$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142852097/0/35382e33302e3132382e302f31382d3234203d3e203137343239.roa File: 35382e33302e3132382e302f31382d3234203d3e203137343239.roa (raw, json) Hash identifier: MWB7eCOw9Q5HQyKf2S8hlsBRh/29RaLagphh3h2SqQM= Subject key identifier: 01:3A:88:65:63:38:03:BE:27:8C:62:AB:6D:47:44:1D:85:85:5F:18 Certificate issuer: /CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Certificate serial: 3FA9E521F8525972480A400D4E92F9D0DE327C65 Authority key identifier: CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/35382e33302e3132382e302f31382d3234203d3e203137343239.roa Signing time: Mon 13 Apr 2026 03:27:57 +0000 ROA not before: Mon 13 Apr 2026 03:22:57 +0000 ROA not after: Mon 12 Apr 2027 03:27:57 +0000 asID: 17429 IP address blocks: 58.30.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 04:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:a9:e5:21:f8:52:59:72:48:0a:40:0d:4e:92:f9:d0:de:32:7c:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF214CDEDC584B3B010FC3A6D0D3DB897219B594 Validity Not Before: Apr 13 03:22:57 2026 GMT Not After : Apr 12 03:27:57 2027 GMT Subject: CN=013A8865633803BE278C62AB6D47441D85855F18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6f:11:38:67:97:21:ca:b2:20:6e:56:77:a5: 0f:c5:86:64:aa:2b:6b:93:a3:2a:02:02:41:34:13: 31:d8:99:b9:d4:48:8f:87:2c:6b:47:e2:32:c2:89: d2:bf:b6:0f:bf:40:58:54:83:3a:2a:13:53:75:b2: 1f:ce:fd:dd:77:4f:b7:8f:53:fd:9a:b6:bc:96:60: 18:27:bc:39:a4:0a:d8:e8:06:39:d0:9c:ce:94:3a: 30:f8:70:67:21:72:ed:fa:b2:ea:c9:c2:a9:8c:79: 3b:10:5b:0b:05:fd:a9:c7:b6:ce:6f:20:b4:3d:72: 51:f3:0e:c6:9b:c5:f1:b9:f5:4d:d8:d9:3b:47:fb: f3:53:2e:6c:ad:d7:a3:8b:34:8f:20:2e:9f:60:4b: 8c:9e:c9:d6:58:0e:6d:77:dc:97:f2:75:ad:49:a1: b9:b9:b3:8e:2e:82:c0:7d:b3:e2:f2:78:b4:ce:ed: 40:3a:91:59:09:0a:bf:99:1b:1c:2e:73:a6:1d:dd: 8d:91:df:38:4e:e0:9d:b0:92:3d:e3:f6:0c:ad:32: dd:72:cf:21:e9:0d:e2:17:9b:a8:6b:4c:8e:7b:95: 97:e8:27:33:1b:a6:83:4b:fc:3c:4b:99:44:0c:12: 95:77:e1:05:6d:e8:cd:47:a3:00:21:2a:11:c8:41: 78:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3A:88:65:63:38:03:BE:27:8C:62:AB:6D:47:44:1D:85:85:5F:18 X509v3 Authority Key Identifier: keyid:CF:21:4C:DE:DC:58:4B:3B:01:0F:C3:A6:D0:D3:DB:89:72:19:B5:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CF214CDEDC584B3B010FC3A6D0D3DB897219B594.