$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097313663875809283/0/35382e31342e302e302f31352d3135203d3e2030.roa File: 35382e31342e302e302f31352d3135203d3e2030.roa (raw, json) Hash identifier: QzZWfHoN7zuTjnIJpX2UJU1Nqs7Y+u6+xPeTFrfpu1E= Subject key identifier: 8E:ED:41:25:67:E4:B6:2F:75:7C:25:7B:17:5D:36:E6:1B:15:18:2B Certificate issuer: /CN=4F06ECB85C4F43A23E7B27632E953F7FAA477ED5 Certificate serial: 52FA592563ED90695F57E5665B5A00B9C4DECEFB Authority key identifier: 4F:06:EC:B8:5C:4F:43:A2:3E:7B:27:63:2E:95:3F:7F:AA:47:7E:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4F06ECB85C4F43A23E7B27632E953F7FAA477ED5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097313663875809283/0/35382e31342e302e302f31352d3135203d3e2030.roa Signing time: Tue 19 May 2026 00:45:56 +0000 ROA not before: Tue 19 May 2026 00:40:56 +0000 ROA not after: Tue 18 May 2027 00:45:56 +0000 asID: 0 IP address blocks: 58.14.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097313663875809283/0/4F06ECB85C4F43A23E7B27632E953F7FAA477ED5.crl rsync://rpki-rps.cnnic.cn/repo/A1097313663875809283/0/4F06ECB85C4F43A23E7B27632E953F7FAA477ED5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4F06ECB85C4F43A23E7B27632E953F7FAA477ED5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 21:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:fa:59:25:63:ed:90:69:5f:57:e5:66:5b:5a:00:b9:c4:de:ce:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F06ECB85C4F43A23E7B27632E953F7FAA477ED5 Validity Not Before: May 19 00:40:56 2026 GMT Not After : May 18 00:45:56 2027 GMT Subject: CN=8EED412567E4B62F757C257B175D36E61B15182B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:df:fe:3b:e4:37:a3:25:66:fe:3c:44:b4:84: 96:7e:56:6d:10:0a:b2:e1:9d:2c:97:f6:a1:55:93: 3c:0c:01:fa:55:46:b7:a7:ad:d6:e2:b0:95:29:79: 03:32:b7:26:12:76:5d:d6:6e:f3:a2:d6:87:03:be: 11:43:99:81:50:38:17:0b:f7:33:c2:33:a7:b6:6a: 28:61:71:f0:26:99:64:51:3d:70:69:3e:94:b1:62: 83:5c:2b:3f:b6:f3:76:47:2b:a9:92:7b:f3:8d:dd: a6:c8:02:ed:53:9d:fb:8b:70:ec:31:af:4e:1c:0f: 93:7b:5f:1d:18:ad:97:11:77:12:62:53:a8:55:ae: 39:06:7d:40:a7:ac:da:9b:d6:f6:80:f0:31:50:d3: 80:a0:68:c1:78:e0:13:46:de:46:51:49:c6:a2:f6: 67:76:5b:70:a1:8f:1b:f2:b9:b5:36:54:ba:25:3b: b2:bf:83:90:e3:30:20:c6:4b:b2:bf:76:01:a1:1e: cd:e5:ea:93:55:ed:63:6d:d5:d0:60:f8:7f:d0:b8: e1:b8:a0:cf:00:1c:42:84:7c:fa:50:25:df:51:42: 1a:a0:0f:df:f0:5c:24:48:51:4f:b9:e1:ad:13:5e: df:38:64:d8:62:00:32:b9:24:f6:43:f8:3b:a2:d0: 69:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:ED:41:25:67:E4:B6:2F:75:7C:25:7B:17:5D:36:E6:1B:15:18:2B X509v3 Authority Key Identifier: