$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3133392e3135392e33322e302f32302d3230203d3e203536303438.roa File: 3133392e3135392e33322e302f32302d3230203d3e203536303438.roa (raw, json) Hash identifier: 1RxHM3apMUr6M9OmBG98Rye6R0bgsfD8V8+rIwifPZU= Subject key identifier: CC:5F:57:B0:23:B2:A0:66:77:F1:93:44:66:BA:AF:9B:62:B2:88:22 Certificate issuer: /CN=34D58A062B3D996DB1E8A2BB2764188FDEF00DBA Certificate serial: 28FBC1C83EC3125364D2BF3D7517E199909A499B Authority key identifier: 34:D5:8A:06:2B:3D:99:6D:B1:E8:A2:BB:27:64:18:8F:DE:F0:0D:BA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3133392e3135392e33322e302f32302d3230203d3e203536303438.roa Signing time: Thu 04 Jun 2026 16:38:02 +0000 ROA not before: Thu 04 Jun 2026 16:33:02 +0000 ROA not after: Thu 03 Jun 2027 16:38:02 +0000 asID: 56048 IP address blocks: 139.159.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.crl rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 14:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:fb:c1:c8:3e:c3:12:53:64:d2:bf:3d:75:17:e1:99:90:9a:49:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34D58A062B3D996DB1E8A2BB2764188FDEF00DBA Validity Not Before: Jun 4 16:33:02 2026 GMT Not After : Jun 3 16:38:02 2027 GMT Subject: CN=CC5F57B023B2A06677F1934466BAAF9B62B28822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7e:1f:c2:dd:2a:e4:c9:dd:54:14:a9:f7:c1: 80:47:97:dd:cc:da:b3:91:83:a1:3d:ee:0f:f0:8e: 44:9d:e5:33:29:f9:75:6f:b9:45:0f:bc:44:b7:b1: ca:c7:10:e1:fe:e2:1b:db:d2:5e:c5:be:c9:32:ec: 7e:e3:12:33:04:49:e1:be:1c:7f:8d:53:5a:53:7f: 78:84:13:c9:2b:b9:b2:f1:11:77:b9:c2:b9:5c:1d: a7:d1:25:4e:de:46:67:c9:06:08:28:d9:d0:ef:85: e5:1a:95:65:6a:31:36:da:a5:93:55:78:5c:ff:c4: 99:07:1e:7c:91:50:e8:c7:43:52:af:38:a5:d3:49: af:6c:9f:c3:5f:b1:62:f7:5b:0e:68:ee:3f:18:3d: 34:f1:e5:fb:8e:f7:1c:99:92:70:93:95:f4:43:1f: f5:ca:e0:5f:aa:e8:c4:66:67:88:ce:cf:21:86:9f: 63:96:f5:d2:7a:1a:24:87:50:93:e6:83:87:f5:ae: c3:85:bc:8e:2f:fb:7b:74:7e:ad:4c:2b:40:95:bd: 32:a6:8a:8f:33:f5:c3:80:67:8b:1a:31:54:91:f6: ec:b7:40:27:0e:73:dc:4c:8c:f9:f6:08:11:49:40: eb:90:12:89:7e:e8:86:7f:c5:2c:54:06:4a:28:50: 8b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:5F:57:B0:23:B2:A0:66:77:F1:93:44:66:BA:AF:9B:62:B2:88:22 X509v3 Authority Key Identifier: keyid:34:D5:8A:06:2B:3D:99:6D:B1:E8:A2:BB:27:64:18:8F:DE:F0:0D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3133392e3135392e33322e302f32302d3230203d3e203536303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.159.32.0/20 Signature Algorithm: sha256WithRSAEncryption