$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58571.roa File: AS58571.roa (raw, json) Hash identifier: ei3OdhUTwS9QawHdWjrq+BRXwDsCbdSzT4RGPj+Mqns= Subject key identifier: 00:12:15:FA:10:6F:52:B5:AD:69:03:4C:CF:D5:F6:19:E9:6C:71:E6 Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 5BADBC67463B0A5FA6D209AEADD1EF64DF745D1B Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58571.roa Signing time: Thu 28 May 2026 16:03:21 +0000 ROA not before: Thu 28 May 2026 15:58:21 +0000 ROA not after: Thu 27 May 2027 16:03:21 +0000 asID: 58571 IP address blocks: 202.98.192.0/24 maxlen: 24 240e:4a:4300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 18:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ad:bc:67:46:3b:0a:5f:a6:d2:09:ae:ad:d1:ef:64:df:74:5d:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 28 15:58:21 2026 GMT Not After : May 27 16:03:21 2027 GMT Subject: CN=001215FA106F52B5AD69034CCFD5F619E96C71E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:cf:fe:58:3c:45:8f:7c:c5:76:7c:0a:9d:10: a7:2c:ed:28:c5:6f:de:16:3b:1a:63:f8:63:42:56: 8c:fd:d2:0a:1b:97:77:9a:5a:a4:27:c9:fd:8b:f9: 9d:29:02:5e:df:ed:6a:67:a3:82:2d:a1:56:76:e3: 91:e2:60:97:58:54:40:43:78:89:db:62:d7:bf:43: c5:23:e3:e2:ab:85:95:d7:19:81:2f:a4:e5:0b:18: 62:85:0a:f4:78:1a:e4:ee:f9:63:e7:bc:8a:a3:7b: bc:3c:71:ae:95:96:40:e0:10:be:08:51:58:16:1d: a9:3b:02:ff:8b:c3:53:fb:2e:53:99:c6:19:d9:52: 51:06:f0:56:14:ec:6f:96:e8:63:3e:dc:97:ed:73: 53:36:5a:48:f3:7b:ec:86:c7:2b:d1:71:92:0f:dd: 07:9c:5d:cf:b9:33:c3:d9:77:63:46:90:21:53:0c: 8b:d4:3d:e7:b8:dd:4f:00:94:18:40:5f:f9:96:d7: fc:f7:2d:1b:cb:fd:6e:70:7b:3b:dc:1f:e2:7b:4e: 1d:e3:88:d6:6b:e3:2c:fd:bc:93:cb:d8:c5:11:a0: 3d:de:4a:d0:4c:dd:78:07:d2:ba:51:3b:5e:16:b8: 07:9a:dc:42:91:70:60:61:16:50:9d:f1:18:50:52: 77:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:12:15:FA:10:6F:52:B5:AD:69:03:4C:CF:D5:F6:19:E9:6C:71:E6 X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58571.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.98.192.0/24 IPv6: 240e:4a:4300::/40 Signature Algorithm: sha256WithRSAEncryption a7:c4:e0:8b:8f:f8:5d:6f:5e:37:70:f4:d2:24:b3:7a:c6:43: e6:ff:2c:93:41:ac:78:1e:fa:48:c3:3a:ae:d9:9b:ea:ec:d3: ec:12:f0:35:8e:08:b2:f9:67:3b:ee:21:b5:4f:0f:cb:23:e4: 80:1b:a8:86:e6:bd:03:51:7b:26:96:fc:18:69:37:31:b7:25: 3c:75:9d:20:7e:96:fc:2f:99:78:b7:bb:2c:43:23:b5:98:da: 70:f2:ec:6d:09:63:d3:6b:ed:38:15:f6:98:30:bc:6b:f7:6c: e8:9e:31:e8:b4:2f:fb:a7:ee:99:4a:d9:9a:69:c5:02:4c:2a: 0c:87:8b:e0:35:66:aa:99:5a:9b:f9:dc:f1:56:36:34:32:aa: 4e:d5:29:78:c6:b9:94:38:29:7a:22:b4:05:7e:ee:52:e7:d5: 3c:52:10:17:c4:25:1c:a7:fb:17:83:cd:93:77:a9:c7:53:53: bb:67:ba:e5:21:33:42:d8:dc:7e:a0:18:63:7e:e0:6b:72:0f: 10:4f:e1:51:b4:16:d3:d9:e1:38:b3:25:bb:b5:28:5e:95:ba: fa:72:2c:69:d7:8d:99:a8:3f:bc:c9:c3:6f:80:73:a6:7d:1d: be:3e:bd:2e:7a:bf:41:65:8e:50:28:37:55:27:9b:e6:fa:2a: 1f:86:dc:21 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUW628Z0Y7Cl+m0gmurdHvZN90XRswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyODE1NTgyMVoX DTI3MDUyNzE2MDMyMVowMzExMC8GA1UEAxMoMDAxMjE1RkExMDZGNTJCNUFENjkw MzRDQ0ZENUY2MTlFOTZDNzFFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPXP/lg8RY98xXZ8Cp0QpyztKMVv3hY7GmP4Y0JWjP3SChuXd5papCfJ/Yv5 nSkCXt/tamejgi2hVnbjkeJgl1hUQEN4idti179DxSPj4quFldcZgS+k5QsYYoUK 9Hga5O75Y+e8iqN7vDxxrpWWQOAQvghRWBYdqTsC/4vDU/suU5nGGdlSUQbwVhTs b5boYz7cl+1zUzZaSPN77IbHK9Fxkg/dB5xdz7kzw9l3Y0aQIVMMi9Q957jdTwCU GEBf+ZbX/PctG8v9bnB7O9wf4ntOHeOI1mvjLP28k8vYxRGgPd5K0EzdeAfSulE7 Xha4B5rcQpFwYGEWUJ3xGFBSdw8CAwEAAaOCAfMwggHvMB0GA1UdDgQWBBQAEhX6 EG9Sta1pA0zP1fYZ6Wxx5jAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBdBggrBgEFBQcBCwRRME8wTQYIKwYBBQUH MAuGQXJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTNTg1NzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw LwYIKwYBBQUHAQcBAf8EIDAeMAwEAgABMAYDBADKYsAwDgQCAAIwCAMGACQOAEpD MA0GCSqGSIb3DQEBCwUAA4IBAQCnxOCLj/hdb143cPTSJLN6xkPm/yyTQax4HvpI wzqu2Zvq7NPsEvA1jgiy+Wc77iG1Tw/LI+SAG6iG5r0DUXsmlvwYaTcxtyU8dZ0g fpb8L5l4t7ssQyO1mNpw8uxtCWPTa+04FfaYMLxr92zonjHotC/7p+6ZStmaacUC TCoMh4vgNWaqmVqb+dzxVjY0MqpO1Sl4xrmUOCl6IrQFfu5S59U8UhAXxCUcp/sX g82Td6nHU1O7Z7rlITNC2Nx+oBhjfuBrcg8QT+FRtBbT2eE4syW7tShelbr6cixp 142ZqD+8ycNvgHOmfR2+Pr0uer9BZY5QKDdVJ5vm+iofhtwh -----END CERTIFICATE-----Generated at Fri Jun 12 02:33:15 2026 by rpki-client