$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/0/AS17622.roa File: AS17622.roa (raw, json) Hash identifier: oD8w82b//14yZnJntQxP1Qzb8pRC4BXcwmPwCN/pxyY= Subject key identifier: B3:C5:C2:88:29:96:3A:BB:0B:26:BD:D9:5D:A8:9F:37:D4:1D:3B:5E Certificate issuer: /CN=A9143CB30000/serialNumber=EACB7B50F338DF2794EBA3F618C7233B2283E644 Certificate serial: 72714D103A51B6F63044864293D988D7E5D6390B Authority key identifier: EA:CB:7B:50:F3:38:DF:27:94:EB:A3:F6:18:C7:23:3B:22:83:E6:44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/AS17622.roa Signing time: Fri 05 Jun 2026 06:31:05 +0000 ROA not before: Fri 05 Jun 2026 06:26:05 +0000 ROA not after: Fri 04 Jun 2027 06:31:05 +0000 asID: 17622 IP address blocks: 157.122.62.0/24 maxlen: 24 157.122.64.0/24 maxlen: 24 157.122.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:71:4d:10:3a:51:b6:f6:30:44:86:42:93:d9:88:d7:e5:d6:39:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=EACB7B50F338DF2794EBA3F618C7233B2283E644 Validity Not Before: Jun 5 06:26:05 2026 GMT Not After : Jun 4 06:31:05 2027 GMT Subject: CN=B3C5C28829963ABB0B26BDD95DA89F37D41D3B5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0f:68:73:79:67:c0:cd:dc:63:58:60:30:31: dd:08:64:55:3d:fa:af:01:92:32:5d:f3:e5:39:28: 45:02:fc:0a:4c:6b:ed:8c:cc:7a:6c:52:03:70:18: 39:dc:4b:d1:e0:50:57:6f:d6:a1:74:5c:df:a7:58: 11:d4:c0:a8:63:31:25:b6:c4:49:80:17:60:b5:b7: 03:ad:35:d0:b5:c9:a3:3a:f1:c2:41:99:a0:d3:46: d9:42:a3:c3:70:42:ef:59:57:37:8c:fc:ee:98:9d: 61:6d:bc:55:6e:15:81:d3:0c:fd:41:b9:ab:43:41: 11:d4:e8:21:73:4c:08:f7:ae:58:2a:4c:ac:25:13: fa:56:b8:d6:93:9f:d8:b2:8d:18:4a:0b:2e:ad:4f: 30:b4:3c:7e:3d:6d:85:21:5c:ed:1b:00:9c:73:5a: ff:84:a9:33:c9:21:cc:7b:ee:8f:77:be:49:56:06: 95:66:62:ab:6a:a5:4e:f5:31:ba:2a:7b:d9:62:cb: c1:2b:80:a2:81:c3:85:b8:89:32:47:c5:00:7a:3a: 88:b5:aa:d3:23:4a:63:bf:21:d8:3c:b3:54:c0:b1: dd:e3:37:47:ab:22:b5:e6:21:e9:e1:e2:03:53:e4: 92:b3:e8:0c:0f:69:74:c7:75:59:28:38:39:9c:aa: 8b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C5:C2:88:29:96:3A:BB:0B:26:BD:D9:5D:A8:9F:37:D4:1D:3B:5E X509v3 Authority Key Identifier: keyid:EA:CB:7B:50:F3:38:DF:27:94:EB:A3:F6:18:C7:23:3B:22:83:E6:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/EACB7B50F338DF2794EBA3F618C7233B2283E644.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6st7UPM43yeU66P2GMcjOyKD5kQ.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/0/AS17622.