ae:dc:2c:86:1a:aa:e3:7b:f4:19:82:5a:8b:13:45:cc:27:b7: cd:64:d9:9d:cc:58:a4:94:27:dc:d6:58:b7:fd:63:07:0d:dd: c1:2c:e2:60:79:38:0f:34:ca:72:7a:df:ad:59:3f:03:58:77: 0e:5d:df:ff:15:07:72:7f:79:17:13:d3:4b:b3:89:68:77:a4: 71:a5:50:0d:26:78:7f:02:40:96:71:b8:a9:1d:d0:c6:5a:e9: ba:85:00:14:d8:27:68:43:5e:d3:25:18:a9:28:b3:87:7b:ae: f8:bb:28:cc:ff:55:13:ee:46:72:08:75:67:aa:f6:de:fd:6d: 0c:31:55:ce:e6:61:20:ed:6f:ae:4b:45:a8:be:a9:e1:01:58: 7e:72:ce:e7:27:09:16:59:3d:b0:d1:2e:42:f6:42:c7:23:5e: 4c:0c:b6:96:91:fe:0c:fa:75:bd:36:5f:08:a6:6a:35:06:73: 0d:4a:07:c9:57:2d:9b:93:b8:8d:7d:5b:83:3f:eb:40:b7:e0: 7d:41:b4:6e:df:81:64:90:dc:0a:c7:f5:47:3c:bb:9c:e7:1c: 28:ad:33:bb:3d:52:67:c2:89:46:bf:b5:30:74:c1:02:fb:60: 82:ef:ec:3a:fa:64:7d:79:63:ba:99:44:43:93:ad:ee:14:8a: 92:44:ed:da -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUKPvByD7DElNk0r89dRfhmZCaSZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRENThBMDYyQjNEOTk2REIxRThBMkJCMjc2NDE4OEZE RUYwMERCQTAeFw0yNjA2MDQxNjMzMDJaFw0yNzA2MDMxNjM4MDJaMDMxMTAvBgNV BAMTKENDNUY1N0IwMjNCMkEwNjY3N0YxOTM0NDY2QkFBRjlCNjJCMjg4MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2fh/C3Srkyd1UFKn3wYBHl93M 2rORg6E97g/wjkSd5TMp+XVvuUUPvES3scrHEOH+4hvb0l7Fvsky7H7jEjMESeG+ HH+NU1pTf3iEE8krubLxEXe5wrlcHafRJU7eRmfJBggo2dDvheUalWVqMTbapZNV eFz/xJkHHnyRUOjHQ1KvOKXTSa9sn8NfsWL3Ww5o7j8YPTTx5fuO9xyZknCTlfRD H/XK4F+q6MRmZ4jOzyGGn2OW9dJ6GiSHUJPmg4f1rsOFvI4v+3t0fq1MK0CVvTKm io8z9cOAZ4saMVSR9uy3QCcOc9xMjPn2CBFJQOuQEol+6IZ/xSxUBkooUIsFAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUzF9XsCOyoGZ38ZNEZrqvm2KyiCIwHwYDVR0j BBgwFoAUNNWKBis9mW2x6KK7J2QYj97wDbowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODk5MzU0ODE1NjkzMC8xLzM0RDU4QTA2MkIzRDk5NkRCMUU4QTJCQjI3NjQx ODhGREVGMDBEQkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMzRENThBMDYyQjNEOTk2REIxRThBMkJCMjc2NDE4OEZERUYwMERCQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4ODk5MzU0ODE1NjkzMC8xLzMxMzMzOTJlMzEz NTM5MmUzMzMyMmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzUzNjMwMzQzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBIufIDANBgkqhkiG9w0BAQsFAAOCAQEArtwshhqq43v0GYJaixNFzCe3 zWTZncxYpJQn3NZYt/1jBw3dwSziYHk4DzTKcnrfrVk/A1h3Dl3f/xUHcn95FxPT S7OJaHekcaVQDSZ4fwJAlnG4qR3QxlrpuoUAFNgnaENe0yUYqSizh3uu+LsozP9V E+5Gcgh1Z6r23v1tDDFVzuZhIO1vrktFqL6p4QFYfnLO5ycJFlk9sNEuQvZCxyNe TAy2lpH+DPp1vTZfCKZqNQZzDUoHyVctm5O4jX1bgz/rQLfgfUG0bt+BZJDcCsf1 Rzy7nOccKK0zuz1SZ8KJRr+1MHTBAvtggu/sOvpkfXljuplEQ5Ot7hSKkkTt2g== -----END CERTIFICATE-----Generated at Fri Jun 12 06:45:03 2026 by rpki-client