$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e3131322e302f32312d3234203d3e203435303632.roa File: 35392e3131312e3131322e302f32312d3234203d3e203435303632.roa (raw, json) Hash identifier: /z0BCN1UvCNwW6reulSuf8caTR7KvRMHo29m5V49/jU= Subject key identifier: 14:C5:B3:88:5B:D4:7B:4F:76:94:4A:98:0E:AA:E8:96:BB:59:5C:4C Certificate issuer: /CN=65D987FB9E8CE18C5B5FF786308C490EA811AEE6 Certificate serial: 7E40FE9D56795B07BD79535885CBEF76909A2122 Authority key identifier: 65:D9:87:FB:9E:8C:E1:8C:5B:5F:F7:86:30:8C:49:0E:A8:11:AE:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e3131322e302f32312d3234203d3e203435303632.roa Signing time: Fri 15 May 2026 02:40:56 +0000 ROA not before: Fri 15 May 2026 02:35:56 +0000 ROA not after: Fri 14 May 2027 02:40:56 +0000 asID: 45062 IP address blocks: 59.111.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.crl rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:40:fe:9d:56:79:5b:07:bd:79:53:58:85:cb:ef:76:90:9a:21:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65D987FB9E8CE18C5B5FF786308C490EA811AEE6 Validity Not Before: May 15 02:35:56 2026 GMT Not After : May 14 02:40:56 2027 GMT Subject: CN=14C5B3885BD47B4F76944A980EAAE896BB595C4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:21:96:2c:60:23:78:cb:cd:61:29:be:78:73: 6e:b3:90:82:19:14:07:3a:fc:4c:93:3a:22:e6:c2: a2:ff:00:97:1f:e9:d0:fd:bf:6c:6b:cc:0a:cb:38: 8d:f7:da:5d:b8:e7:4a:78:3b:e8:b1:b3:66:66:be: 73:bd:f3:b1:3e:72:a4:7b:de:98:5b:88:01:ee:d2: 22:e2:12:31:d0:09:a2:a5:b4:33:72:4e:a4:55:de: 96:da:cf:96:b1:7e:32:7a:5f:dc:f8:c1:b3:81:b4: 3d:53:cf:98:25:0a:a1:74:dd:81:99:8d:7c:a5:33: 17:46:37:a2:a1:9d:a4:05:43:49:9c:ad:a6:68:99: 0c:84:c9:99:cd:a8:f9:48:35:c6:42:66:cc:26:c7: 26:2a:92:df:c9:f2:e6:21:13:37:e7:20:0a:8f:a2: 3f:0e:08:7a:f3:1b:6f:34:67:32:fc:d5:20:7e:96: 9b:4f:d5:d7:17:52:07:ab:c3:19:3d:c5:9c:87:3b: e7:80:00:46:9d:79:b9:97:52:70:f2:06:cf:bd:1d: 68:c4:bd:81:45:16:d5:a4:24:cd:29:9a:04:66:56: ce:df:9e:5c:d6:ee:0b:1e:0d:b2:04:bf:2e:42:4c: e6:d8:42:dd:1f:37:92:b9:cd:f3:1e:e8:7a:8a:6c: 66:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C5:B3:88:5B:D4:7B:4F:76:94:4A:98:0E:AA:E8:96:BB:59:5C:4C X509v3 Authority Key Identifier: keyid:65:D9:87:FB:9E:8C:E1:8C:5B:5F:F7:86:30:8C:49:0E:A8:11:AE:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e3131322e302f32312d3234203d3e203435303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.111.112.0/21 Signature Algorithm: sha256WithRSAEncryption 14:f9:b0:76:76:e3:ba:84:7e:05:a4:2e:54:33:b8:2c:69:69: