$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e38392e3131322e302f32322d3332203d3e203633353939.roa File: 3130332e38392e3131322e302f32322d3332203d3e203633353939.roa (raw, json) Hash identifier: mm2nGoL3z48v+jc5byQc82UgZeDVWf0qHUCxNLkRAMM= Subject key identifier: F4:BB:80:63:8B:C8:39:D3:0F:C5:F5:A4:14:8F:F5:51:16:49:02:DD Certificate issuer: /CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Certificate serial: 61215FAB6ED3F97F61550C520CE294713AA11CB1 Authority key identifier: 48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e38392e3131322e302f32322d3332203d3e203633353939.roa Signing time: Thu 16 Apr 2026 06:45:38 +0000 ROA not before: Thu 16 Apr 2026 06:40:38 +0000 ROA not after: Thu 15 Apr 2027 06:45:38 +0000 asID: 63599 IP address blocks: 103.89.112.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:21:5f:ab:6e:d3:f9:7f:61:55:0c:52:0c:e2:94:71:3a:a1:1c:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4853A1B317C47AA72B45FD086B1BD9E2F5AB6133 Validity Not Before: Apr 16 06:40:38 2026 GMT Not After : Apr 15 06:45:38 2027 GMT Subject: CN=F4BB80638BC839D30FC5F5A4148FF551164902DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9e:46:4a:9e:34:5b:b9:ba:1f:eb:9e:c6:95: c5:11:e3:9a:b9:f7:a4:b7:49:e4:e9:43:d3:87:24: ec:9c:70:fd:7f:a1:b9:5e:6a:e3:d0:d1:f5:af:2e: 1e:19:49:9b:37:8e:8a:0a:d7:eb:8e:f6:41:8e:cc: cc:bd:9e:9c:9d:f6:f3:bf:02:3a:2f:33:a0:ca:26: d4:a0:a5:8f:35:a6:84:e7:bd:92:58:8a:ed:73:3a: 18:2e:18:9f:0c:b0:de:1d:3b:be:74:d8:df:06:39: 54:47:66:90:5c:4a:d9:61:69:5e:a8:a1:6d:74:64: 4d:d2:54:c4:0c:14:c4:67:50:d9:17:e1:71:75:26: 25:d4:a3:61:02:c3:63:79:82:41:e7:b4:83:71:8d: 3c:9f:e4:d8:2c:2a:27:5e:51:4d:b8:de:34:e4:39: 41:65:c3:3a:b0:fa:01:32:3f:2f:75:1e:70:12:d6: 8f:52:f5:1a:fd:d4:60:15:e6:c7:be:98:18:00:1e: 00:ef:e5:90:52:c4:0c:ff:62:f1:75:60:d4:85:3f: ab:d8:b5:50:dd:48:e5:aa:23:1b:98:58:55:84:03: 64:e9:df:b0:af:5b:a8:fb:89:2a:df:d9:8a:bc:e8: ba:0d:8d:40:7b:41:01:e8:73:5a:0a:ee:ae:70:34: e3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BB:80:63:8B:C8:39:D3:0F:C5:F5:A4:14:8F:F5:51:16:49:02:DD X509v3 Authority Key Identifier: keyid:48:53:A1:B3:17:C4:7A:A7:2B:45:FD:08:6B:1B:D9:E2:F5:AB:61:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4853A1B317C47AA72B45FD086B1BD9E2F5AB6133.