$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1088651015181303810/0/35392e3130382e3232342e302f32302d3230203d3e2034383437.roa File: 35392e3130382e3232342e302f32302d3230203d3e2034383437.roa (raw, json) Hash identifier: RXfkLYOn1avjUMDreVTOH1SQP55YSQigEG0a9ocHRoI= Subject key identifier: B5:F3:F7:7D:CC:D2:D2:4B:34:36:E2:57:62:56:37:62:09:EF:19:E9 Certificate issuer: /CN=D5EF2A792166F94FBE33377E0239034ED2FC2F80 Certificate serial: 291AED602816C94C1AE6B0B085BF0E3BEFB3278C Authority key identifier: D5:EF:2A:79:21:66:F9:4F:BE:33:37:7E:02:39:03:4E:D2:FC:2F:80 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/35392e3130382e3232342e302f32302d3230203d3e2034383437.roa Signing time: Sun 19 Apr 2026 10:04:00 +0000 ROA not before: Sun 19 Apr 2026 09:59:00 +0000 ROA not after: Sun 18 Apr 2027 10:04:00 +0000 asID: 4847 IP address blocks: 59.108.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.crl rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 21:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:1a:ed:60:28:16:c9:4c:1a:e6:b0:b0:85:bf:0e:3b:ef:b3:27:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5EF2A792166F94FBE33377E0239034ED2FC2F80 Validity Not Before: Apr 19 09:59:00 2026 GMT Not After : Apr 18 10:04:00 2027 GMT Subject: CN=B5F3F77DCCD2D24B3436E2576256376209EF19E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:27:e2:c4:ac:b4:30:bb:9a:21:fb:54:b8:48: a7:ad:e1:5f:3c:96:17:c8:3b:0f:d1:da:fe:9b:31: 36:97:c7:cb:72:e1:d0:90:0b:73:e2:d1:cd:cb:4f: 25:34:ae:12:2f:0b:90:bb:55:59:b0:d2:eb:de:02: 0d:24:dc:6a:55:b2:88:da:9c:04:d0:53:11:ae:84: 66:84:8c:77:e8:17:b5:a8:a4:4b:c9:ac:89:fb:72: d6:ce:a8:67:81:2c:da:a2:7e:b2:07:2b:a2:9b:6c: 05:37:8f:2a:31:44:d4:69:ec:28:c4:d5:e1:24:5a: d6:3f:77:4f:e1:d4:9f:1b:5a:27:31:51:cb:59:c1: fc:72:0d:8c:d9:25:a8:6c:11:a8:5b:28:aa:88:6d: 88:72:f3:e1:1a:73:ce:24:23:f9:75:0d:d0:04:03: 4d:77:35:4b:2f:bd:69:9b:b7:a0:31:d9:c4:5c:0d: d6:18:07:84:6b:fb:24:27:2b:37:d2:94:02:e2:86: ab:30:b2:ba:be:a7:9c:c6:ba:89:a0:f9:39:02:fe: af:5d:fa:f6:9d:80:ab:43:07:e3:4a:09:94:9d:d4: a2:d3:f7:46:4c:2d:0e:b7:20:b8:db:0f:24:2a:5a: bc:45:92:11:61:8c:06:e1:d5:ba:03:de:71:36:e8: e0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F3:F7:7D:CC:D2:D2:4B:34:36:E2:57:62:56:37:62:09:EF:19:E9 X509v3 Authority Key Identifier: keyid:D5:EF:2A:79:21:66:F9:4F:BE:33:37:7E:02:39:03:4E:D2:FC:2F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/D5EF2A792166F94FBE33377E0239034ED2FC2F80.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D5EF2A792166F94FBE33377E0239034ED2FC2F80.