$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3138302e302f32322d3332203d3e203633353939.roa File: 3130332e3232322e3138302e302f32322d3332203d3e203633353939.roa (raw, json) Hash identifier: QbOOENgtKkWaYBpuNr1ZMzVLHybzXZXqQ9clQG0dDZQ= Subject key identifier: F1:53:0B:A8:71:09:15:21:6B:EB:39:FA:D1:FB:6C:E3:64:30:CC:13 Certificate issuer: /CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Certificate serial: 47E70049124E167991DB11C96A0F0AB74EE13885 Authority key identifier: 48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3138302e302f32322d3332203d3e203633353939.roa Signing time: Thu 16 Apr 2026 06:45:38 +0000 ROA not before: Thu 16 Apr 2026 06:40:38 +0000 ROA not after: Thu 15 Apr 2027 06:45:38 +0000 asID: 63599 IP address blocks: 103.222.180.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:e7:00:49:12:4e:16:79:91:db:11:c9:6a:0f:0a:b7:4e:e1:38:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Validity Not Before: Apr 16 06:40:38 2026 GMT Not After : Apr 15 06:45:38 2027 GMT Subject: CN=F1530BA8710915216BEB39FAD1FB6CE36430CC13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f6:94:bc:b5:0f:f4:6c:69:95:36:e2:0e:48: ee:cd:a6:4c:82:3c:48:5f:99:5a:27:fc:a7:53:5c: c9:71:47:2f:d4:d6:ef:16:b0:e3:85:ce:f9:14:79: eb:21:48:c6:c3:a6:c2:88:bd:c4:08:82:79:97:73: aa:45:58:1e:50:78:32:9d:00:ca:be:18:fa:41:44: e3:7c:17:99:38:f7:43:ef:3f:a1:1e:8a:93:6a:f7: 14:46:41:8a:2c:3f:eb:33:70:27:82:7b:32:b4:1d: b4:01:12:30:85:b3:7b:d9:b9:60:02:60:ae:f7:ec: a7:aa:06:8c:bf:24:54:ee:a0:e9:83:d8:a6:02:34: c0:5e:90:5f:be:68:50:08:bb:74:82:a2:7d:9a:85: 84:7f:6a:d6:c1:05:d4:34:ab:0d:f6:14:1c:b5:2b: 58:d6:0c:f5:a4:4e:ba:ae:05:db:b1:f0:fe:58:ed: 37:22:fa:9d:b5:7c:1a:9a:99:6c:c7:fc:4c:12:b0: 67:d4:14:61:6d:a9:8e:ef:ab:9c:f7:fb:1e:ef:db: 87:72:31:f8:25:d9:07:b2:6c:d1:d4:95:f6:e0:38: 1f:8e:5e:f3:f1:5b:f9:4b:6c:1a:99:7d:92:0d:95: 85:3d:28:07:5e:9f:79:e0:fd:3d:bd:9d:c8:15:a1: 3e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:53:0B:A8:71:09:15:21:6B:EB:39:FA:D1:FB:6C:E3:64:30:CC:13 X509v3 Authority Key Identifier: keyid:48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e3232322e3138302e302f32322d3332203d3e203633353939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.222.180.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:ce:dd:89:3d:af:16:2a:ab:68:a1:9b:4c:d2:e8:ba:4d:b4: ab:14:e8:ea:e2:57:cc:7b:07:4c:38:fd:49:04:de:a6:84:a9: da:c3:b9:74:79:a3:60:ca:4f:a0:8f:90:4f:51:5f:9c:f9:1e: 59:83:df:c8:d3:69:d2:b1:3a:3e:79:50:27:03:7e:28:45:47: 97:52:1a:95:39:54:4e:31:9b:79:65:eb:44:a0:20:64:a8:6f: 63:17:eb:25:96:40:03:99:8b:fe:8a:9e:4d:ec:f2:17:5f:cd: d0:01:fe:0f:84:04:2c:c2:34:ab:b7:ce:02:16:ed:a9:99:b6: 2e:f2:cb:fe:b5:8f:61:dc:a9:0c:9d:45:04:25:d5:e4:f3:b0: 24:30:5b:2a:46:9c:94:30:55:72:b6:87:83:b7:f0:da:97:50: c3:53:80:a6:74:42:bf:e9:c0:db:f9:61:93:d1:55:e8:8f:0c: 32:f3:10:fa:08:80:61:87:db:42:6f:77:a3:dc:4f:26:f1:d9: 76:34:0f:7f:53:bd:15:4e:8f:ed:7c:6c:fa:e5:c7:cb:a3:48: e4:29:ca:7e:12:bd:0e:98:d4:d7:29:57:89:98:9a:13:0b:9d: f3:d4:a9:7b:7a:ca:3d:a5:3e:ea:36:df:83:22:a3:0a:6c:6b: ec:da:9c:f1 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUR+cASRJOFnmR2xHJag8Kt07hOIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJG NUFCNjEzMzAeFw0yNjA0MTYwNjQwMzhaFw0yNzA0MTUwNjQ1MzhaMDMxMTAvBgNV BAMTKEYxNTMwQkE4NzEwOTE1MjE2QkVCMzlGQUQxRkI2Q0UzNjQzMENDMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe9pS8tQ/0bGmVNuIOSO7NpkyC PEhfmVon/KdTXMlxRy/U1u8WsOOFzvkUeeshSMbDpsKIvcQIgnmXc6pFWB5QeDKd AMq+GPpBRON8F5k490PvP6EeipNq9xRGQYosP+szcCeCezK0HbQBEjCFs3vZuWAC YK737KeqBoy/JFTuoOmD2KYCNMBekF++aFAIu3SCon2ahYR/atbBBdQ0qw32FBy1 K1jWDPWkTrquBdux8P5Y7Tci+p21fBqamWzH/EwSsGfUFGFtqY7vq5z3+x7v24dy Mfgl2QeybNHUlfbgOB+OXvPxW/lLbBqZfZINlYU9KAden3ng/T29ncgVoT67AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU8VMLqHEJFSFr6zn60fts42QwzBMwHwYDVR0j BBgwFoAUSFOhsxfEeqcrRf0IaxvZ4vWrYTMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODI0MTkyMy8wLzQ4NTNBMUIzMTdDNDdBQTcyQjQ1RkQwODZCMUJE OUUyRjVBQjYxMzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJGNUFCNjEzMy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTcwNDc0MzA3NDgyNDE5MjMvMC8zMTMwMzMyZTMy MzIzMjJlMzEzODMwMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzYzMzM1MzkzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfetDANBgkqhkiG9w0BAQsFAAOCAQEAD87diT2vFiqraKGbTNLo uk20qxTo6uJXzHsHTDj9SQTepoSp2sO5dHmjYMpPoI+QT1FfnPkeWYPfyNNp0rE6 PnlQJwN+KEVHl1IalTlUTjGbeWXrRKAgZKhvYxfrJZZAA5mL/oqeTezyF1/N0AH+ D4QELMI0q7fOAhbtqZm2LvLL/rWPYdypDJ1FBCXV5POwJDBbKkaclDBVcraHg7fw 2pdQw1OApnRCv+nA2/lhk9FV6I8MMvMQ+giAYYfbQm93o9xPJvHZdjQPf1O9FU6P 7Xxs+uXHy6NI5CnKfhK9DpjU1ylXiZiaEwud89Spe3rKPaU+6jbfgyKjCmxr7Nqc 8Q== -----END CERTIFICATE-----Generated at Fri Apr 17 22:26:40 2026 by rpki-client