$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33352e302f32342d3234203d3e20313337373533.roa File: 312e3131382e33352e302f32342d3234203d3e20313337373533.roa (raw, json) Hash identifier: LWODh2T7rMTjolcycC8ZrtyVAnMO6vkZKW2tUocEVpQ= Subject key identifier: 35:67:C4:85:B5:FD:D7:77:B2:18:08:5A:5D:72:ED:25:7C:8E:76:4D Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 3CD415FC3C31BFA42B15680A1495DEA7478E71E7 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33352e302f32342d3234203d3e20313337373533.roa Signing time: Wed 01 Apr 2026 06:45:18 +0000 ROA not before: Wed 01 Apr 2026 06:40:18 +0000 ROA not after: Wed 31 Mar 2027 06:45:18 +0000 asID: 137753 IP address blocks: 1.118.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 Apr 2026 01:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:d4:15:fc:3c:31:bf:a4:2b:15:68:0a:14:95:de:a7:47:8e:71:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 1 06:40:18 2026 GMT Not After : Mar 31 06:45:18 2027 GMT Subject: CN=3567C485B5FDD777B218085A5D72ED257C8E764D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:45:d1:bb:7e:98:aa:84:96:e2:1e:23:d6:95: af:c6:b4:38:78:ed:f1:66:b0:4f:51:d3:dc:53:58: 88:6d:c1:0d:0d:6a:f9:df:65:41:ba:ae:e9:04:26: 83:49:a2:af:95:a7:47:bb:17:99:c7:9d:76:22:56: 1a:2c:86:4b:cc:3b:d1:19:c1:17:95:bd:29:47:17: 30:3f:dc:06:cd:f1:ea:09:58:37:59:8a:3f:87:b3: e0:cb:9b:96:13:d0:7a:0b:1e:4f:f3:f2:5d:82:8d: db:7c:7c:40:da:a0:ef:ad:ce:6a:ea:33:44:87:93: e4:02:de:45:bc:7c:a3:cf:e0:28:8f:39:5d:dd:ec: c4:a6:32:07:ea:c9:00:56:13:af:bd:8a:7b:45:3e: 61:85:a2:9c:7e:41:51:a3:99:fc:d2:28:b5:40:e9: af:37:62:19:10:f2:d4:c4:d0:0d:b4:39:0e:1d:c8: 17:da:09:c9:95:09:3d:fd:79:6d:3b:cf:3e:bc:82: e1:82:d5:e3:fc:b8:1b:31:af:e4:73:39:38:4d:0c: 78:7c:55:07:65:17:57:80:b9:4a:12:fd:88:f2:af: e1:a5:9f:8c:fc:28:c9:84:4b:75:95:73:71:b0:48: 00:b2:cb:54:e4:1a:5b:da:b7:54:92:d7:da:23:17: 4f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:67:C4:85:B5:FD:D7:77:B2:18:08:5A:5D:72:ED:25:7C:8E:76:4D X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/312e3131382e33352e302f32342d3234203d3e20313337373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.118.35.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:1c:ba:d8:a1:81:7b:46:0d:9d:2f:0e:65:a6:da:56:23:1b: 01:6e:f5:09:80:d3:3c:4d:df:ed:25:34:60:24:fd:59:22:e1: 9b:6d:05:ae:29:fc:79:3f:8d:11:f3:aa:ee:00:ac:7b:8d:7b: 22:32:b9:28:df:d5:0b:77:02:37:10:93:26:73:bb:e4:38:b1: b9:c6:8e:2c:0d:41:ef:d7:ff:05:bb:64:69:2e:9f:29:b0:2f: 41:b3:c2:0e:b5:be:90:02:fa:97:75:34:64:0a:2a:8c:78:c0: b1:82:ba:30:12:62:cc:9b:d2:a1:1d:c1:6d:e2:db:95:ab:54: 30:33:f9:b2:57:8d:58:c4:29:22:90:50:da:97:3c:d3:ec:4f: 5a:4a:56:9b:86:04:ea:c9:3d:30:ec:bd:8b:c0:e4:df:23:f8: 83:80:4b:0b:4f:9e:19:8c:fe:b4:e9:d0:dd:70:f7:35:ff:1d: eb:89:9b:07:9e:84:53:3c:db:b7:e4:ac:59:b4:2c:1a:0e:32: bd:d0:ce:31:26:d7:36:e6:fc:97:f2:98:55:f3:0d:10:2c:ce: 3b:07:e3:63:f7:f5:7f:c2:48:3c:81:aa:d9:5c:ae:67:ae:c6: 6a:01:d9:05:29:e5:4f:e5:4e:4e:1b:7b:18:ed:75:0d:d0:6f: 99:b4:56:f7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUPNQV/Dwxv6QrFWgKFJXep0eOcecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MDEwNjQwMThaFw0yNzAzMzEwNjQ1MThaMDMxMTAvBgNV BAMTKDM1NjdDNDg1QjVGREQ3NzdCMjE4MDg1QTVENzJFRDI1N0M4RTc2NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbRdG7fpiqhJbiHiPWla/GtDh4 7fFmsE9R09xTWIhtwQ0NavnfZUG6rukEJoNJoq+Vp0e7F5nHnXYiVhoshkvMO9EZ wReVvSlHFzA/3AbN8eoJWDdZij+Hs+DLm5YT0HoLHk/z8l2Cjdt8fEDaoO+tzmrq M0SHk+QC3kW8fKPP4CiPOV3d7MSmMgfqyQBWE6+9intFPmGFopx+QVGjmfzSKLVA 6a83YhkQ8tTE0A20OQ4dyBfaCcmVCT39eW07zz68guGC1eP8uBsxr+RzOThNDHh8 VQdlF1eAuUoS/Yjyr+Gln4z8KMmES3WVc3GwSACyy1TkGlvat1SS19ojF0+hAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUNWfEhbX913eyGAhaXXLtJXyOdk0wHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzEyZTMxMzEzODJl MzMzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNzM3MzUzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAAF2IzANBgkqhkiG9w0BAQsFAAOCAQEAnhy62KGBe0YNnS8OZabaViMbAW71 CYDTPE3f7SU0YCT9WSLhm20Frin8eT+NEfOq7gCse417IjK5KN/VC3cCNxCTJnO7 5DixucaOLA1B79f/BbtkaS6fKbAvQbPCDrW+kAL6l3U0ZAoqjHjAsYK6MBJizJvS oR3BbeLblatUMDP5sleNWMQpIpBQ2pc80+xPWkpWm4YE6sk9MOy9i8Dk3yP4g4BL C0+eGYz+tOnQ3XD3Nf8d64mbB56EUzzbt+SsWbQsGg4yvdDOMSbXNub8l/KYVfMN ECzOOwfjY/f1f8JIPIGq2VyuZ67GagHZBSnlT+VOTht7GO11DdBvmbRW9w== -----END CERTIFICATE-----Generated at Tue Apr 7 13:25:10 2026 by rpki-client