$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3135312e3134382e302f32332d3233203d3e2034383038.roa File: 3130332e3135312e3134382e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: FlqyfG9yxugYR7L+XBIV8TN1BCjELPR+chHd21WXr9k= Subject key identifier: FA:13:C8:C8:67:75:59:73:77:09:B0:3A:EE:15:BA:39:E3:6F:EE:57 Certificate issuer: /CN=BF2CC5E7AE1027E33C5247AB67FBD696135E32B3 Certificate serial: 73926689C100AC4030F4871FAA62D4B5BDAB3FD5 Authority key identifier: BF:2C:C5:E7:AE:10:27:E3:3C:52:47:AB:67:FB:D6:96:13:5E:32:B3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3135312e3134382e302f32332d3233203d3e2034383038.roa Signing time: Wed 15 Apr 2026 08:39:56 +0000 ROA not before: Wed 15 Apr 2026 08:34:56 +0000 ROA not after: Wed 14 Apr 2027 08:39:56 +0000 asID: 4808 IP address blocks: 103.151.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:92:66:89:c1:00:ac:40:30:f4:87:1f:aa:62:d4:b5:bd:ab:3f:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF2CC5E7AE1027E33C5247AB67FBD696135E32B3 Validity Not Before: Apr 15 08:34:56 2026 GMT Not After : Apr 14 08:39:56 2027 GMT Subject: CN=FA13C8C8677559737709B03AEE15BA39E36FEE57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3b:91:ff:4c:1e:45:56:30:34:97:79:9a:b5: ad:a7:e1:5d:fa:7e:b0:9f:89:be:d3:1e:89:87:26: 2d:c0:10:de:f1:54:18:a6:13:83:bf:f6:90:8f:c1: 7f:d0:66:fd:aa:eb:3d:60:bb:55:35:94:ce:a2:b0: 6b:58:88:10:dd:6f:59:55:5d:1f:1d:44:a0:4c:72: 15:d4:63:5b:14:ff:b3:ac:ee:fe:d7:63:ef:08:79: df:fa:5a:b4:8e:d4:12:3c:96:d1:6e:22:a5:86:f0: 1b:63:4a:34:e6:ff:be:bf:ed:9e:82:73:c0:f2:6d: a7:14:bb:87:ce:5c:c2:18:0d:ab:5b:3f:b8:90:81: 2f:8c:68:bd:d5:95:d0:4c:16:80:be:42:47:6d:e0: 68:ce:77:9a:34:6f:41:e5:b3:1e:20:b9:27:f9:5b: 9c:d5:c9:e5:57:42:b8:93:25:dd:59:55:69:54:bd: 7d:8b:7b:08:35:84:1c:cf:b9:ab:5c:f3:fb:e3:7e: 8e:c0:95:c3:1a:72:1e:45:74:3e:60:e3:60:4c:10: 85:64:e2:b6:4f:f1:62:cc:b8:63:28:b0:67:09:3c: 80:7b:e1:ac:a9:88:a1:99:67:40:84:83:20:7e:e3: da:4b:53:15:71:9d:70:bd:14:8b:6a:97:0c:d9:84: c2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:13:C8:C8:67:75:59:73:77:09:B0:3A:EE:15:BA:39:E3:6F:EE:57 X509v3 Authority Key Identifier: keyid:BF:2C:C5:E7:AE:10:27:E3:3C:52:47:AB:67:FB:D6:96:13:5E:32:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF2CC5E7AE1027E33C5247AB67FBD696135E32B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096716299456741377/0/3130332e3135312e3134382e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.148.