$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096638331497742338/0/3130332e352e33362e302f32322d3232203d3e20313436383034.roa File: 3130332e352e33362e302f32322d3232203d3e20313436383034.roa (raw, json) Hash identifier: COjqgWsphuImH4PxuZavaGMWKv5+Mn4I1naiAEbTGvw= Subject key identifier: 19:03:BC:A1:E0:7D:47:46:25:FE:C5:82:58:65:14:D6:16:31:E1:C4 Certificate issuer: /CN=A885AC793FB5E02C3AF1358C8DD23412EA28CC0B Certificate serial: 43E84FC73C0DAD067A1CFA659A4F5A76F3B3661E Authority key identifier: A8:85:AC:79:3F:B5:E0:2C:3A:F1:35:8C:8D:D2:34:12:EA:28:CC:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A885AC793FB5E02C3AF1358C8DD23412EA28CC0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096638331497742338/0/3130332e352e33362e302f32322d3232203d3e20313436383034.roa Signing time: Wed 15 Apr 2026 03:32:43 +0000 ROA not before: Wed 15 Apr 2026 03:27:43 +0000 ROA not after: Wed 14 Apr 2027 03:32:43 +0000 asID: 146804 IP address blocks: 103.5.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096638331497742338/0/A885AC793FB5E02C3AF1358C8DD23412EA28CC0B.crl rsync://rpki-rps.cnnic.cn/repo/A1096638331497742338/0/A885AC793FB5E02C3AF1358C8DD23412EA28CC0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A885AC793FB5E02C3AF1358C8DD23412EA28CC0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e8:4f:c7:3c:0d:ad:06:7a:1c:fa:65:9a:4f:5a:76:f3:b3:66:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A885AC793FB5E02C3AF1358C8DD23412EA28CC0B Validity Not Before: Apr 15 03:27:43 2026 GMT Not After : Apr 14 03:32:43 2027 GMT Subject: CN=1903BCA1E07D474625FEC582586514D61631E1C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4d:17:21:74:fd:b4:a4:d5:a7:33:50:e4:ef: 1f:4c:5f:8f:6e:0b:6c:e7:9d:9f:d7:c8:e1:3e:09: 28:70:1b:95:df:f3:18:c3:79:21:16:71:cb:31:72: c8:c1:66:e8:39:95:37:3b:56:a1:6f:90:7c:49:db: 29:f1:e2:ed:3a:3e:b7:40:e3:f7:3f:f5:89:1c:82: 98:80:c1:67:b7:aa:c1:8a:00:84:f8:e7:ef:42:b6: 07:5d:5b:f6:85:50:d5:7c:2e:07:9f:05:b8:0b:0d: f6:36:f7:c4:c5:8f:21:ef:62:32:96:9e:be:04:0d: 71:4b:07:25:97:2a:d9:e4:d1:be:f9:99:0e:08:92: fa:89:76:eb:52:8f:05:a1:54:96:c1:46:b1:45:db: f0:3f:f6:0e:d1:14:fd:78:10:94:f7:e8:02:32:f7: 5c:fe:d3:4c:1b:54:6e:ce:53:f5:2a:e5:2b:dc:24: 58:63:ca:41:71:34:40:23:dd:d1:05:fe:1c:de:58: aa:ff:87:c9:aa:d0:7a:ff:09:d9:42:9f:5e:ac:4f: 25:5f:4d:d3:9b:c5:63:51:15:c5:eb:36:eb:44:39: 2f:95:09:6d:72:df:09:53:00:f5:3b:26:d9:96:ee: 38:e5:d5:a9:db:30:32:8e:0b:39:6e:83:83:0e:e8: b6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:03:BC:A1:E0:7D:47:46:25:FE:C5:82:58:65:14:D6:16:31:E1:C4 X509v3 Authority Key Identifier: