJZ4YUggIXcPlYuBXflhJkQvRm262VKY22l0VaRmr OjAV53TEZVe1XF+H5jBHf36Uv2lzqy7XYFjGw4Z9Sbz+AEyJcopjeYt7VMqnAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUmQNkFu08/bYqsqTveA+oTsmEo7EwHwYDVR0j BBgwFoAUTYevylZ1UXlWNYyJbCHD5w2QbyAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw Njg1MTU0OTcxMzI2ODc1NS8wLzREODdBRkNBNTY3NTUxNzk1NjM1OEM4OTZDMjFD M0U3MEQ5MDZGMjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNEQ4N0FGQ0E1Njc1NTE3OTU2MzU4Qzg5NkMyMUMzRTcwRDkwNkYyMC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDY4NTE1NDk3MTMyNjg3NTUvMC8zMTMwMzMyZTMy MzAzMjJlMzEzMzM2MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzEzNzM2MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfKiDANBgkqhkiG9w0BAQsFAAOCAQEAqJUHXsjXmw8EyRSpblKg ONcSRcrlMv19w+pBhA7G6pTZuDqTZtkqv4O5B3yDFWEXAYskWA+b4s3d+HXEZeMb TTmCYjGbNn6oBRLXq5YkUqzd9pI34Ur3rA/1Ds0mKjHmdfTYqzXwfXIpT/5lON62 qiMGYpNGh8YTu/uyJiGe/24KhdfTkG61zIvsyzXTGWUx/K7yi+gz0PKjCRVaYVm8 nS0RUMCO/XluPARUZiA6Z5zzIJf8vWjJ5CbLj4nyD3rpiH6eyoCtftnKkNcPN3nx 8QKm9jKQNdufMXDgNIa8GK1DPrQ+ySiC0fXtEqi7nFMU0aadjWqbNL2pAhn080F8 ww== -----END CERTIFICATE-----Generated at Wed May 13 21:34:32 2026 by rpki-client