$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1113654806364422163/0/AS4637.roa File: AS4637.roa (raw, json) Hash identifier: eTM8RR/tY8zHGcVy0p9Tq2sqGZR5JCV56ektxHsB8xU= Subject key identifier: AD:38:72:D7:0F:7D:6E:22:2F:2E:0F:74:39:5C:33:C2:53:5B:16:68 Certificate issuer: /CN=A915370F0000/serialNumber=0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9 Certificate serial: 054EAB6348161FCC559458B109814F006AA21F85 Authority key identifier: 01:82:D4:CD:0C:6D:21:DC:2C:29:6E:D2:60:6A:70:D7:96:D5:BB:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AYLUzQxtIdwsKW7SYGpw15bVu7k.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/AS4637.roa Signing time: Mon 08 Jun 2026 06:54:11 +0000 ROA not before: Mon 08 Jun 2026 06:49:11 +0000 ROA not after: Mon 07 Jun 2027 06:54:11 +0000 asID: 4637 IP address blocks: 122.8.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9.crl rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AYLUzQxtIdwsKW7SYGpw15bVu7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 12:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:4e:ab:63:48:16:1f:cc:55:94:58:b1:09:81:4f:00:6a:a2:1f:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F0000, serialNumber=0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9 Validity Not Before: Jun 8 06:49:11 2026 GMT Not After : Jun 7 06:54:11 2027 GMT Subject: CN=AD3872D70F7D6E222F2E0F74395C33C2535B1668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:9b:f6:5e:c7:d5:52:dc:c5:f1:30:ca:7d:67: 6a:f9:4f:3b:85:ea:75:d1:7e:bc:31:6f:e6:31:53: 1e:48:d5:b0:5f:47:60:94:fe:b1:8f:c6:f6:a5:26: 0f:0d:18:d0:52:c4:9c:3d:ed:86:c4:72:2d:d5:67: 2f:50:0d:57:78:9a:cc:93:ae:e7:34:22:86:09:a6: 3a:80:c1:a8:85:6f:4c:f3:0a:94:32:8e:f3:41:5c: 2b:d9:9d:07:37:fe:da:c4:83:f4:10:e3:f0:58:fc: 68:4e:fb:d5:0f:69:e7:2c:21:ee:63:fe:cc:f9:15: b1:e6:0a:26:85:64:cf:af:d3:18:e0:a5:ea:d7:33: fb:29:db:e0:e9:2d:85:6c:47:b8:19:2b:eb:f8:31: 84:66:3c:4f:b6:06:1f:67:b1:1a:19:e1:ca:18:39: 84:4f:4d:4e:3e:ad:14:32:e1:39:9c:2a:3c:a5:2d: 57:25:93:39:bc:27:d3:83:8a:c2:ae:c7:8e:40:a4: 10:d4:75:6a:25:69:a8:cb:ec:81:d5:08:8e:c7:1b: 17:40:bb:3e:be:ce:63:0e:df:38:18:20:8e:7c:4a: 73:b9:30:17:00:4b:e4:34:b4:cf:2d:ad:ce:e8:85: 6c:1c:b3:09:b2:26:58:ab:aa:6e:bb:39:e4:bc:d2: d8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:38:72:D7:0F:7D:6E:22:2F:2E:0F:74:39:5C:33:C2:53:5B:16:68 X509v3 Authority Key Identifier: keyid:01:82:D4:CD:0C:6D:21:DC:2C:29:6E:D2:60:6A:70:D7:96:D5:BB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/0182D4CD0C6D21DC2C296ED2606A70D796D5BBB9.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AYLUzQxtIdwsKW7SYGpw15bVu7k.