$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096962404895424515/0/3130332e3232302e3234322e302f32332d3233203d3e2034383337.roa File: 3130332e3232302e3234322e302f32332d3233203d3e2034383337.roa (raw, json) Hash identifier: 3TONmc+B7Q42E5fNjNdLH0s/fvuQxKfU4ddysGsNONE= Subject key identifier: DC:4C:D5:C2:16:6C:35:A8:0C:4A:3D:A3:CD:E3:90:FD:82:BB:D6:D5 Certificate issuer: /CN=40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71 Certificate serial: 6143496FC38BA78051F13D6F9C723228B154E04A Authority key identifier: 40:AB:F4:13:CD:33:0E:0A:4D:2B:AE:8F:1E:66:AF:8B:FC:B7:3D:71 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/3130332e3232302e3234322e302f32332d3233203d3e2034383337.roa Signing time: Thu 16 Apr 2026 07:20:30 +0000 ROA not before: Thu 16 Apr 2026 07:15:30 +0000 ROA not after: Thu 15 Apr 2027 07:20:30 +0000 asID: 4837 IP address blocks: 103.220.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.crl rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:43:49:6f:c3:8b:a7:80:51:f1:3d:6f:9c:72:32:28:b1:54:e0:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71 Validity Not Before: Apr 16 07:15:30 2026 GMT Not After : Apr 15 07:20:30 2027 GMT Subject: CN=DC4CD5C2166C35A80C4A3DA3CDE390FD82BBD6D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:61:53:eb:d5:9d:e8:e5:c1:31:dd:9e:24:cb: bb:7a:14:c9:0d:88:a3:d0:95:58:71:cc:21:bb:11: 09:6b:e5:cd:bd:11:8f:d6:09:da:81:37:87:50:06: ca:b8:29:b2:25:b4:0c:15:2f:f4:fe:f7:95:48:91: 0a:4f:44:1a:b3:fe:83:7c:18:a9:69:34:5f:5a:16: 55:98:9e:23:86:e2:af:ae:bf:da:52:28:69:10:b8: 07:50:bc:fe:d5:c4:eb:e7:1c:c4:4d:d9:39:4e:ac: 49:74:7f:d0:78:01:5d:4a:07:59:f3:62:ee:0d:cf: de:5e:4d:f9:88:67:12:f7:2d:68:5e:b5:fc:7b:54: 9b:22:d1:04:ec:fb:f6:08:9c:dc:36:93:3a:bb:9f: b1:ed:f2:b2:03:d1:27:c5:09:38:89:e2:60:eb:d3: a7:6a:c6:b8:67:06:6c:5e:00:bc:e8:f9:8a:bb:cd: f5:e6:1e:b4:26:c8:6a:6a:19:19:2d:15:e4:08:3c: 0d:b4:2e:41:e2:38:e5:69:d0:bc:ca:b9:6f:64:25: 5f:f1:0c:01:7b:1a:ef:24:be:0f:d8:6e:30:15:20: 3f:68:ce:e8:d0:23:4c:67:40:99:12:a4:ab:7e:ca: 1d:d5:2e:52:37:3c:8c:5f:10:a8:db:2a:da:1b:3a: 7e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4C:D5:C2:16:6C:35:A8:0C:4A:3D:A3:CD:E3:90:FD:82:BB:D6:D5 X509v3 Authority Key Identifier: keyid:40:AB:F4:13:CD:33:0E:0A:4D:2B:AE:8F:1E:66:AF:8B:FC:B7:3D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/3130332e3232302e3234322e302f32332d3233203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.220.242.