$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097055396041850881/0/35382e36382e3234372e302f32342d3234203d3e2034383038.roa File: 35382e36382e3234372e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: 4DJIf0Gi0Imqt8xZ75bmnw608LYEkPlIsHAgwhVWjVk= Subject key identifier: AE:F1:58:D0:FF:23:CF:52:A1:3B:1D:06:53:35:95:A0:57:D3:E4:CC Certificate issuer: /CN=781D62BD536F03A2F82FAC3F719DE5B3B5F19551 Certificate serial: 08C7A57EFCAF5F7F6A5C283632FF17E94F54929A Authority key identifier: 78:1D:62:BD:53:6F:03:A2:F8:2F:AC:3F:71:9D:E5:B3:B5:F1:95:51 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/35382e36382e3234372e302f32342d3234203d3e2034383038.roa Signing time: Tue 19 May 2026 05:36:39 +0000 ROA not before: Tue 19 May 2026 05:31:39 +0000 ROA not after: Tue 18 May 2027 05:36:39 +0000 asID: 4808 IP address blocks: 58.68.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.crl rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c7:a5:7e:fc:af:5f:7f:6a:5c:28:36:32:ff:17:e9:4f:54:92:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=781D62BD536F03A2F82FAC3F719DE5B3B5F19551 Validity Not Before: May 19 05:31:39 2026 GMT Not After : May 18 05:36:39 2027 GMT Subject: CN=AEF158D0FF23CF52A13B1D06533595A057D3E4CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6c:e0:5a:b4:8a:73:72:e8:0e:d2:4b:2e:67: c6:94:4b:20:b2:6d:79:af:2f:58:c4:f5:a0:ea:51: c1:4a:cf:1b:f6:94:03:75:5f:cd:d5:3c:ee:0d:77: 75:3e:b8:ad:f1:10:c4:94:53:05:f3:d2:a0:14:f3: 91:f8:f8:ac:2f:62:c7:55:18:43:41:d1:ea:31:a1: 2a:8e:48:f7:bd:09:13:21:1b:24:6c:9e:3c:bc:7b: a2:48:9e:8b:15:3a:21:56:22:cf:72:07:eb:18:25: 96:14:42:d0:b3:dd:1a:d2:d7:02:f9:fc:26:38:ac: 9b:a8:37:21:37:2e:db:a2:22:0b:f8:19:ba:7e:cb: 81:f8:30:5d:ea:d5:49:d1:f7:a8:4d:aa:8b:0b:07: ce:a8:3d:ba:61:c6:28:a3:c2:84:52:c8:40:ea:be: d6:87:51:0e:7e:3d:dd:1c:5c:96:e4:6e:bb:da:2f: 1f:65:9c:dd:c8:72:88:bb:67:c7:cb:dc:da:ff:8d: 71:c8:4b:02:92:b2:c5:dd:df:8f:59:23:a3:e1:d2: b1:61:22:73:61:85:11:fd:f9:f0:47:2e:9b:72:e8: 31:9e:e5:3c:18:fc:d6:68:b6:9d:ad:f8:58:2f:67: d0:72:2f:d2:e5:4c:81:a8:3f:dd:d3:c8:40:0e:c3: 1e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:F1:58:D0:FF:23:CF:52:A1:3B:1D:06:53:35:95:A0:57:D3:E4:CC X509v3 Authority Key Identifier: keyid:78:1D:62:BD:53:6F:03:A2:F8:2F:AC:3F:71:9D:E5:B3:B5:F1:95:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/781D62BD536F03A2F82FAC3F719DE5B3B5F19551.