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1113654806364422163/0/AS4637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.8.40.0/22 Signature Algorithm: sha256WithRSAEncryption c5:af:89:6d:4b:b0:bb:4e:4f:35:db:06:e0:74:c0:ab:83:61: 72:81:8e:bf:73:37:4c:c5:05:62:a8:25:75:ae:ce:fd:10:8f: b1:48:94:c8:1c:6a:44:f6:c0:2f:77:29:82:ae:8b:2b:54:06: 08:f8:ee:f4:3a:d1:2d:e6:64:95:6c:35:d6:5a:11:6a:8a:72: da:58:a2:34:ab:00:9b:1c:72:cb:03:bf:53:c5:f2:ba:8e:53: 3e:02:d2:82:63:c7:f1:45:4a:88:55:77:5a:32:b7:cc:0d:68: b2:3a:81:93:c7:57:a2:40:4e:14:39:39:58:eb:0e:50:6b:5f: d5:96:f1:4f:6e:e1:6c:c8:e9:3d:f4:ae:4c:92:04:c4:a3:f1: 52:5b:84:ca:83:7f:ff:d2:c9:24:aa:b3:ae:43:fb:0d:1a:be: 14:87:51:1a:f7:98:63:a0:89:f7:35:6a:5f:98:dc:66:22:fe: 2c:fa:2d:da:8d:56:24:47:93:1f:59:9e:4d:1a:68:7d:fa:ff: 52:1e:91:b8:eb:11:7f:5b:f4:ca:79:92:54:51:ed:1e:5b:ec: d2:cb:ec:a7:6b:3e:a9:5e:18:71:60:d8:26:04:51:aa:7f:01: 43:a4:b5:65:ef:18:ca:57:e3:eb:b5:2e:7f:06:2a:07:72:41: 8e:73:31:ca -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgIUBU6rY0gWH8xVlFixCYFPAGqiH4UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTM3MEYwMDAwMTEwLwYDVQQFEygwMTgyRDRDRDBD NkQyMURDMkMyOTZFRDI2MDZBNzBENzk2RDVCQkI5MB4XDTI2MDYwODA2NDkxMVoX DTI3MDYwNzA2NTQxMVowMzExMC8GA1UEAxMoQUQzODcyRDcwRjdENkUyMjJGMkUw Rjc0Mzk1QzMzQzI1MzVCMTY2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJCb9l7H1VLcxfEwyn1navlPO4XqddF+vDFv5jFTHkjVsF9HYJT+sY/G9qUm Dw0Y0FLEnD3thsRyLdVnL1ANV3iazJOu5zQihgmmOoDBqIVvTPMKlDKO80FcK9md Bzf+2sSD9BDj8Fj8aE771Q9p5ywh7mP+zPkVseYKJoVkz6/TGOCl6tcz+ynb4Okt hWxHuBkr6/gxhGY8T7YGH2exGhnhyhg5hE9NTj6tFDLhOZwqPKUtVyWTObwn04OK wq7HjkCkENR1aiVpqMvsgdUIjscbF0C7Pr7OYw7fOBggjnxKc7kwFwBL5DS0zy2t zuiFbByzCbImWKuqbrs55LzS2IMCAwEAAaOCAeIwggHeMB0GA1UdDgQWBBStOHLX D31uIi8uD3Q5XDPCU1sWaDAfBgNVHSMEGDAWgBQBgtTNDG0h3CwpbtJganDXltW7 uTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMTEzNjU0ODA2MzY0NDIyMTYzLzAvMDE4MkQ0 Q0QwQzZEMjFEQzJDMjk2RUQyNjA2QTcwRDc5NkQ1QkJCOS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvQVlMVXpReHRJ ZHdzS1c3U1lHcHcxNWJWdTdrLmNlcjBcBggrBgEFBQcBCwRQME4wTAYIKwYBBQUH MAuGQHJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTExMzY1NDgwNjM2 NDQyMjE2My8wL0FTNDYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnoIKDANBgkqhkiG9w0BAQsFAAOC AQEAxa+JbUuwu05PNdsG4HTAq4NhcoGOv3M3TMUFYqglda7O/RCPsUiUyBxqRPbA L3cpgq6LK1QGCPju9DrRLeZklWw11loRaopy2liiNKsAmxxyywO/U8Xyuo5TPgLS gmPH8UVKiFV3WjK3zA1osjqBk8dXokBOFDk5WOsOUGtf1ZbxT27hbMjpPfSuTJIE xKPxUluEyoN//9LJJKqzrkP7DRq+FIdRGveYY6CJ9zVqX5jcZiL+LPot2o1WJEeT H1meTRpoffr/Uh6RuOsRf1v0ynmSVFHtHlvs0svsp2s+qV4YcWDYJgRRqn8BQ6S1 Ze8Yylfj67UufwYqB3JBjnMxyg== -----END CERTIFICATE-----Generated at Fri Jun 12 04:32:41 2026 by rpki-client