$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114356856265965585/0/35392e38332e3232342e302f32312d3231203d3e2034383337.roa File: 35392e38332e3232342e302f32312d3231203d3e2034383337.roa (raw, json) Hash identifier: kaeywwSdb7OpI7IJoJSMKHOKNYy3LnqSPT5GnB2b6GE= Subject key identifier: C8:1E:93:F9:7B:4F:58:FA:48:0C:E0:AA:3A:1F:C2:22:29:98:43:F9 Certificate issuer: /CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Certificate serial: 23B74B74B5809D40F487127F987A77B521B193EB Authority key identifier: 37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/35392e38332e3232342e302f32312d3231203d3e2034383337.roa Signing time: Thu 04 Jun 2026 07:16:48 +0000 ROA not before: Thu 04 Jun 2026 07:11:48 +0000 ROA not after: Thu 03 Jun 2027 07:16:48 +0000 asID: 4837 IP address blocks: 59.83.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b7:4b:74:b5:80:9d:40:f4:87:12:7f:98:7a:77:b5:21:b1:93:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Validity Not Before: Jun 4 07:11:48 2026 GMT Not After : Jun 3 07:16:48 2027 GMT Subject: CN=C81E93F97B4F58FA480CE0AA3A1FC222299843F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:aa:cd:03:e5:a7:30:47:dc:b1:ae:53:51:47: b7:a3:42:30:cb:01:06:f2:64:5b:1c:f6:34:5f:5d: 2d:68:a3:3a:f7:b5:08:bd:b3:9c:37:22:7e:68:26: a6:cf:06:45:d8:3f:0f:c9:bf:c8:ca:1c:7f:f9:da: 35:f3:23:b8:14:a7:68:64:a0:90:94:ad:ea:5a:d9: f4:7e:bb:9e:52:11:94:cc:fa:83:e9:72:3a:2c:1f: cb:e0:5f:a1:18:a0:e5:37:a0:c5:9b:f4:b4:06:84: cf:7f:4a:c9:5a:6d:96:63:97:f3:07:c1:79:ba:ac: 7b:1c:9d:a7:d2:87:28:0d:02:0e:8f:44:b8:01:d8: 81:2f:af:3d:a8:b0:79:29:a4:04:d7:b0:42:62:48: 3c:39:9d:31:44:b2:42:cc:d4:60:fb:40:47:72:55: e1:ec:53:e9:3a:95:2c:2a:48:1e:13:f6:ab:5e:c7: f7:03:7d:fe:60:be:6b:ca:60:ff:6d:61:f1:b4:b9: ed:fe:27:59:db:56:96:ee:bc:8a:bb:f4:cf:e3:fb: 5f:b2:a7:5a:1d:59:e6:b7:91:59:23:3c:f2:75:64: 7f:1e:56:66:ff:f7:bd:d9:23:a2:b2:57:58:f8:c7: 10:d4:68:54:52:f8:46:d0:e2:69:57:28:55:af:60: 6d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:1E:93:F9:7B:4F:58:FA:48:0C:E0:AA:3A:1F:C2:22:29:98:43:F9 X509v3 Authority Key Identifier: keyid:37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/35392e38332e3232342e302f32312d3231203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.83.224.0/21 Signature Algorithm: sha256WithRSAEncryption 2e:22:8b:95:1d:67:57:69:6d:cd:5c:b8:06:fe:e3:ac:f0:ba: 