$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e33352e302f32342d3234203d3e203536303430.roa File: 34352e3131362e33352e302f32342d3234203d3e203536303430.roa (raw, json) Hash identifier: Z6HP1gNf5vHaIhAztVSLR7En0SY6RclqEHxA5xvfiM4= Subject key identifier: 59:AB:08:9B:99:3D:17:51:D6:12:21:FC:19:49:B6:D4:54:71:C7:B0 Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 52034A9E9ADDF0D66190B20C3A164158F8D34556 Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e33352e302f32342d3234203d3e203536303430.roa Signing time: Mon 13 Apr 2026 02:37:35 +0000 ROA not before: Mon 13 Apr 2026 02:32:35 +0000 ROA not after: Mon 12 Apr 2027 02:37:35 +0000 asID: 56040 IP address blocks: 45.116.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 09:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:03:4a:9e:9a:dd:f0:d6:61:90:b2:0c:3a:16:41:58:f8:d3:45:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: Apr 13 02:32:35 2026 GMT Not After : Apr 12 02:37:35 2027 GMT Subject: CN=59AB089B993D1751D61221FC1949B6D45471C7B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5c:cb:f5:b8:3d:10:41:95:13:bb:76:23:d6: c3:a1:ee:0e:b3:9e:a6:4f:bd:51:ff:68:f4:49:d5: 62:a8:da:58:c0:4c:5d:ab:ca:0d:8b:21:58:19:d0: a6:22:06:47:7b:d3:26:30:76:a0:bd:c6:71:b5:a2: 6b:9d:83:54:19:55:d6:9c:7b:ac:7b:78:4d:52:e5: f9:20:56:02:d9:94:f4:b5:b0:d7:31:26:d9:80:8b: 04:ed:f0:c1:d9:20:e6:4e:03:08:83:96:32:bb:c2: 58:0a:43:4f:c4:9e:5d:f4:8c:e4:57:69:4b:53:2b: 2b:be:d3:6f:ea:ea:ce:2a:09:57:72:d8:3e:c8:d9: 93:cf:68:5d:d1:3b:0c:3a:a2:40:64:bd:96:55:57: 6c:5b:ed:be:24:8e:c1:4f:cc:d4:81:1b:ff:a0:b0: 8c:c2:4a:5a:c6:f3:6d:7b:fc:00:cd:59:93:cb:7e: 27:09:b4:19:dd:89:64:35:84:66:2c:88:b2:d1:21: b6:90:7d:10:7f:0f:fb:9c:e5:28:ae:4d:00:65:8c: 4b:d4:ee:0e:47:5f:dc:34:2a:cc:05:39:ee:48:ab: ab:10:ab:3d:9f:40:66:da:e8:ea:26:59:9e:4e:6e: 07:ca:3a:1c:dd:60:01:33:30:ad:f0:59:37:15:11: dc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AB:08:9B:99:3D:17:51:D6:12:21:FC:19:49:B6:D4:54:71:C7:B0 X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e33352e302f32342d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.35.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:f4:f8:4c:6c:3b:05:74:d7:21:0e:03:7a:37:df:82:51:2a: 6f:24:fd:77:a2:bc:ae:3b:bb:ed:14:1d:89:fb:a5:72:f1:12: a3:eb:91:ed:ee:f2:83:bc:50:84:74:9d:e6:a7:82:73:88:49: 06:7d:cc:c0:cd:09:e9:af:be:0d:60:e8:02:28:f7:2c:93:9e: 88:ba:fb:86:a4:ef:11:64:9a:0c:fd:66:e1:3d:3b:8a:5f:64: 53:9d:dc:9b:9b:c4:02:48:ef:c5:6d:65:13:5e:9a:70:d2:5d: 30:e1:3d:e7:e8:5e:4c:a6:61:8a:45:ed:8f:a8:78:4f:02:4e: da:89:ec:10:60:67:d1:1d:c5:34:b7:30:2d:3f:e6:7b:d0:57: a2:b9:8f:07:e7:63:8b:e1:30:30:3a:b0:8e:e9:d1:47:0c:75: 78:48:aa:30:a0:04:3c:9c:bc:80:8b:ef:c8:28:14:5f:c8:00: 60:59:8e:96:1b:0e:36:bf:3f:8e:62:e3:fa:40:ff:39:8b:41: 97:fe:21:b8:3e:bb:4b:68:31:b3:6c:70:a4:4e:04:87:56:31: 55:87:fc:1d:ac:6e:05:1e:70:a1:20:04:f5:6e:e7:c8:5e:93: 26:85:c0:6d:b6:3a:d6:8d:ef:00:5c:4a:91:91:20:bd:fe:de: 30:f7:54:72 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUUgNKnprd8NZhkLIMOhZBWPjTRVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA0MTMwMjMyMzVaFw0yNzA0MTIwMjM3MzVaMDMxMTAvBgNV BAMTKDU5QUIwODlCOTkzRDE3NTFENjEyMjFGQzE5NDlCNkQ0NTQ3MUM3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVXMv1uD0QQZUTu3Yj1sOh7g6z nqZPvVH/aPRJ1WKo2ljATF2ryg2LIVgZ0KYiBkd70yYwdqC9xnG1omudg1QZVdac e6x7eE1S5fkgVgLZlPS1sNcxJtmAiwTt8MHZIOZOAwiDljK7wlgKQ0/Enl30jORX aUtTKyu+02/q6s4qCVdy2D7I2ZPPaF3ROww6okBkvZZVV2xb7b4kjsFPzNSBG/+g sIzCSlrG8217/ADNWZPLficJtBndiWQ1hGYsiLLRIbaQfRB/D/uc5SiuTQBljEvU 7g5HX9w0KswFOe5Iq6sQqz2fQGba6OomWZ5ObgfKOhzdYAEzMK3wWTcVEdwbAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUWasIm5k9F1HWEiH8GUm21FRxx7AwHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0NzIwMjU5LzAvMzQzNTJlMzEzMTM2 MmUzMzM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAC10IzANBgkqhkiG9w0BAQsFAAOCAQEAPfT4TGw7BXTXIQ4DejffglEqbyT9 d6K8rju77RQdifulcvESo+uR7e7yg7xQhHSd5qeCc4hJBn3MwM0J6a++DWDoAij3 LJOeiLr7hqTvEWSaDP1m4T07il9kU53cm5vEAkjvxW1lE16acNJdMOE95+heTKZh ikXtj6h4TwJO2onsEGBn0R3FNLcwLT/me9BXormPB+dji+EwMDqwjunRRwx1eEiq MKAEPJy8gIvvyCgUX8gAYFmOlhsONr8/jmLj+kD/OYtBl/4huD67S2gxs2xwpE4E h1YxVYf8HaxuBR5woSAE9W7nyF6TJoXAbbY61o3vAFxKkZEgvf7eMPdUcg== -----END CERTIFICATE-----Generated at Mon Apr 13 15:30:57 2026 by rpki-client