$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3233382e302e302f32322d3332203d3e2034383038.roa File: 3130332e3233382e302e302f32322d3332203d3e2034383038.roa (raw, json) Hash identifier: FkmKF/A15MnCldWsxEeQrn1WOY/6MVmhweo6R2+N9ug= Subject key identifier: EB:44:83:32:55:2A:F6:26:1C:77:58:7B:C9:CD:A3:AC:45:12:CA:C4 Certificate issuer: /CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Certificate serial: 41F2EBEDCB753ABBE014AAA0724FF0418934DC84 Authority key identifier: 20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3233382e302e302f32322d3332203d3e2034383038.roa Signing time: Wed 15 Apr 2026 08:00:56 +0000 ROA not before: Wed 15 Apr 2026 07:55:56 +0000 ROA not after: Wed 14 Apr 2027 08:00:56 +0000 asID: 4808 IP address blocks: 103.238.0.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f2:eb:ed:cb:75:3a:bb:e0:14:aa:a0:72:4f:f0:41:89:34:dc:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Validity Not Before: Apr 15 07:55:56 2026 GMT Not After : Apr 14 08:00:56 2027 GMT Subject: CN=EB448332552AF6261C77587BC9CDA3AC4512CAC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3c:b5:74:9f:8f:9c:6b:14:b1:66:4c:92:d8: 45:1f:e8:8d:8f:11:e5:91:0d:de:dd:84:e9:4f:7e: 36:65:ff:68:33:b6:75:37:aa:01:2f:35:04:e5:b7: f3:59:50:74:4b:bf:8a:f6:1a:ef:73:60:f4:1e:ae: 1e:0d:5d:18:39:40:3d:6a:74:c8:b6:b4:b3:55:71: dc:70:51:b7:aa:f9:73:40:8e:97:3b:05:60:97:4f: d8:55:34:04:e3:38:c0:61:7e:71:40:64:dd:04:54: 9f:ad:3a:7b:be:94:78:49:99:d6:65:bc:fb:59:ef: dd:61:37:e2:22:c2:de:e5:2a:3c:d2:01:9c:e2:c4: 18:1a:6a:25:e8:0f:6b:40:d6:f7:a7:ef:a1:b6:74: dc:8f:6b:77:38:62:9e:1b:55:0d:20:d1:ee:18:3f: 45:13:c8:16:bb:86:81:a1:e7:32:39:9a:99:0c:04: 5b:ef:50:37:f2:1b:a6:1c:a7:62:75:90:56:42:04: 45:ae:62:34:63:55:f7:e3:7f:ee:7c:50:8d:ac:1c: d1:1d:ad:29:33:e8:99:e7:98:9a:2d:83:50:9f:9d: 8c:cc:0e:a1:7f:29:cf:0e:bf:90:c8:3b:c2:cb:5e: 84:69:70:66:58:b2:10:89:4d:7d:37:c9:60:75:e1: 39:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:44:83:32:55:2A:F6:26:1C:77:58:7B:C9:CD:A3:AC:45:12:CA:C4 X509v3 Authority Key Identifier: keyid:20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3233382e302e302f32322d3332203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.0.0/22 Signature Algorithm: sha256WithRSAEncryption 50:ea:e9:73:05:d0:1e:0c:1a:d3:18:b4:79:f7:62:72:72:67: ec:31:58:6a:b6:bf:92:b4:86:66:c6:42:55:d7:54:51:02:de: 3d:d7:ae:dc:2f:13:f2:b3:56:44:ad:22:46:55:62:06:d8:4f: 24:ca:63:eb:ba:1e:9b:d3:fb:7f:4c:a7:90:49:a7:05:f3:ce: 05:df:94:32:27:3c:0c:ed:6d:b0:3a:37:40:64:41:79:07:d4: ac:6b:93:1c:4e:3f:06:04:17:c9:31:6d:a5:d4:75:41:b5:71: 31:e0:a6:2f:83:72:64:3d:2d:6c:95:36:69:84:30:e4:90:44: a1:b3:6e:df:39:c7:72:dd:f4:3e:9d:6d:b9:7b:55:5a:e8:4c: 52:bc:80:1b:f1:0e:6e:ac:9d:41:01:c1:ca:70:dd:54:71:e8: 48:57:c4:fa:26:96:95:92:51:ab:05:83:97:1b:d9:6a:47:ec: 5f:50:ce:4d:e9:d1:05:8d:9a:8c:4f:ad:b3:97:1a:34:ad:46: 7b:75:2b:6e:46:54:7e:04:44:c3:b1:ce:82:20:da:07:03:9d: 61:43:2d:a1:08:00:a9:ab:55:8c:c5:65:61:d4:a0:d6:7c:48: 6f:b6:6c:d9:ff:48:d5:aa:11:49:f2:c5:6c:1a:d5:3e:91:8e: ab:7f:95:5b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUQfLr7ct1OrvgFKqgck/wQYk03IQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3 OEMxRTMxNTAeFw0yNjA0MTUwNzU1NTZaFw0yNzA0MTQwODAwNTZaMDMxMTAvBgNV BAMTKEVCNDQ4MzMyNTUyQUY2MjYxQzc3NTg3QkM5Q0RBM0FDNDUxMkNBQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiPLV0n4+caxSxZkyS2EUf6I2P EeWRDd7dhOlPfjZl/2gztnU3qgEvNQTlt/NZUHRLv4r2Gu9zYPQerh4NXRg5QD1q dMi2tLNVcdxwUbeq+XNAjpc7BWCXT9hVNATjOMBhfnFAZN0EVJ+tOnu+lHhJmdZl vPtZ791hN+Iiwt7lKjzSAZzixBgaaiXoD2tA1ven76G2dNyPa3c4Yp4bVQ0g0e4Y P0UTyBa7hoGh5zI5mpkMBFvvUDfyG6Ycp2J1kFZCBEWuYjRjVffjf+58UI2sHNEd rSkz6JnnmJotg1CfnYzMDqF/Kc8Ov5DIO8LLXoRpcGZYshCJTX03yWB14TmJAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU60SDMlUq9iYcd1h7yc2jrEUSysQwHwYDVR0j BBgwFoAUIMrI5wtcswlOR/8FFiOphXjB4xUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk4NDI5NDc2NzA5OTkwNS8wLzIwQ0FDOEU3MEI1Q0IzMDk0RTQ3RkYwNTE2MjNB OTg1NzhDMUUzMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3OEMxRTMxNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTg0Mjk0NzY3MDk5OTA1LzAvMzEzMDMzMmUzMjMz MzgyZTMwMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn7gAwDQYJKoZIhvcNAQELBQADggEBAFDq6XMF0B4MGtMYtHn3YnJyZ+wxWGq2 v5K0hmbGQlXXVFEC3j3XrtwvE/KzVkStIkZVYgbYTyTKY+u6HpvT+39Mp5BJpwXz zgXflDInPAztbbA6N0BkQXkH1KxrkxxOPwYEF8kxbaXUdUG1cTHgpi+DcmQ9LWyV NmmEMOSQRKGzbt85x3Ld9D6dbbl7VVroTFK8gBvxDm6snUEBwcpw3VRx6EhXxPom lpWSUasFg5cb2WpH7F9Qzk3p0QWNmoxPrbOXGjStRnt1K25GVH4ERMOxzoIg2gcD nWFDLaEIAKmrVYzFZWHUoNZ8SG+2bNn/SNWqEUnyxWwa1T6Rjqt/lVs= -----END CERTIFICATE-----Generated at Fri Apr 17 19:42:13 2026 by rpki-client