$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947812867/0/35392e3130372e3132382e302f31372d3234203d3e20323037353530.roa File: 35392e3130372e3132382e302f31372d3234203d3e20323037353530.roa (raw, json) Hash identifier: HMhJz8aFS2MT8vfQQUOTjDRlnjsKrVcYFt06/GVyH6o= Subject key identifier: BD:CE:8E:CF:89:F5:DA:EC:B5:A6:B9:46:F9:64:15:16:6B:66:D5:B8 Certificate issuer: /CN=F329F518724FAC695E33F5C78532CBF56BF4243D Certificate serial: 4C85754B6EEA4416FC66B67B4BDA64792A0E4E99 Authority key identifier: F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/35392e3130372e3132382e302f31372d3234203d3e20323037353530.roa Signing time: Tue 02 Jun 2026 09:25:00 +0000 ROA not before: Tue 02 Jun 2026 09:20:00 +0000 ROA not after: Tue 01 Jun 2027 09:25:00 +0000 asID: 207550 IP address blocks: 59.107.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 09:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:85:75:4b:6e:ea:44:16:fc:66:b6:7b:4b:da:64:79:2a:0e:4e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F329F518724FAC695E33F5C78532CBF56BF4243D Validity Not Before: Jun 2 09:20:00 2026 GMT Not After : Jun 1 09:25:00 2027 GMT Subject: CN=BDCE8ECF89F5DAECB5A6B946F96415166B66D5B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7f:e7:77:84:4a:1e:a7:e8:02:33:be:71:dc: e4:31:64:82:51:2f:d9:45:4a:78:7c:a3:99:16:04: 5f:29:35:30:14:43:3b:71:bc:ca:bc:66:78:07:cd: 31:d1:df:0f:c1:55:5c:6a:bc:55:7e:d7:ec:ec:1c: 7d:87:ad:d5:71:9d:69:08:e5:a5:3f:3f:ac:fe:9f: b0:18:7f:b6:f1:85:7b:e2:0f:f8:48:75:d8:1e:d2: 76:a2:c2:b5:d2:c2:08:7b:66:73:98:49:8c:4c:90: fa:4f:c9:e5:84:a4:02:48:cd:70:db:40:81:2e:ed: b5:c8:a1:8d:83:66:1e:aa:93:f2:7a:7e:8a:6c:fd: 2f:56:08:79:e6:f8:0e:4c:9e:59:4d:ba:fa:7e:21: c1:56:ef:69:a3:1e:0b:9c:45:c0:a1:a4:71:de:9e: dd:ca:b0:36:1a:3f:25:fe:2a:55:24:c7:30:bb:85: 04:2d:d9:1a:1a:0d:2d:22:70:95:f8:23:53:5b:ff: 4a:ac:42:f7:ea:26:75:9f:d0:d2:cb:c2:2d:9e:6d: f5:9c:ae:27:59:74:30:05:3e:c4:61:55:d1:5a:64: f0:1e:4d:a2:0b:c2:74:81:60:7d:06:14:a3:fc:5e: 65:a8:66:8a:d2:eb:2a:51:be:1a:39:97:da:0a:46: 31:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CE:8E:CF:89:F5:DA:EC:B5:A6:B9:46:F9:64:15:16:6B:66:D5:B8 X509v3 Authority Key Identifier: keyid:F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/35392e3130372e3132382e302f31372d3234203d3e20323037353530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.107.128.0/17 Signature Algorithm: sha256WithRSAEncryption 