$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099364928323584001/0/AS58466.roa File: AS58466.roa (raw, json) Hash identifier: LM9JbG7lyreiz1D+ixqDOBz5SUXAnqgEmr0CR4xkMW4= Subject key identifier: A0:67:9B:6F:E1:9A:65:24:0E:BC:D9:F2:90:A9:AF:FD:73:26:54:A7 Certificate issuer: /CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Certificate serial: 67484D509F24268CA1B9BED8E0686EDF76DC8517 Authority key identifier: 14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/AS58466.roa Signing time: Mon 25 May 2026 07:49:28 +0000 ROA not before: Mon 25 May 2026 07:44:28 +0000 ROA not after: Mon 24 May 2027 07:49:28 +0000 asID: 58466 IP address blocks: 117.48.192.0/24 maxlen: 24 117.48.195.0/24 maxlen: 24 117.48.196.0/22 maxlen: 24 117.48.216.0/24 maxlen: 24 117.48.217.0/24 maxlen: 24 117.48.218.0/24 maxlen: 24 117.48.232.0/24 maxlen: 24 117.48.233.0/24 maxlen: 24 117.48.234.0/24 maxlen: 24 120.132.112.0/24 maxlen: 24 120.132.117.0/24 maxlen: 24 120.132.118.0/24 maxlen: 24 120.132.119.0/24 maxlen: 24 120.132.120.0/22 maxlen: 22 120.132.124.0/22 maxlen: 22 150.242.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:48:4d:50:9f:24:26:8c:a1:b9:be:d8:e0:68:6e:df:76:dc:85:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14F2AE289734C6F9223A15F482EED7503BB5C42B Validity Not Before: May 25 07:44:28 2026 GMT Not After : May 24 07:49:28 2027 GMT Subject: CN=A0679B6FE19A65240EBCD9F290A9AFFD732654A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:12:a1:e6:32:cf:a0:fb:96:d6:f2:6f:d0:3b: 69:b2:ef:fc:4a:14:59:a9:8f:39:e1:5f:48:fc:97: e9:b2:b8:a9:97:22:f2:f4:a0:cb:a2:ec:35:8c:66: dc:40:d7:6f:d2:d3:e5:62:b2:dd:9f:ac:96:e5:4c: e9:6d:fa:31:c6:fc:c8:65:cf:12:69:57:a2:85:6d: 37:e1:85:aa:66:f4:52:d5:3a:3b:d2:e9:f8:e1:ee: b7:35:fc:77:97:8b:76:14:74:c4:29:84:2f:42:48: 19:47:64:07:f0:81:cc:55:50:ab:92:ee:24:89:6d: 2e:8a:ff:87:61:96:f5:90:8f:38:aa:60:f8:49:26: fb:a1:ca:88:da:60:04:04:37:97:dc:26:15:1f:6e: 28:a8:2a:14:f4:60:89:9d:65:01:b8:0c:9c:4d:96: 2f:56:04:34:3c:40:4a:8d:54:3c:4e:e0:bb:53:11: f0:0c:2a:88:7a:5d:d3:b3:6d:15:a5:9b:9a:c4:7e: 93:a4:c5:d7:56:44:d9:d5:43:e0:c6:3e:30:3f:f8: 8c:d2:58:ac:1c:0d:0b:c0:aa:ca:99:b1:0a:3f:3b: 7e:07:61:0b:be:82:cb:e9:8a:a0:c0:db:2b:af:e6: ef:ae:0b:18:4a:37:4f:87:b1:27:a5:5b:92:7b:1c: 73:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:67:9B:6F:E1:9A:65:24:0E:BC:D9:F2:90:A9:AF:FD:73:26:54:A7 X509v3 Authority Key Identifier: keyid:14:F2:AE:28:97:34:C6:F9:22:3A:15:F4:82:EE:D7:50:3B:B5:C4:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/14F2AE289734C6F9223A15F482EED7503BB5C42B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/14F2AE289734C6F9223A15F482EED7503BB5C42B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099364928323584001/0/AS58466.