$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3233392e3139322e302f32322d3232203d3e203633363437.roa File: 3130332e3233392e3139322e302f32322d3232203d3e203633363437.roa (raw, json) Hash identifier: 2Tx+wGnKtJjrb5XdkXXoAiLeZpa4vCKZ9QkGtOmMhQw= Subject key identifier: 57:5A:C1:5E:EF:F6:6E:74:AD:36:7B:D7:42:08:F1:8F:E1:27:44:09 Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 32D9FF078BFA35F4E0D48688A1E1C982207548E6 Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3233392e3139322e302f32322d3232203d3e203633363437.roa Signing time: Mon 13 Apr 2026 08:15:03 +0000 ROA not before: Mon 13 Apr 2026 08:10:03 +0000 ROA not after: Mon 12 Apr 2027 08:15:03 +0000 asID: 63647 IP address blocks: 103.239.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:d9:ff:07:8b:fa:35:f4:e0:d4:86:88:a1:e1:c9:82:20:75:48:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:10:03 2026 GMT Not After : Apr 12 08:15:03 2027 GMT Subject: CN=575AC15EEFF66E74AD367BD74208F18FE1274409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:ce:d2:52:1c:2a:6d:e0:d5:37:04:57:4c:b8: f2:33:68:71:4a:b8:40:14:ad:2c:22:fe:76:c1:51: 87:c9:2f:87:6f:aa:bf:b7:a9:07:84:c7:c3:1e:c4: 2c:9e:e1:6e:13:84:1e:28:a2:35:13:7f:a4:ad:94: 57:10:64:6b:a1:18:a2:a9:b3:f9:29:f6:be:a8:a2: 52:f3:1e:7c:eb:fa:9c:f2:80:50:f4:58:65:d8:91: 86:1c:ca:72:25:89:de:71:69:14:00:d8:f6:3a:14: 35:ff:28:bf:51:32:bb:8e:a7:0e:2a:ef:1f:fc:10: d4:96:06:5c:ee:59:8b:6e:04:50:2e:12:ff:d4:91: 41:1f:67:40:f9:b9:f0:ef:fb:76:7a:98:09:a4:a4: 7e:b0:84:d9:ac:92:2f:45:c9:44:4d:4b:ec:49:04: 11:53:ed:be:1d:12:00:d2:b5:18:a7:c0:d6:89:7c: 15:a8:9c:2b:cb:bb:cf:2c:d0:8b:cf:d0:7a:40:ba: df:2f:18:8e:85:4f:aa:d4:5d:71:8b:db:fd:f5:67: 01:d3:c1:af:34:5f:cf:77:78:cd:da:98:e7:3a:aa: 29:3c:13:37:72:a8:36:0b:32:c1:85:d2:5d:6d:76: b0:ee:3c:88:ca:33:0d:02:8c:39:bd:93:7e:27:51: e7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:5A:C1:5E:EF:F6:6E:74:AD:36:7B:D7:42:08:F1:8F:E1:27:44:09 X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3233392e3139322e302f32322d3232203d3e203633363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.192.0/22 Signature Algorithm: sha256WithRSAEncryption 27:5d:bf:a8:a0:df:7d:be:bf:48:2f:50:d3:a6:a1:80:07:8e: f4:64:22:21:59:99:05:61:68:53:2c:7f:ce:a6:cc:62:3f:61: dc:8b:4d:ae:a7:ff:65:ec:2c:1e:84:da:64:72:57:af:1d:18: 84:21:d3:50:9a:af:f3:27:b1:da:00:20:52:8b:b8:78:65:94: af:c3:27:8d:cc:ec:2f:8e:f7:62:7b:03:67:08:4e:fa:f1:79: bd:d8:dc:f8:7e:4a:55:8a:d6:1b:9a:c4:16:00:59:03:c8:49: 89:50:00:15:e9:e5:b2:93:0e:ce:2b:51:4a:dd:03:2d:94:e7: 07:78:3d:26:18:5c:41:87:c0:b1:4d:42:c6:fa:1a:97:d4:f5: f0:fb:5a:e1:8a:68:62:9f:53:24:44:88:37:ec:0d:66:d5:a4: b4:70:4b:4d:f4:47:3c:83:03:2d:4e:ea:a7:95:41:44:ab:8e: 77:f7:d1:b5:6e:77:a2:ab:b4:63:b6:07:1e:8f:21:d1:fc:66: e1:dc:27:d0:58:f9:ee:6f:25:bb:10:cd:64:4c:bd:94:03:c5: 7c:27:f1:bd:f7:e1:da:c2:59:f7:bd:8f:76:9c:7c:94:dd:58: 31:5d:ce:13:85:b5:35:b9:e1:7d:b2:e9:25:f6:6b:27:93:66: f4:4a:83:34 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUMtn/B4v6NfTg1IaIoeHJgiB1SOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODEwMDNaFw0yNzA0MTIwODE1MDNaMDMxMTAvBgNV BAMTKDU3NUFDMTVFRUZGNjZFNzRBRDM2N0JENzQyMDhGMThGRTEyNzQ0MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9ztJSHCpt4NU3BFdMuPIzaHFK uEAUrSwi/nbBUYfJL4dvqr+3qQeEx8MexCye4W4ThB4oojUTf6StlFcQZGuhGKKp s/kp9r6oolLzHnzr+pzygFD0WGXYkYYcynIlid5xaRQA2PY6FDX/KL9RMruOpw4q 7x/8ENSWBlzuWYtuBFAuEv/UkUEfZ0D5ufDv+3Z6mAmkpH6whNmski9FyURNS+xJ BBFT7b4dEgDStRinwNaJfBWonCvLu88s0IvP0HpAut8vGI6FT6rUXXGL2/31ZwHT wa80X893eM3amOc6qik8EzdyqDYLMsGF0l1tdrDuPIjKMw0CjDm9k34nUeeTAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUV1rBXu/2bnStNnvXQgjxj+EnRAkwHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5NzgzMTY4ODU2NTU1NTUvMC8zMTMwMzMyZTMy MzMzOTJlMzEzOTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfvwDANBgkqhkiG9w0BAQsFAAOCAQEAJ12/qKDffb6/SC9Q06ah gAeO9GQiIVmZBWFoUyx/zqbMYj9h3ItNrqf/ZewsHoTaZHJXrx0YhCHTUJqv8yex 2gAgUou4eGWUr8MnjczsL473YnsDZwhO+vF5vdjc+H5KVYrWG5rEFgBZA8hJiVAA FenlspMOzitRSt0DLZTnB3g9JhhcQYfAsU1Cxvoal9T18Pta4YpoYp9TJESIN+wN ZtWktHBLTfRHPIMDLU7qp5VBRKuOd/fRtW53oqu0Y7YHHo8h0fxm4dwn0Fj57m8l uxDNZEy9lAPFfCfxvffh2sJZ972Pdpx8lN1YMV3OE4W1NbnhfbLpJfZrJ5Nm9EqD NA== -----END CERTIFICATE-----Generated at Sat Apr 18 01:20:52 2026 by rpki-client