$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS59083.roa File: AS59083.roa (raw, json) Hash identifier: Z100p9HOjk+mF7crq0CZJnUV/XfjIQj7eGvkpYgi6Kk= Subject key identifier: F6:86:7F:B7:E2:09:5F:D2:19:B4:EE:F7:08:B7:17:EB:DE:A4:8C:04 Certificate issuer: /CN=1FFF263C64163BC58514B539C10375CCB553D75E Certificate serial: 130DC64F47827439337E701482061B43C29E5391 Authority key identifier: 1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS59083.roa Signing time: Thu 28 May 2026 10:02:56 +0000 ROA not before: Thu 28 May 2026 09:57:56 +0000 ROA not after: Thu 27 May 2027 10:02:56 +0000 asID: 59083 IP address blocks: 43.254.152.0/22 maxlen: 24 43.254.152.0/24 maxlen: 24 43.254.153.0/24 maxlen: 24 43.254.154.0/23 maxlen: 24 43.254.154.0/24 maxlen: 24 43.254.155.0/24 maxlen: 24 45.252.48.0/22 maxlen: 24 59.153.168.0/23 maxlen: 24 59.153.168.0/24 maxlen: 24 103.10.0.0/22 maxlen: 24 103.10.0.0/23 maxlen: 23 103.10.0.0/24 maxlen: 24 103.10.1.0/24 maxlen: 24 103.10.2.0/23 maxlen: 23 103.10.2.0/24 maxlen: 24 103.10.3.0/24 maxlen: 24 103.24.116.0/22 maxlen: 24 103.24.117.0/24 maxlen: 24 103.198.216.0/22 maxlen: 24 103.198.220.0/22 maxlen: 24 103.198.224.0/22 maxlen: 24 103.198.228.0/22 maxlen: 24 103.198.232.0/22 maxlen: 24 103.198.236.0/22 maxlen: 24 103.198.240.0/22 maxlen: 24 103.198.244.0/22 maxlen: 24 202.89.96.0/22 maxlen: 22 2403:1b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 23:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:0d:c6:4f:47:82:74:39:33:7e:70:14:82:06:1b:43:c2:9e:53:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FFF263C64163BC58514B539C10375CCB553D75E Validity Not Before: May 28 09:57:56 2026 GMT Not After : May 27 10:02:56 2027 GMT Subject: CN=F6867FB7E2095FD219B4EEF708B717EBDEA48C04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:59:ec:cb:21:36:46:fc:ee:8e:95:71:e6:a7: d6:c8:37:c4:a7:77:f5:78:df:b2:5b:58:10:10:a2: 95:6b:cf:27:b4:dd:0c:af:45:52:7b:6e:93:50:22: 9e:3e:e4:c7:d0:39:19:91:3b:1b:d5:85:46:50:16: 51:ae:17:ce:dc:c6:49:14:d6:07:5f:e7:5a:99:8a: 40:28:2f:c8:95:7b:c4:1e:2c:da:b9:a5:73:73:e7: e3:c3:5f:af:3a:8d:f0:5b:cd:74:53:b8:97:4b:8b: 92:06:40:aa:e4:54:29:7f:18:a6:86:98:04:92:ff: d7:ab:b6:be:02:4d:1e:e9:c5:c8:99:d7:bb:92:98: 1b:98:e0:0a:51:e2:e2:0e:0f:7a:9d:de:31:a1:49: 61:a7:f9:b6:3d:61:59:15:ea:49:14:90:e1:64:14: ca:60:c9:65:69:bd:ab:9d:47:b6:1e:c5:fe:bf:97: 43:30:a5:1d:03:24:7f:de:19:eb:8d:6e:40:87:75: 3e:12:13:b3:53:12:84:f9:16:5a:3c:a0:8c:a0:a9: bd:be:b5:d7:58:f7:41:46:21:09:5e:ab:04:b1:ee: cc:a8:ab:2c:da:2e:b4:b8:95:db:3d:eb:78:b3:95: d3:51:de:e5:2b:e7:a7:71:9e:86:a3:0b:c1:b4:fc: 25:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:86:7F:B7:E2:09:5F:D2:19:B4:EE:F7:08:B7:17:EB:DE:A4:8C:04 X509v3 Authority Key Identifier: