$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3234322e3137322e302f32322d3332203d3e203536303438.roa File: 3130332e3234322e3137322e302f32322d3332203d3e203536303438.roa (raw, json) Hash identifier: 8nc7tUDAsYwhhigURDMQwsHhNNYfY1MZLKThQmZ1brU= Subject key identifier: 96:A7:39:64:16:7C:99:4F:37:F3:B2:51:74:A1:34:75:66:FA:65:A8 Certificate issuer: /CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Certificate serial: 4722F596C7499C3A02C77C5512C0C080B1AE6129 Authority key identifier: 20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3234322e3137322e302f32322d3332203d3e203536303438.roa Signing time: Wed 15 Apr 2026 07:51:11 +0000 ROA not before: Wed 15 Apr 2026 07:46:11 +0000 ROA not after: Wed 14 Apr 2027 07:51:11 +0000 asID: 56048 IP address blocks: 103.242.172.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:22:f5:96:c7:49:9c:3a:02:c7:7c:55:12:c0:c0:80:b1:ae:61:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Validity Not Before: Apr 15 07:46:11 2026 GMT Not After : Apr 14 07:51:11 2027 GMT Subject: CN=96A73964167C994F37F3B25174A1347566FA65A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:9a:88:e2:a0:b1:85:81:d2:4c:02:9e:19:0c: 67:3b:07:17:98:70:d0:3f:30:59:15:ca:95:c1:cf: af:b9:23:f6:67:7f:e4:71:a7:14:5e:e1:f4:e5:ce: d0:b4:89:87:cd:42:28:66:31:69:a3:20:14:61:0e: 89:64:dd:1b:1e:77:f8:5f:8d:65:30:9d:f7:a1:b2: b3:35:67:bf:99:dc:77:97:d4:d9:a6:f6:1f:31:6c: 94:d3:12:a1:4a:a7:4d:19:d7:ab:c9:af:e7:17:b0: b6:10:db:71:16:5c:0f:6b:fa:33:bc:3f:ee:fa:13: b3:fa:1a:f3:62:d5:85:aa:fb:a9:84:c4:15:10:01: e0:5f:7a:b9:2f:40:8b:04:50:a5:b8:3f:6f:db:66: f9:1f:71:2a:cb:6e:6a:c0:18:83:05:8a:d8:b6:8c: 39:5d:26:12:29:ca:ab:1f:d6:17:62:ef:a5:bf:fc: 69:cf:aa:77:88:59:c9:91:70:2a:62:86:68:c4:d2: 84:3e:e1:dc:8f:4e:26:a7:84:de:31:c1:b8:ef:f1: 73:1e:82:fc:29:37:e0:9f:e6:cb:94:d1:db:9f:cb: d3:60:52:df:75:63:ed:22:70:f6:8b:2b:94:7f:92: 2f:06:48:95:79:99:6a:c0:3e:5a:36:ca:2b:66:66: f3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A7:39:64:16:7C:99:4F:37:F3:B2:51:74:A1:34:75:66:FA:65:A8 X509v3 Authority Key Identifier: keyid:20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/3130332e3234322e3137322e302f32322d3332203d3e203536303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.172.0/22 Signature Algorithm: sha256WithRSAEncryption 25:f3:54:85:07:4b:70:14:37:d8:da:cc:20:26:f5:56:30:c0: 95:66:28:27:a1:dc:c7:83:7f:c1:9e:30:5c:3a:76:6c:53:cb: 08:e3:69:a6:d8:cd:26:b9:36:69:90:8c:47:c4:ed:a6:cc:c0: 31:7d:20:f4:f2:c3:b6:da:fa:da:33:91:f7:6e:cd:bf:76:d3: 39:3c:ca:16:34:4a:e1:22:ee:7a:16:9e:93:48:ae:64:2e:bf: 6b:49:0d:9a:61:65:93:21:3e:cb:97:aa:e0:7c:f8:b1:71:a1: e8:b9:23:43:c6:26:be:dd:cf:53:46:b2:0e:b5:d7:7b:27:c2: 62:56:1f:27:7a:70:4a:95:8a:9e:9d:8a:76:0b:1d:c1:e5:df: b6:d1:04:e1:7f:56:9c:ba:6d:81:51:eb:95:74:68:3a:e7:2d: 3a:3b:dd:73:85:49:12:85:59:3d:07:b7:82:bb:97:ba:97:f9: a1:5f:58:7e:db:8a:18:08:22:19:d4:c0:dd:b5:b4:9b:68:08: 8d:a2:ec:77:54:f6:54:28:4b:5f:b1:81:78:49:04:5c:0c:71: b0:50:b4:e7:41:79:52:84:d1:9c:e6:bf:18:b3:e0:7e:8e:43: c5:22:72:1e:14:2e:bf:99:9a:99:27:3d:10:ff:78:44:76:9e: e2:55:8a:fb -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIURyL1lsdJnDoCx3xVEsDAgLGuYSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3 OEMxRTMxNTAeFw0yNjA0MTUwNzQ2MTFaFw0yNzA0MTQwNzUxMTFaMDMxMTAvBgNV BAMTKDk2QTczOTY0MTY3Qzk5NEYzN0YzQjI1MTc0QTEzNDc1NjZGQTY1QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUmojioLGFgdJMAp4ZDGc7BxeY cNA/MFkVypXBz6+5I/Znf+RxpxRe4fTlztC0iYfNQihmMWmjIBRhDolk3Rsed/hf jWUwnfehsrM1Z7+Z3HeX1Nmm9h8xbJTTEqFKp00Z16vJr+cXsLYQ23EWXA9r+jO8 P+76E7P6GvNi1YWq+6mExBUQAeBferkvQIsEUKW4P2/bZvkfcSrLbmrAGIMFiti2 jDldJhIpyqsf1hdi76W//GnPqneIWcmRcCpihmjE0oQ+4dyPTianhN4xwbjv8XMe gvwpN+Cf5suU0dufy9NgUt91Y+0icPaLK5R/ki8GSJV5mWrAPlo2yitmZvM5AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUlqc5ZBZ8mU8387JRdKE0dWb6ZagwHwYDVR0j BBgwFoAUIMrI5wtcswlOR/8FFiOphXjB4xUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk4NDI5NDc2NzA5OTkwNS8wLzIwQ0FDOEU3MEI1Q0IzMDk0RTQ3RkYwNTE2MjNB OTg1NzhDMUUzMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3OEMxRTMxNS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5ODQyOTQ3NjcwOTk5MDUvMC8zMTMwMzMyZTMy MzQzMjJlMzEzNzMyMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzUzNjMwMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfyrDANBgkqhkiG9w0BAQsFAAOCAQEAJfNUhQdLcBQ32NrMICb1 VjDAlWYoJ6Hcx4N/wZ4wXDp2bFPLCONpptjNJrk2aZCMR8TtpszAMX0g9PLDttr6 2jOR927Nv3bTOTzKFjRK4SLuehaek0iuZC6/a0kNmmFlkyE+y5eq4Hz4sXGh6Lkj Q8Ymvt3PU0ayDrXXeyfCYlYfJ3pwSpWKnp2KdgsdweXfttEE4X9WnLptgVHrlXRo OuctOjvdc4VJEoVZPQe3gruXupf5oV9YftuKGAgiGdTA3bW0m2gIjaLsd1T2VChL X7GBeEkEXAxxsFC050F5UoTRnOa/GLPgfo5DxSJyHhQuv5mamSc9EP94RHae4lWK +w== -----END CERTIFICATE-----Generated at Fri Apr 17 22:26:44 2026 by rpki-client