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097055396041850881/0/35382e36382e3234372e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.68.247.0/24 Signature Algorithm: sha256WithRSAEncryption 36:81:03:4d:df:17:97:c2:e3:ef:0e:39:bb:39:96:a1:83:4e: 70:e3:33:e3:2f:29:ad:3f:ce:ea:92:32:16:43:3a:5e:9a:78: e8:f0:bd:c8:3f:e1:13:ce:6c:2b:19:dd:ed:e5:6f:d0:8e:ed: fa:c3:d0:25:d8:8f:3d:45:cf:bf:63:4e:65:89:44:13:6d:b3: ad:bd:91:e5:18:19:28:92:fe:fe:c2:03:89:fe:81:31:bf:47: 8b:10:0c:b8:1f:1b:96:95:51:ba:00:d5:0a:de:77:23:61:99: 41:ca:f2:bc:9c:37:20:3e:90:23:8a:16:17:3b:9d:63:48:9b: e9:d1:7f:0b:cc:b8:6e:48:ad:6d:5b:09:4f:05:be:21:16:4e: 86:c9:63:08:91:c3:b3:24:27:f6:5a:e7:55:62:82:71:6b:31: fe:50:bb:ca:37:85:43:a6:d0:bb:d5:51:bf:5b:a9:d5:ca:23: 64:6d:bc:e0:1b:2b:8b:29:f3:dd:39:cc:a7:55:c4:b4:f8:b3: 48:e5:72:1d:1c:96:79:54:9e:b5:f1:d9:f6:8d:8f:24:3a:eb: 24:08:70:7c:2b:2e:a4:ab:d0:4a:1e:ca:51:54:c0:22:c4:35: 54:16:a9:30:9d:d1:9a:6e:84:11:45:28:f9:ae:16:d9:b0:de: 1e:36:78:25 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUCMelfvyvX39qXCg2Mv8X6U9UkpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgxRDYyQkQ1MzZGMDNBMkY4MkZBQzNGNzE5REU1QjNC NUYxOTU1MTAeFw0yNjA1MTkwNTMxMzlaFw0yNzA1MTgwNTM2MzlaMDMxMTAvBgNV BAMTKEFFRjE1OEQwRkYyM0NGNTJBMTNCMUQwNjUzMzU5NUEwNTdEM0U0Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClbOBatIpzcugO0ksuZ8aUSyCy bXmvL1jE9aDqUcFKzxv2lAN1X83VPO4Nd3U+uK3xEMSUUwXz0qAU85H4+KwvYsdV GENB0eoxoSqOSPe9CRMhGyRsnjy8e6JInosVOiFWIs9yB+sYJZYUQtCz3RrS1wL5 /CY4rJuoNyE3LtuiIgv4Gbp+y4H4MF3q1UnR96hNqosLB86oPbphxiijwoRSyEDq vtaHUQ5+Pd0cXJbkbrvaLx9lnN3Icoi7Z8fL3Nr/jXHISwKSssXd349ZI6Ph0rFh InNhhRH9+fBHLpty6DGe5TwY/NZotp2t+FgvZ9ByL9LlTIGoP93TyEAOwx4PAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUrvFY0P8jz1KhOx0GUzWVoFfT5MwwHwYDVR0j BBgwFoAUeB1ivVNvA6L4L6w/cZ3ls7XxlVEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA1NTM5NjA0MTg1MDg4MS8wLzc4MUQ2MkJENTM2RjAzQTJGODJGQUMzRjcxOURF NUIzQjVGMTk1NTEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzgxRDYyQkQ1MzZGMDNBMkY4MkZBQzNGNzE5REU1QjNCNUYxOTU1MS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDU1Mzk2MDQxODUwODgxLzAvMzUzODJlMzYzODJl MzIzNDM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAA6RPcwDQYJKoZIhvcNAQELBQADggEBADaBA03fF5fC4+8OObs5lqGDTnDjM+Mv Ka0/zuqSMhZDOl6aeOjwvcg/4RPObCsZ3e3lb9CO7frD0CXYjz1Fz79jTmWJRBNt s629keUYGSiS/v7CA4n+gTG/R4sQDLgfG5aVUboA1QredyNhmUHK8rycNyA+kCOK Fhc7nWNIm+nRfwvMuG5IrW1bCU8FviEWTobJYwiRw7MkJ/Za51VignFrMf5Qu8o3 hUOm0LvVUb9bqdXKI2RtvOAbK4sp8905zKdVxLT4s0jlch0clnlUnrXx2faNjyQ6 6yQIcHwrLqSr0EoeylFUwCLENVQWqTCd0ZpuhBFFKPmuFtmw3h42eCU= -----END CERTIFICATE-----Generated at Fri May 29 23:52:42 2026 by rpki-client