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:24:55:dc:7b:68:cd:5a:a5:7d:c7:cd:17:83:39:b6:3e:a7: 10:f0:33:51:28:47:a9:f8:aa:dd:a8:7c:a0:97:1b:09:a9:9f: 46:ba:d1:bb:c9:30:31:95:29:8e:fe:2a:0d:ff:c7:78:52:d5: e1:c2:6f:2b:9a:cd:a4:2a:f9:a5:98:3c:26:6f:ff:91:55:01: dc:60:fc:ec:43:76:52:9d:ee:a3:01:ed:54:56:62:cf:b0:04: 59:81:09:a4:7a:ff:46:78:b4:96:0f:93:13:f9:df:df:dc:41: 8a:0d:df:34:de:2d:d0:3c:27:fb:c4:6c:21:d2:f5:16:88:b0: 34:03:ba:16:29:9f:a7:4d:7a:34:77:75:47:be:7a:64:34:f9: 4b:1a:b1:b1:5d:86:a1:12:c3:5f:ba:62:39:82:cf:e5:f5:42: a6:47:d0:3c:35:fd:96:45:f8:5d:ea:e8:53:61:4d:3a:ec:cd: 2d:f7:3b:28:4a:3a:4c:71:54:34:58:ae:b4:06:06:b9:e3:c8: d0:52:43:76:ab:a1:a2:e3:bb:af:bc:57:44:8a:d0:a0:db:d1: 2f:4a:08:b2:6c:99:d1:05:4d:b1:ad:b4:ba:9e:80:15:35:68: a8:94:a1:9a:9b:5f:2c:63:3c:52:fd:d6:ce:42:1a:b6:ae:26: d4:a5:30:f8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYUNJb8OLp4BR8T1vnHIyKLFU4EowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBBQkY0MTNDRDMzMEUwQTREMkJBRThGMUU2NkFGOEJG Q0I3M0Q3MTAeFw0yNjA0MTYwNzE1MzBaFw0yNzA0MTUwNzIwMzBaMDMxMTAvBgNV BAMTKERDNENENUMyMTY2QzM1QTgwQzRBM0RBM0NERTM5MEZEODJCQkQ2RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQYVPr1Z3o5cEx3Z4ky7t6FMkN iKPQlVhxzCG7EQlr5c29EY/WCdqBN4dQBsq4KbIltAwVL/T+95VIkQpPRBqz/oN8 GKlpNF9aFlWYniOG4q+uv9pSKGkQuAdQvP7VxOvnHMRN2TlOrEl0f9B4AV1KB1nz Yu4Nz95eTfmIZxL3LWhetfx7VJsi0QTs+/YInNw2kzq7n7Ht8rID0SfFCTiJ4mDr 06dqxrhnBmxeALzo+Yq7zfXmHrQmyGpqGRktFeQIPA20LkHiOOVp0LzKuW9kJV/x DAF7Gu8kvg/YbjAVID9ozujQI0xnQJkSpKt+yh3VLlI3PIxfEKjbKtobOn6PAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU3EzVwhZsNagMSj2jzeOQ/YK71tUwHwYDVR0j BBgwFoAUQKv0E80zDgpNK66PHmavi/y3PXEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 Njk2MjQwNDg5NTQyNDUxNS8wLzQwQUJGNDEzQ0QzMzBFMEE0RDJCQUU4RjFFNjZB RjhCRkNCNzNENzEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBBQkY0MTNDRDMzMEUwQTREMkJBRThGMUU2NkFGOEJGQ0I3M0Q3MS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5Njk2MjQwNDg5NTQyNDUxNS8wLzMxMzAzMzJlMzIz MjMwMmUzMjM0MzIyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzMzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWfc8jANBgkqhkiG9w0BAQsFAAOCAQEADyRV3HtozVqlfcfNF4M5tj6n EPAzUShHqfiq3ah8oJcbCamfRrrRu8kwMZUpjv4qDf/HeFLV4cJvK5rNpCr5pZg8 Jm//kVUB3GD87EN2Up3uowHtVFZiz7AEWYEJpHr/Rni0lg+TE/nf39xBig3fNN4t 0Dwn+8RsIdL1FoiwNAO6Fimfp016NHd1R756ZDT5SxqxsV2GoRLDX7piOYLP5fVC pkfQPDX9lkX4XeroU2FNOuzNLfc7KEo6THFUNFiutAYGuePI0FJDdquhouO7r7xX RIrQoNvRL0oIsmyZ0QVNsa20up6AFTVoqJShmptfLGM8Uv3WzkIatq4m1KUw+A== -----END CERTIFICATE-----Generated at Fri Apr 17 23:25:51 2026 by rpki-client