$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e39382e3134302e302f32322d3232203d3e2030.roa File: 3130332e39382e3134302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: Y9sf84+fAszlhep7q+8Ds3vCaiFGorbRH2e+flwWA6g= Subject key identifier: D0:43:C2:39:23:52:81:4C:26:98:50:02:14:7D:83:B8:25:40:11:A1 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 39C64DEC07510454E0499D466969430D74575DA3 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e39382e3134302e302f32322d3232203d3e2030.roa Signing time: Tue 14 Apr 2026 07:10:33 +0000 ROA not before: Tue 14 Apr 2026 07:05:33 +0000 ROA not after: Tue 13 Apr 2027 07:10:33 +0000 asID: 0 IP address blocks: 103.98.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 15:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:c6:4d:ec:07:51:04:54:e0:49:9d:46:69:69:43:0d:74:57:5d:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:05:33 2026 GMT Not After : Apr 13 07:10:33 2027 GMT Subject: CN=D043C2392352814C26985002147D83B8254011A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:65:ff:03:d2:40:51:54:28:07:03:d8:d0:8d: 1c:ad:4b:dc:8b:c5:b3:77:f6:10:b8:18:4f:d0:11: 06:10:32:7d:da:a5:8d:46:78:75:b9:91:61:0b:22: 4c:9e:42:c7:de:bf:fb:9b:fb:1f:91:d8:53:96:0f: 2f:5a:0e:af:85:aa:56:cc:8e:cf:c7:08:b2:a1:27: 86:ca:a3:ef:4d:03:c5:e1:ba:7e:c5:1d:54:6b:a3: c6:71:94:cd:ac:b5:4d:58:8c:62:84:5f:e9:e6:75: 29:8e:9a:ed:76:21:60:51:c2:ca:e5:1f:67:6d:60: 83:e2:51:26:1c:5f:99:9a:b6:dc:c5:aa:be:35:50: 64:c1:b0:36:dd:f6:1c:87:94:03:6c:85:65:b5:86: f1:b4:02:09:50:48:f5:35:6d:58:5c:a1:5d:65:e2: 0f:dd:47:49:fc:6c:25:a3:6c:50:d7:16:0c:13:c1: 3b:1f:18:33:b0:b2:0b:5c:d5:82:f2:18:9d:62:38: 52:38:52:69:7d:37:68:72:7b:1c:f9:a2:7d:87:9e: aa:32:dc:8d:04:0a:bb:13:93:16:32:ff:f7:0f:e8: 00:4a:97:e7:7b:90:1a:f3:b6:4e:39:45:49:fe:b3: cd:fe:45:2e:c8:9a:e6:d9:7d:b0:c6:75:a1:a8:b5: ab:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:43:C2:39:23:52:81:4C:26:98:50:02:14:7D:83:B8:25:40:11:A1 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/3130332e39382e3134302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.140.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:0b:f7:e1:46:d1:1b:b5:5d:34:34:ef:77:87:58:e2:f6:45: e6:5c:08:f3:3b:fe:d6:9b:14:13:1c:c6:6e:16:f4:3e:e1:0a: 26:12:4c:c4:6e:e8:f4:65:78:e5:16:bf:fe:1b:36:56:84:0f: 78:62:36:e6:c9:31:67:18:29:a2:76:8e:c3:b9:93:5b:4c:b4: a0:b4:d7:af:65:16:ce:2b:22:0d:47:24:03:31:ee:91:15:a0: df:38:b4:cf:11:24:ea:67:86:44:ad:96:3d:d2:9e:f5:7f:6a: 79:31:96:c1:68:e6:d7:6e:fa:a6:58:e0:19:df:6d:41:c0:0d: a4:82:48:ed:1c:4b:ed:1c:7f:a1:fd:1f:3d:6e:5f:65:fe:01: fa:93:04:e9:a2:87:b1:3d:bc:ac:ac:43:7c:41:e7:fd:b7:7c: 94:06:7c:aa:34:18:6e:82:80:40:ae:12:a6:61:1b:3f:52:d0: 2d:2a:e8:88:36:c5:71:4c:75:df:d8:fd:6e:2e:54:fd:36:86: 17:c1:ab:f9:83:75:5a:d6:92:ae:c2:c5:9a:e9:c1:26:c6:4e: 86:9f:f1:4c:41:45:5c:d5:bb:a7:44:ec:4f:07:b4:14:99:49: c8:5c:44:52:21:62:5f:2a:24:a8:7b:2d:ff:60:74:31:e8:9f: df:a2:fc:4d -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUOcZN7AdRBFTgSZ1GaWlDDXRXXaMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzA1MzNaFw0yNzA0MTMwNzEwMzNaMDMxMTAvBgNV BAMTKEQwNDNDMjM5MjM1MjgxNEMyNjk4NTAwMjE0N0Q4M0I4MjU0MDExQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD8Zf8D0kBRVCgHA9jQjRytS9yL xbN39hC4GE/QEQYQMn3apY1GeHW5kWELIkyeQsfev/ub+x+R2FOWDy9aDq+FqlbM js/HCLKhJ4bKo+9NA8Xhun7FHVRro8ZxlM2stU1YjGKEX+nmdSmOmu12IWBRwsrl H2dtYIPiUSYcX5mattzFqr41UGTBsDbd9hyHlANshWW1hvG0AglQSPU1bVhcoV1l 4g/dR0n8bCWjbFDXFgwTwTsfGDOwsgtc1YLyGJ1iOFI4Uml9N2hyexz5on2Hnqoy 3I0ECrsTkxYy//cP6ABKl+d7kBrztk45RUn+s83+RS7ImubZfbDGdaGotavNAgMB AAGjggILMIICBzAdBgNVHQ4EFgQU0EPCOSNSgUwmmFACFH2DuCVAEaEwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzEzMDMzMmUzOTM4 MmUzMTM0MzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdi jDANBgkqhkiG9w0BAQsFAAOCAQEALwv34UbRG7VdNDTvd4dY4vZF5lwI8zv+1psU ExzGbhb0PuEKJhJMxG7o9GV45Ra//hs2VoQPeGI25skxZxgponaOw7mTW0y0oLTX r2UWzisiDUckAzHukRWg3zi0zxEk6meGRK2WPdKe9X9qeTGWwWjm1276pljgGd9t QcANpIJI7RxL7Rx/of0fPW5fZf4B+pME6aKHsT28rKxDfEHn/bd8lAZ8qjQYboKA QK4SpmEbP1LQLSroiDbFcUx139j9bi5U/TaGF8Gr+YN1WtaSrsLFmunBJsZOhp/x TEFFXNW7p0TsTwe0FJlJyFxEUiFiXyokqHst/2B0Meif36L8TQ== -----END CERTIFICATE-----Generated at Thu Apr 16 22:36:09 2026 by rpki-client