$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3133392e3135392e33322e302f32322d3232203d3e2034383132.roa File: 3133392e3135392e33322e302f32322d3232203d3e2034383132.roa (raw, json) Hash identifier: YAk5JGavccd5IwBpVaAQhDWIgRnDRa108/ICmCzOtYk= Subject key identifier: B6:3C:EB:D3:81:9C:24:BA:68:8E:87:35:BC:12:C3:5D:26:25:0C:D8 Certificate issuer: /CN=34D58A062B3D996DB1E8A2BB2764188FDEF00DBA Certificate serial: 411E7D2641EF286AA8C19945451562FE001D561E Authority key identifier: 34:D5:8A:06:2B:3D:99:6D:B1:E8:A2:BB:27:64:18:8F:DE:F0:0D:BA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3133392e3135392e33322e302f32322d3232203d3e2034383132.roa Signing time: Thu 04 Jun 2026 16:38:02 +0000 ROA not before: Thu 04 Jun 2026 16:33:02 +0000 ROA not after: Thu 03 Jun 2027 16:38:02 +0000 asID: 4812 IP address blocks: 139.159.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.crl rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 14:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:1e:7d:26:41:ef:28:6a:a8:c1:99:45:45:15:62:fe:00:1d:56:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34D58A062B3D996DB1E8A2BB2764188FDEF00DBA Validity Not Before: Jun 4 16:33:02 2026 GMT Not After : Jun 3 16:38:02 2027 GMT Subject: CN=B63CEBD3819C24BA688E8735BC12C35D26250CD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4a:41:e2:20:24:be:f1:13:85:40:2d:96:f5: 05:8e:ee:53:cf:f4:df:24:6f:ea:f2:a8:d1:60:99: e0:2f:e5:6d:05:97:6c:a1:37:84:e5:ee:9e:01:5c: 43:99:ad:55:53:51:56:7a:65:2d:c2:d2:20:17:0c: 7f:a8:28:e5:ad:29:4a:42:40:eb:02:d8:66:b6:4f: 74:dd:0a:c0:49:2d:4d:b6:ce:64:9b:35:75:92:12: f7:fb:33:56:94:99:88:33:5e:9d:2e:b3:d1:99:41: b9:6d:78:ef:e7:62:64:95:6a:1f:89:45:66:92:7c: 93:64:a7:f4:e0:b7:63:b3:4c:01:74:bf:39:f3:d9: a0:88:a9:6a:9f:80:42:18:49:64:16:e2:9f:de:25: 90:99:8c:30:e4:f2:e6:9e:a0:3f:a5:8f:5e:3e:7f: 99:1e:95:4f:c4:72:97:13:33:21:4c:5f:cf:67:a9: d3:c2:d7:8a:54:16:6a:13:82:c5:60:6f:a4:fd:fc: cf:48:18:6c:69:b1:75:d1:35:47:32:5e:81:a3:1f: 0d:98:40:29:a9:18:95:30:b5:a9:ae:70:e1:e9:c2: 8c:12:4f:61:be:76:b9:39:ee:b7:87:6a:e1:39:f5: bb:df:48:f8:9e:23:46:57:a9:e7:2e:28:54:66:66: af:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3C:EB:D3:81:9C:24:BA:68:8E:87:35:BC:12:C3:5D:26:25:0C:D8 X509v3 Authority Key Identifier: keyid:34:D5:8A:06:2B:3D:99:6D:B1:E8:A2:BB:27:64:18:8F:DE:F0:0D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/34D58A062B3D996DB1E8A2BB2764188FDEF00DBA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548156930/1/3133392e3135392e33322e302f32322d3232203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.159.32.0/22 