$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106871076220108819/0/3130332e37302e3232302e302f32322d3232203d3e203633363230.roa File: 3130332e37302e3232302e302f32322d3232203d3e203633363230.roa (raw, json) Hash identifier: 3qFSuhseOlQYOClfmoRUWVSL78nGJzbZToh19IkyDe0= Subject key identifier: D4:62:8A:1D:23:45:9F:FC:AA:CA:CC:42:8C:EE:84:B1:FD:3D:F9:A6 Certificate issuer: /CN=C1686602F57C97BDB7058DB5F05623F79F733F08 Certificate serial: 0F187EADC069853817ED73E866674D6204ABB1DB Authority key identifier: C1:68:66:02:F5:7C:97:BD:B7:05:8D:B5:F0:56:23:F7:9F:73:3F:08 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1686602F57C97BDB7058DB5F05623F79F733F08.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106871076220108819/0/3130332e37302e3232302e302f32322d3232203d3e203633363230.roa Signing time: Wed 13 May 2026 09:21:03 +0000 ROA not before: Wed 13 May 2026 09:16:03 +0000 ROA not after: Wed 12 May 2027 09:21:03 +0000 asID: 63620 IP address blocks: 103.70.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106871076220108819/0/C1686602F57C97BDB7058DB5F05623F79F733F08.crl rsync://rpki-rps.cnnic.cn/repo/A1106871076220108819/0/C1686602F57C97BDB7058DB5F05623F79F733F08.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1686602F57C97BDB7058DB5F05623F79F733F08.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:18:7e:ad:c0:69:85:38:17:ed:73:e8:66:67:4d:62:04:ab:b1:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1686602F57C97BDB7058DB5F05623F79F733F08 Validity Not Before: May 13 09:16:03 2026 GMT Not After : May 12 09:21:03 2027 GMT Subject: CN=D4628A1D23459FFCAACACC428CEE84B1FD3DF9A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:99:68:63:42:45:c8:60:60:66:ad:1c:91: 80:41:06:20:05:6a:6f:f8:da:a6:8e:5c:ca:82:6f: ce:ce:7b:84:35:56:8d:90:48:e1:57:7f:1d:71:58: 26:7d:80:e6:2a:17:6d:63:fd:1c:2d:2a:45:36:c4: 4b:17:7c:90:2f:fb:06:56:aa:a3:3b:78:8c:eb:d6: cd:f0:2a:1e:ba:6e:12:fc:23:c8:47:67:73:bf:7d: 06:37:5d:05:af:70:77:a5:f4:7d:d4:24:40:41:b2: 7d:7c:be:cb:eb:66:fb:f1:2b:15:e4:04:ab:93:ec: ee:fe:70:af:8d:7d:4b:06:ae:42:73:7c:91:f9:03: 53:c3:e7:93:0d:2f:b8:ca:e5:fc:58:72:cd:1e:64: 1d:99:0e:fa:9e:e7:23:41:38:74:e4:d7:2f:5d:c5: 56:0e:cf:3c:8a:d1:65:b2:84:00:ce:d6:2d:13:bb: ae:48:57:5f:f3:70:71:e8:70:e1:ec:74:8c:28:9d: 5c:99:7b:a0:cc:5e:19:33:37:43:fa:68:f3:25:43: 0b:79:d1:7b:bc:a2:4e:ac:c3:37:54:d5:99:d2:35: 2a:b1:4f:84:8d:9e:f2:29:ef:d3:46:ce:b6:cb:73: d2:4d:c9:ce:1b:fd:45:5d:02:76:8b:c3:0d:13:62: f1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:62:8A:1D:23:45:9F:FC:AA:CA:CC:42:8C:EE:84:B1:FD:3D:F9:A6 X509v3 Authority Key Identifier: keyid:C1:68:66:02:F5:7C:97:BD:B7:05:8D:B5:F0:56:23:F7:9F:73:3F:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106871076220108819/0/C1686602F57C97BDB7058DB5F05623F79F733F08.