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:12:40:7f:31:c3:d8:77:85:e9:34:02:9a:d2:87:34:3b:20: 97:1f:06:97:b4:77:d8:48:0d:8a:4c:60:a3:f7:fd:d5:4b:95: 75:e0:46:b3:a9:fc:9e:63:1c:c2:48:97:a1:c0:14:ef:57:8b: 85:c5:ad:aa:d6:73:28:dc:e3:00:da:d2:b2:18:e9:ba:76:ef: 62:3e:7d:6d:ed:3e:c0:be:5f:e6:99:e1:18:e3:e0:8d:aa:94: c2:bb:91:ba:e3:2a:84:38:79:b8:4f:59:7e:ed:fd:05:72:f2: 04:d5:9f:13:40:a3:53:3b:bd:0f:64:5e:23:32:88:d5:f8:b8: c3:33:b5:01:9e:b2:f3:bd:a1:5e:bd:7b:59:05:3a:b4:80:98: d1:90:cb:87:35:92:dc:c2:34:d7:86:3b:6c:cc:da:ab:43:cd: 9b:71:5a:37:ad:0a:0c:3d:47:38:0c:c8:d8:af:8c:6f:b4:a8: 30:04:9b:c4:a6:26:ee:31:e9:ef:05:c6:fa:67:b7:cd:60:e1: 5a:a0:0a:9c:d9:7f:6b:6e:c3:44:20:be:eb:62:19:d0:93:c6: 2e:84:3b:d2:45:55:16:27:6b:41:2c:c8:f1:28:fe:7e:91:da: 64:95:86:9c:47:74:a7:63:34:2f:de:9d:ab:18:4d:8b:49:62: 8c:23:16:e1 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUc5JmicEArEAw9IcfqmLUtb2rP9UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYyQ0M1RTdBRTEwMjdFMzNDNTI0N0FCNjdGQkQ2OTYx MzVFMzJCMzAeFw0yNjA0MTUwODM0NTZaFw0yNzA0MTQwODM5NTZaMDMxMTAvBgNV BAMTKEZBMTNDOEM4Njc3NTU5NzM3NzA5QjAzQUVFMTVCQTM5RTM2RkVFNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGO5H/TB5FVjA0l3mata2n4V36 frCfib7THomHJi3AEN7xVBimE4O/9pCPwX/QZv2q6z1gu1U1lM6isGtYiBDdb1lV XR8dRKBMchXUY1sU/7Os7v7XY+8Ied/6WrSO1BI8ltFuIqWG8BtjSjTm/76/7Z6C c8DybacUu4fOXMIYDatbP7iQgS+MaL3VldBMFoC+Qkdt4GjOd5o0b0Hlsx4guSf5 W5zVyeVXQriTJd1ZVWlUvX2Lewg1hBzPuatc8/vjfo7AlcMach5FdD5g42BMEIVk 4rZP8WLMuGMosGcJPIB74aypiKGZZ0CEgyB+49pLUxVxnXC9FItqlwzZhMJHAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU+hPIyGd1WXN3CbA67hW6OeNv7lcwHwYDVR0j BBgwFoAUvyzF564QJ+M8UkerZ/vWlhNeMrMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcxNjI5OTQ1Njc0MTM3Ny8wL0JGMkNDNUU3QUUxMDI3RTMzQzUyNDdBQjY3RkJE Njk2MTM1RTMyQjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkYyQ0M1RTdBRTEwMjdFMzNDNTI0N0FCNjdGQkQ2OTYxMzVFMzJCMy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjcxNjI5OTQ1Njc0MTM3Ny8wLzMxMzAzMzJlMzEz NTMxMmUzMTM0MzgyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWeXlDANBgkqhkiG9w0BAQsFAAOCAQEADhJAfzHD2HeF6TQCmtKHNDsg lx8Gl7R32EgNikxgo/f91UuVdeBGs6n8nmMcwkiXocAU71eLhcWtqtZzKNzjANrS shjpunbvYj59be0+wL5f5pnhGOPgjaqUwruRuuMqhDh5uE9Zfu39BXLyBNWfE0Cj Uzu9D2ReIzKI1fi4wzO1AZ6y872hXr17WQU6tICY0ZDLhzWS3MI014Y7bMzaq0PN m3FaN60KDD1HOAzI2K+Mb7SoMASbxKYm7jHp7wXG+me3zWDhWqAKnNl/a27DRCC+ 62IZ0JPGLoQ70kVVFidrQSzI8Sj+fpHaZJWGnEd0p2M0L96dqxhNi0lijCMW4Q== -----END CERTIFICATE-----Generated at Fri Apr 17 21:00:46 2026 by rpki-client