6b:72:e9:aa:c3:d9:90:b7:f7:e3:f9:f6:0f:88:40:15:86:5a: 7e:c1:39:fb:f2:c4:82:f5:1f:80:d9:c2:31:d5:03:e1:57:d3: cc:10:20:99:22:6f:71:d3:27:b8:7f:fb:11:b3:02:8f:28:a5: 17:b0:ef:f6:77:c6:a4:83:32:78:b3:ee:5a:64:8a:06:9b:f4: b0:66:31:99:ab:90:96:8b:80:65:9f:eb:5f:0e:1a:c9:1c:5a: 12:f4:60:a5:85:a7:d3:30:ea:82:00:96:8c:65:2a:28:36:f7: cf:46:08:f8:35:60:87:a3:80:8d:fa:7c:2e:81:75:9d:b0:df: fd:f6:71:16:0e:93:3b:3a:97:6b:b1:84:4e:85:ae:13:a7:2c: 42:d6:13:df:71:ba:91:e4:0d:46:2a:f2:7b:99:e4:9f:9a:66: 24:e4:0a:01:e7:b9:74:78:a1:20:e0:5d:5f:e6:89:8b:f1:9e: 4b:1e:f8:53:53:0a:89:76:1f:91:48:1c:d8:88:9a:9a:c4:c1: 33:5d:92:bc:b7:59:e9:33:10:82:d7:e9:34:4b:9e:29:d3:52: 6c:6d:0a:66:38:91:87:12:66:0d:fe:22:2c:a8:41:0e:00:5e: 0f:4b:a7:61:61:87:a4:2e:16:8c:ed:5e:73:32:e3:d1:bd:f9: cf:4f:4f:4e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUTIV1S27qRBb8ZrZ7S9pkeSoOTpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2 QkY0MjQzRDAeFw0yNjA2MDIwOTIwMDBaFw0yNzA2MDEwOTI1MDBaMDMxMTAvBgNV BAMTKEJEQ0U4RUNGODlGNURBRUNCNUE2Qjk0NkY5NjQxNTE2NkI2NkQ1QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOf+d3hEoep+gCM75x3OQxZIJR L9lFSnh8o5kWBF8pNTAUQztxvMq8ZngHzTHR3w/BVVxqvFV+1+zsHH2HrdVxnWkI 5aU/P6z+n7AYf7bxhXviD/hIddge0naiwrXSwgh7ZnOYSYxMkPpPyeWEpAJIzXDb QIEu7bXIoY2DZh6qk/J6fops/S9WCHnm+A5MnllNuvp+IcFW72mjHgucRcChpHHe nt3KsDYaPyX+KlUkxzC7hQQt2RoaDS0icJX4I1Nb/0qsQvfqJnWf0NLLwi2ebfWc ridZdDAFPsRhVdFaZPAeTaILwnSBYH0GFKP8XmWoZorS6ypRvho5l9oKRjEPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUvc6Oz4n12uy1prlG+WQVFmtm1bgwHwYDVR0j BBgwFoAU8yn1GHJPrGleM/XHhTLL9Wv0JD0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0NzgxMjg2Ny8wL0YzMjlGNTE4NzI0RkFDNjk1RTMzRjVDNzg1MzJD QkY1NkJGNDI0M0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2QkY0MjQzRC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1NzYxOTk5NDc4MTI4NjcvMC8zNTM5MmUzMTMw MzcyZTMxMzIzODJlMzAyZjMxMzcyZDMyMzQyMDNkM2UyMDMyMzAzNzM1MzUzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBztrgDANBgkqhkiG9w0BAQsFAAOCAQEAa3LpqsPZkLf34/n2D4hA FYZafsE5+/LEgvUfgNnCMdUD4VfTzBAgmSJvcdMnuH/7EbMCjyilF7Dv9nfGpIMy eLPuWmSKBpv0sGYxmauQlouAZZ/rXw4ayRxaEvRgpYWn0zDqggCWjGUqKDb3z0YI +DVgh6OAjfp8LoF1nbDf/fZxFg6TOzqXa7GEToWuE6csQtYT33G6keQNRirye5nk n5pmJOQKAee5dHihIOBdX+aJi/GeSx74U1MKiXYfkUgc2IiamsTBM12SvLdZ6TMQ gtfpNEueKdNSbG0KZjiRhxJmDf4iLKhBDgBeD0unYWGHpC4WjO1eczLj0b35z09P Tg== -----END CERTIFICATE-----Generated at Tue Jun 2 21:25:20 2026 by rpki-client