$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e38382e302f32312d3234203d3e203435303632.roa File: 35392e3131312e38382e302f32312d3234203d3e203435303632.roa (raw, json) Hash identifier: A5CDNJxV9gwL9OvrsHIiTUgNrL8ZROPmAep83jl2HXg= Subject key identifier: 7B:68:C9:E3:5B:84:8D:2E:24:78:3F:06:E1:7F:0C:7F:76:03:4A:C9 Certificate issuer: /CN=65D987FB9E8CE18C5B5FF786308C490EA811AEE6 Certificate serial: 2FED7C5E3603D651C93132536EBC9AECECE5D4E3 Authority key identifier: 65:D9:87:FB:9E:8C:E1:8C:5B:5F:F7:86:30:8C:49:0E:A8:11:AE:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e38382e302f32312d3234203d3e203435303632.roa Signing time: Fri 10 Apr 2026 06:34:53 +0000 ROA not before: Fri 10 Apr 2026 06:29:53 +0000 ROA not after: Fri 09 Apr 2027 06:34:53 +0000 asID: 45062 IP address blocks: 59.111.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.crl rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 11:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ed:7c:5e:36:03:d6:51:c9:31:32:53:6e:bc:9a:ec:ec:e5:d4:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65D987FB9E8CE18C5B5FF786308C490EA811AEE6 Validity Not Before: Apr 10 06:29:53 2026 GMT Not After : Apr 9 06:34:53 2027 GMT Subject: CN=7B68C9E35B848D2E24783F06E17F0C7F76034AC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c3:51:a4:4b:d1:fc:83:38:b5:f2:b8:60:68: 4f:2a:39:b5:00:34:72:25:d7:73:b2:e6:40:59:b4: 23:87:9d:b0:b8:32:10:34:6f:e7:2a:af:1e:c3:c5: 4c:63:2d:26:5f:8c:0f:62:f3:7d:41:55:a0:c5:4d: 8e:2f:f1:4e:a6:49:27:1b:68:10:fe:da:7d:77:62: 89:b4:f6:9f:72:73:46:08:2c:0d:3b:e9:45:0e:13: 38:6e:67:cf:a1:0c:32:a1:9c:9f:9d:67:ef:8e:9c: e1:7a:23:01:4e:80:b7:96:0a:4b:e5:83:cd:a1:54: 93:5a:e9:68:70:2b:a3:f9:a3:83:07:18:62:26:e7: 5b:30:74:df:3d:be:99:b8:89:7a:94:2d:55:ec:1f: 56:a2:35:91:af:5e:39:d0:82:ba:9a:67:d2:e6:29: 88:12:af:88:a6:86:ba:ff:24:07:b2:b7:cb:b8:ba: 49:c2:57:dc:a2:bb:af:26:93:1d:72:0e:77:69:bd: b5:f4:88:b8:f4:03:a6:58:60:26:e2:87:bd:b6:86: 42:45:8a:de:28:32:b4:a9:53:35:4f:c1:f8:e5:de: 3e:fc:47:d9:28:2f:78:f3:39:b7:0a:aa:56:95:ec: 5f:dc:fa:92:7c:51:8c:1a:35:b1:9b:cc:4c:ad:ae: 95:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:68:C9:E3:5B:84:8D:2E:24:78:3F:06:E1:7F:0C:7F:76:03:4A:C9 X509v3 Authority Key Identifier: keyid:65:D9:87:FB:9E:8C:E1:8C:5B:5F:F7:86:30:8C:49:0E:A8:11:AE:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/65D987FB9E8CE18C5B5FF786308C490EA811AEE6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094872834095710211/0/35392e3131312e38382e302f32312d3234203d3e203435303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.111.88.