keyid:1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS59083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.152.0/22 45.252.48.0/22 59.153.168.0/23 103.10.0.0/22 103.24.116.0/22 103.198.216.0-103.198.247.255 202.89.96.0/22 IPv6: 2403:1b80::/48 Signature Algorithm: sha256WithRSAEncryption 99:be:af:3f:e1:19:45:8a:12:76:6b:71:a5:21:17:62:7a:99: 8c:d3:d9:15:76:17:a8:4d:45:e5:7e:13:b8:56:ed:85:b9:32: c7:6a:14:aa:36:64:1d:82:18:b6:1a:ad:f2:7f:cd:dc:4d:0e: 81:32:bc:78:cc:5a:38:0e:ca:8b:e9:29:a3:45:17:e5:02:0c: d4:11:53:02:dc:ae:08:48:da:a4:10:9d:c2:f2:17:71:10:16: 33:6e:11:e2:66:7b:e4:b4:32:fb:8f:91:40:fe:c5:d0:68:75: b9:da:95:2b:99:5a:66:37:69:b2:8c:bc:f9:59:a5:1b:8e:e7: c9:62:c8:5a:d0:96:f7:3d:5a:50:44:7d:9e:2a:88:e2:3a:2f: b7:7b:77:57:2b:15:eb:0e:dd:26:37:89:31:8a:71:ca:04:0d: 99:61:c5:37:97:6f:91:23:2b:6e:d0:53:ca:73:4b:b6:f0:66: 03:74:fe:8f:4d:aa:d2:96:f1:6c:82:65:33:08:bf:25:bf:8c: f8:0c:36:d2:26:99:4c:12:3e:40:ac:cc:7c:2e:b7:65:d1:98: 0f:2a:35:87:a5:aa:ab:f9:e2:db:1f:bb:2a:83:a3:15:84:7c: 19:4a:76:a9:fc:2f:f6:83:94:a4:d7:b6:1f:cd:b5:7e:f2:09: 2c:fa:d2:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUEw3GT0eCdDkzfnAUggYbQ8KeU5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NC NTUzRDc1RTAeFw0yNjA1MjgwOTU3NTZaFw0yNzA1MjcxMDAyNTZaMDMxMTAvBgNV BAMTKEY2ODY3RkI3RTIwOTVGRDIxOUI0RUVGNzA4QjcxN0VCREVBNDhDMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPWezLITZG/O6OlXHmp9bIN8Sn d/V437JbWBAQopVrzye03QyvRVJ7bpNQIp4+5MfQORmROxvVhUZQFlGuF87cxkkU 1gdf51qZikAoL8iVe8QeLNq5pXNz5+PDX686jfBbzXRTuJdLi5IGQKrkVCl/GKaG mASS/9ertr4CTR7pxciZ17uSmBuY4ApR4uIOD3qd3jGhSWGn+bY9YVkV6kkUkOFk FMpgyWVpvaudR7Yexf6/l0MwpR0DJH/eGeuNbkCHdT4SE7NTEoT5Flo8oIygqb2+ tddY90FGIQleqwSx7syoqyzaLrS4lds963izldNR3uUr56dxnoajC8G0/CUJAgMB AAGjggIgMIICHDAdBgNVHQ4EFgQU9oZ/t+IJX9IZtO73CLcX696kjAQwHwYDVR0j BBgwFoAUH/8mPGQWO8WFFLU5wQN1zLVT114wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDMyNzA0My8wLzFGRkYyNjNDNjQxNjNCQzU4NTE0QjUzOUMxMDM3 NUNDQjU1M0Q3NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NCNTUzRDc1RS5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQzMjcwNDMvMC9BUzU5MDgzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGCCsGAQUFBwEHAQH/BE0wSzA4BAIA ATAyAwQCK/6YAwQCLfwwAwQBO5moAwQCZwoAAwQCZxh0MAwDBANnxtgDBANnxvAD BALKWWAwDwQCAAIwCQMHACQDG4AAADANBgkqhkiG9w0BAQsFAAOCAQEAmb6vP+EZ RYoSdmtxpSEXYnqZjNPZFXYXqE1F5X4TuFbthbkyx2oUqjZkHYIYthqt8n/N3E0O gTK8eMxaOA7Ki+kpo0UX5QIM1BFTAtyuCEjapBCdwvIXcRAWM24R4mZ75LQy+4+R QP7F0Gh1udqVK5laZjdpsoy8+VmlG47nyWLIWtCW9z1aUER9niqI4jovt3t3VysV 6w7dJjeJMYpxygQNmWHFN5dvkSMrbtBTynNLtvBmA3T+j02q0pbxbIJlMwi/Jb+M +Aw20iaZTBI+QKzMfC63ZdGYDyo1h6Wqq/ni2x+7KoOjFYR8GUp2qfwv9oOUpNe2 H821fvIJLPrSIA== -----END CERTIFICATE-----Generated at Sat Jun 6 16:09:07 2026 by rpki-client