Signature Algorithm: sha256WithRSAEncryption 12:df:91:bc:78:d5:21:85:f3:a0:f5:e5:74:b8:76:fa:a4:a0: 55:6f:44:8c:b6:11:ca:e1:34:12:32:59:c4:25:b3:9e:eb:e7: 2b:a6:84:67:43:d9:9a:e0:60:86:97:9d:a7:10:3a:02:04:f5: fd:49:6f:ec:8d:b7:e9:6d:d9:10:e7:f2:a8:fd:c5:6f:ed:7f: 16:ed:a1:46:71:93:cd:22:9a:3b:5c:81:05:3a:05:28:a7:77: 3e:1c:4d:f7:f3:4d:32:4c:cc:7e:26:22:99:58:ca:97:13:a4: 28:05:1c:aa:b3:b3:bf:b2:5e:80:28:0c:a4:c4:75:60:64:59: 1e:67:da:9f:83:cf:9b:47:94:39:f8:ff:3e:b1:1f:b7:98:a6: 7c:5e:62:47:34:81:6e:f7:76:76:60:2d:7d:1a:99:81:3f:3b: 37:d8:24:8d:3b:90:e4:7e:62:d8:62:76:c3:8a:e5:c0:f1:99: 89:db:b9:4a:b4:57:8f:af:22:a8:75:ba:f4:78:11:51:8d:c2: b0:b4:92:65:b6:55:1f:59:38:f5:78:c6:7c:f5:04:cd:18:48: e7:93:95:20:6b:f6:93:60:77:a2:77:25:f4:9b:86:fb:5a:ad: 7f:02:8f:15:fb:2a:e4:65:a1:aa:68:c1:a6:07:82:65:ab:d5: b8:14:82:80 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUQR59JkHvKGqowZlFRRVi/gAdVh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRENThBMDYyQjNEOTk2REIxRThBMkJCMjc2NDE4OEZE RUYwMERCQTAeFw0yNjA2MDQxNjMzMDJaFw0yNzA2MDMxNjM4MDJaMDMxMTAvBgNV BAMTKEI2M0NFQkQzODE5QzI0QkE2ODhFODczNUJDMTJDMzVEMjYyNTBDRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLSkHiICS+8ROFQC2W9QWO7lPP 9N8kb+ryqNFgmeAv5W0Fl2yhN4Tl7p4BXEOZrVVTUVZ6ZS3C0iAXDH+oKOWtKUpC QOsC2Ga2T3TdCsBJLU22zmSbNXWSEvf7M1aUmYgzXp0us9GZQblteO/nYmSVah+J RWaSfJNkp/Tgt2OzTAF0vznz2aCIqWqfgEIYSWQW4p/eJZCZjDDk8uaeoD+lj14+ f5kelU/EcpcTMyFMX89nqdPC14pUFmoTgsVgb6T9/M9IGGxpsXXRNUcyXoGjHw2Y QCmpGJUwtamucOHpwowST2G+drk57reHauE59bvfSPieI0ZXqecuKFRmZq8tAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUtjzr04GcJLpojoc1vBLDXSYlDNgwHwYDVR0j BBgwFoAUNNWKBis9mW2x6KK7J2QYj97wDbowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODk5MzU0ODE1NjkzMC8xLzM0RDU4QTA2MkIzRDk5NkRCMUU4QTJCQjI3NjQx ODhGREVGMDBEQkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvMzRENThBMDYyQjNEOTk2REIxRThBMkJCMjc2NDE4OEZERUYwMERCQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4OTkzNTQ4MTU2OTMwLzEvMzEzMzM5MmUzMTM1 MzkyZTMzMzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzEzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAoufIDANBgkqhkiG9w0BAQsFAAOCAQEAEt+RvHjVIYXzoPXldLh2+qSgVW9E jLYRyuE0EjJZxCWznuvnK6aEZ0PZmuBghpedpxA6AgT1/Ulv7I236W3ZEOfyqP3F b+1/Fu2hRnGTzSKaO1yBBToFKKd3PhxN9/NNMkzMfiYimVjKlxOkKAUcqrOzv7Je gCgMpMR1YGRZHmfan4PPm0eUOfj/PrEft5imfF5iRzSBbvd2dmAtfRqZgT87N9gk jTuQ5H5i2GJ2w4rlwPGZidu5SrRXj68iqHW69HgRUY3CsLSSZbZVH1k49XjGfPUE zRhI55OVIGv2k2B3oncl9JuG+1qtfwKPFfsq5GWhqmjBpgeCZavVuBSCgA== -----END CERTIFICATE-----Generated at Thu Jun 11 21:19:44 2026 by rpki-client