$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e3131312e302f32342d3234203d3e203435303632.roa File: 35392e3131312e3131312e302f32342d3234203d3e203435303632.roa (raw, json) Hash identifier: 5m5HLidh05Y0J5RMsFsEpvSNbIp2q2GDH4LOXYlkfrM= Subject key identifier: B3:85:D2:BA:3D:05:F5:C0:3E:30:CF:F4:5F:D5:06:0C:E0:2C:5C:98 Certificate issuer: /CN=65D987FB9E8CE18C5B5FF786308C490EA811AEE6 Certificate serial: 75EC586A1E656C2DDFFF94779963E6319FBF78E7 Authority key identifier: 65:D9:87:FB:9E:8C:E1:8C:5B:5F:F7:86:30:8C:49:0E:A8:11:AE:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e3131312e302f32342d3234203d3e203435303632.roa Signing time: Fri 15 May 2026 02:40:56 +0000 ROA not before: Fri 15 May 2026 02:35:56 +0000 ROA not after: Fri 14 May 2027 02:40:56 +0000 asID: 45062 IP address blocks: 59.111.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.crl rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ec:58:6a:1e:65:6c:2d:df:ff:94:77:99:63:e6:31:9f:bf:78:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65D987FB9E8CE18C5B5FF786308C490EA811AEE6 Validity Not Before: May 15 02:35:56 2026 GMT Not After : May 14 02:40:56 2027 GMT Subject: CN=B385D2BA3D05F5C03E30CFF45FD5060CE02C5C98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:54:6e:53:18:23:f9:cb:23:3f:2a:bd:4b:4d: b0:ab:b6:fd:d8:6c:71:3f:58:c6:de:df:2a:25:65: c8:85:57:93:c5:28:5b:00:ff:ea:59:e0:b9:af:30: 8d:a8:c4:73:6b:96:98:78:76:7d:fe:2b:f1:d5:65: 1c:77:ad:cb:26:02:ef:37:57:a3:fb:05:b0:76:d4: 56:34:15:f1:ba:47:22:16:4d:f5:90:e6:e8:18:ae: f8:2a:7e:55:c7:4e:6c:38:07:cb:e1:49:e6:83:ca: e5:d4:df:10:55:7e:72:e4:5d:4e:9e:66:16:74:13: c7:d2:16:b3:9e:50:9d:d9:3f:37:60:99:d4:21:07: 99:19:64:d3:5c:9f:f8:b3:0b:a6:64:f1:f6:ba:74: 7c:e1:96:73:13:b3:c7:9b:a0:52:ba:10:53:0f:03: c4:18:97:60:d8:f5:9e:26:08:4d:31:71:e8:11:a4: eb:62:26:6a:b5:75:d2:c4:37:cb:3f:e0:43:6a:bd: 1f:84:64:e7:e4:91:fd:8f:56:fd:7a:35:73:0f:9f: 84:be:c4:b7:b8:0d:9a:99:2a:7f:3f:b2:74:3b:b1: 1a:e8:fa:cb:50:88:4d:aa:1d:b6:e7:70:b7:fc:94: 39:3e:b5:cc:ee:53:89:ee:ac:6b:ea:18:6e:1e:40: 0d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:85:D2:BA:3D:05:F5:C0:3E:30:CF:F4:5F:D5:06:0C:E0:2C:5C:98 X509v3 Authority Key Identifier: keyid:65:D9:87:FB:9E:8C:E1:8C:5B:5F:F7:86:30:8C:49:0E:A8:11:AE:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e3131312e302f32342d3234203d3e203435303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.111.111.