$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231342e3234302e302f32322d3232203d3e2030.roa File: 3130332e3231342e3234302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: 56SVudrcBkMHtl9qakr7/YgiiaW7iXVKxgIlJzuUdm4= Subject key identifier: 56:7F:11:11:38:A4:FE:97:56:7C:44:E3:02:BB:41:AE:1D:D2:80:A4 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 3DA90E1BC1D2200080C71DFF3EA5A5CA2E081AE3 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231342e3234302e302f32322d3232203d3e2030.roa Signing time: Wed 15 Apr 2026 09:33:02 +0000 ROA not before: Wed 15 Apr 2026 09:28:02 +0000 ROA not after: Wed 14 Apr 2027 09:33:02 +0000 asID: 0 IP address blocks: 103.214.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 06:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a9:0e:1b:c1:d2:20:00:80:c7:1d:ff:3e:a5:a5:ca:2e:08:1a:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:28:02 2026 GMT Not After : Apr 14 09:33:02 2027 GMT Subject: CN=567F111138A4FE97567C44E302BB41AE1DD280A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:7d:ee:8c:d4:02:65:43:3c:1d:4f:ca:d9: aa:6b:6b:9e:bc:3d:c8:9a:e3:a2:46:49:df:31:5c: 0f:51:bf:36:78:99:ad:1b:c6:ca:a3:e2:5e:c1:2c: 5c:68:63:6c:d9:b4:82:6d:05:1f:06:f2:06:e2:cd: 4f:d3:0d:75:c9:a6:d9:91:8e:bb:c7:9b:2f:0a:9b: cd:3e:b1:c4:1f:74:f2:2e:1a:ba:85:08:5c:37:49: ed:ef:6f:af:c9:48:f0:22:f1:b3:ce:fe:0f:12:46: c9:70:81:b7:2e:37:af:95:a0:a2:e6:4c:80:8c:6e: 7d:f6:30:bc:f0:19:cb:4b:d4:cc:e3:68:d4:1e:c3: 35:e6:eb:08:fe:4c:22:0e:a2:da:fc:13:a4:8a:f7: 57:37:f3:60:10:c2:c6:fb:35:a4:6c:55:d0:12:7a: e9:22:bf:d9:2d:d8:56:70:39:46:58:6a:b0:ce:0e: 85:28:96:b8:bb:23:7b:2c:dd:ee:d9:99:ad:a9:40: fd:61:b3:b0:85:bf:76:bf:04:53:73:86:23:26:ab: 81:f1:5e:c9:21:6d:9e:49:62:9e:a1:9f:ba:40:30: 4a:41:43:18:88:9c:d1:52:2a:f3:dd:81:89:29:16: 92:61:d1:e3:a6:39:31:d1:c8:03:90:06:64:7f:a2: 04:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7F:11:11:38:A4:FE:97:56:7C:44:E3:02:BB:41:AE:1D:D2:80:A4 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231342e3234302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.240.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:b5:05:fa:01:44:4d:80:2c:98:f3:02:a4:78:63:0b:f8:0e: 0e:2e:94:58:24:b5:2d:f2:d3:76:62:ac:92:06:01:14:aa:6b: 65:70:68:71:30:98:a3:13:71:e8:fc:e4:fb:c1:ea:23:ee:5c: 27:29:94:09:c9:c8:e4:7c:0a:94:1e:96:e8:ef:a0:9d:88:cc: 0a:82:ed:3d:ec:08:f6:ec:8d:89:45:e2:42:03:07:66:d1:9a: 9c:6f:8a:33:d9:15:2d:30:5f:04:0d:aa:77:94:72:63:fd:f1: 73:de:e5:f4:9d:6e:bf:ff:b9:e2:bd:fa:f4:93:5f:d1:c7:ec: 9c:d7:8f:29:3f:94:3b:6f:ff:1c:7f:52:b9:6d:69:25:f5:3a: ce:13:dd:d7:8f:a4:15:0a:be:c7:a1:fa:72:cc:dd:34:85:e1: 38:37:c3:42:46:eb:aa:ae:34:9f:30:bb:01:7d:20:b8:c6:38: 5a:41:b0:a6:d2:92:6f:4d:94:5c:b7:de:68:64:3d:b3:01:f8: f6:9b:ef:08:a2:a5:da:08:06:4c:46:d3:63:2e:0d:b9:35:04: 5d:9b:77:15:3d:16:e0:d8:59:b1:a8:a8:14:92:8b:bc:ab:9b: c8:ef:9e:54:24:ac:b3:62:18:ba:69:e0:0c:da:ee:95:34:8e: 8c:11:35:9c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUPakOG8HSIACAxx3/PqWlyi4IGuMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTI4MDJaFw0yNzA0MTQwOTMzMDJaMDMxMTAvBgNV BAMTKDU2N0YxMTExMzhBNEZFOTc1NjdDNDRFMzAyQkI0MUFFMUREMjgwQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx2H3ujNQCZUM8HU/K2apra568 Pcia46JGSd8xXA9RvzZ4ma0bxsqj4l7BLFxoY2zZtIJtBR8G8gbizU/TDXXJptmR jrvHmy8Km80+scQfdPIuGrqFCFw3Se3vb6/JSPAi8bPO/g8SRslwgbcuN6+VoKLm TICMbn32MLzwGctL1MzjaNQewzXm6wj+TCIOotr8E6SK91c382AQwsb7NaRsVdAS eukiv9kt2FZwOUZYarDODoUolri7I3ss3e7Zma2pQP1hs7CFv3a/BFNzhiMmq4Hx XskhbZ5JYp6hn7pAMEpBQxiInNFSKvPdgYkpFpJh0eOmOTHRyAOQBmR/ogQlAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUVn8RETik/pdWfETjArtBrh3SgKQwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NzI3NzUyMzUxOTQwNjA5LzAvMzEzMDMzMmUzMjMx MzQyZTMyMzQzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC Z9bwMA0GCSqGSIb3DQEBCwUAA4IBAQCOtQX6AURNgCyY8wKkeGML+A4OLpRYJLUt 8tN2YqySBgEUqmtlcGhxMJijE3Ho/OT7weoj7lwnKZQJycjkfAqUHpbo76CdiMwK gu097Aj27I2JReJCAwdm0Zqcb4oz2RUtMF8EDap3lHJj/fFz3uX0nW6//7nivfr0 k1/Rx+yc148pP5Q7b/8cf1K5bWkl9TrOE93Xj6QVCr7HofpyzN00heE4N8NCRuuq rjSfMLsBfSC4xjhaQbCm0pJvTZRct95oZD2zAfj2m+8IoqXaCAZMRtNjLg25NQRd m3cVPRbg2FmxqKgUkou8q5vI755UJKyzYhi6aeAM2u6VNI6METWc -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:43 2026 by rpki-client