$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1108677435395670037/0/35342e3232322e372e302f32342d3234203d3e203535393630.roa File: 35342e3232322e372e302f32342d3234203d3e203535393630.roa (raw, json) Hash identifier: Xt0Qsi2obHI5zGn8CWSDLGblDw5xsOUZyuD7vt4zIOg= Subject key identifier: 8E:AA:8D:78:61:C6:C5:4F:BB:FC:EC:27:74:56:2C:47:B7:F5:65:46 Certificate issuer: /CN=EDB73071044B6AA67901EB0A11A028B8B2CEEC5F Certificate serial: 2591A9BE2C82F6300777F26A6D653849D67E69DB Authority key identifier: ED:B7:30:71:04:4B:6A:A6:79:01:EB:0A:11:A0:28:B8:B2:CE:EC:5F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/EDB73071044B6AA67901EB0A11A028B8B2CEEC5F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/0/35342e3232322e372e302f32342d3234203d3e203535393630.roa Signing time: Tue 19 May 2026 02:47:11 +0000 ROA not before: Tue 19 May 2026 02:42:11 +0000 ROA not after: Tue 18 May 2027 02:47:11 +0000 asID: 55960 IP address blocks: 54.222.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/0/EDB73071044B6AA67901EB0A11A028B8B2CEEC5F.crl rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/0/EDB73071044B6AA67901EB0A11A028B8B2CEEC5F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/EDB73071044B6AA67901EB0A11A028B8B2CEEC5F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 13:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:91:a9:be:2c:82:f6:30:07:77:f2:6a:6d:65:38:49:d6:7e:69:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EDB73071044B6AA67901EB0A11A028B8B2CEEC5F Validity Not Before: May 19 02:42:11 2026 GMT Not After : May 18 02:47:11 2027 GMT Subject: CN=8EAA8D7861C6C54FBBFCEC2774562C47B7F56546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f2:49:7d:d4:16:c2:5d:f9:76:7d:d7:47:a5: 3f:c6:7f:bb:04:ec:67:21:6e:aa:10:ea:e1:bf:e9: dc:e3:03:bf:9c:53:80:c4:e7:f1:45:cf:37:51:49: b0:23:19:d6:f8:5b:df:68:ca:01:53:81:0a:7d:3f: a0:8a:c3:24:3f:e3:e8:0b:e8:2a:d2:a2:de:f1:1d: 70:b6:6d:16:69:00:97:90:5d:a3:df:72:00:69:06: 7b:4e:7f:9c:b5:cf:e0:2b:92:de:cd:cf:75:07:c0: 25:16:d3:0c:ea:1a:7b:7f:31:42:37:0c:40:77:a7: 53:ef:8c:48:98:d6:39:06:b7:90:14:17:fc:ae:49: 2c:4f:e4:41:49:24:fb:70:bf:ad:63:24:d3:6f:a2: 92:e4:86:4b:3f:b9:d8:05:37:cf:33:93:d0:c3:8c: 9d:72:e4:7b:fa:36:77:41:c0:28:29:48:2e:76:58: 86:0e:bb:09:31:92:e6:62:fa:f9:f4:58:52:35:c3: 2f:9a:b5:e8:c5:7e:2b:04:2b:f3:41:6c:24:3b:23: 92:e6:92:7e:21:77:bd:6a:c2:c2:1b:e3:85:96:42: 41:e6:0c:1d:17:eb:e0:62:20:da:12:85:59:61:57: cd:e5:e1:14:90:80:c7:ad:11:1c:a5:6d:39:55:20: 62:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AA:8D:78:61:C6:C5:4F:BB:FC:EC:27:74:56:2C:47:B7:F5:65:46 X509v3 Authority Key Identifier: keyid:ED:B7:30:71:04:4B:6A:A6:79:01:EB:0A:11:A0:28:B8:B2:CE:EC:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/0/EDB73071044B6AA67901EB0A11A028B8B2CEEC5F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/EDB73071044B6AA67901EB0A11A028B8B2CEEC5F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1108677435395670037/0/35342e3232322e372e302f32342d3234203d3e203535393630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.222.7.