$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947878403/0/34322e3132332e3132382e302f31372d3234203d3e203137393639.roa File: 34322e3132332e3132382e302f31372d3234203d3e203137393639.roa (raw, json) Hash identifier: HJAEw0em6DXYtKjOb8eOjxjOleqPkWguwakB00hU4DQ= Subject key identifier: 8A:0C:C9:5A:5F:ED:4B:88:17:64:88:60:5B:3A:99:FC:D1:13:02:EE Certificate issuer: /CN=57FBC602F8DD1AA06D45E7F3F1993968E7995AE0 Certificate serial: 0D37850E7E2DBD90A5A38CC35893F9BE18DFE7FC Authority key identifier: 57:FB:C6:02:F8:DD:1A:A0:6D:45:E7:F3:F1:99:39:68:E7:99:5A:E0 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/57FBC602F8DD1AA06D45E7F3F1993968E7995AE0.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947878403/0/34322e3132332e3132382e302f31372d3234203d3e203137393639.roa Signing time: Fri 10 Apr 2026 01:43:51 +0000 ROA not before: Fri 10 Apr 2026 01:38:51 +0000 ROA not after: Fri 09 Apr 2027 01:43:51 +0000 asID: 17969 IP address blocks: 42.123.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947878403/0/57FBC602F8DD1AA06D45E7F3F1993968E7995AE0.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947878403/0/57FBC602F8DD1AA06D45E7F3F1993968E7995AE0.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/57FBC602F8DD1AA06D45E7F3F1993968E7995AE0.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 07:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:37:85:0e:7e:2d:bd:90:a5:a3:8c:c3:58:93:f9:be:18:df:e7:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57FBC602F8DD1AA06D45E7F3F1993968E7995AE0 Validity Not Before: Apr 10 01:38:51 2026 GMT Not After : Apr 9 01:43:51 2027 GMT Subject: CN=8A0CC95A5FED4B88176488605B3A99FCD11302EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:53:e9:67:06:3e:af:5e:3f:77:25:63:b5:8c: a9:e1:71:ef:d8:fc:cd:8d:35:77:71:70:ef:80:56: 0a:ed:a3:a0:a0:cb:db:f1:3f:90:69:fd:34:13:1b: b6:5e:91:c1:51:40:e3:49:a3:e0:8a:19:23:08:83: 27:a0:7d:01:38:f2:8a:d1:bc:19:89:79:83:6f:4d: 41:ac:9d:df:86:bb:83:06:85:9a:1d:65:fc:24:d8: 90:e2:13:99:e2:24:1c:0f:8c:9f:1e:fd:99:d6:ab: f9:6e:27:a0:ed:26:69:97:eb:a5:ee:46:9b:73:a8: d3:28:fe:8a:7a:43:fd:5f:57:87:53:18:62:59:0c: 27:be:86:89:0b:8c:d2:97:3a:4d:b9:ae:0c:0e:e1: 81:11:a6:5f:4b:60:e3:87:56:fc:ca:21:e3:6a:0b: 74:cb:ef:4f:43:ef:3c:d6:cd:f7:c5:4b:a6:36:26: c6:c4:fd:95:74:2b:b3:8f:51:aa:7e:e7:24:88:28: 2b:96:f8:8e:98:e5:f0:89:57:b2:0a:00:3d:4e:03: 98:83:1d:bc:14:05:3b:bd:34:cf:c9:c7:f6:4f:53: 2a:8c:87:13:00:99:14:d8:e0:29:c5:04:66:3e:9f: a3:7d:ff:ca:2c:93:74:6d:ba:13:0f:fc:3f:b0:e1: 0c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:0C:C9:5A:5F:ED:4B:88:17:64:88:60:5B:3A:99:FC:D1:13:02:EE X509v3 Authority Key Identifier: keyid:57:FB:C6:02:F8:DD:1A:A0:6D:45:E7:F3:F1:99:39:68:E7:99:5A:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947878403/0/57FBC602F8DD1AA06D45E7F3F1993968E7995AE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/57FBC602F8DD1AA06D45E7F3F1993968E7995AE0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947878403/0/34322e3132332e3132382e302f31372d3234203d3e203137393639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.123.128.0/17 Signature Algorithm: sha256WithRSAEncryption 64:4d:b2:0c:f0:74:c5:71:b1:c9:6c:e8:7f:e7:1b:22:c1:b8: 63:70:42:fa:a2:95:a7:e7:1f:73:16:5c:bf:fa:00:41:af:7d: a2:ed:a8:ed:e5:69:66:44:01:bf:cc:73:d8:a3:b3:86:76:17: e7:c5:c8:44:9c:3e:86:5b:07:c6:84:86:f3:21:92:39:b3:e5: 74:6a:10:86:62:7d:bb:59:e3:ba:fd:c0:e8:71:fd:ee:a2:c3: 5e:14:e2:95:f3:16:29:cb:24:ca:fa:6f:56:1a:dd:d3:36:0f: d2:36:be:5e:92:49:6b:3f:d4:0c:15:fa:fa:af:1e:52:bd:80: 95:87:86:f2:38:06:74:2d:6f:42:90:1a:0d:26:bb:36:c4:fb: 6e:de:2b:fa:0a:80:61:3c:4d:aa:f7:86:41:99:94:1e:ef:d6: eb:6e:c9:c9:79:c7:b5:e7:37:26:fd:7f:5a:80:ec:45:36:d6: b0:bc:57:65:2a:81:6c:61:49:5e:20:39:9e:80:ef:84:a8:e6: fb:b5:fe:98:6e:92:c0:f9:e2:c7:ca:80:0c:e9:fe:9d:b4:7a: 96:1c:52:17:ee:db:8a:12:6e:c4:04:aa:7c:e5:e1:a9:12:f2: 5b:77:ad:58:15:65:4b:15:a1:97:9a:18:f3:a0:1e:78:03:2d: cb:e9:1b:bf -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUDTeFDn4tvZClo4zDWJP5vhjf5/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdGQkM2MDJGOEREMUFBMDZENDVFN0YzRjE5OTM5NjhF Nzk5NUFFMDAeFw0yNjA0MTAwMTM4NTFaFw0yNzA0MDkwMTQzNTFaMDMxMTAvBgNV BAMTKDhBMENDOTVBNUZFRDRCODgxNzY0ODg2MDVCM0E5OUZDRDExMzAyRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClU+lnBj6vXj93JWO1jKnhce/Y /M2NNXdxcO+AVgrto6Cgy9vxP5Bp/TQTG7ZekcFRQONJo+CKGSMIgyegfQE48orR vBmJeYNvTUGsnd+Gu4MGhZodZfwk2JDiE5niJBwPjJ8e/ZnWq/luJ6DtJmmX66Xu RptzqNMo/op6Q/1fV4dTGGJZDCe+hokLjNKXOk25rgwO4YERpl9LYOOHVvzKIeNq C3TL709D7zzWzffFS6Y2JsbE/ZV0K7OPUap+5ySIKCuW+I6Y5fCJV7IKAD1OA5iD HbwUBTu9NM/Jx/ZPUyqMhxMAmRTY4CnFBGY+n6N9/8osk3RtuhMP/D+w4QxLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUigzJWl/tS4gXZIhgWzqZ/NETAu4wHwYDVR0j BBgwFoAUV/vGAvjdGqBtRefz8Zk5aOeZWuAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzg3ODQwMy8wLzU3RkJDNjAyRjhERDFBQTA2RDQ1RTdGM0YxOTkz OTY4RTc5OTVBRTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTdGQkM2MDJGOEREMUFBMDZENDVFN0YzRjE5OTM5NjhFNzk5NUFFMC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0Nzg3ODQwMy8wLzM0MzIyZTMxMzIz MzJlMzEzMjM4MmUzMDJmMzEzNzJkMzIzNDIwM2QzZTIwMzEzNzM5MzYzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEByp7gDANBgkqhkiG9w0BAQsFAAOCAQEAZE2yDPB0xXGxyWzof+cbIsG4 Y3BC+qKVp+cfcxZcv/oAQa99ou2o7eVpZkQBv8xz2KOzhnYX58XIRJw+hlsHxoSG 8yGSObPldGoQhmJ9u1njuv3A6HH97qLDXhTilfMWKcskyvpvVhrd0zYP0ja+XpJJ az/UDBX6+q8eUr2AlYeG8jgGdC1vQpAaDSa7NsT7bt4r+gqAYTxNqveGQZmUHu/W 627JyXnHtec3Jv1/WoDsRTbWsLxXZSqBbGFJXiA5noDvhKjm+7X+mG6SwPnix8qA DOn+nbR6lhxSF+7bihJuxASqfOXhqRLyW3etWBVlSxWhl5oY86AeeAMty+kbvw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:27 2026 by rpki-client