$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/33392e3130342e302e302f31342d3234203d3e203337393633.roa File: 33392e3130342e302e302f31342d3234203d3e203337393633.roa (raw, json) Hash identifier: NethCq3bBN2hZMvUerhl8DazE7biNiHeRO+YD1XBV3k= Subject key identifier: F3:5C:CC:75:03:63:FC:EA:9C:EB:5F:AC:9D:65:83:A9:16:45:8B:C1 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 6F7A4ACDE8FA2AF180DE77856FB0E3CD0A0EDAFD Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/33392e3130342e302e302f31342d3234203d3e203337393633.roa Signing time: Wed 22 Apr 2026 02:00:24 +0000 ROA not before: Wed 22 Apr 2026 01:55:24 +0000 ROA not after: Wed 21 Apr 2027 02:00:24 +0000 asID: 37963 IP address blocks: 39.104.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 04:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:7a:4a:cd:e8:fa:2a:f1:80:de:77:85:6f:b0:e3:cd:0a:0e:da:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 22 01:55:24 2026 GMT Not After : Apr 21 02:00:24 2027 GMT Subject: CN=F35CCC750363FCEA9CEB5FAC9D6583A916458BC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:04:5a:d4:b1:c5:ec:b4:cc:d5:a7:eb:67:31: cb:9c:59:e0:ba:17:90:87:6a:68:23:db:b1:e1:e1: be:db:2c:41:61:9b:6d:70:d6:da:0b:1d:dd:ac:00: e4:27:27:ec:98:03:2b:1c:08:2a:18:e2:8e:33:71: 4a:10:6d:47:d7:01:06:3c:f0:e5:dc:a9:56:5a:71: 62:d9:ff:15:8e:a6:ff:07:ed:a3:8c:5d:fd:e5:89: 63:9e:9b:7c:fb:71:f9:4e:39:54:38:e2:a1:8c:f1: 39:cd:f0:60:9b:31:a9:2a:a2:91:09:48:90:6a:ea: f2:57:00:94:81:3c:b8:a4:63:1f:d2:2c:2c:06:38: 34:aa:fc:66:0c:0e:79:53:59:50:6b:f8:e9:9f:bc: b0:64:ce:54:55:f3:89:19:90:6c:72:6b:73:90:7b: 7b:ca:e8:cc:65:64:09:1f:62:2d:5e:1a:64:34:c5: 96:7c:72:56:cd:bb:2c:2e:16:1e:0a:50:56:62:66: 26:30:2a:a0:60:98:39:29:f6:7b:39:a4:c8:77:67: f8:ce:cd:d9:7c:85:d9:f7:11:3d:bc:e8:73:ec:88: 6a:2d:26:ee:24:14:aa:60:9c:77:46:82:89:74:3f: 03:04:42:c7:f1:81:ff:5f:ca:8a:8a:75:ad:75:2a: d0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:5C:CC:75:03:63:FC:EA:9C:EB:5F:AC:9D:65:83:A9:16:45:8B:C1 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/33392e3130342e302e302f31342d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 39.104.0.0/14 Signature Algorithm: sha256WithRSAEncryption 1f:63:47:30:00:64:b3:da:f5:7a:cf:d5:f9:99:29:e2:cc:5a: a0:06:c8:4d:c2:0a:40:ee:c0:09:70:e9:91:4e:6f:b4:f1:07: a4:4e:74:5c:1e:cc:10:c8:ed:d4:83:69:02:22:1d:ff:48:04: 75:70:c3:57:a6:39:e2:c2:76:72:7a:02:4c:94:f8:7a:4c:20: 35:b1:f2:9f:7f:1b:2f:e0:92:90:c5:da:67:9c:2e:b6:6d:83: 06:e5:5c:2b:82:79:2c:99:a9:fc:76:49:29:e1:06:04:74:7e: be:d7:32:20:a0:e2:35:bb:c6:49:a5:a5:c4:95:42:3d:fa:1a: 11:01:64:de:08:6f:97:1e:f2:93:b8:00:6c:2d:15:a5:a1:aa: b2:50:de:be:70:e0:32:0e:e7:3d:7d:7c:37:a0:0f:f4:2b:3e: 27:9c:d9:fb:d3:e6:d0:fd:fc:36:15:c2:dd:2e:b4:82:9d:76: 16:67:1f:f4:e8:be:22:45:f2:f1:a1:e7:93:c2:be:0e:43:f2: 49:54:de:b4:8e:2e:e3:6f:bf:a9:a1:fd:87:ca:b7:01:81:41: 79:55:78:ec:a6:3b:4d:fa:ec:a2:6b:aa:d9:a4:f0:40:df:2a: ba:32:11:39:23:c5:ab:2d:c4:4d:ac:96:72:4e:9d:b2:93:28: 1b:6c:b1:ca -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUb3pKzej6KvGA3neFb7DjzQoO2v0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MjIwMTU1MjRaFw0yNzA0MjEwMjAwMjRaMDMxMTAvBgNV BAMTKEYzNUNDQzc1MDM2M0ZDRUE5Q0VCNUZBQzlENjU4M0E5MTY0NThCQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5BFrUscXstMzVp+tnMcucWeC6 F5CHamgj27Hh4b7bLEFhm21w1toLHd2sAOQnJ+yYAyscCCoY4o4zcUoQbUfXAQY8 8OXcqVZacWLZ/xWOpv8H7aOMXf3liWOem3z7cflOOVQ44qGM8TnN8GCbMakqopEJ SJBq6vJXAJSBPLikYx/SLCwGODSq/GYMDnlTWVBr+OmfvLBkzlRV84kZkGxya3OQ e3vK6MxlZAkfYi1eGmQ0xZZ8clbNuywuFh4KUFZiZiYwKqBgmDkp9ns5pMh3Z/jO zdl8hdn3ET286HPsiGotJu4kFKpgnHdGgol0PwMEQsfxgf9fyoqKda11KtB1AgMB AAGjggIOMIICCjAdBgNVHQ4EFgQU81zMdQNj/Oqc61+snWWDqRZFi8EwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzMzOTJlMzEzMDM0 MmUzMDJlMzAyZjMxMzQyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwInaDANBgkqhkiG9w0BAQsFAAOCAQEAH2NHMABks9r1es/V+Zkp4sxaoAbITcIK QO7ACXDpkU5vtPEHpE50XB7MEMjt1INpAiId/0gEdXDDV6Y54sJ2cnoCTJT4ekwg NbHyn38bL+CSkMXaZ5wutm2DBuVcK4J5LJmp/HZJKeEGBHR+vtcyIKDiNbvGSaWl xJVCPfoaEQFk3ghvlx7yk7gAbC0VpaGqslDevnDgMg7nPX18N6AP9Cs+J5zZ+9Pm 0P38NhXC3S60gp12Fmcf9Oi+IkXy8aHnk8K+DkPySVTetI4u42+/qaH9h8q3AYFB eVV47KY7Tfrsomuq2aTwQN8qujIROSPFqy3ETayWck6dspMoG2yxyg== -----END CERTIFICATE-----Generated at Wed Apr 22 06:41:10 2026 by rpki-client