79:50:ee:8e:1a:fe:33:93:a7:64:2c:a7:55:80:b2:74:7b:5e: 6d:74:0d:d6:42:e7:e6:2e:c2:c8:7b:ed:6c:d3:f1:4b:4c:37: 04:cd:34:5e:f9:b5:7d:63:2d:97:a5:0f:c4:cc:3f:20:b1:ca: 2d:dc:c0:b9:72:1f:1e:59:e1:0c:7d:69:fe:80:b5:a7:39:bf: cc:aa:f5:7b:61:97:8c:66:36:d7:a5:ba:d2:5e:da:18:0f:bd: 72:26:73:40:ed:52:48:b2:af:76:25:14:98:d1:8e:4b:e0:02: 9a:38:88:f8:a4:aa:2a:4b:d5:8c:3c:8f:87:bc:e3:c3:c1:4b: 07:f9:be:bd:88:a8:b3:40:26:ea:c2:5d:89:87:a0:24:48:c5: ed:1e:02:0c:94:f4:7e:c1:66:80:6b:62:3a:4b:04:45:e3:20: 31:dd:1e:32:35:c6:94:29:f2:fd:78:fe:58:65:e8:09:5b:40: 06:d6:fc:6c:47:26:45:8b:1d:b7:f9:4a:21:21:6b:78:ae:d2: 8e:68:10:01:15:95:60:48:17:9c:f1:98:10:28:ee:31:13:2f: 14:52:09:0d:d1:c8:5f:c9:55:f8:72:a2:ba:b7:43:d3:c1:9f: f5:2e:ff:09 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUI7dLdLWAnUD0hxJ/mHp3tSGxk+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYz NUI3ODFERDAeFw0yNjA2MDQwNzExNDhaFw0yNzA2MDMwNzE2NDhaMDMxMTAvBgNV BAMTKEM4MUU5M0Y5N0I0RjU4RkE0ODBDRTBBQTNBMUZDMjIyMjk5ODQzRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBqs0D5acwR9yxrlNRR7ejQjDL AQbyZFsc9jRfXS1oozr3tQi9s5w3In5oJqbPBkXYPw/Jv8jKHH/52jXzI7gUp2hk oJCUrepa2fR+u55SEZTM+oPpcjosH8vgX6EYoOU3oMWb9LQGhM9/SslabZZjl/MH wXm6rHscnafShygNAg6PRLgB2IEvrz2osHkppATXsEJiSDw5nTFEskLM1GD7QEdy VeHsU+k6lSwqSB4T9qtex/cDff5gvmvKYP9tYfG0ue3+J1nbVpbuvIq79M/j+1+y p1odWea3kVkjPPJ1ZH8eVmb/973ZI6KyV1j4xxDUaFRS+EbQ4mlXKFWvYG0zAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUyB6T+XtPWPpIDOCqOh/CIimYQ/kwHwYDVR0j BBgwFoAUNyKsyLLlVAISHurgGUye1jW3gd0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDM1Njg1NjI2NTk2NTU4NS8wLzM3MjJBQ0M4QjJFNTU0MDIxMjFFRUFFMDE5NEM5 RUQ2MzVCNzgxREQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYzNUI3ODFERC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0MzU2ODU2MjY1OTY1NTg1LzAvMzUzOTJlMzgzMzJl MzIzMjM0MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAM7U+AwDQYJKoZIhvcNAQELBQADggEBAC4ii5UdZ1dpbc1cuAb+46zwunlQ7o4a /jOTp2Qsp1WAsnR7Xm10DdZC5+Yuwsh77WzT8UtMNwTNNF75tX1jLZelD8TMPyCx yi3cwLlyHx5Z4Qx9af6Atac5v8yq9Xthl4xmNtelutJe2hgPvXImc0DtUkiyr3Yl FJjRjkvgApo4iPikqipL1Yw8j4e848PBSwf5vr2IqLNAJurCXYmHoCRIxe0eAgyU 9H7BZoBrYjpLBEXjIDHdHjI1xpQp8v14/lhl6AlbQAbW/GxHJkWLHbf5SiEha3iu 0o5oEAEVlWBIF5zxmBAo7jETLxRSCQ3RyF/JVfhyorq3Q9PBn/Uu/wk= -----END CERTIFICATE-----Generated at Fri Jun 12 06:42:42 2026 by rpki-client