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748241923/0/3130332e38392e3131322e302f32322d3332203d3e203633353939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.89.112.0/22 Signature Algorithm: sha256WithRSAEncryption aa:6b:57:fa:49:8d:21:49:37:da:76:67:2e:07:7e:f5:71:f1: e2:e7:9b:4d:31:91:41:c8:5b:47:a2:84:ca:55:dc:aa:b5:36: 89:5e:7a:67:a3:6b:32:e3:13:e9:b4:4c:d3:6a:28:18:44:53: 31:24:95:eb:3d:ba:a8:c1:35:e6:70:8c:85:1f:86:2d:39:0f: 07:af:7d:94:54:c8:6a:04:55:03:8f:ae:7a:7d:17:5a:2a:63: f1:37:47:91:18:f2:e5:ac:d5:b6:37:75:34:0d:e3:1c:38:24: 45:d1:98:27:95:3f:d9:10:3b:46:62:4e:8d:d3:aa:d6:9c:19: 0a:f8:dd:c6:fc:21:02:cc:22:82:8c:7f:99:ff:e2:e8:76:d7: 70:40:7a:8b:e7:81:75:3e:e4:3c:61:f3:aa:45:16:3c:33:d9: 29:ef:3d:12:23:d3:98:a9:97:6b:a5:03:99:bb:b2:8d:09:2f: 11:b0:f9:c2:93:eb:7a:b5:cf:76:31:bb:1d:25:51:82:55:dd: c2:5f:45:fd:70:d8:43:2d:a2:cc:0d:e2:ab:85:39:84:2c:c3: 2e:cf:34:e1:2d:0f:0f:62:41:23:bd:52:11:9d:20:a6:79:08: 1c:ff:9c:99:df:5c:d1:bc:6c:45:bc:e8:5d:3a:7f:f8:39:6b: 54:a1:ab:89 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYSFfq27T+X9hVQxSDOKUcTqhHLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJG NUFCNjEzMzAeFw0yNjA0MTYwNjQwMzhaFw0yNzA0MTUwNjQ1MzhaMDMxMTAvBgNV BAMTKEY0QkI4MDYzOEJDODM5RDMwRkM1RjVBNDE0OEZGNTUxMTY0OTAyREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJnkZKnjRbubof657GlcUR45q5 96S3SeTpQ9OHJOyccP1/obleauPQ0fWvLh4ZSZs3jooK1+uO9kGOzMy9npyd9vO/ AjovM6DKJtSgpY81poTnvZJYiu1zOhguGJ8MsN4dO7502N8GOVRHZpBcStlhaV6o oW10ZE3SVMQMFMRnUNkX4XF1JiXUo2ECw2N5gkHntINxjTyf5NgsKideUU243jTk OUFlwzqw+gEyPy91HnAS1o9S9Rr91GAV5se+mBgAHgDv5ZBSxAz/YvF1YNSFP6vY tVDdSOWqIxuYWFWEA2Tp37CvW6j7iSrf2Yq86LoNjUB7QQHoc1oK7q5wNONFAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU9LuAY4vIOdMPxfWkFI/1URZJAt0wHwYDVR0j BBgwFoAUSFOhsxfEeqcrRf0IaxvZ4vWrYTMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODI0MTkyMy8wLzQ4NTNBMUIzMTdDNDdBQTcyQjQ1RkQwODZCMUJE OUUyRjVBQjYxMzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDg1M0ExQjMxN0M0N0FBNzJCNDVGRDA4NkIxQkQ5RTJGNUFCNjEzMy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODI0MTkyMy8wLzMxMzAzMzJlMzgz OTJlMzEzMTMyMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzYzMzM1MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmdZcDANBgkqhkiG9w0BAQsFAAOCAQEAqmtX+kmNIUk32nZnLgd+9XHx 4uebTTGRQchbR6KEylXcqrU2iV56Z6NrMuMT6bRM02ooGERTMSSV6z26qME15nCM hR+GLTkPB699lFTIagRVA4+uen0XWipj8TdHkRjy5azVtjd1NA3jHDgkRdGYJ5U/ 2RA7RmJOjdOq1pwZCvjdxvwhAswigox/mf/i6HbXcEB6i+eBdT7kPGHzqkUWPDPZ Ke89EiPTmKmXa6UDmbuyjQkvEbD5wpPrerXPdjG7HSVRglXdwl9F/XDYQy2izA3i q4U5hCzDLs804S0PD2JBI71SEZ0gpnkIHP+cmd9c0bxsRbzoXTp/+DlrVKGriQ== -----END CERTIFICATE-----Generated at Fri Apr 17 22:26:50 2026 by rpki-client