$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231382e3139362e302f32322d3232203d3e2030.roa File: 3130332e3231382e3139362e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: DghaGQRjCqa/rzKOAe7Vtmbxhux1+Wrg7ccX4sp0eWs= Subject key identifier: 6B:54:57:24:9A:24:DD:5C:A9:55:EF:68:48:40:51:36:A8:0F:4D:87 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 1E4F571C7F706B09345B458FAF2C9F46843B4143 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231382e3139362e302f32322d3232203d3e2030.roa Signing time: Wed 15 Apr 2026 09:33:03 +0000 ROA not before: Wed 15 Apr 2026 09:28:03 +0000 ROA not after: Wed 14 Apr 2027 09:33:03 +0000 asID: 0 IP address blocks: 103.218.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 06:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4f:57:1c:7f:70:6b:09:34:5b:45:8f:af:2c:9f:46:84:3b:41:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:28:03 2026 GMT Not After : Apr 14 09:33:03 2027 GMT Subject: CN=6B5457249A24DD5CA955EF6848405136A80F4D87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2a:23:70:92:40:e0:d6:fb:fe:0d:12:cc:1d: a1:59:9c:58:87:97:e3:8b:f4:06:98:6f:5a:23:89: 37:29:de:2e:ab:83:bc:0b:18:0a:c4:16:d5:8a:2d: 52:9c:bb:69:29:5a:e7:98:b8:e2:b9:33:e2:cf:1f: 6e:8c:1e:2c:20:91:2e:ee:69:b9:d4:41:1c:81:f8: 1b:9a:ba:55:05:2b:a4:95:44:35:4c:bd:d6:da:04: e4:ee:93:1b:11:27:c0:e7:67:28:c3:9c:f4:cd:d4: af:b6:bc:fb:a7:7a:a0:4c:ec:24:ab:06:28:1b:3c: f2:42:00:ac:33:37:b0:c8:cb:32:6c:ca:d2:88:b0: bd:8f:f2:83:71:1e:b9:8a:c8:6f:71:36:12:05:7a: 12:9c:e4:bc:54:b1:7b:a3:d5:63:ec:56:ef:b6:a6: d8:aa:0c:5e:41:bf:8a:50:2e:6d:83:ac:c8:cd:11: c8:ee:0b:af:96:ba:06:e4:7d:59:0a:00:35:10:6a: 78:08:5c:5b:01:49:cc:f1:8a:9e:7c:89:11:38:30: 5a:01:93:01:7b:af:0a:ab:2a:47:f4:d7:5e:ea:5b: ff:20:4a:43:dc:04:bd:17:3e:b4:1d:8a:87:74:08: 13:9c:6a:4c:4a:62:29:9b:21:1a:14:66:d6:f2:c2: 25:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:54:57:24:9A:24:DD:5C:A9:55:EF:68:48:40:51:36:A8:0F:4D:87 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231382e3139362e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.218.196.0/22 Signature Algorithm: sha256WithRSAEncryption 36:47:c9:03:ca:d9:65:42:c3:49:c2:c9:5f:af:5d:9e:51:0d: c2:d3:da:a7:f4:7a:8b:6a:c9:81:0e:2e:b9:40:9b:dd:46:8d: 24:52:8a:f0:fb:b9:d2:75:6b:87:63:52:ea:7b:b1:ef:59:db: ed:c7:07:b4:26:d3:36:ae:19:a3:b1:05:eb:7a:89:1c:0d:89: fb:42:12:51:62:5f:25:75:0f:7d:09:a7:59:c9:7b:82:ba:08: c8:f1:8e:ee:7e:a1:7d:66:2a:aa:c0:82:19:f7:f4:55:d8:cc: 8d:26:3a:cc:8c:f3:46:35:5a:b7:af:09:ae:57:7a:50:49:b2: e0:3f:65:20:72:c0:1b:4b:00:96:75:fc:56:ff:e1:02:73:63: a8:7e:0c:b7:c1:dc:8b:4a:01:36:87:9d:16:5c:f0:97:5d:b5: 6c:20:93:f5:40:ef:16:3d:a6:f6:71:c0:3e:e9:e3:f2:ba:0a: 1c:b5:c5:9d:6c:31:1a:ff:df:da:3b:94:9e:b0:80:26:3e:a1: bc:db:38:a8:37:d5:bd:d4:08:af:57:a1:2c:50:48:69:8c:47: 2f:ed:fc:03:82:01:5b:7b:67:67:09:e3:1f:f8:37:53:f3:3d: c2:f2:56:8d:4e:93:9b:44:33:d7:fa:ff:7d:80:0c:ef:62:68: 74:0a:3d:34 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUHk9XHH9wawk0W0WPryyfRoQ7QUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTI4MDNaFw0yNzA0MTQwOTMzMDNaMDMxMTAvBgNV BAMTKDZCNTQ1NzI0OUEyNERENUNBOTU1RUY2ODQ4NDA1MTM2QTgwRjREODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClKiNwkkDg1vv+DRLMHaFZnFiH l+OL9AaYb1ojiTcp3i6rg7wLGArEFtWKLVKcu2kpWueYuOK5M+LPH26MHiwgkS7u abnUQRyB+BuaulUFK6SVRDVMvdbaBOTukxsRJ8DnZyjDnPTN1K+2vPuneqBM7CSr BigbPPJCAKwzN7DIyzJsytKIsL2P8oNxHrmKyG9xNhIFehKc5LxUsXuj1WPsVu+2 ptiqDF5Bv4pQLm2DrMjNEcjuC6+WugbkfVkKADUQangIXFsBSczxip58iRE4MFoB kwF7rwqrKkf0117qW/8gSkPcBL0XPrQdiod0CBOcakxKYimbIRoUZtbywiWBAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUa1RXJJok3VypVe9oSEBRNqgPTYcwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NzI3NzUyMzUxOTQwNjA5LzAvMzEzMDMzMmUzMjMx MzgyZTMxMzkzNjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC Z9rEMA0GCSqGSIb3DQEBCwUAA4IBAQA2R8kDytllQsNJwslfr12eUQ3C09qn9HqL asmBDi65QJvdRo0kUorw+7nSdWuHY1Lqe7HvWdvtxwe0JtM2rhmjsQXreokcDYn7 QhJRYl8ldQ99CadZyXuCugjI8Y7ufqF9ZiqqwIIZ9/RV2MyNJjrMjPNGNVq3rwmu V3pQSbLgP2UgcsAbSwCWdfxW/+ECc2Oofgy3wdyLSgE2h50WXPCXXbVsIJP1QO8W Pab2ccA+6ePyugoctcWdbDEa/9/aO5SesIAmPqG82zioN9W91AivV6EsUEhpjEcv 7fwDggFbe2dnCeMf+DdT8z3C8laNTpObRDPX+v99gAzvYmh0Cj00 -----END CERTIFICATE-----Generated at Thu Apr 16 22:36:06 2026 by rpki-client