$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58772.roa File: AS58772.roa (raw, json) Hash identifier: kx4RhmGrzOOUr45ZoeJPu9aGpIC95W+WFN754d5kW+s= Subject key identifier: 78:F4:2C:AD:6F:AB:03:8C:84:6B:4F:09:93:83:06:CC:40:60:83:1B Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 0A51B8A2832E2F318F8FF4D1D92A8AAF10BFFB3D Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58772.roa Signing time: Wed 20 May 2026 16:15:18 +0000 ROA not before: Wed 20 May 2026 16:10:18 +0000 ROA not after: Wed 19 May 2027 16:15:18 +0000 asID: 58772 IP address blocks: 27.156.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 06:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:51:b8:a2:83:2e:2f:31:8f:8f:f4:d1:d9:2a:8a:af:10:bf:fb:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 20 16:10:18 2026 GMT Not After : May 19 16:15:18 2027 GMT Subject: CN=78F42CAD6FAB038C846B4F09938306CC4060831B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e3:31:6b:b7:68:b6:b0:06:e4:64:f7:c9:11: 01:00:47:4e:43:95:56:b0:a4:76:5d:c0:4d:5c:39: 16:e0:43:46:71:aa:49:09:cc:b8:1b:d0:94:87:1d: a0:fb:19:e5:d7:44:47:65:07:3f:a4:eb:34:5b:4d: 0e:55:7b:d5:81:72:b8:41:7a:bc:ea:27:73:88:b6: d2:35:97:7e:72:91:3c:1f:99:7e:bd:46:c7:f2:11: 7c:e5:1b:3b:e0:8a:0c:8a:5e:50:f7:17:21:55:26: 01:a7:c1:fb:a6:00:5d:7f:a5:2d:67:b8:33:f6:15: 90:f8:c8:80:6f:34:ef:ce:e1:9b:6e:a9:48:15:36: 33:b5:de:b8:46:5c:ee:91:61:ca:6b:3d:40:b0:f8: 3e:79:a2:8e:17:2f:4f:75:be:21:54:f4:29:bb:f6: 47:72:a0:46:ec:dc:94:4c:b0:f3:6c:f8:fa:8d:b3: 67:88:fb:10:d7:05:dc:b5:40:e4:32:e5:6f:dc:b1: b7:aa:21:b9:cd:1e:6d:5a:0d:16:0b:0f:f9:8f:3e: 94:83:05:76:ba:a4:44:00:6c:02:8c:ec:b4:9e:f4: 07:93:58:0a:db:70:d6:49:0e:a9:e2:84:e8:05:7a: 42:f8:bb:47:4b:36:a9:65:75:7d:3c:40:f2:a6:38: 42:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F4:2C:AD:6F:AB:03:8C:84:6B:4F:09:93:83:06:CC:40:60:83:1B X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/AS58772.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.156.26.0/23 Signature Algorithm: sha256WithRSAEncryption 59:60:b4:f3:6e:9b:89:18:de:ce:d3:de:37:f5:2c:58:40:dc: 09:d8:fc:bc:2d:de:aa:78:b1:ef:35:a0:18:fc:2e:cb:60:34: 89:24:2e:10:93:d6:11:56:a2:9d:a5:ff:3c:01:2d:59:85:c3: cb:39:2b:94:88:b1:fd:68:3c:eb:b2:3f:f5:64:ce:3a:86:46: cb:6c:56:de:e1:0a:f7:6e:ed:f4:e9:61:9a:56:e8:34:91:aa: 4f:b9:70:1c:81:6a:c3:d6:99:b8:2c:32:e3:c7:14:6e:57:a1: 1f:95:ea:da:3f:6f:f1:17:30:5c:e7:43:b2:70:ac:36:2c:bd: 58:3f:78:6a:fd:20:b4:fa:bc:22:14:8e:db:85:00:12:af:77: cb:ef:5d:ec:01:8c:02:2d:56:33:ca:62:a2:ff:5b:e9:79:40: a8:7b:ed:ed:50:ea:b2:bc:33:9d:02:9b:58:21:b2:df:5c:02: cf:67:5a:18:45:8d:c1:3b:f5:e3:25:51:64:36:79:0a:3f:eb: b6:b2:2f:dd:99:b6:30:dd:8e:37:14:84:5f:9d:05:2d:5f:72: 6c:9d:b3:d0:23:14:e3:86:14:a8:2b:3d:2c:e0:05:4f:e7:64: ba:ae:6d:a3:d9:ed:99:3b:3a:88:14:a6:9e:ed:2f:75:8d:80: 5e:5b:61:1b -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIUClG4ooMuLzGPj/TR2SqKrxC/+z0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUyMDE2MTAxOFoX DTI3MDUxOTE2MTUxOFowMzExMC8GA1UEAxMoNzhGNDJDQUQ2RkFCMDM4Qzg0NkI0 RjA5OTM4MzA2Q0M0MDYwODMxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7jMWu3aLawBuRk98kRAQBHTkOVVrCkdl3ATVw5FuBDRnGqSQnMuBvQlIcd oPsZ5ddER2UHP6TrNFtNDlV71YFyuEF6vOonc4i20jWXfnKRPB+Zfr1Gx/IRfOUb O+CKDIpeUPcXIVUmAafB+6YAXX+lLWe4M/YVkPjIgG80787hm26pSBU2M7XeuEZc 7pFhyms9QLD4PnmijhcvT3W+IVT0Kbv2R3KgRuzclEyw82z4+o2zZ4j7ENcF3LVA 5DLlb9yxt6ohuc0ebVoNFgsP+Y8+lIMFdrqkRABsAozstJ70B5NYCttw1kkOqeKE 6AV6Qvi7R0s2qWV1fTxA8qY4Qu8CAwEAAaOCAeMwggHfMB0GA1UdDgQWBBR49Cyt b6sDjIRrTwmTgwbMQGCDGzAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjBdBggrBgEFBQcBCwRRME8wTQYIKwYBBQUH MAuGQXJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5NzA5OTQwMjkw NTk3NjgzNS8xL0FTNTg3NzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEbnBowDQYJKoZIhvcNAQELBQAD ggEBAFlgtPNum4kY3s7T3jf1LFhA3AnY/Lwt3qp4se81oBj8LstgNIkkLhCT1hFW op2l/zwBLVmFw8s5K5SIsf1oPOuyP/VkzjqGRstsVt7hCvdu7fTpYZpW6DSRqk+5 cByBasPWmbgsMuPHFG5XoR+V6to/b/EXMFznQ7JwrDYsvVg/eGr9ILT6vCIUjtuF ABKvd8vvXewBjAItVjPKYqL/W+l5QKh77e1Q6rK8M50Cm1ghst9cAs9nWhhFjcE7 9eMlUWQ2eQo/67ayL92ZtjDdjjcUhF+dBS1fcmyds9AjFOOGFKgrPSzgBU/nZLqu baPZ7Zk7OogUpp7tL3WNgF5bYRs= -----END CERTIFICATE-----Generated at Sat May 23 07:08:15 2026 by rpki-client