keyid:A8:85:AC:79:3F:B5:E0:2C:3A:F1:35:8C:8D:D2:34:12:EA:28:CC:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096638331497742338/0/A885AC793FB5E02C3AF1358C8DD23412EA28CC0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A885AC793FB5E02C3AF1358C8DD23412EA28CC0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096638331497742338/0/3130332e352e33362e302f32322d3232203d3e20313436383034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.5.36.0/22 Signature Algorithm: sha256WithRSAEncryption 04:9a:2b:52:4d:c3:53:d9:dd:d7:49:9b:2e:30:7b:21:d4:81: bb:52:a4:3f:3b:8b:b6:7e:50:b7:ac:11:9d:ca:ef:7c:66:0d: 9a:59:72:5f:fe:60:3e:62:78:17:62:01:0c:ad:c0:e5:d7:71: 37:42:d3:e3:63:ac:e7:ee:32:ad:2c:2a:ff:dc:60:1f:45:07: 56:b3:c1:79:b3:71:7e:47:9d:b7:8b:0a:9f:1c:3e:54:87:f8: 50:93:da:ca:ce:de:74:3f:f1:28:c7:e8:a2:f1:42:28:9b:7d: 23:f9:b9:a4:9f:5e:87:70:ac:6e:18:22:8e:62:b7:90:67:fc: ed:a2:c3:e6:ac:81:45:8c:06:b2:3c:20:a3:c2:62:53:55:f4: dd:f3:cc:d9:96:c6:50:6e:a6:c0:a6:12:29:f7:1b:97:11:6a: 46:8d:40:16:f5:cb:95:48:0b:ab:67:c4:b9:0c:15:78:21:ff: 0d:57:56:7f:b2:5c:9d:5a:f5:53:fd:3d:2c:79:76:ac:20:2a: 70:84:79:8f:8d:2d:70:af:ef:54:65:49:1d:aa:23:50:9e:60: 74:52:38:b2:dc:0d:9a:2e:f4:11:f6:07:d9:d4:a7:00:ba:71: 80:d0:4e:e3:b7:fa:b5:1a:02:bb:af:f3:e8:b6:9e:cc:4c:e9: b5:47:df:91 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUQ+hPxzwNrQZ6HPplmk9advOzZh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTg4NUFDNzkzRkI1RTAyQzNBRjEzNThDOEREMjM0MTJF QTI4Q0MwQjAeFw0yNjA0MTUwMzI3NDNaFw0yNzA0MTQwMzMyNDNaMDMxMTAvBgNV BAMTKDE5MDNCQ0ExRTA3RDQ3NDYyNUZFQzU4MjU4NjUxNEQ2MTYzMUUxQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZTRchdP20pNWnM1Dk7x9MX49u C2znnZ/XyOE+CShwG5Xf8xjDeSEWccsxcsjBZug5lTc7VqFvkHxJ2ynx4u06PrdA 4/c/9YkcgpiAwWe3qsGKAIT45+9CtgddW/aFUNV8LgefBbgLDfY298TFjyHvYjKW nr4EDXFLByWXKtnk0b75mQ4IkvqJdutSjwWhVJbBRrFF2/A/9g7RFP14EJT36AIy 91z+00wbVG7OU/Uq5SvcJFhjykFxNEAj3dEF/hzeWKr/h8mq0Hr/CdlCn16sTyVf TdObxWNRFcXrNutEOS+VCW1y3wlTAPU7JtmW7jjl1anbMDKOCzlug4MO6LaRAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUGQO8oeB9R0Yl/sWCWGUU1hYx4cQwHwYDVR0j BBgwFoAUqIWseT+14Cw68TWMjdI0EuoozAswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzODMzMTQ5Nzc0MjMzOC8wL0E4ODVBQzc5M0ZCNUUwMkMzQUYxMzU4QzhERDIz NDEyRUEyOENDMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTg4NUFDNzkzRkI1RTAyQzNBRjEzNThDOEREMjM0MTJFQTI4Q0MwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NjM4MzMxNDk3NzQyMzM4LzAvMzEzMDMzMmUzNTJl MzMzNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzQzNjM4MzAzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcFJDANBgkqhkiG9w0BAQsFAAOCAQEABJorUk3DU9nd10mbLjB7IdSBu1Kk PzuLtn5Qt6wRncrvfGYNmllyX/5gPmJ4F2IBDK3A5ddxN0LT42Os5+4yrSwq/9xg H0UHVrPBebNxfkedt4sKnxw+VIf4UJPays7edD/xKMfoovFCKJt9I/m5pJ9eh3Cs bhgijmK3kGf87aLD5qyBRYwGsjwgo8JiU1X03fPM2ZbGUG6mwKYSKfcblxFqRo1A FvXLlUgLq2fEuQwVeCH/DVdWf7JcnVr1U/09LHl2rCAqcIR5j40tcK/vVGVJHaoj UJ5gdFI4stwNmi70EfYH2dSnALpxgNBO47f6tRoCu6/z6LaezEzptUffkQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:55:26 2026 by rpki-client