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:bd:10:de:cb:e8:72:f3:27:43:61:6d:3a:d1:12:15:d1:5f: dc:e4:94:88:a5:a5:c0:c3:52:db:2b:f3:f0:78:c8:7e:71:53: d0:79:fb:52:2b:96:9d:e6:cb:db:96:71:57:e5:4c:9f:fd:03: ec:e8:6d:10:d7:f7:f7:38:0b:5b:26:4d:a0:24:8b:38:ab:ad: 2e:68:f1:f7:88:58:38:f3:48:b0:a1:04:02:de:fe:f4:8a:db: 07:f2:22:f9:c3:c2:d7:cc:14:60:f0:8c:79:98:fb:9c:ec:f2: 72:64:2b:8a:bd:7a:f8:8a:15:f2:b7:f2:48:ec:9f:c9:b9:65: 58:6f:8c:7f:05:73:a4:67:68:8d:3f:86:c8:bb:5e:38:4b:d4: bc:96:25:57:4a:07:72:a1:6f:c9:6c:10:07:7f:f0:53:5c:0a: ec:ec:14:88:11:d5:ad:67:cd:1d:b9:ab:1c:15:e9:c0:13:54: d5:3f:a8:61:63:e1:9d:25:8a:ec:eb:01:28:be:c3:14:6a:a2: 84:75:91:81:e2:5a:a0:aa:86:30:65:85:5c:df:a4:b4:5b:8a: 11:d5:b3:cd:9c:b2:df:93:62:8a:cb:96:96:a8:d1:8b:2a:6b: 53:6d:dc:d4:c6:3b:8a:ba:b6:31:09:0c:54:e7:12:49:9e:24: 85:dd:c1:38 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUJZGpviyC9jAHd/JqbWU4SdZ+adswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRURCNzMwNzEwNDRCNkFBNjc5MDFFQjBBMTFBMDI4QjhC MkNFRUM1RjAeFw0yNjA1MTkwMjQyMTFaFw0yNzA1MTgwMjQ3MTFaMDMxMTAvBgNV BAMTKDhFQUE4RDc4NjFDNkM1NEZCQkZDRUMyNzc0NTYyQzQ3QjdGNTY1NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo8kl91BbCXfl2fddHpT/Gf7sE 7GchbqoQ6uG/6dzjA7+cU4DE5/FFzzdRSbAjGdb4W99oygFTgQp9P6CKwyQ/4+gL 6CrSot7xHXC2bRZpAJeQXaPfcgBpBntOf5y1z+Arkt7Nz3UHwCUW0wzqGnt/MUI3 DEB3p1PvjEiY1jkGt5AUF/yuSSxP5EFJJPtwv61jJNNvopLkhks/udgFN88zk9DD jJ1y5Hv6NndBwCgpSC52WIYOuwkxkuZi+vn0WFI1wy+atejFfisEK/NBbCQ7I5Lm kn4hd71qwsIb44WWQkHmDB0X6+BiINoShVlhV83l4RSQgMetERylbTlVIGIjAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUjqqNeGHGxU+7/OwndFYsR7f1ZUYwHwYDVR0j BBgwFoAU7bcwcQRLaqZ5AesKEaAouLLO7F8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw ODY3NzQzNTM5NTY3MDAzNy8wL0VEQjczMDcxMDQ0QjZBQTY3OTAxRUIwQTExQTAy OEI4QjJDRUVDNUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvRURCNzMwNzEwNDRCNkFBNjc5MDFFQjBBMTFBMDI4QjhCMkNFRUM1Ri5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA4Njc3NDM1Mzk1NjcwMDM3LzAvMzUzNDJlMzIzMjMy MmUzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzUzOTM2MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAA23gcwDQYJKoZIhvcNAQELBQADggEBAFq9EN7L6HLzJ0NhbTrREhXRX9zklIil pcDDUtsr8/B4yH5xU9B5+1Irlp3my9uWcVflTJ/9A+zobRDX9/c4C1smTaAkizir rS5o8feIWDjzSLChBALe/vSK2wfyIvnDwtfMFGDwjHmY+5zs8nJkK4q9eviKFfK3 8kjsn8m5ZVhvjH8Fc6RnaI0/hsi7XjhL1LyWJVdKB3Khb8lsEAd/8FNcCuzsFIgR 1a1nzR25qxwV6cATVNU/qGFj4Z0liuzrASi+wxRqooR1kYHiWqCqhjBlhVzfpLRb ihHVs82cst+TYorLlpao0Ysqa1Nt3NTGO4q6tjEJDFTnEkmeJIXdwTg= -----END CERTIFICATE-----Generated at Sat May 30 01:22:40 2026 by rpki-client