$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231382e3230302e302f32322d3232203d3e2030.roa File: 3130332e3231382e3230302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: eFcjA8N0Ey3W2V/KSPvfKlKPtxcG7Y3VixPM5mCXtrw= Subject key identifier: CE:E3:78:06:03:18:7B:F0:67:70:A8:F2:13:D0:56:5B:62:DB:D4:9A Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 4E78E8F30BA62F1D3BE31F0FAD6E4327DA1E39CB Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231382e3230302e302f32322d3232203d3e2030.roa Signing time: Wed 15 Apr 2026 09:33:03 +0000 ROA not before: Wed 15 Apr 2026 09:28:03 +0000 ROA not after: Wed 14 Apr 2027 09:33:03 +0000 asID: 0 IP address blocks: 103.218.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 06:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:78:e8:f3:0b:a6:2f:1d:3b:e3:1f:0f:ad:6e:43:27:da:1e:39:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:28:03 2026 GMT Not After : Apr 14 09:33:03 2027 GMT Subject: CN=CEE3780603187BF06770A8F213D0565B62DBD49A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:42:78:1d:76:b2:e1:3f:6d:f2:30:60:af:6f: 0d:4c:32:80:a7:c8:6c:0e:6f:0f:2f:1b:d8:81:b6: bd:e4:6d:d8:c5:ce:76:7e:69:71:89:b8:32:de:df: 96:16:fc:1b:50:28:7e:b0:58:9a:17:2a:8b:37:76: 0f:b8:b4:9b:0f:55:02:d0:72:09:79:ab:2e:27:ef: ec:23:08:1c:2b:0b:7f:50:51:02:87:71:e5:cd:2e: d3:1f:23:dd:ac:13:1c:d9:2e:65:2a:26:2d:8b:c4: e3:c1:9e:e5:7a:2c:67:0b:14:3a:e4:58:fb:05:0f: 47:16:d0:83:05:76:9d:4a:97:b8:98:3f:b9:78:d5: 4d:62:a1:54:52:72:da:34:65:9d:5f:b9:d6:42:6d: 52:61:c2:e8:c0:b1:a3:d0:df:4b:1e:81:10:aa:68: 70:1f:bc:9c:93:70:d5:7a:e3:ad:46:f8:0f:ba:fd: 26:7f:ea:2a:3d:0f:a2:49:65:1d:03:7e:b9:34:f7: a8:19:0f:5a:27:f4:b2:04:36:aa:1b:78:af:82:19: 3a:67:7a:cb:84:ec:b1:2c:75:2a:c0:58:df:07:08: 5c:69:d3:c8:89:f4:33:61:85:6b:e2:c1:a5:1a:a5: 75:c5:6b:59:a2:05:d0:3f:a8:6e:26:04:e9:fc:4b: 43:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E3:78:06:03:18:7B:F0:67:70:A8:F2:13:D0:56:5B:62:DB:D4:9A X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/3130332e3231382e3230302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.218.200.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:37:91:c5:86:de:82:61:47:ba:26:82:d1:b9:03:5a:2e:59: 50:e1:38:63:1f:fb:7e:fb:f3:63:05:bb:5d:54:85:5e:2b:d4: 43:36:04:7a:05:ac:a2:b8:1a:82:18:d7:fb:37:83:fa:03:7d: 47:35:f7:fc:be:e2:a8:5e:be:0d:b7:81:ed:ad:15:af:c9:b7: cb:90:36:2c:b6:f8:8c:37:79:ac:0b:b6:34:70:a6:d9:c5:00: 98:0d:94:66:cf:13:e5:a0:0e:96:eb:15:34:15:68:3c:32:97: 6b:da:7b:98:1e:de:29:1b:64:43:93:52:85:0c:40:92:8d:bb: a4:30:03:cb:93:cd:53:e6:9b:84:97:48:95:b2:0c:4c:32:ef: 9f:a3:34:3f:44:8f:4a:a5:c2:15:2d:15:d5:e7:ce:fe:54:c0: 7c:ba:43:04:85:c0:17:ba:9c:89:e4:7b:2c:cb:20:91:75:b8: c4:26:d3:aa:64:0f:56:85:8b:c1:42:d2:80:81:44:60:2f:be: 2a:2a:4a:f5:8f:71:61:f1:00:25:6b:d9:4a:12:44:a9:1f:6c: 75:a7:c8:34:c3:33:de:30:31:10:73:1c:09:47:a0:4f:a9:2e: 14:90:c8:1c:b5:a4:d4:c6:45:f1:c8:c8:a1:95:a9:3f:ea:a7: 5a:80:18:16 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUTnjo8wumLx074x8PrW5DJ9oeOcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTI4MDNaFw0yNzA0MTQwOTMzMDNaMDMxMTAvBgNV BAMTKENFRTM3ODA2MDMxODdCRjA2NzcwQThGMjEzRDA1NjVCNjJEQkQ0OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGQngddrLhP23yMGCvbw1MMoCn yGwObw8vG9iBtr3kbdjFznZ+aXGJuDLe35YW/BtQKH6wWJoXKos3dg+4tJsPVQLQ cgl5qy4n7+wjCBwrC39QUQKHceXNLtMfI92sExzZLmUqJi2LxOPBnuV6LGcLFDrk WPsFD0cW0IMFdp1Kl7iYP7l41U1ioVRScto0ZZ1fudZCbVJhwujAsaPQ30segRCq aHAfvJyTcNV6461G+A+6/SZ/6io9D6JJZR0Dfrk096gZD1on9LIENqobeK+CGTpn esuE7LEsdSrAWN8HCFxp08iJ9DNhhWviwaUapXXFa1miBdA/qG4mBOn8S0ObAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUzuN4BgMYe/BncKjyE9BWW2Lb1JowHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NzI3NzUyMzUxOTQwNjA5LzAvMzEzMDMzMmUzMjMx MzgyZTMyMzAzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC Z9rIMA0GCSqGSIb3DQEBCwUAA4IBAQBrN5HFht6CYUe6JoLRuQNaLllQ4ThjH/t+ +/NjBbtdVIVeK9RDNgR6BayiuBqCGNf7N4P6A31HNff8vuKoXr4Nt4HtrRWvybfL kDYstviMN3msC7Y0cKbZxQCYDZRmzxPloA6W6xU0FWg8Mpdr2nuYHt4pG2RDk1KF DECSjbukMAPLk81T5puEl0iVsgxMMu+fozQ/RI9KpcIVLRXV587+VMB8ukMEhcAX upyJ5HssyyCRdbjEJtOqZA9WhYvBQtKAgURgL74qKkr1j3Fh8QAla9lKEkSpH2x1 p8g0wzPeMDEQcxwJR6BPqS4UkMgctaTUxkXxyMihlak/6qdagBgW -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:33 2026 by rpki-client