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.122.62.0/24 157.122.64.0/24 157.122.70.0/24 Signature Algorithm: sha256WithRSAEncryption 37:70:3c:54:95:2f:85:6f:fe:48:b3:59:f1:f9:94:14:e6:a3: 98:3a:1d:cd:7e:f6:b4:a0:4d:2d:72:da:a7:4f:ed:52:4a:96: 1b:61:c3:e5:2d:d1:f3:96:d0:33:cd:63:7e:c1:bc:37:cf:3e: b2:5c:c9:5e:22:ae:b9:d6:c1:99:bb:a4:6f:a0:d5:24:f2:c1: c4:0a:ea:f0:8b:b8:50:f9:93:f8:fb:bf:93:85:19:07:f7:8a: 2c:75:9e:06:3d:26:97:b7:06:c7:5a:28:c1:f3:54:3e:ff:19: d9:69:0b:54:6d:30:ee:53:71:94:d1:5b:19:b2:01:8a:e1:02: 8a:f5:34:f1:55:e2:57:29:29:cb:6e:de:9d:1f:8f:87:d9:98: 64:8e:30:2d:34:8e:d4:19:44:7a:66:ef:1c:30:16:7d:04:56: b3:78:e4:08:01:71:b3:95:48:e2:17:60:7b:08:35:b8:73:21: 1b:97:3a:76:c5:ee:dd:f7:09:4e:4a:39:0f:db:fb:56:c7:a7: 74:ff:c8:77:a8:44:9b:f4:e5:e2:71:f6:40:a6:88:25:46:3f: 86:2d:8e:5b:7b:a1:bf:83:29:11:80:0c:4c:13:a3:fa:da:96: 33:88:7c:0e:68:93:33:bd:ae:ac:21:1b:3a:b0:3f:9e:81:9a: 5a:4f:a9:89 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgIUcnFNEDpRtvYwRIZCk9mI1+XWOQswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyhFQUNCN0I1MEYz MzhERjI3OTRFQkEzRjYxOEM3MjMzQjIyODNFNjQ0MB4XDTI2MDYwNTA2MjYwNVoX DTI3MDYwNDA2MzEwNVowMzExMC8GA1UEAxMoQjNDNUMyODgyOTk2M0FCQjBCMjZC REQ5NURBODlGMzdENDFEM0I1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOMPaHN5Z8DN3GNYYDAx3QhkVT36rwGSMl3z5TkoRQL8Ckxr7YzMemxSA3AY OdxL0eBQV2/WoXRc36dYEdTAqGMxJbbESYAXYLW3A6010LXJozrxwkGZoNNG2UKj w3BC71lXN4z87pidYW28VW4VgdMM/UG5q0NBEdToIXNMCPeuWCpMrCUT+la41pOf 2LKNGEoLLq1PMLQ8fj1thSFc7RsAnHNa/4SpM8khzHvuj3e+SVYGlWZiq2qlTvUx uip72WLLwSuAooHDhbiJMkfFAHo6iLWq0yNKY78h2DyzVMCx3eM3R6siteYh6eHi A1PkkrPoDA9pdMd1WSg4OZyqi50CAwEAAaOCAe8wggHrMB0GA1UdDgQWBBSzxcKI KZY6uwsmvdldqJ831B07XjAfBgNVHSMEGDAWgBTqy3tQ8zjfJ5Tro/YYxyM7IoPm RDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzAvRUFDQjdC NTBGMzM4REYyNzk0RUJBM0Y2MThDNzIzM0IyMjgzRTY0NC5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJGRDFGRjIvNnN0N1VQTTQz eWVVNjZQMkdNY2pPeUtENWtRLmNlcjBdBggrBgEFBQcBCwRRME8wTQYIKwYBBQUH MAuGQXJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NjcwNDU5MzY5 NTM0MjU5My8wL0FTMTc2MjIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw KwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBACdej4DBACdekADBACdekYwDQYJ KoZIhvcNAQELBQADggEBADdwPFSVL4Vv/kizWfH5lBTmo5g6Hc1+9rSgTS1y2qdP 7VJKlhthw+Ut0fOW0DPNY37BvDfPPrJcyV4irrnWwZm7pG+g1STywcQK6vCLuFD5 k/j7v5OFGQf3iix1ngY9Jpe3BsdaKMHzVD7/GdlpC1RtMO5TcZTRWxmyAYrhAor1 NPFV4lcpKctu3p0fj4fZmGSOMC00jtQZRHpm7xwwFn0EVrN45AgBcbOVSOIXYHsI NbhzIRuXOnbF7t33CU5KOQ/b+1bHp3T/yHeoRJv05eJx9kCmiCVGP4Ytjlt7ob+D KRGADEwTo/raljOIfA5okzO9rqwhGzqwP56BmlpPqYk= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:45 2026 by rpki-client