$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3234382e3232342e302f32322d3232203d3e2034383038.roa File: 3130332e3234382e3232342e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: N837z9+HBsxTI6Uc+rr58LHPgeCE0NTZ649dwdA8vII= Subject key identifier: C4:B6:F3:1C:98:7E:DF:8F:12:7A:41:AF:B9:83:6B:57:0E:66:5B:0A Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 2A694C6E943B71E70E2FC678054F6C2B1054FD9C Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3234382e3232342e302f32322d3232203d3e2034383038.roa Signing time: Mon 13 Apr 2026 08:15:03 +0000 ROA not before: Mon 13 Apr 2026 08:10:03 +0000 ROA not after: Mon 12 Apr 2027 08:15:03 +0000 asID: 4808 IP address blocks: 103.248.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:69:4c:6e:94:3b:71:e7:0e:2f:c6:78:05:4f:6c:2b:10:54:fd:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:10:03 2026 GMT Not After : Apr 12 08:15:03 2027 GMT Subject: CN=C4B6F31C987EDF8F127A41AFB9836B570E665B0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4b:8c:2e:15:45:9e:fd:f1:43:b5:a0:3d:38: 10:ba:38:55:71:ba:ce:45:b2:50:92:f9:58:c8:01: 6f:d3:2f:3e:a9:b7:ab:0b:ab:a6:9d:8a:59:50:a5: aa:07:ac:e0:5a:39:0d:84:a2:23:de:e1:f7:77:66: 14:a3:e5:6c:a0:50:3c:26:5c:9e:be:59:a7:d6:63: d1:9d:32:3f:3b:ab:47:11:fd:57:24:1c:25:5a:8f: 2b:37:45:a0:a9:fe:67:c7:b5:a1:61:91:ca:05:1f: cd:22:cb:38:bd:f5:a6:ca:2c:09:e4:08:08:f0:c4: d5:a3:4d:44:08:7b:24:23:db:82:26:77:0d:61:49: d0:2c:b0:e0:b2:99:e5:e2:04:4b:99:ef:d1:c1:ca: b2:8d:ae:e0:44:65:86:10:a3:f2:52:55:7e:ac:b9: ff:f5:21:0f:87:33:04:44:87:45:56:25:b1:3a:c0: b5:37:e1:ab:e4:53:28:4f:3c:b9:54:54:e1:9e:3c: 44:59:c3:60:3a:e1:af:5b:43:27:71:01:0e:14:cc: e6:52:ba:97:af:ce:2c:65:65:b7:69:6f:92:10:56: d2:70:0b:04:ea:43:14:11:fc:c7:2f:fd:62:95:69: ba:27:2a:2d:00:33:ad:3a:f8:cf:12:1e:97:c4:66: 8a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B6:F3:1C:98:7E:DF:8F:12:7A:41:AF:B9:83:6B:57:0E:66:5B:0A X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e3234382e3232342e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.224.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:45:da:35:2e:01:fc:02:6a:e6:d6:0b:d9:d5:c7:62:e9:7c: 08:2f:dc:a7:87:20:e7:21:d8:4a:39:fc:b5:d6:c2:93:bd:b5: 14:d9:b5:95:a2:72:4d:4d:74:85:15:48:2d:d5:87:bc:78:6b: ce:4b:7b:46:3f:33:0f:ae:df:d6:23:70:1a:a7:2f:ea:a1:84: 52:b6:48:39:6b:35:0d:7f:4b:d4:6f:78:b2:bd:c4:98:2c:58: 35:0c:e4:78:1c:16:fb:20:38:ca:25:d3:4a:5c:ee:49:8d:f5: ce:4f:ac:ae:e6:e0:7c:6f:cb:f8:81:52:01:cc:2c:ce:78:07: e8:f9:2a:dc:8d:98:d2:db:c2:e6:99:ec:73:fa:73:25:18:22: b1:5d:5d:b0:78:c0:07:d2:c4:64:ff:8c:49:2f:69:e2:31:b6: 63:1e:d5:be:37:be:4f:5f:12:03:96:27:3e:ce:a9:69:be:c4: 5d:14:e4:ff:4a:c4:4f:e9:e9:55:8c:c4:45:aa:e2:e4:a1:05: 71:e0:36:3e:8c:ff:90:60:73:b7:3c:04:3b:04:c9:f4:29:9c: c7:26:7e:d4:21:51:e3:6d:ce:5d:ec:50:e0:fe:f8:01:94:7b: 7c:01:1d:f3:ed:34:1b:42:61:37:6f:4d:1d:2d:92:fb:85:68: 22:ea:b7:ab -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUKmlMbpQ7cecOL8Z4BU9sKxBU/ZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODEwMDNaFw0yNzA0MTIwODE1MDNaMDMxMTAvBgNV BAMTKEM0QjZGMzFDOTg3RURGOEYxMjdBNDFBRkI5ODM2QjU3MEU2NjVCMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8S4wuFUWe/fFDtaA9OBC6OFVx us5FslCS+VjIAW/TLz6pt6sLq6adillQpaoHrOBaOQ2EoiPe4fd3ZhSj5WygUDwm XJ6+WafWY9GdMj87q0cR/VckHCVajys3RaCp/mfHtaFhkcoFH80iyzi99abKLAnk CAjwxNWjTUQIeyQj24Imdw1hSdAssOCymeXiBEuZ79HByrKNruBEZYYQo/JSVX6s uf/1IQ+HMwREh0VWJbE6wLU34avkUyhPPLlUVOGePERZw2A64a9bQydxAQ4UzOZS upevzixlZbdpb5IQVtJwCwTqQxQR/Mcv/WKVabonKi0AM606+M8SHpfEZor3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUxLbzHJh+348SekGvuYNrVw5mWwowHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk3ODMxNjg4NTY1NTU1NS8wLzMxMzAzMzJlMzIz NDM4MmUzMjMyMzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmf44DANBgkqhkiG9w0BAQsFAAOCAQEAWkXaNS4B/AJq5tYL2dXHYul8 CC/cp4cg5yHYSjn8tdbCk721FNm1laJyTU10hRVILdWHvHhrzkt7Rj8zD67f1iNw Gqcv6qGEUrZIOWs1DX9L1G94sr3EmCxYNQzkeBwW+yA4yiXTSlzuSY31zk+srubg fG/L+IFSAcwszngH6Pkq3I2Y0tvC5pnsc/pzJRgisV1dsHjAB9LEZP+MSS9p4jG2 Yx7Vvje+T18SA5YnPs6pab7EXRTk/0rET+npVYzERari5KEFceA2Poz/kGBztzwE OwTJ9CmcxyZ+1CFR423OXexQ4P74AZR7fAEd8+00G0JhN29NHS2S+4VoIuq3qw== -----END CERTIFICATE-----Generated at Fri Apr 17 18:21:50 2026 by rpki-client