$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3136332e34372e362e302f32332d3233203d3e203536323832.roa File: 3136332e34372e362e302f32332d3233203d3e203536323832.roa (raw, json) Hash identifier: KBkj4x6cFX8KCN9dff0KXOZN5JNmyK+jP3FZzqMSyWM= Subject key identifier: F0:39:F9:45:64:33:2A:EA:89:75:2B:BC:F0:04:5E:D8:BC:CE:08:19 Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 40E0735AF10E460AE6E2B3D7BDCBE20473035854 Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3136332e34372e362e302f32332d3233203d3e203536323832.roa Signing time: Tue 09 Jun 2026 06:14:05 +0000 ROA not before: Tue 09 Jun 2026 06:09:05 +0000 ROA not after: Tue 08 Jun 2027 06:14:05 +0000 asID: 56282 IP address blocks: 163.47.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 14:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:e0:73:5a:f1:0e:46:0a:e6:e2:b3:d7:bd:cb:e2:04:73:03:58:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: Jun 9 06:09:05 2026 GMT Not After : Jun 8 06:14:05 2027 GMT Subject: CN=F039F94564332AEA89752BBCF0045ED8BCCE0819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c5:17:65:3b:1b:b9:ac:75:e7:e0:a7:a7:99: 3e:a8:b7:77:53:31:f3:1a:d3:78:14:11:f7:d8:00: 0d:49:8a:f0:97:e0:a0:e7:de:26:73:5c:0d:71:e7: 80:fa:cc:ab:43:5f:78:ad:47:20:29:c2:de:32:66: 11:90:f9:00:7c:4e:cd:b6:9c:5c:e3:31:38:40:33: a9:17:4a:45:b5:69:6e:67:d5:9c:36:dd:8b:7d:fe: f1:35:13:25:c7:71:98:5d:51:cb:64:69:11:a0:f3: 91:10:c2:29:7a:b6:f0:11:33:25:dd:32:e2:71:20: a0:ca:63:3b:2b:61:af:c9:14:67:7f:b2:5b:2a:08: 6f:da:34:8c:ae:8c:6a:de:99:05:89:06:73:64:73: 32:f1:dd:68:bf:1d:a7:17:f5:f4:97:59:1e:30:84: a3:a8:be:76:3f:af:c3:16:b1:65:0c:b8:4a:fa:af: 98:32:6f:58:67:09:b0:2d:87:6c:5e:64:35:68:56: 36:ab:c0:42:8d:eb:a3:ed:8b:ea:ce:66:ba:0e:cf: 6c:25:70:2c:ea:12:03:30:0e:cc:55:89:a4:cc:18: 0d:39:f4:68:a6:6c:a0:51:e7:23:1f:71:97:c7:06: a5:5c:3b:f7:63:c1:2e:56:28:a9:b1:03:2e:f7:9f: b8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:39:F9:45:64:33:2A:EA:89:75:2B:BC:F0:04:5E:D8:BC:CE:08:19 X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/3136332e34372e362e302f32332d3233203d3e203536323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.47.6.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:ca:86:08:df:bb:91:e1:6e:e9:1e:3b:65:51:f0:77:86:76: 6c:a1:44:e7:ba:dc:d2:9e:ec:ed:81:7f:90:3b:f3:d2:10:2d: 68:a0:3c:82:6b:21:b7:eb:18:72:f3:25:53:28:8e:b0:d0:28: d7:30:55:3b:00:02:e4:2e:83:9b:e8:77:9f:34:66:0e:61:fd: 2b:6a:ba:aa:4d:00:3a:d2:34:c2:c4:c4:3e:17:5f:c7:68:3c: 38:3c:00:df:1d:c1:45:9e:a1:9b:58:5b:ce:a1:6d:ed:eb:2b: 8b:50:92:40:1d:3c:96:09:8a:de:57:4c:b8:de:17:36:f0:46: 93:2b:a0:37:f6:bd:e0:61:fd:df:57:b4:ec:b1:a4:30:62:88: 5f:99:58:9e:cb:84:d3:d0:c3:81:44:6b:85:37:41:da:53:e8: 18:53:b1:58:e3:00:b3:6f:69:96:f9:8b:58:c6:c0:b8:61:1e: 3e:c6:c8:6a:10:f7:39:34:d0:52:1c:1d:16:dd:68:2d:f0:fb: 3b:28:22:2a:a0:c4:61:93:af:5d:e2:4d:55:35:88:b7:f0:b5: a6:0e:7a:6e:11:99:c1:95:de:ca:6d:1a:ea:23:c5:00:b9:47: 56:4d:81:3a:eb:46:c4:43:bf:8e:40:25:9f:89:7e:83:bc:10: ab:2d:35:05 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUQOBzWvEORgrm4rPXvcviBHMDWFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjA2MDkwNjA5MDVaFw0yNzA2MDgwNjE0MDVaMDMxMTAvBgNV BAMTKEYwMzlGOTQ1NjQzMzJBRUE4OTc1MkJCQ0YwMDQ1RUQ4QkNDRTA4MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhxRdlOxu5rHXn4KenmT6ot3dT MfMa03gUEffYAA1JivCX4KDn3iZzXA1x54D6zKtDX3itRyApwt4yZhGQ+QB8Ts22 nFzjMThAM6kXSkW1aW5n1Zw23Yt9/vE1EyXHcZhdUctkaRGg85EQwil6tvARMyXd MuJxIKDKYzsrYa/JFGd/slsqCG/aNIyujGremQWJBnNkczLx3Wi/HacX9fSXWR4w hKOovnY/r8MWsWUMuEr6r5gyb1hnCbAth2xeZDVoVjarwEKN66Pti+rOZroOz2wl cCzqEgMwDsxViaTMGA059GimbKBR5yMfcZfHBqVcO/djwS5WKKmxAy73n7ifAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU8Dn5RWQzKuqJdSu88ARe2LzOCBkwHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NjY4NDgxLzAvMzEzNjMzMmUzNDM3 MmUzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDM1MzYzMjM4MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGjLwYwDQYJKoZIhvcNAQELBQADggEBAAzKhgjfu5HhbukeO2VR8HeGdmyhROe6 3NKe7O2Bf5A789IQLWigPIJrIbfrGHLzJVMojrDQKNcwVTsAAuQug5vod580Zg5h /StquqpNADrSNMLExD4XX8doPDg8AN8dwUWeoZtYW86hbe3rK4tQkkAdPJYJit5X TLjeFzbwRpMroDf2veBh/d9XtOyxpDBiiF+ZWJ7LhNPQw4FEa4U3QdpT6BhTsVjj ALNvaZb5i1jGwLhhHj7GyGoQ9zk00FIcHRbdaC3w+zsoIiqgxGGTr13iTVU1iLfw taYOem4RmcGV3sptGuojxQC5R1ZNgTrrRsRDv45AJZ+JfoO8EKstNQU= -----END CERTIFICATE-----Generated at Fri Jun 12 01:01:06 2026 by rpki-client