e8:ad:27:79:b7:09:fa:84:2c:a3:0f:94:09:88:09:a4:fa:ad: b7:a9:b0:25:4d:f1:77:6a:65:38:dc:cc:86:49:e9:8c:ce:49: 1c:1f:84:a5:0d:57:9c:25:88:ff:aa:c5:64:d5:8f:00:be:70: 3c:bb:2e:91:55:a3:0e:26:a2:3d:84:a7:17:55:ee:cd:86:d4: a9:74:a9:59:71:58:58:c2:0e:94:da:9c:f8:e2:b2:ab:72:41: 65:19:c5:6d:44:7c:4c:30:3f:70:d2:e2:f2:33:a0:37:7c:43: f2:d3:3a:d3:ec:bb:c4:fd:97:9a:05:07:1c:1c:e9:0a:fe:47: 70:6e:76:1d:f5:ff:94:20:12:dd:e1:15:37:6d:17:19:c4:13: 12:71:1c:c4:4d:79:00:91:cd:a9:e0:bd:57:64:ad:b4:c9:c8: 99:42:54:c1:3a:42:a7:e1:7e:f9:56:dc:db:9e:85:53:95:0e: a8:a4:cd:5b:5b:90:35:01:06:74:bf:de:4b:1b:0b:b6:10:5e: d2:de:9f:47:e7:5e:82:10:96:96:2d:74:58:fe:0d:53:69:f3: c3:4d:a4:20:5f:b8:6d:1e:59:18:5f:e5:7c:f0:99:21:3c:0b: 87:3f:f0:84 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUfkD+nVZ5Wwe9eVNYhcvvdpCaISIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVEOTg3RkI5RThDRTE4QzVCNUZGNzg2MzA4QzQ5MEVB ODExQUVFNjAeFw0yNjA1MTUwMjM1NTZaFw0yNzA1MTQwMjQwNTZaMDMxMTAvBgNV BAMTKDE0QzVCMzg4NUJENDdCNEY3Njk0NEE5ODBFQUFFODk2QkI1OTVDNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0IZYsYCN4y81hKb54c26zkIIZ FAc6/EyTOiLmwqL/AJcf6dD9v2xrzArLOI332l2450p4O+ixs2ZmvnO987E+cqR7 3phbiAHu0iLiEjHQCaKltDNyTqRV3pbaz5axfjJ6X9z4wbOBtD1Tz5glCqF03YGZ jXylMxdGN6KhnaQFQ0mcraZomQyEyZnNqPlINcZCZswmxyYqkt/J8uYhEzfnIAqP oj8OCHrzG280ZzL81SB+lptP1dcXUgerwxk9xZyHO+eAAEadebmXUnDyBs+9HWjE vYFFFtWkJM0pmgRmVs7fnlzW7gseDbIEvy5CTObYQt0fN5K5zfMe6HqKbGaXAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUFMWziFvUe092lEqYDqrolrtZXEwwHwYDVR0j BBgwFoAUZdmH+56M4YxbX/eGMIxJDqgRruYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg3MjgzNDA5NTcxMDIxMS8wLzY1RDk4N0ZCOUU4Q0UxOEM1QjVGRjc4NjMwOEM0 OTBFQTgxMUFFRTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjVEOTg3RkI5RThDRTE4QzVCNUZGNzg2MzA4QzQ5MEVBODExQUVFNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDg3MjgzNDA5NTcxMDIxMS8wLzM1MzkyZTMxMzEz MTJlMzEzMTMyMmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzQzNTMwMzYzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAztvcDANBgkqhkiG9w0BAQsFAAOCAQEAFPmwdnbjuoR+BaQuVDO4LGlp 6K0nebcJ+oQsow+UCYgJpPqtt6mwJU3xd2plONzMhknpjM5JHB+EpQ1XnCWI/6rF ZNWPAL5wPLsukVWjDiaiPYSnF1XuzYbUqXSpWXFYWMIOlNqc+OKyq3JBZRnFbUR8 TDA/cNLi8jOgN3xD8tM60+y7xP2XmgUHHBzpCv5HcG52HfX/lCAS3eEVN20XGcQT EnEcxE15AJHNqeC9V2SttMnImUJUwTpCp+F++Vbc256FU5UOqKTNW1uQNQEGdL/e SxsLthBe0t6fR+deghCWli10WP4NU2nzw02kIF+4bR5ZGF/lfPCZITwLhz/whA== -----END CERTIFICATE-----Generated at Fri May 29 23:53:11 2026 by rpki-client