keyid:4F:06:EC:B8:5C:4F:43:A2:3E:7B:27:63:2E:95:3F:7F:AA:47:7E:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097313663875809283/0/4F06ECB85C4F43A23E7B27632E953F7FAA477ED5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/4F06ECB85C4F43A23E7B27632E953F7FAA477ED5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097313663875809283/0/35382e31342e302e302f31352d3135203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.14.0.0/15 Signature Algorithm: sha256WithRSAEncryption 39:f8:7b:47:ff:a4:ac:31:33:9a:2a:a4:aa:8e:04:28:83:fe: 02:e7:9e:63:28:03:92:89:09:e0:88:64:24:0a:f6:55:fa:d3: 5a:23:9b:b6:cb:31:9f:5b:9b:53:3c:41:77:66:35:a5:e2:d5: cb:a5:4b:64:54:96:33:c5:d6:b1:6c:74:51:0c:06:29:97:ff: df:86:10:54:e1:50:b4:a6:86:50:91:40:13:62:a4:54:02:93: 9a:39:80:22:c4:f0:5a:4e:ff:eb:9f:b9:68:a9:a8:b8:52:45: 62:89:69:2f:fb:25:ea:97:da:c6:7f:28:b6:6f:ba:fd:16:d1: b2:c4:e3:30:1a:03:fd:73:ca:3d:fa:9d:1c:a5:c9:2b:bc:8a: e0:59:f0:ee:e4:a0:12:88:20:7e:6b:df:b8:f6:b5:35:79:7e: fb:0a:01:e0:d0:b9:f1:d7:1c:39:8b:dd:52:04:b6:6a:db:94: 8a:ee:84:2c:82:db:23:3e:6a:c3:d1:dc:b3:bc:83:4a:d6:6e: 3d:29:c3:ad:2f:a5:bf:dc:d1:19:3d:12:9c:1f:d3:82:a9:1d: 4e:b6:01:5b:95:8f:fa:b5:54:47:d5:f1:c6:22:53:2c:6a:be: fb:61:7a:07:25:7d:c2:b2:ac:71:67:42:f1:bf:39:f5:b8:da: fa:7a:a4:65 -----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgIUUvpZJWPtkGlfV+VmW1oAucTezvswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYwNkVDQjg1QzRGNDNBMjNFN0IyNzYzMkU5NTNGN0ZB QTQ3N0VENTAeFw0yNjA1MTkwMDQwNTZaFw0yNzA1MTgwMDQ1NTZaMDMxMTAvBgNV BAMTKDhFRUQ0MTI1NjdFNEI2MkY3NTdDMjU3QjE3NUQzNkU2MUIxNTE4MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD3/475DejJWb+PES0hJZ+Vm0Q CrLhnSyX9qFVkzwMAfpVRrenrdbisJUpeQMytyYSdl3WbvOi1ocDvhFDmYFQOBcL 9zPCM6e2aihhcfAmmWRRPXBpPpSxYoNcKz+283ZHK6mSe/ON3abIAu1TnfuLcOwx r04cD5N7Xx0YrZcRdxJiU6hVrjkGfUCnrNqb1vaA8DFQ04CgaMF44BNG3kZRScai 9md2W3ChjxvyubU2VLolO7K/g5DjMCDGS7K/dgGhHs3l6pNV7WNt1dBg+H/QuOG4 oM8AHEKEfPpQJd9RQhqgD9/wXCRIUU+54a0TXt84ZNhiADK5JPZD+Dui0GnHAgMB AAGjggIDMIIB/zAdBgNVHQ4EFgQUju1BJWfkti91fCV7F1025hsVGCswHwYDVR0j BBgwFoAUTwbsuFxPQ6I+eydjLpU/f6pHftUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzMxMzY2Mzg3NTgwOTI4My8wLzRGMDZFQ0I4NUM0RjQzQTIzRTdCMjc2MzJFOTUz RjdGQUE0NzdFRDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNEYwNkVDQjg1QzRGNDNBMjNFN0IyNzYzMkU5NTNGN0ZBQTQ3N0VENS5jZXIw fgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzALhmJyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTczMTM2NjM4NzU4MDkyODMvMC8zNTM4MmUzMTM0MmUz MDJlMzAyZjMxMzUyZDMxMzUyMDNkM2UyMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBOg4wDQYJKoZI hvcNAQELBQADggEBADn4e0f/pKwxM5oqpKqOBCiD/gLnnmMoA5KJCeCIZCQK9lX6 01ojm7bLMZ9bm1M8QXdmNaXi1culS2RUljPF1rFsdFEMBimX/9+GEFThULSmhlCR QBNipFQCk5o5gCLE8FpO/+ufuWipqLhSRWKJaS/7JeqX2sZ/KLZvuv0W0bLE4zAa A/1zyj36nRylySu8iuBZ8O7koBKIIH5r37j2tTV5fvsKAeDQufHXHDmL3VIEtmrb lIruhCyC2yM+asPR3LO8g0rWbj0pw60vpb/c0Rk9Epwf04KpHU62AVuVj/q1VEfV 8cYiUyxqvvthegclfcKyrHFnQvG/OfW42vp6pGU= -----END CERTIFICATE-----Generated at Sat May 23 03:03:22 2026 by rpki-client