$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096689320682651650/0/3130332e3233382e3235322e302f32322d3232203d3e203234313337.roa File: 3130332e3233382e3235322e302f32322d3232203d3e203234313337.roa (raw, json) Hash identifier: hvPHlirHDecyBdSPetseNQaYzkpvvym+uBRstvU2nAo= Subject key identifier: 08:7E:E3:64:40:C5:B6:9C:61:AF:73:F9:DB:FA:0C:DE:04:92:C5:E2 Certificate issuer: /CN=833355AAAB477A3A1D2F649973B483982F9BA6CE Certificate serial: 19DC0463444AAA34BD9334EF8BA89FA4C507BE15 Authority key identifier: 83:33:55:AA:AB:47:7A:3A:1D:2F:64:99:73:B4:83:98:2F:9B:A6:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/833355AAAB477A3A1D2F649973B483982F9BA6CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/3130332e3233382e3235322e302f32322d3232203d3e203234313337.roa Signing time: Wed 15 Apr 2026 07:09:14 +0000 ROA not before: Wed 15 Apr 2026 07:04:14 +0000 ROA not after: Wed 14 Apr 2027 07:09:14 +0000 asID: 24137 IP address blocks: 103.238.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/833355AAAB477A3A1D2F649973B483982F9BA6CE.crl rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/833355AAAB477A3A1D2F649973B483982F9BA6CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/833355AAAB477A3A1D2F649973B483982F9BA6CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:dc:04:63:44:4a:aa:34:bd:93:34:ef:8b:a8:9f:a4:c5:07:be:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833355AAAB477A3A1D2F649973B483982F9BA6CE Validity Not Before: Apr 15 07:04:14 2026 GMT Not After : Apr 14 07:09:14 2027 GMT Subject: CN=087EE36440C5B69C61AF73F9DBFA0CDE0492C5E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:76:63:9e:50:87:eb:a5:3d:c4:eb:85:e5:85: fa:da:e4:d3:73:7c:3b:af:33:b0:65:fa:5f:cc:51: 1d:d3:a7:0b:f5:a4:d4:50:71:8f:d3:02:28:1a:d8: 1d:56:c6:62:16:59:a7:ca:72:11:54:39:f1:05:01: 0b:f1:6d:0c:69:63:6a:bd:5f:9c:28:7c:6d:2a:96: 62:d9:6d:50:c3:78:c3:fa:f6:bd:3c:c9:43:70:72: 69:d5:47:c5:31:82:19:b5:56:b3:2e:37:81:47:bb: 4f:ba:08:2b:4e:be:09:a5:c6:5c:e9:d8:c4:69:e4: d7:c7:df:a6:d4:62:66:0c:07:dd:7c:32:d1:ae:af: bf:07:03:35:16:67:ea:07:5d:63:cc:a8:b0:f1:c3: 3b:a9:a0:44:e7:bf:0d:e9:34:e7:2e:69:95:ce:ee: 71:03:58:ae:9c:a0:dc:97:5c:54:26:6b:39:b0:e3: 31:43:66:c4:a1:71:3d:e5:4c:c6:c8:2d:e1:49:34: 5e:2f:d7:93:68:47:67:54:7c:2c:c8:69:c4:84:74: 75:b4:2a:9a:ee:09:7a:c9:4d:41:20:18:85:2b:ec: 0b:9d:15:1c:5e:a0:6e:26:c1:1b:f0:44:8d:7b:98: c0:2c:50:fd:f0:c9:97:51:f1:6e:8a:2b:ba:ad:eb: 50:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7E:E3:64:40:C5:B6:9C:61:AF:73:F9:DB:FA:0C:DE:04:92:C5:E2 X509v3 Authority Key Identifier: keyid:83:33:55:AA:AB:47:7A:3A:1D:2F:64:99:73:B4:83:98:2F:9B:A6:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/833355AAAB477A3A1D2F649973B483982F9BA6CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/833355AAAB477A3A1D2F649973B483982F9BA6CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/3130332e3233382e3235322e302f32322d3232203d3e203234313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.238.252.0/22 