$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/35382e33302e302e302f31382d3234203d3e203137343239.roa File: 35382e33302e302e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: 6YsWSUeskQX+PJ27awoMw+8p71FZs/QoHR248zuNvKM= Subject key identifier: E9:0B:12:01:2A:CD:F9:A8:C9:5F:D2:33:84:2E:09:23:64:61:0B:3D Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 476070EEBEC4B2172DC00224C87D85DB90C81B35 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/35382e33302e302e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:27:56 +0000 ROA not before: Mon 13 Apr 2026 03:22:56 +0000 ROA not after: Mon 12 Apr 2027 03:27:56 +0000 asID: 17429 IP address blocks: 58.30.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:60:70:ee:be:c4:b2:17:2d:c0:02:24:c8:7d:85:db:90:c8:1b:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:22:56 2026 GMT Not After : Apr 12 03:27:56 2027 GMT Subject: CN=E90B12012ACDF9A8C95FD233842E092364610B3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:bd:26:b2:64:b7:94:b3:da:c8:58:00:37:cf: a6:e0:e9:da:93:2b:52:a0:f4:74:f7:6d:3a:5c:c1: 09:96:ce:3a:90:21:dc:de:29:08:4c:17:83:83:e4: 13:e0:c9:41:4d:2e:99:ea:66:7c:c7:57:19:6e:1c: b1:de:3e:d5:00:a7:b0:56:40:3d:3c:a5:e6:a5:61: 74:a0:9e:31:8e:9c:65:21:d8:44:4c:00:84:f1:d6: 41:00:dc:23:5c:4a:aa:ae:a7:9a:b9:03:19:d4:61: 6a:90:06:10:24:f5:ce:01:33:80:ba:1e:e0:73:bc: a0:da:6a:b8:c4:61:4b:91:bc:fa:a8:fe:db:13:28: 9f:1b:6a:bf:a6:2f:f1:57:f1:d2:f6:24:e9:35:50: e1:99:70:d6:60:b0:ff:ca:8d:31:7e:2b:ae:2a:01: c6:62:46:04:e4:ec:f6:62:f4:94:5a:d7:f4:80:5b: af:8a:24:54:a6:66:83:12:10:cf:14:19:b0:60:37: 1d:0f:36:e8:77:77:d8:d5:ef:07:98:3e:3c:ca:54: af:56:96:31:e2:97:6f:11:b9:d8:46:43:4e:a0:47: 9f:61:75:cd:96:f8:4d:20:e3:9b:b1:d9:ca:1d:5a: ea:8d:7f:33:98:af:bd:89:f7:12:7f:3f:30:74:e2: 94:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0B:12:01:2A:CD:F9:A8:C9:5F:D2:33:84:2E:09:23:64:61:0B:3D X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/35382e33302e302e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.30.0.0/18 Signature Algorithm: sha256WithRSAEncryption be:bb:f1:66:3f:3f:01:6b:f8:85:d3:0c:7a:12:59:dc:d4:e7: d2:2c:96:88:f4:f6:81:8a:e9:56:68:b8:e2:96:16:e2:a6:e2: 75:ac:a7:cf:4c:85:3d:ab:f1:62:4a:50:d8:37:47:a3:8d:a6: b0:fc:6e:ef:29:9b:24:5f:ac:30:64:86:3d:52:03:27:13:cc: f0:33:a3:82:30:19:f1:25:8f:44:3f:0c:53:47:99:27:15:94: 7f:d1:9e:32:79:e1:eb:e2:d0:cc:f1:ea:8c:e8:40:e0:2a:e2: 58:1e:8b:6f:4c:7e:8a:23:1c:5d:13:ed:b0:49:4b:5c:1d:e3: 07:80:0e:9a:92:ca:a1:14:94:14:5a:6a:18:1d:f8:85:02:7c: 15:0c:80:bb:ec:60:38:95:8f:f0:1f:fd:a7:05:cb:4f:12:67: 5e:ef:9c:39:b3:35:ea:df:b0:c1:5e:0e:82:b6:08:42:b6:5a: f1:bc:7c:33:63:11:60:3f:81:bb:4e:77:d9:42:bc:19:d0:50: 28:46:bf:14:16:56:dc:47:59:9c:99:29:b4:a4:5e:ca:15:6c: 71:ec:c4:ed:21:ea:76:5e:7a:cb:65:a0:31:0a:6d:47:36:c3: 51:06:86:e0:ee:13:2c:e5:31:66:47:ea:84:d6:fb:01:0b:47: 54:f3:60:c8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUR2Bw7r7EshctwAIkyH2F25DIGzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIyNTZaFw0yNzA0MTIwMzI3NTZaMDMxMTAvBgNV BAMTKEU5MEIxMjAxMkFDREY5QThDOTVGRDIzMzg0MkUwOTIzNjQ2MTBCM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNvSayZLeUs9rIWAA3z6bg6dqT K1Kg9HT3bTpcwQmWzjqQIdzeKQhMF4OD5BPgyUFNLpnqZnzHVxluHLHePtUAp7BW QD08pealYXSgnjGOnGUh2ERMAITx1kEA3CNcSqqup5q5AxnUYWqQBhAk9c4BM4C6 HuBzvKDaarjEYUuRvPqo/tsTKJ8bar+mL/FX8dL2JOk1UOGZcNZgsP/KjTF+K64q AcZiRgTk7PZi9JRa1/SAW6+KJFSmZoMSEM8UGbBgNx0PNuh3d9jV7weYPjzKVK9W ljHil28RudhGQ06gR59hdc2W+E0g45ux2codWuqNfzOYr72J9xJ/PzB04pTJAgMB AAGjggINMIICCTAdBgNVHQ4EFgQU6QsSASrN+ajJX9IzhC4JI2RhCz0wHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzUzODJlMzMzMDJl MzAyZTMwMmYzMTM4MmQzMjM0MjAzZDNlMjAzMTM3MzQzMjM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG Oh4AMA0GCSqGSIb3DQEBCwUAA4IBAQC+u/FmPz8Ba/iF0wx6Elnc1OfSLJaI9PaB iulWaLjilhbipuJ1rKfPTIU9q/FiSlDYN0ejjaaw/G7vKZskX6wwZIY9UgMnE8zw M6OCMBnxJY9EPwxTR5knFZR/0Z4yeeHr4tDM8eqM6EDgKuJYHotvTH6KIxxdE+2w SUtcHeMHgA6aksqhFJQUWmoYHfiFAnwVDIC77GA4lY/wH/2nBctPEmde75w5szXq 37DBXg6CtghCtlrxvHwzYxFgP4G7TnfZQrwZ0FAoRr8UFlbcR1mcmSm0pF7KFWxx 7MTtIep2XnrLZaAxCm1HNsNRBobg7hMs5TFmR+qE1vsBC0dU82DI -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:24 2026 by rpki-client