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:4e:96:39:64:8b:f5:c6:47:51:aa:12:00:83:19:68:d2:86: 08:5d:78:6d:0f:2c:a3:98:97:85:6f:a2:87:04:b1:9f:c9:36: 3f:46:f6:08:af:0b:cc:89:dd:29:a3:74:39:6e:74:3f:b3:d3: ff:f3:8b:74:81:71:98:73:1d:7e:7f:78:eb:92:73:ce:51:60: 55:28:7b:a2:34:75:32:ef:5d:1e:41:6d:a5:38:1e:0c:ab:21: 0a:c4:13:7c:25:7d:d8:70:2b:44:0c:59:4b:2c:64:69:6d:a8: 09:1f:ec:17:3f:04:b9:dc:3f:f5:16:03:45:50:10:5d:e4:a1: 0f:7b:a9:0d:ca:f8:e8:c8:53:c8:e5:43:67:12:a8:cb:cb:2c: 81:8e:14:15:d3:ff:0d:ea:11:c9:ab:09:6c:09:25:18:dc:73: 43:43:0e:17:e3:f6:c3:b5:3f:41:e9:3d:1e:aa:37:75:41:32: 22:f7:5b:e1:29:c1:dd:92:ad:ac:aa:66:d9:09:a5:5e:06:0a: 1c:39:81:02:de:9c:7f:83:78:00:24:48:97:e6:e1:be:71:d9: df:ae:5a:d5:59:57:46:c4:c2:b3:3c:32:43:78:fe:8f:ed:1d: 65:54:da:e7:ea:9a:e7:26:c9:d8:01:ca:3b:b2:0d:9a:fb:62: 65:6b:26:8b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUL+18XjYD1lHJMTJTbrya7Ozl1OMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVEOTg3RkI5RThDRTE4QzVCNUZGNzg2MzA4QzQ5MEVB ODExQUVFNjAeFw0yNjA0MTAwNjI5NTNaFw0yNzA0MDkwNjM0NTNaMDMxMTAvBgNV BAMTKDdCNjhDOUUzNUI4NDhEMkUyNDc4M0YwNkUxN0YwQzdGNzYwMzRBQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbw1GkS9H8gzi18rhgaE8qObUA NHIl13Oy5kBZtCOHnbC4MhA0b+cqrx7DxUxjLSZfjA9i831BVaDFTY4v8U6mSScb aBD+2n13Yom09p9yc0YILA076UUOEzhuZ8+hDDKhnJ+dZ++OnOF6IwFOgLeWCkvl g82hVJNa6WhwK6P5o4MHGGIm51swdN89vpm4iXqULVXsH1aiNZGvXjnQgrqaZ9Lm KYgSr4imhrr/JAeyt8u4uknCV9yiu68mkx1yDndpvbX0iLj0A6ZYYCbih722hkJF it4oMrSpUzVPwfjl3j78R9koL3jzObcKqlaV7F/c+pJ8UYwaNbGbzEytrpWHAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUe2jJ41uEjS4keD8G4X8Mf3YDSskwHwYDVR0j BBgwFoAUZdmH+56M4YxbX/eGMIxJDqgRruYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg3MjgzNDA5NTcxMDIxMS8wLzY1RDk4N0ZCOUU4Q0UxOEM1QjVGRjc4NjMwOEM0 OTBFQTgxMUFFRTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjVEOTg3RkI5RThDRTE4QzVCNUZGNzg2MzA4QzQ5MEVBODExQUVFNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODcyODM0MDk1NzEwMjExLzAvMzUzOTJlMzEzMTMx MmUzODM4MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzQzNTMwMzYzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAztvWDANBgkqhkiG9w0BAQsFAAOCAQEATk6WOWSL9cZHUaoSAIMZaNKGCF14 bQ8so5iXhW+ihwSxn8k2P0b2CK8LzIndKaN0OW50P7PT//OLdIFxmHMdfn9465Jz zlFgVSh7ojR1Mu9dHkFtpTgeDKshCsQTfCV92HArRAxZSyxkaW2oCR/sFz8Eudw/ 9RYDRVAQXeShD3upDcr46MhTyOVDZxKoy8ssgY4UFdP/DeoRyasJbAklGNxzQ0MO F+P2w7U/Qek9Hqo3dUEyIvdb4SnB3ZKtrKpm2QmlXgYKHDmBAt6cf4N4ACRIl+bh vnHZ365a1VlXRsTCszwyQ3j+j+0dZVTa5+qa5ybJ2AHKO7INmvtiZWsmiw== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:31 2026 by rpki-client