$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1088651015181303810/0/35392e3130382e302e302f31362d3136203d3e2034383437.roa File: 35392e3130382e302e302f31362d3136203d3e2034383437.roa (raw, json) Hash identifier: +MVFENXiTS5qu1cGyUwlG21oFkjrekCQs7zCw/wtnVk= Subject key identifier: 1C:58:4A:2E:D3:4A:64:99:9C:AC:24:61:01:55:E0:AE:6B:EA:2C:5F Certificate issuer: /CN=D5EF2A792166F94FBE33377E0239034ED2FC2F80 Certificate serial: 3D3DBA7028C27B32B168DDD96C7CD949E539BF1D Authority key identifier: D5:EF:2A:79:21:66:F9:4F:BE:33:37:7E:02:39:03:4E:D2:FC:2F:80 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/35392e3130382e302e302f31362d3136203d3e2034383437.roa Signing time: Sun 19 Apr 2026 10:08:05 +0000 ROA not before: Sun 19 Apr 2026 10:03:05 +0000 ROA not after: Sun 18 Apr 2027 10:08:05 +0000 asID: 4847 IP address blocks: 59.108.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.crl rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 21:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:3d:ba:70:28:c2:7b:32:b1:68:dd:d9:6c:7c:d9:49:e5:39:bf:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5EF2A792166F94FBE33377E0239034ED2FC2F80 Validity Not Before: Apr 19 10:03:05 2026 GMT Not After : Apr 18 10:08:05 2027 GMT Subject: CN=1C584A2ED34A64999CAC24610155E0AE6BEA2C5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5c:75:99:a7:b3:fa:cb:f4:23:2c:85:0c:96: 02:d1:73:07:9a:d0:68:38:f8:29:e6:46:4f:37:2d: ee:80:53:6d:f3:64:7a:70:3b:d6:e4:92:a0:f1:be: b1:a7:f7:53:19:15:79:b2:5c:db:e8:7e:dd:69:65: 9e:bf:44:5b:e0:15:c5:df:05:9b:58:62:af:8b:15: 9f:91:c9:76:33:30:8d:9b:76:60:79:a7:32:13:a3: 28:6c:a8:d1:f4:8c:93:d5:9b:aa:16:98:85:53:db: f8:71:4c:85:02:07:6f:22:23:ad:63:3a:5f:5a:0a: 41:ea:84:11:8d:da:a4:be:99:08:78:67:94:0a:40: 14:e6:2b:65:61:ad:46:e9:94:f8:5b:1c:1b:cc:cc: 40:45:b1:ed:80:c0:24:aa:bc:a1:17:6b:23:aa:a5: 8a:45:34:79:57:1f:2e:6f:c1:e7:e8:ec:a1:39:d6: 84:61:d1:d6:f8:48:90:b8:14:07:50:6a:99:24:26: 72:17:10:91:14:b8:cb:b2:18:0f:0e:9c:1d:90:59: 50:5f:08:52:54:ab:41:47:0a:f1:ec:32:2e:95:57: b2:b0:f6:08:ef:f3:bb:e5:2e:40:89:c6:58:71:b7: 68:d2:42:3a:7f:21:09:26:53:8e:da:09:6a:30:f6: bf:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:58:4A:2E:D3:4A:64:99:9C:AC:24:61:01:55:E0:AE:6B:EA:2C:5F X509v3 Authority Key Identifier: keyid:D5:EF:2A:79:21:66:F9:4F:BE:33:37:7E:02:39:03:4E:D2:FC:2F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/35392e3130382e302e302f31362d3136203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.108.