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:a7:a2:e5:32:fc:da:b9:07:c7:c5:f6:7b:da:1c:4f:e0:a0: ec:14:7b:57:b6:ab:a6:8e:46:a1:83:2b:dd:52:e7:f6:a4:ef: df:0e:1f:e6:df:d6:b8:41:20:83:d3:5a:74:ad:3d:45:44:1e: 6c:c6:f6:62:d5:cb:6f:7c:32:81:9a:84:a2:cd:40:e1:6b:1d: 85:47:14:45:e0:da:ee:36:0e:73:70:d1:9e:0f:5b:ac:e3:27: 3f:85:96:29:9a:40:96:33:cd:00:02:46:b2:b5:d8:a9:cd:69: 33:6f:80:22:de:81:c0:8e:c6:ae:a8:2f:b6:45:c7:fc:72:15: be:8e:9b:b2:3b:b6:cb:be:a9:ae:a4:2d:4b:75:54:70:fb:f6: 0b:e1:7b:19:8f:f7:95:35:2f:d3:27:33:a7:8d:bd:c8:38:91: 11:1d:ca:c0:0c:85:ad:db:ed:e6:01:04:89:00:93:eb:e3:12: 4b:be:6d:e3:35:af:aa:56:a2:c7:5e:7e:96:64:35:44:64:fc: 6b:12:bf:83:4e:3e:a1:48:ee:85:d4:3b:a3:77:dc:d0:40:dc: f4:ae:7f:11:f1:95:0b:cb:69:86:ce:32:87:18:91:a3:97:8c: f0:b0:7d:40:49:cc:7f:88:19:27:89:4c:cd:d7:b2:43:92:44: 14:bd:9f:f1 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUdexYah5lbC3f/5R3mWPmMZ+/eOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVEOTg3RkI5RThDRTE4QzVCNUZGNzg2MzA4QzQ5MEVB ODExQUVFNjAeFw0yNjA1MTUwMjM1NTZaFw0yNzA1MTQwMjQwNTZaMDMxMTAvBgNV BAMTKEIzODVEMkJBM0QwNUY1QzAzRTMwQ0ZGNDVGRDUwNjBDRTAyQzVDOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAVG5TGCP5yyM/Kr1LTbCrtv3Y bHE/WMbe3yolZciFV5PFKFsA/+pZ4LmvMI2oxHNrlph4dn3+K/HVZRx3rcsmAu83 V6P7BbB21FY0FfG6RyIWTfWQ5ugYrvgqflXHTmw4B8vhSeaDyuXU3xBVfnLkXU6e ZhZ0E8fSFrOeUJ3ZPzdgmdQhB5kZZNNcn/izC6Zk8fa6dHzhlnMTs8eboFK6EFMP A8QYl2DY9Z4mCE0xcegRpOtiJmq1ddLEN8s/4ENqvR+EZOfkkf2PVv16NXMPn4S+ xLe4DZqZKn8/snQ7sRro+stQiE2qHbbncLf8lDk+tczuU4nurGvqGG4eQA1vAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUs4XSuj0F9cA+MM/0X9UGDOAsXJgwHwYDVR0j BBgwFoAUZdmH+56M4YxbX/eGMIxJDqgRruYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg3MjgzNDA5NTcxMDIxMS8wLzY1RDk4N0ZCOUU4Q0UxOEM1QjVGRjc4NjMwOEM0 OTBFQTgxMUFFRTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjVEOTg3RkI5RThDRTE4QzVCNUZGNzg2MzA4QzQ5MEVBODExQUVFNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDg3MjgzNDA5NTcxMDIxMS8wLzM1MzkyZTMxMzEz MTJlMzEzMTMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNTMwMzYzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEADtvbzANBgkqhkiG9w0BAQsFAAOCAQEAS6ei5TL82rkHx8X2e9ocT+Cg 7BR7V7arpo5GoYMr3VLn9qTv3w4f5t/WuEEgg9NadK09RUQebMb2YtXLb3wygZqE os1A4WsdhUcUReDa7jYOc3DRng9brOMnP4WWKZpAljPNAAJGsrXYqc1pM2+AIt6B wI7GrqgvtkXH/HIVvo6bsju2y76prqQtS3VUcPv2C+F7GY/3lTUv0yczp429yDiR ER3KwAyFrdvt5gEEiQCT6+MSS75t4zWvqlaix15+lmQ1RGT8axK/g04+oUjuhdQ7 o3fc0EDc9K5/EfGVC8tphs4yhxiRo5eM8LB9QEnMf4gZJ4lMzdeyQ5JEFL2f8Q== -----END CERTIFICATE-----Generated at Fri May 29 22:56:59 2026 by rpki-client