$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107564169642639379/0/33362e35312e3235332e302f32342d3234203d3e2034383337.roa File: 33362e35312e3235332e302f32342d3234203d3e2034383337.roa (raw, json) Hash identifier: gLeL+bFOQ7qJu4s4SLuG2Gf0jYb+Ip+sVNZLlxMnjKU= Subject key identifier: 10:59:34:6C:1A:0C:A7:61:D3:89:89:10:40:61:C5:DB:24:3A:46:CA Certificate issuer: /CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Certificate serial: 520D5CA7DF96505B879635B6748600C0F5BAD271 Authority key identifier: 3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/33362e35312e3235332e302f32342d3234203d3e2034383337.roa Signing time: Fri 15 May 2026 07:05:40 +0000 ROA not before: Fri 15 May 2026 07:00:40 +0000 ROA not after: Fri 14 May 2027 07:05:40 +0000 asID: 4837 IP address blocks: 36.51.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 06:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:0d:5c:a7:df:96:50:5b:87:96:35:b6:74:86:00:c0:f5:ba:d2:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Validity Not Before: May 15 07:00:40 2026 GMT Not After : May 14 07:05:40 2027 GMT Subject: CN=1059346C1A0CA761D38989104061C5DB243A46CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:17:16:ca:f5:06:1a:7e:23:4e:da:bb:0b:63: a9:1d:64:e7:9e:91:a6:42:6d:66:1a:e9:52:18:a1: 79:ec:55:b7:44:01:f9:8b:f9:43:38:97:b3:03:32: 9a:30:5f:00:af:72:d0:0b:d3:f4:51:8a:18:52:93: 7e:1a:c1:14:3b:01:5f:5c:d6:47:78:f8:a3:bb:28: 94:d7:c1:a1:f8:70:b7:a4:a1:2a:2a:f8:9a:94:4b: 26:40:cb:4e:f3:2a:87:51:de:af:24:88:03:e1:53: 44:d1:43:90:4b:ff:72:38:07:66:e6:05:e1:84:83: fb:18:9e:24:94:ed:06:39:71:69:0f:83:27:d6:5d: 2f:2a:9a:d7:bc:e7:40:33:9e:9b:a0:74:90:0c:72: 4f:04:5a:a0:81:6c:aa:f4:d5:bc:81:94:c5:af:b5: 7b:16:f7:36:fc:8e:53:ca:9a:c6:8f:3f:ca:1d:29: d9:f2:f9:ea:9e:48:7d:69:0e:db:80:dc:50:b3:eb: 29:d1:4a:88:76:96:3f:25:60:52:0b:73:fb:ee:a4: c0:4c:7e:3a:82:1e:12:0b:15:a9:de:49:0e:c7:7f: 47:10:2c:d7:33:c2:7c:e6:be:14:32:da:af:31:df: 4b:dc:ca:98:ed:d4:03:0b:a6:01:7b:97:b0:a5:2b: f5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:59:34:6C:1A:0C:A7:61:D3:89:89:10:40:61:C5:DB:24:3A:46:CA X509v3 Authority Key Identifier: keyid:3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/33362e35312e3235332e302f32342d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.51.253.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:41:b5:69:d0:68:23:9f:e8:58:1e:d6:73:d2:90:74:3f:9a: cb:73:fa:ef:73:98:82:22:3c:7d:77:20:8e:c0:51:ec:41:35: f9:16:1c:8f:ef:5b:47:03:b3:1f:b8:e5:13:9e:52:c9:9b:ca: dc:fe:f3:b3:0d:80:c4:14:8b:c8:59:49:60:9f:a3:1f:e5:91: 74:45:37:42:9a:11:19:af:43:5a:43:ab:f2:5c:5d:05:85:a8: de:60:15:cd:e4:32:22:e0:10:ed:0b:d4:80:a2:7b:8c:af:2f: 2f:a8:5a:e6:52:ea:cd:78:13:79:b8:ab:01:a8:8a:a8:73:f6: 5b:15:4f:ec:49:96:1f:8d:79:5c:a4:19:cc:31:37:c6:50:b3: 23:78:b6:d8:0b:54:7f:5c:5e:44:5b:22:1e:09:dd:e3:04:78: 63:69:c4:bf:da:0f:b0:33:ce:43:d7:01:82:f9:f3:35:e4:d6: 82:8d:2b:c0:dd:09:98:22:e3:5e:9f:e7:5f:15:07:53:a5:96: 8b:bf:65:23:7a:aa:a4:5d:b0:fe:69:b7:e1:1b:9f:2d:0a:b9: 9c:60:f3:ed:44:51:89:fb:ce:45:70:b0:37:05:c1:b6:53:f0: 3a:e0:1d:05:03:67:06:42:9a:83:1a:c6:1c:9c:bf:04:9d:08: 0f:b8:15:39 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUUg1cp9+WUFuHljW2dIYAwPW60nEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVC RkExOThENTAeFw0yNjA1MTUwNzAwNDBaFw0yNzA1MTQwNzA1NDBaMDMxMTAvBgNV BAMTKDEwNTkzNDZDMUEwQ0E3NjFEMzg5ODkxMDQwNjFDNURCMjQzQTQ2Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsFxbK9QYafiNO2rsLY6kdZOee kaZCbWYa6VIYoXnsVbdEAfmL+UM4l7MDMpowXwCvctAL0/RRihhSk34awRQ7AV9c 1kd4+KO7KJTXwaH4cLekoSoq+JqUSyZAy07zKodR3q8kiAPhU0TRQ5BL/3I4B2bm BeGEg/sYniSU7QY5cWkPgyfWXS8qmte850AznpugdJAMck8EWqCBbKr01byBlMWv tXsW9zb8jlPKmsaPP8odKdny+eqeSH1pDtuA3FCz6ynRSoh2lj8lYFILc/vupMBM fjqCHhILFaneSQ7Hf0cQLNczwnzmvhQy2q8x30vcypjt1AMLpgF7l7ClK/WZAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUEFk0bBoMp2HTiYkQQGHF2yQ6RsowHwYDVR0j BBgwFoAUPlmJ9y3KGXnR3ZZjxXXtFb+hmNUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzU2NDE2OTY0MjYzOTM3OS8wLzNFNTk4OUY3MkRDQTE5NzlEMUREOTY2M0M1NzVF RDE1QkZBMTk4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVCRkExOThENS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA3NTY0MTY5NjQyNjM5Mzc5LzAvMzMzNjJlMzUzMTJl MzIzNTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAkM/0wDQYJKoZIhvcNAQELBQADggEBAApBtWnQaCOf6Fge1nPSkHQ/mstz+u9z mIIiPH13II7AUexBNfkWHI/vW0cDsx+45ROeUsmbytz+87MNgMQUi8hZSWCfox/l kXRFN0KaERmvQ1pDq/JcXQWFqN5gFc3kMiLgEO0L1ICie4yvLy+oWuZS6s14E3m4 qwGoiqhz9lsVT+xJlh+NeVykGcwxN8ZQsyN4ttgLVH9cXkRbIh4J3eMEeGNpxL/a D7AzzkPXAYL58zXk1oKNK8DdCZgi416f518VB1Ollou/ZSN6qqRdsP5pt+Ebny0K uZxg8+1EUYn7zkVwsDcFwbZT8DrgHQUDZwZCmoMaxhycvwSdCA+4FTk= -----END CERTIFICATE-----Generated at Fri May 29 22:56:33 2026 by rpki-client