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3c:bd:d6:64:44:5a:22:b9:a8:49:12:2e:22:2c:21:6a:fb:37: b9:d4:27:92:05:c8:c1:aa:e0:da:90:7d:c7:5d:01:1c:50:3b: d2:e4:b1:f4:f2:9b:29:58:d0:cc:0d:90:29:0d:21:03:0f:bc: ca:d3:72:a5:8a:05:26:d4:a3:9c:98:35:bc:7c:ec:6d:69:cb: 4a:17:32:03:9a:01:10:29:9e:3e:98:c3:b5:37:57:3d:9f:de: 1f:9f:fb:18:08:43:c7:19:44:66:29:8f:1f:65:a0:dc:74:90: c2:10:7d:fa:2c:6c:e2:b7:c7:a4:d3:f8:24:79:d6:42:13:9b: dd:23:20:af:f2:b5:5d:ac:59:86:69:e0:35:89:2d:a1:71:cf: ed:7b:c2:40:ec:b7:62:da:a7:48:79:5a:29:12:de:3d:89:22: b2:4a:7a:42:d1:d6:f8:54:e7:2a:20:6c:0e:4c:ea:cc:f9:3c: 30:1a:da:ae:50:b2:5d:ab:f9:61:d0:ca:26:2f:0a:25:c5:4f: 59:05:5a:11:a6:e7:67:92:0c:0f:f2:f9:f8:c1:af:54:21:bc: 98:e2:ab:ac:5f:f6:03:b1:e4:42:05:1b:13:b5:f9:b0:44:dc: fc:9b:1f:4a:09:f4:c9:18:b7:7a:92:19:b9:d3:5d:bd:3f:51: 6e:8e:55:06 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUPT26cCjCezKxaN3ZbHzZSeU5vx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVFRjJBNzkyMTY2Rjk0RkJFMzMzNzdFMDIzOTAzNEVE MkZDMkY4MDAeFw0yNjA0MTkxMDAzMDVaFw0yNzA0MTgxMDA4MDVaMDMxMTAvBgNV BAMTKDFDNTg0QTJFRDM0QTY0OTk5Q0FDMjQ2MTAxNTVFMEFFNkJFQTJDNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkXHWZp7P6y/QjLIUMlgLRcwea 0Gg4+CnmRk83Le6AU23zZHpwO9bkkqDxvrGn91MZFXmyXNvoft1pZZ6/RFvgFcXf BZtYYq+LFZ+RyXYzMI2bdmB5pzIToyhsqNH0jJPVm6oWmIVT2/hxTIUCB28iI61j Ol9aCkHqhBGN2qS+mQh4Z5QKQBTmK2VhrUbplPhbHBvMzEBFse2AwCSqvKEXayOq pYpFNHlXHy5vwefo7KE51oRh0db4SJC4FAdQapkkJnIXEJEUuMuyGA8OnB2QWVBf CFJUq0FHCvHsMi6VV7Kw9gjv87vlLkCJxlhxt2jSQjp/IQkmU47aCWow9r8pAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUHFhKLtNKZJmcrCRhAVXgrmvqLF8wHwYDVR0j BBgwFoAU1e8qeSFm+U++Mzd+AjkDTtL8L4AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 ODY1MTAxNTE4MTMwMzgxMC8wL0Q1RUYyQTc5MjE2NkY5NEZCRTMzMzc3RTAyMzkw MzRFRDJGQzJGODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDVFRjJBNzkyMTY2Rjk0RkJFMzMzNzdFMDIzOTAzNEVEMkZDMkY4MC5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg4NjUxMDE1MTgxMzAzODEwLzAvMzUzOTJlMzEzMDM4 MmUzMDJlMzAyZjMxMzYyZDMxMzYyMDNkM2UyMDM0MzgzNDM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA O2wwDQYJKoZIhvcNAQELBQADggEBADy91mREWiK5qEkSLiIsIWr7N7nUJ5IFyMGq 4NqQfcddARxQO9LksfTymylY0MwNkCkNIQMPvMrTcqWKBSbUo5yYNbx87G1py0oX MgOaARApnj6Yw7U3Vz2f3h+f+xgIQ8cZRGYpjx9loNx0kMIQffosbOK3x6TT+CR5 1kITm90jIK/ytV2sWYZp4DWJLaFxz+17wkDst2Lap0h5WikS3j2JIrJKekLR1vhU 5yogbA5M6sz5PDAa2q5Qsl2r+WHQyiYvCiXFT1kFWhGm52eSDA/y+fjBr1QhvJji q6xf9gOx5EIFGxO1+bBE3PybH0oJ9MkYt3qSGbnTXb0/UW6OVQY= -----END CERTIFICATE-----Generated at Mon Apr 27 13:45:32 2026 by rpki-client