$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230312e3230302e302f32342d3234203d3e20313334373733.roa File: 3130332e3230312e3230302e302f32342d3234203d3e20313334373733.roa (raw, json) Hash identifier: 17F7UcNFKQXj1iKtTQLKlR3KVVkEcil2JVEG7HWBZao= Subject key identifier: 73:E9:13:C4:B6:CE:9D:E7:85:B8:23:AC:90:1D:3A:56:C6:4B:65:26 Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 30FF429656E43F51E06FD17EB016C737EF1CFA09 Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230312e3230302e302f32342d3234203d3e20313334373733.roa Signing time: Fri 17 Apr 2026 02:24:46 +0000 ROA not before: Fri 17 Apr 2026 02:19:46 +0000 ROA not after: Fri 16 Apr 2027 02:24:46 +0000 asID: 134773 IP address blocks: 103.201.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ff:42:96:56:e4:3f:51:e0:6f:d1:7e:b0:16:c7:37:ef:1c:fa:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 02:19:46 2026 GMT Not After : Apr 16 02:24:46 2027 GMT Subject: CN=73E913C4B6CE9DE785B823AC901D3A56C64B6526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:db:76:b9:67:97:8b:25:91:42:7c:fa:53:64: df:f5:8e:b8:8f:d8:a9:1b:28:81:1c:e1:26:cb:ea: 1e:66:84:92:bf:42:5d:80:ec:f4:0e:8a:71:82:fc: a5:39:6b:19:40:6b:ca:0e:52:56:b9:09:22:d6:c5: cf:e4:5d:48:10:56:c6:36:08:66:25:03:40:9e:a7: c6:5a:2d:2e:00:7c:93:a6:c8:b8:12:38:a8:ca:45: ba:92:97:0f:8a:dc:bd:c1:ac:b4:a7:b2:5a:cd:d9: 17:41:18:e2:12:c6:6a:8b:04:d1:01:1d:02:48:d4: 20:4b:f3:06:a6:06:1d:90:ad:a7:c1:ff:5f:cc:34: 6e:02:3d:68:4a:9a:c3:83:8c:89:e5:bc:bb:65:62: c0:b0:a0:46:45:b4:4d:01:46:fd:af:92:7b:f8:be: a3:48:5b:f6:83:96:78:71:c1:61:7c:b0:a4:70:4f: b7:ce:f9:91:cc:90:0d:40:2a:03:db:b0:99:c7:1e: 8e:b9:81:7d:e7:90:3f:5d:38:67:87:07:ca:1e:0b: d9:62:7d:43:2a:15:7d:2f:7b:e3:93:7e:ce:df:14: c1:0f:c2:79:7c:d9:89:93:b2:f5:5b:87:fc:c7:85: fa:80:7b:5d:f7:b7:c9:3c:49:27:7f:55:62:4a:6c: 49:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E9:13:C4:B6:CE:9D:E7:85:B8:23:AC:90:1D:3A:56:C6:4B:65:26 X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/3130332e3230312e3230302e302f32342d3234203d3e20313334373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.201.200.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:dd:5e:0c:d4:30:30:97:87:ea:38:a5:32:6c:7b:ec:f9:30: ba:ae:b7:dd:8f:1e:32:3d:03:51:4a:52:fb:e6:9e:14:08:e0: a5:57:10:87:fe:7a:de:39:a1:da:b5:88:e6:8b:82:d1:70:5e: 0b:77:cd:4a:65:07:85:a6:2a:a4:c2:2f:24:80:a2:2b:3d:f4: 3f:30:c8:81:d6:3c:53:bc:3c:fc:c3:53:9f:48:fa:fb:17:76: f7:8d:cb:ce:cc:22:c7:5e:f3:2a:a3:84:d4:d7:c9:01:31:ec: 61:21:a9:f3:00:71:df:2e:8c:e4:e5:0b:df:fa:39:2a:19:91: 7e:36:a6:43:45:fc:77:c6:a9:83:cd:7d:3f:d6:2a:ed:b9:49: 91:c8:18:fd:3b:2f:fc:a8:7a:85:e5:36:df:50:12:53:e5:ce: 57:ff:95:62:cb:6b:e8:7a:8e:40:74:9b:fe:a0:fd:79:3e:59: a6:15:d8:8e:76:0f:69:52:1a:9c:00:c9:86:bc:9b:00:e7:6c: 02:30:30:dc:c4:70:2e:02:4a:5d:ca:c9:25:0a:7a:57:1a:7a: f0:73:b1:2b:06:33:52:38:0f:1f:37:4a:b6:3b:8d:c3:cb:93: 4e:78:71:8e:4c:35:40:8e:24:b2:f7:24:a7:ba:bc:87:5d:e3: 30:5d:b7:71 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUMP9CllbkP1Hgb9F+sBbHN+8c+gkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcwMjE5NDZaFw0yNzA0MTYwMjI0NDZaMDMxMTAvBgNV BAMTKDczRTkxM0M0QjZDRTlERTc4NUI4MjNBQzkwMUQzQTU2QzY0QjY1MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP23a5Z5eLJZFCfPpTZN/1jriP 2KkbKIEc4SbL6h5mhJK/Ql2A7PQOinGC/KU5axlAa8oOUla5CSLWxc/kXUgQVsY2 CGYlA0Cep8ZaLS4AfJOmyLgSOKjKRbqSlw+K3L3BrLSnslrN2RdBGOISxmqLBNEB HQJI1CBL8wamBh2QrafB/1/MNG4CPWhKmsODjInlvLtlYsCwoEZFtE0BRv2vknv4 vqNIW/aDlnhxwWF8sKRwT7fO+ZHMkA1AKgPbsJnHHo65gX3nkD9dOGeHB8oeC9li fUMqFX0ve+OTfs7fFMEPwnl82YmTsvVbh/zHhfqAe133t8k8SSd/VWJKbElzAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUc+kTxLbOneeFuCOskB06VsZLZSYwHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc2NzIzMzcyMTc5NDU4LzAvMzEzMDMzMmUz MjMwMzEyZTMyMzAzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3Mzcz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfJyDANBgkqhkiG9w0BAQsFAAOCAQEAHt1eDNQwMJeH6jil Mmx77Pkwuq633Y8eMj0DUUpS++aeFAjgpVcQh/563jmh2rWI5ouC0XBeC3fNSmUH haYqpMIvJICiKz30PzDIgdY8U7w8/MNTn0j6+xd2943Lzswix17zKqOE1NfJATHs YSGp8wBx3y6M5OUL3/o5KhmRfjamQ0X8d8apg819P9Yq7blJkcgY/Tsv/Kh6heU2 31ASU+XOV/+VYstr6HqOQHSb/qD9eT5ZphXYjnYPaVIanADJhrybAOdsAjAw3MRw LgJKXcrJJQp6Vxp68HOxKwYzUjgPHzdKtjuNw8uTTnhxjkw1QI4ksvckp7q8h13j MF23cQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:12:24 2026 by rpki-client