$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e32352e33362e302f32322d3232203d3e203633363437.roa File: 3130332e32352e33362e302f32322d3232203d3e203633363437.roa (raw, json) Hash identifier: k4MbWp+K5JEc1G46+T+jNoID0eatxChGV6x7pSy5RH4= Subject key identifier: 71:E3:38:F7:FA:78:49:ED:97:1E:20:1B:E1:20:9C:A0:54:C1:CB:DF Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: CA91B287CD51195FF6D7B74231B1DBC42F781D Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e32352e33362e302f32322d3232203d3e203633363437.roa Signing time: Mon 13 Apr 2026 08:15:03 +0000 ROA not before: Mon 13 Apr 2026 08:10:03 +0000 ROA not after: Mon 12 Apr 2027 08:15:03 +0000 asID: 63647 IP address blocks: 103.25.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ca:91:b2:87:cd:51:19:5f:f6:d7:b7:42:31:b1:db:c4:2f:78:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:10:03 2026 GMT Not After : Apr 12 08:15:03 2027 GMT Subject: CN=71E338F7FA7849ED971E201BE1209CA054C1CBDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4a:75:a5:3b:d5:ed:b2:0c:a1:34:72:a0:13: 00:71:5f:4e:17:3d:5e:93:a8:c6:ed:d9:c6:4b:f2: c3:d7:2e:20:de:6b:af:6f:2a:2f:a7:2c:30:d6:c4: 3b:64:a2:ae:c2:21:5e:f9:b0:74:10:87:f5:6e:d1: 2c:87:55:82:f8:61:82:0c:2a:96:2c:74:4e:4f:10: 64:41:99:76:6a:c4:4d:dd:48:00:6d:96:fd:d7:48: 03:05:0e:4a:17:0f:e3:2b:cb:a5:24:26:1e:28:b2: ad:0a:f0:31:4c:fa:3f:21:94:28:51:c5:0c:2f:73: ce:8b:2b:a8:bc:30:63:f7:45:49:47:7d:74:0a:79: 71:98:f9:5c:83:c5:c9:02:38:55:e9:4c:f1:2f:17: c8:ce:50:12:67:7b:87:df:74:5a:e8:a4:93:81:a5: c8:ad:49:b2:d6:14:99:36:99:7b:71:d9:68:7c:e3: d7:de:92:bb:11:7d:61:b9:ce:f8:ee:9d:e5:23:d4: 42:6a:9f:b0:92:cd:32:b4:a9:fc:aa:b8:a8:1b:16: ab:08:da:dc:7f:ef:5c:85:af:99:1e:84:4b:0d:e2: ed:f8:10:ee:7a:59:59:a3:70:02:89:dc:47:d9:2f: 84:b8:fb:e6:0a:ef:2e:ff:bc:e8:f1:fc:82:42:37: 42:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E3:38:F7:FA:78:49:ED:97:1E:20:1B:E1:20:9C:A0:54:C1:CB:DF X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/3130332e32352e33362e302f32322d3232203d3e203633363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.36.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:4b:a0:da:98:04:2b:80:e7:81:34:be:f9:64:1c:fb:c5:89: 5b:d8:17:1c:f7:b1:51:b6:4a:3f:44:07:44:18:14:b4:8e:1d: 2f:83:62:12:16:aa:6a:8a:26:84:93:c3:68:a1:2a:1b:77:75: e0:0c:5b:e7:d7:cc:a3:e4:f3:ec:ff:76:5e:08:bb:33:12:29: f4:3c:b6:b9:43:46:4c:2b:91:65:e8:d2:79:c8:55:b4:43:9f: e8:df:c6:b2:62:75:83:f2:be:e9:f3:02:84:5b:63:67:63:f3: eb:d1:cd:08:f8:84:1b:2b:35:4e:92:52:e4:e7:84:2b:78:0c: c0:3b:7d:ef:29:39:c6:ed:57:fa:8a:21:5e:8e:32:3b:23:16: fb:b6:9c:24:30:33:63:b3:5c:1a:01:bb:34:e6:07:97:d7:67: ff:17:ef:67:57:1a:29:7a:f5:13:f1:c3:e6:8c:bc:0a:8e:91: 56:5e:c0:04:1d:4c:9f:2d:45:c0:02:0b:92:15:3a:fe:23:57: 38:b0:aa:25:1e:36:6c:97:63:60:a6:05:76:3f:ac:1b:cd:1c: 22:46:82:c0:da:c4:0a:e9:b8:4c:dd:db:42:31:9b:7c:be:45: db:59:51:e2:31:58:f5:3c:52:55:b1:d9:8c:6a:e8:43:fb:97: b7:26:01:05 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUAMqRsofNURlf9te3QjGx28QveB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODEwMDNaFw0yNzA0MTIwODE1MDNaMDMxMTAvBgNV BAMTKDcxRTMzOEY3RkE3ODQ5RUQ5NzFFMjAxQkUxMjA5Q0EwNTRDMUNCREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWSnWlO9XtsgyhNHKgEwBxX04X PV6TqMbt2cZL8sPXLiDea69vKi+nLDDWxDtkoq7CIV75sHQQh/Vu0SyHVYL4YYIM KpYsdE5PEGRBmXZqxE3dSABtlv3XSAMFDkoXD+Mry6UkJh4osq0K8DFM+j8hlChR xQwvc86LK6i8MGP3RUlHfXQKeXGY+VyDxckCOFXpTPEvF8jOUBJne4ffdFropJOB pcitSbLWFJk2mXtx2Wh849fekrsRfWG5zvjuneUj1EJqn7CSzTK0qfyquKgbFqsI 2tx/71yFr5kehEsN4u34EO56WVmjcAKJ3EfZL4S4++YK7y7/vOjx/IJCN0IfAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUceM49/p4Se2XHiAb4SCcoFTBy98wHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTc4MzE2ODg1NjU1NTU1LzAvMzEzMDMzMmUzMjM1 MmUzMzM2MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcZJDANBgkqhkiG9w0BAQsFAAOCAQEADUug2pgEK4DngTS++WQc+8WJW9gX HPexUbZKP0QHRBgUtI4dL4NiEhaqaoomhJPDaKEqG3d14Axb59fMo+Tz7P92Xgi7 MxIp9Dy2uUNGTCuRZejSechVtEOf6N/GsmJ1g/K+6fMChFtjZ2Pz69HNCPiEGys1 TpJS5OeEK3gMwDt97yk5xu1X+oohXo4yOyMW+7acJDAzY7NcGgG7NOYHl9dn/xfv Z1caKXr1E/HD5oy8Co6RVl7ABB1Mny1FwAILkhU6/iNXOLCqJR42bJdjYKYFdj+s G80cIkaCwNrECum4TN3bQjGbfL5F21lR4jFY9TxSVbHZjGroQ/uXtyYBBQ== -----END CERTIFICATE-----Generated at Sat Apr 18 01:21:23 2026 by rpki-client