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.48.192.0/24 117.48.195.0-117.48.199.255 117.48.216.0-117.48.218.255 117.48.232.0-117.48.234.255 120.132.112.0/24 120.132.117.0-120.132.127.255 150.242.56.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:e6:84:02:92:f0:66:90:80:35:19:1e:8b:d1:c1:ca:59:fd: 1a:51:8a:1b:d8:a8:c4:dd:73:66:6c:a6:65:2b:f3:c8:d7:26: 10:b3:c3:57:50:38:84:33:a1:f7:df:80:7a:25:e7:2c:ef:fa: 45:3b:89:72:88:22:ef:0f:2f:c3:80:85:f8:ce:75:06:e9:95: 29:97:42:6e:37:2a:d7:cd:7c:df:2d:c8:63:b9:30:90:7d:07: cd:8e:ad:e1:9a:49:86:3a:72:25:3a:be:f6:f6:39:1a:89:1d: e0:3d:73:e6:d8:82:c4:6a:22:4e:98:f0:14:e2:a2:0e:f3:32: 5d:5f:82:7f:b0:ce:1e:6b:76:0e:dd:99:90:6d:1d:b5:b1:d4: c7:b2:68:91:c7:b9:97:e8:fc:5c:c7:a2:5e:a2:94:40:31:07: 9c:10:84:bd:88:87:f9:f4:c4:7b:2a:7b:55:a3:20:23:32:28: 76:01:5a:4d:df:18:92:c9:30:1a:d6:36:67:27:df:0e:f8:55: 53:83:11:f7:80:38:5c:32:e4:9e:fd:ec:96:ad:d2:ee:1f:9b: 79:e6:94:d9:94:08:7d:78:3f:bf:09:47:70:c3:50:6d:74:a6: 10:c4:11:7f:48:1e:9b:d3:76:ce:c6:17:dd:2f:a5:1a:2f:2c: 89:af:e8:1c -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgIUZ0hNUJ8kJoyhub7Y4Ghu33bchRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAz QkI1QzQyQjAeFw0yNjA1MjUwNzQ0MjhaFw0yNzA1MjQwNzQ5MjhaMDMxMTAvBgNV BAMTKEEwNjc5QjZGRTE5QTY1MjQwRUJDRDlGMjkwQTlBRkZENzMyNjU0QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkEqHmMs+g+5bW8m/QO2my7/xK FFmpjznhX0j8l+myuKmXIvL0oMui7DWMZtxA12/S0+Vist2frJblTOlt+jHG/Mhl zxJpV6KFbTfhhapm9FLVOjvS6fjh7rc1/HeXi3YUdMQphC9CSBlHZAfwgcxVUKuS 7iSJbS6K/4dhlvWQjziqYPhJJvuhyojaYAQEN5fcJhUfbiioKhT0YImdZQG4DJxN li9WBDQ8QEqNVDxO4LtTEfAMKoh6XdOzbRWlm5rEfpOkxddWRNnVQ+DGPjA/+IzS WKwcDQvAqsqZsQo/O34HYQu+gsvpiqDA2yuv5u+uCxhKN0+HsSelW5J7HHP5AgMB AAGjggInMIICIzAdBgNVHQ4EFgQUoGebb+GaZSQOvNnykKmv/XMmVKcwHwYDVR0j BBgwFoAUFPKuKJc0xvkiOhX0gu7XUDu1xCswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTM2NDkyODMyMzU4NDAwMS8wLzE0RjJBRTI4OTczNEM2RjkyMjNBMTVGNDgyRUVE NzUwM0JCNUM0MkIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTRGMkFFMjg5NzM0QzZGOTIyM0ExNUY0ODJFRUQ3NTAzQkI1QzQyQi5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTkzNjQ5MjgzMjM1ODQwMDEvMC9BUzU4NDY2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIA ATBKAwQAdTDAMAwDBAB1MMMDBAN1MMAwDAMEA3Uw2AMEAHUw2jAMAwQDdTDoAwQA dTDqAwQAeIRwMAwDBAB4hHUDBAd4hAADBAKW8jgwDQYJKoZIhvcNAQELBQADggEB AG/mhAKS8GaQgDUZHovRwcpZ/RpRihvYqMTdc2ZspmUr88jXJhCzw1dQOIQzofff gHol5yzv+kU7iXKIIu8PL8OAhfjOdQbplSmXQm43KtfNfN8tyGO5MJB9B82OreGa SYY6ciU6vvb2ORqJHeA9c+bYgsRqIk6Y8BTiog7zMl1fgn+wzh5rdg7dmZBtHbWx 1MeyaJHHuZfo/FzHol6ilEAxB5wQhL2Ih/n0xHsqe1WjICMyKHYBWk3fGJLJMBrW Nmcn3w74VVODEfeAOFwy5J797Jat0u4fm3nmlNmUCH14P78JR3DDUG10phDEEX9I HpvTds7GF90vpRovLImv6Bw= -----END CERTIFICATE-----Generated at Sat May 30 00:41:28 2026 by rpki-client