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142852097/0/35382e33302e3132382e302f31382d3234203d3e203137343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.30.128.0/18 Signature Algorithm: sha256WithRSAEncryption bc:92:e0:9d:c1:f9:92:67:b3:a0:eb:15:03:97:18:e5:18:d7: f1:ce:e9:ac:c0:7d:41:0c:c6:00:2b:e2:87:45:0f:79:61:c2: cc:ff:eb:76:47:ee:3a:69:76:e0:0f:67:28:05:5a:02:73:8c: d6:97:12:0a:1a:04:c5:71:2e:b3:a4:f2:24:b1:ca:72:9e:b0: f4:93:7d:0f:f0:a3:66:7c:bd:d5:b5:67:32:7e:d2:00:d5:06: 20:dc:ba:d7:4a:e7:ca:f6:fa:a5:61:5a:1b:2f:23:1f:f8:57: 42:e6:b3:af:e9:bb:a4:b4:37:65:eb:1f:39:76:ba:75:15:20: 09:e7:0e:59:cc:ae:74:c2:3b:1c:df:e4:ee:bc:50:51:2b:26: c3:02:45:e0:26:1f:12:11:9b:c8:86:62:61:93:2a:ba:1d:f5: 77:4a:ef:45:24:27:55:cf:1f:b7:57:a2:ee:de:c1:93:78:7f: e7:07:7d:cf:a4:2f:fd:e8:31:e4:ba:f0:f2:0d:43:30:33:be: 08:99:1b:ab:21:b8:be:c8:64:db:79:76:cd:16:9e:22:58:62: 4b:00:c6:d4:94:d4:29:13:a8:b2:75:63:f8:70:41:67:c5:ef: cf:9f:35:26:ac:32:4b:97:cc:c0:25:68:8d:b4:58:7a:ba:14: 22:94:97:2a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUP6nlIfhSWXJICkANTpL50N4yfGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3 MjE5QjU5NDAeFw0yNjA0MTMwMzIyNTdaFw0yNzA0MTIwMzI3NTdaMDMxMTAvBgNV BAMTKDAxM0E4ODY1NjMzODAzQkUyNzhDNjJBQjZENDc0NDFEODU4NTVGMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYbxE4Z5chyrIgblZ3pQ/FhmSq K2uToyoCAkE0EzHYmbnUSI+HLGtH4jLCidK/tg+/QFhUgzoqE1N1sh/O/d13T7eP U/2atryWYBgnvDmkCtjoBjnQnM6UOjD4cGchcu36surJwqmMeTsQWwsF/anHts5v ILQ9clHzDsabxfG59U3Y2TtH+/NTLmyt16OLNI8gLp9gS4yeydZYDm133Jfyda1J obm5s44ugsB9s+LyeLTO7UA6kVkJCr+ZGxwuc6Yd3Y2R3zhO4J2wkj3j9gytMt1y zyHpDeIXm6hrTI57lZfoJzMbpoNL/DxLmUQMEpV34QVt6M1HowAhKhHIQXhzAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUATqIZWM4A74njGKrbUdEHYWFXxgwHwYDVR0j BBgwFoAUzyFM3txYSzsBD8Om0NPbiXIZtZQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjg1MjA5Ny8wL0NGMjE0Q0RFREM1ODRCM0IwMTBGQzNBNkQwRDNE Qjg5NzIxOUI1OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0YyMTRDREVEQzU4NEIzQjAxMEZDM0E2RDBEM0RCODk3MjE5QjU5NC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyODUyMDk3LzAvMzUzODJlMzMzMDJl MzEzMjM4MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzEzNzM0MzIzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBjoegDANBgkqhkiG9w0BAQsFAAOCAQEAvJLgncH5kmezoOsVA5cY5RjX8c7p rMB9QQzGACvih0UPeWHCzP/rdkfuOml24A9nKAVaAnOM1pcSChoExXEus6TyJLHK cp6w9JN9D/CjZny91bVnMn7SANUGINy610rnyvb6pWFaGy8jH/hXQuazr+m7pLQ3 ZesfOXa6dRUgCecOWcyudMI7HN/k7rxQUSsmwwJF4CYfEhGbyIZiYZMquh31d0rv RSQnVc8ft1ei7t7Bk3h/5wd9z6Qv/egx5Lrw8g1DMDO+CJkbqyG4vshk23l2zRae IlhiSwDG1JTUKROosnVj+HBBZ8Xvz581JqwyS5fMwCVojbRYeroUIpSXKg== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:13 2026 by rpki-client