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1686602F57C97BDB7058DB5F05623F79F733F08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106871076220108819/0/3130332e37302e3232302e302f32322d3232203d3e203633363230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.70.220.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:27:37:c9:b1:d7:92:89:23:ff:59:9b:3a:18:6f:cf:e4:a5: 38:d3:47:81:85:48:20:cc:0d:e7:89:d0:2b:83:c3:ad:9a:df: 10:11:2d:92:18:6d:43:1f:a0:d6:ad:29:18:11:b0:41:51:9b: b6:56:7f:9f:4b:32:02:3b:e9:b7:a3:d1:94:77:3f:0e:77:79: 3a:1f:5a:46:11:15:46:7b:6c:20:84:6f:da:7d:f6:83:e9:c1: fe:ea:1b:b6:b5:9a:90:dc:b5:e6:77:4a:9b:89:65:d7:3c:d8: 39:87:30:39:11:6b:b2:e3:77:8f:c5:eb:74:cd:57:89:71:47: a7:b0:ba:ea:17:68:40:3a:3e:7e:f7:d4:bc:c9:ab:d3:cc:6d: 6b:57:ef:84:27:78:81:9a:03:fd:e4:9e:32:8a:66:c6:b3:dd: a5:bc:8a:f0:48:73:90:58:33:a4:3d:78:02:5f:2f:c8:4c:51: 86:e5:65:80:78:4a:25:86:05:25:26:ee:3a:3b:05:2b:f8:61: 29:93:d4:3e:62:d1:07:ce:66:d9:bf:e2:52:0c:d6:4a:c4:1e: f7:37:36:7e:64:60:18:5b:5b:d1:39:16:cd:97:0f:cf:0e:33: 47:8b:eb:b6:14:e8:61:f2:22:1b:1a:fd:d8:e1:b5:84:2b:41: bf:3c:db:24 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUDxh+rcBphTgX7XPoZmdNYgSrsdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzE2ODY2MDJGNTdDOTdCREI3MDU4REI1RjA1NjIzRjc5 RjczM0YwODAeFw0yNjA1MTMwOTE2MDNaFw0yNzA1MTIwOTIxMDNaMDMxMTAvBgNV BAMTKEQ0NjI4QTFEMjM0NTlGRkNBQUNBQ0M0MjhDRUU4NEIxRkQzREY5QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0VploY0JFyGBgZq0ckYBBBiAF am/42qaOXMqCb87Oe4Q1Vo2QSOFXfx1xWCZ9gOYqF21j/RwtKkU2xEsXfJAv+wZW qqM7eIzr1s3wKh66bhL8I8hHZ3O/fQY3XQWvcHel9H3UJEBBsn18vsvrZvvxKxXk BKuT7O7+cK+NfUsGrkJzfJH5A1PD55MNL7jK5fxYcs0eZB2ZDvqe5yNBOHTk1y9d xVYOzzyK0WWyhADO1i0Tu65IV1/zcHHocOHsdIwonVyZe6DMXhkzN0P6aPMlQwt5 0Xu8ok6swzdU1ZnSNSqxT4SNnvIp79NGzrbLc9JNyc4b/UVdAnaLww0TYvFPAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU1GKKHSNFn/yqysxCjO6Esf09+aYwHwYDVR0j BBgwFoAUwWhmAvV8l723BY218FYj959zPwgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw Njg3MTA3NjIyMDEwODgxOS8wL0MxNjg2NjAyRjU3Qzk3QkRCNzA1OERCNUYwNTYy M0Y3OUY3MzNGMDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzE2ODY2MDJGNTdDOTdCREI3MDU4REI1RjA1NjIzRjc5RjczM0YwOC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwNjg3MTA3NjIyMDEwODgxOS8wLzMxMzAzMzJlMzcz MDJlMzIzMjMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzIzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmdG3DANBgkqhkiG9w0BAQsFAAOCAQEAeic3ybHXkokj/1mbOhhvz+Sl ONNHgYVIIMwN54nQK4PDrZrfEBEtkhhtQx+g1q0pGBGwQVGbtlZ/n0syAjvpt6PR lHc/Dnd5Oh9aRhEVRntsIIRv2n32g+nB/uobtrWakNy15ndKm4ll1zzYOYcwORFr suN3j8XrdM1XiXFHp7C66hdoQDo+fvfUvMmr08xta1fvhCd4gZoD/eSeMopmxrPd pbyK8EhzkFgzpD14Al8vyExRhuVlgHhKJYYFJSbuOjsFK/hhKZPUPmLRB85m2b/i UgzWSsQe9zc2fmRgGFtb0TkWzZcPzw4zR4vrthToYfIiGxr92OG1hCtBvzzbJA== -----END CERTIFICATE-----Generated at Wed May 13 21:31:12 2026 by rpki-client