Signature Algorithm: sha256WithRSAEncryption 29:34:83:05:a5:02:60:2e:4f:80:2d:b1:74:26:ee:50:d9:19: e9:0a:65:4c:b1:6d:93:81:3e:1f:eb:c6:c4:ba:11:ea:31:e0: dd:9b:8c:bd:ad:10:42:2f:1c:34:76:e6:bd:64:38:c7:8a:4a: f4:56:08:08:d4:14:4e:fc:93:6f:fd:61:ef:ec:5e:50:3f:dd: dc:53:3b:42:0b:dc:77:7d:26:b4:dd:dc:68:17:b5:f6:37:88: ac:6c:57:67:e6:f2:54:d5:20:10:cc:ac:08:6b:b8:03:f4:ae: 9a:66:5f:4d:4a:c2:73:10:0b:e1:a2:29:87:34:60:d6:19:0c: 5c:6d:9c:4e:e1:0b:3b:13:52:e5:ec:e4:55:99:14:bd:c3:2a: 46:9d:89:12:a4:56:e1:65:37:86:02:c2:5d:a0:a1:e6:9a:4a: 27:15:ad:c7:2d:0b:02:09:54:0f:52:47:c1:88:ff:41:03:b8: bf:68:6c:49:a8:8c:f0:4e:91:67:ec:34:66:e1:ab:b8:54:c2: 9b:63:19:ec:dc:1d:4b:14:62:3e:45:e8:fc:e5:58:5b:e9:bb: 17:08:d3:0c:72:f2:d0:2b:8a:34:74:9c:c9:59:b3:d7:b3:da: 0a:84:2e:c3:73:84:45:72:12:f9:05:5d:1b:9a:98:c0:6c:54: e4:c0:e1:b0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUGdwEY0RKqjS9kzTvi6ifpMUHvhUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODMzMzU1QUFBQjQ3N0EzQTFEMkY2NDk5NzNCNDgzOTgy RjlCQTZDRTAeFw0yNjA0MTUwNzA0MTRaFw0yNzA0MTQwNzA5MTRaMDMxMTAvBgNV BAMTKDA4N0VFMzY0NDBDNUI2OUM2MUFGNzNGOURCRkEwQ0RFMDQ5MkM1RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDndmOeUIfrpT3E64Xlhfra5NNz fDuvM7Bl+l/MUR3Tpwv1pNRQcY/TAiga2B1WxmIWWafKchFUOfEFAQvxbQxpY2q9 X5wofG0qlmLZbVDDeMP69r08yUNwcmnVR8Uxghm1VrMuN4FHu0+6CCtOvgmlxlzp 2MRp5NfH36bUYmYMB918MtGur78HAzUWZ+oHXWPMqLDxwzupoETnvw3pNOcuaZXO 7nEDWK6coNyXXFQmazmw4zFDZsShcT3lTMbILeFJNF4v15NoR2dUfCzIacSEdHW0 KpruCXrJTUEgGIUr7AudFRxeoG4mwRvwRI17mMAsUP3wyZdR8W6KK7qt61A9AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUCH7jZEDFtpxhr3P52/oM3gSSxeIwHwYDVR0j BBgwFoAUgzNVqqtHejodL2SZc7SDmC+bps4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY4OTMyMDY4MjY1MTY1MC8wLzgzMzM1NUFBQUI0NzdBM0ExRDJGNjQ5OTczQjQ4 Mzk4MkY5QkE2Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODMzMzU1QUFBQjQ3N0EzQTFEMkY2NDk5NzNCNDgzOTgyRjlCQTZDRS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2ODkzMjA2ODI2NTE2NTAvMC8zMTMwMzMyZTMy MzMzODJlMzIzNTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDMxMzMzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfu/DANBgkqhkiG9w0BAQsFAAOCAQEAKTSDBaUCYC5PgC2xdCbu UNkZ6QplTLFtk4E+H+vGxLoR6jHg3ZuMva0QQi8cNHbmvWQ4x4pK9FYICNQUTvyT b/1h7+xeUD/d3FM7Qgvcd30mtN3caBe19jeIrGxXZ+byVNUgEMysCGu4A/SummZf TUrCcxAL4aIphzRg1hkMXG2cTuELOxNS5ezkVZkUvcMqRp2JEqRW4WU3hgLCXaCh 5ppKJxWtxy0LAglUD1JHwYj/QQO4v2hsSaiM8E6RZ+w0ZuGruFTCm2MZ7NwdSxRi PkXo/OVYW+m7FwjTDHLy0CuKNHScyVmz17PaCoQuw3OERXIS+QVdG5qYwGxU5MDh sA== -----END CERTIFICATE-----Generated at Sat Apr 18 02:43:23 2026 by rpki-client