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1088651015181303810/0/35392e3130382e3232342e302f32302d3230203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.108.224.0/20 Signature Algorithm: sha256WithRSAEncryption 5a:f8:a7:df:1e:e3:71:52:3b:8a:51:b9:8c:f5:c8:0c:47:5b: a2:36:b7:bc:d4:46:b5:f7:9d:ef:82:a7:7f:9b:f9:0a:1d:a1: e4:8a:ab:bb:4d:4e:33:1b:e0:b3:8c:21:5a:a5:72:be:fb:eb: 70:c7:51:b0:15:3d:b4:8f:13:95:27:03:41:a5:da:66:8b:60: 0c:5a:3c:1a:53:ed:18:12:86:dd:79:56:c0:e3:0d:c8:ef:9b: e0:d8:bd:60:c5:6b:c1:90:84:68:fa:d5:75:e1:96:7c:e2:3b: 7e:b4:d8:70:32:72:51:e3:6e:e9:ba:ad:68:8c:b9:3a:a9:8b: df:85:24:e4:cf:59:f7:17:a9:f2:8e:c1:2b:84:24:20:8d:35: 1d:83:39:1a:92:8c:bd:cb:4d:8c:07:37:29:c6:3d:9a:17:89: 69:08:63:43:0f:b9:1a:0c:aa:9a:78:71:81:43:fe:ad:db:45: 8b:3c:a0:8c:60:54:b5:cf:2f:f6:6c:f6:33:75:2f:96:28:6c: c4:25:b6:a4:e1:4e:a0:3c:8c:d6:c0:5d:15:08:2b:1d:c9:64: 99:dd:a9:91:96:1b:f0:ba:10:49:a1:ab:dd:55:57:ed:e6:b1: f2:a4:81:48:28:2b:c1:2c:ba:e2:9a:ee:11:9f:82:f2:5c:99: 0f:da:48:7b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUKRrtYCgWyUwa5rCwhb8OO++zJ4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVFRjJBNzkyMTY2Rjk0RkJFMzMzNzdFMDIzOTAzNEVE MkZDMkY4MDAeFw0yNjA0MTkwOTU5MDBaFw0yNzA0MTgxMDA0MDBaMDMxMTAvBgNV BAMTKEI1RjNGNzdEQ0NEMkQyNEIzNDM2RTI1NzYyNTYzNzYyMDlFRjE5RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIJ+LErLQwu5oh+1S4SKet4V88 lhfIOw/R2v6bMTaXx8ty4dCQC3Pi0c3LTyU0rhIvC5C7VVmw0uveAg0k3GpVsoja nATQUxGuhGaEjHfoF7WopEvJrIn7ctbOqGeBLNqifrIHK6KbbAU3jyoxRNRp7CjE 1eEkWtY/d0/h1J8bWicxUctZwfxyDYzZJahsEahbKKqIbYhy8+Eac84kI/l1DdAE A013NUsvvWmbt6Ax2cRcDdYYB4Rr+yQnKzfSlALihqswsrq+p5zGuomg+TkC/q9d +vadgKtDB+NKCZSd1KLT90ZMLQ63ILjbDyQqWrxFkhFhjAbh1boD3nE26OBXAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUtfP3fczS0ks0NuJXYlY3YgnvGekwHwYDVR0j BBgwFoAU1e8qeSFm+U++Mzd+AjkDTtL8L4AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 ODY1MTAxNTE4MTMwMzgxMC8wL0Q1RUYyQTc5MjE2NkY5NEZCRTMzMzc3RTAyMzkw MzRFRDJGQzJGODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDVFRjJBNzkyMTY2Rjk0RkJFMzMzNzdFMDIzOTAzNEVEMkZDMkY4MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg4NjUxMDE1MTgxMzAzODEwLzAvMzUzOTJlMzEzMDM4 MmUzMjMyMzQyZTMwMmYzMjMwMmQzMjMwMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBDts4DANBgkqhkiG9w0BAQsFAAOCAQEAWvin3x7jcVI7ilG5jPXIDEdboja3 vNRGtfed74Knf5v5Ch2h5Iqru01OMxvgs4whWqVyvvvrcMdRsBU9tI8TlScDQaXa ZotgDFo8GlPtGBKG3XlWwOMNyO+b4Ni9YMVrwZCEaPrVdeGWfOI7frTYcDJyUeNu 6bqtaIy5OqmL34Uk5M9Z9xep8o7BK4QkII01HYM5GpKMvctNjAc3KcY9mheJaQhj Qw+5GgyqmnhxgUP+rdtFizygjGBUtc8v9mz2M3UvlihsxCW2pOFOoDyM1sBdFQgr Hclkmd2pkZYb8LoQSaGr3VVX7eax8qSBSCgrwSy64pruEZ+C8lyZD9pIew== -----END CERTIFICATE-----Generated at Mon Apr 27 13:45:36 2026 by rpki-client