$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114356856265965585/0/35392e38332e3233322e302f32322d3232203d3e2034383337.roa File: 35392e38332e3233322e302f32322d3232203d3e2034383337.roa (raw, json) Hash identifier: u2Ao0mNAi/cXoTQTOU+1g4z7BeiAZ/k8rBtsuz5pHQE= Subject key identifier: F9:06:46:4B:50:70:F5:D4:A5:C3:9D:DA:9E:9D:F7:84:D5:C3:01:06 Certificate issuer: /CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Certificate serial: 7FE92618C7431011A9DB85D35E20F961E55782CA Authority key identifier: 37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/35392e38332e3233322e302f32322d3232203d3e2034383337.roa Signing time: Wed 03 Jun 2026 06:30:11 +0000 ROA not before: Wed 03 Jun 2026 06:25:11 +0000 ROA not after: Wed 02 Jun 2027 06:30:11 +0000 asID: 4837 IP address blocks: 59.83.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:e9:26:18:c7:43:10:11:a9:db:85:d3:5e:20:f9:61:e5:57:82:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3722ACC8B2E55402121EEAE0194C9ED635B781DD Validity Not Before: Jun 3 06:25:11 2026 GMT Not After : Jun 2 06:30:11 2027 GMT Subject: CN=F906464B5070F5D4A5C39DDA9E9DF784D5C30106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:de:d4:98:12:c8:cf:19:2a:c3:da:e5:ee:e8: 7a:6a:c1:f0:92:ac:b4:aa:0a:b1:f4:78:e9:15:54: 28:39:97:96:e3:34:b2:8b:c3:cf:f4:64:99:1e:10: 27:11:b7:4a:24:59:0e:58:27:b2:3f:ef:74:d7:13: ce:91:5c:21:ac:55:1d:37:3d:64:a1:19:68:9d:22: 2e:58:dc:45:1c:88:df:ad:e0:56:a2:77:10:38:55: bf:6c:11:98:47:37:38:67:ed:5a:af:3f:6c:b6:07: 9d:2f:d0:39:21:22:e1:ca:7d:d4:5d:e2:db:c0:86: 1a:81:34:68:c7:d1:26:03:65:9c:ab:31:b5:99:0f: 69:39:83:15:90:42:74:67:d6:6c:24:fe:b5:23:1a: 9f:d3:66:6e:5e:8a:1c:14:2f:16:06:79:06:10:42: dc:8a:04:be:90:f4:b2:f4:49:2b:6d:bf:0d:6b:1e: 7f:29:46:88:a3:83:4d:7f:c9:a1:d5:c0:dd:1d:a9: 71:33:0b:4f:9b:13:8c:bd:df:9e:7c:70:37:74:be: 0f:ba:70:3b:51:45:68:8f:bd:5a:80:62:87:89:6d: ac:9b:25:12:a1:8a:93:2f:b7:de:c8:dd:e4:07:39: f9:9b:45:e8:5f:25:a6:d6:14:e5:fb:99:17:46:2c: a4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:06:46:4B:50:70:F5:D4:A5:C3:9D:DA:9E:9D:F7:84:D5:C3:01:06 X509v3 Authority Key Identifier: keyid:37:22:AC:C8:B2:E5:54:02:12:1E:EA:E0:19:4C:9E:D6:35:B7:81:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/3722ACC8B2E55402121EEAE0194C9ED635B781DD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3722ACC8B2E55402121EEAE0194C9ED635B781DD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114356856265965585/0/35392e38332e3233322e302f32322d3232203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.83.232.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:52:44:d9:21:8b:54:f6:12:71:74:73:6f:e0:f7:29:25:9e: ef:f7:74:08:1c:c9:b1:1f:11:a4:90:4a:a3:1c:2d:66:86:21: 6f:6b:67:be:c8:da:1f:65:57:7b:2a:03:1c:bb:30:88:d9:42: 43:21:06:e8:c2:e1:a1:02:51:6d:5a:b5:c1:19:c1:c1:57:48: e3:a6:49:8a:38:ed:e5:1e:d0:44:29:37:5f:e7:f0:ad:6a:ff: 0c:75:92:a1:78:ae:d5:2a:be:ee:79:34:36:f8:e5:74:49:0e: 3a:47:af:10:6e:b2:da:8e:12:d8:1a:25:af:73:12:da:f4:8a: 2b:32:4c:af:d5:89:f0:ea:6e:16:92:6e:40:34:e1:3f:db:d4: fc:05:40:90:27:26:d1:19:2c:e0:3f:3c:73:54:3c:0b:a2:d0: c7:11:a1:ac:36:25:99:3a:87:8e:a5:ce:6c:f0:c7:7b:c5:94: e5:e4:f3:7e:b2:aa:b0:b3:55:4f:10:7d:ab:32:f7:05:07:a4: 91:36:9c:8a:b5:5e:3b:32:30:c0:58:30:57:d7:c1:4d:04:71: 39:ae:b1:71:ca:b0:7c:f4:d4:be:47:cb:6b:fe:ba:bd:f6:ea: 79:ee:55:5b:9d:c1:e9:29:3d:b1:61:02:a5:3e:69:90:22:7b: c2:69:1b:a8 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUf+kmGMdDEBGp24XTXiD5YeVXgsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYz NUI3ODFERDAeFw0yNjA2MDMwNjI1MTFaFw0yNzA2MDIwNjMwMTFaMDMxMTAvBgNV BAMTKEY5MDY0NjRCNTA3MEY1RDRBNUMzOUREQTlFOURGNzg0RDVDMzAxMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe3tSYEsjPGSrD2uXu6HpqwfCS rLSqCrH0eOkVVCg5l5bjNLKLw8/0ZJkeECcRt0okWQ5YJ7I/73TXE86RXCGsVR03 PWShGWidIi5Y3EUciN+t4FaidxA4Vb9sEZhHNzhn7VqvP2y2B50v0DkhIuHKfdRd 4tvAhhqBNGjH0SYDZZyrMbWZD2k5gxWQQnRn1mwk/rUjGp/TZm5eihwULxYGeQYQ QtyKBL6Q9LL0SSttvw1rHn8pRoijg01/yaHVwN0dqXEzC0+bE4y93558cDd0vg+6 cDtRRWiPvVqAYoeJbaybJRKhipMvt97I3eQHOfmbRehfJabWFOX7mRdGLKS5AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU+QZGS1Bw9dSlw53anp33hNXDAQYwHwYDVR0j BBgwFoAUNyKsyLLlVAISHurgGUye1jW3gd0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDM1Njg1NjI2NTk2NTU4NS8wLzM3MjJBQ0M4QjJFNTU0MDIxMjFFRUFFMDE5NEM5 RUQ2MzVCNzgxREQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzcyMkFDQzhCMkU1NTQwMjEyMUVFQUUwMTk0QzlFRDYzNUI3ODFERC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0MzU2ODU2MjY1OTY1NTg1LzAvMzUzOTJlMzgzMzJl MzIzMzMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAI7U+gwDQYJKoZIhvcNAQELBQADggEBADpSRNkhi1T2EnF0c2/g9yklnu/3dAgc ybEfEaSQSqMcLWaGIW9rZ77I2h9lV3sqAxy7MIjZQkMhBujC4aECUW1atcEZwcFX SOOmSYo47eUe0EQpN1/n8K1q/wx1kqF4rtUqvu55NDb45XRJDjpHrxBustqOEtga Ja9zEtr0iisyTK/VifDqbhaSbkA04T/b1PwFQJAnJtEZLOA/PHNUPAui0McRoaw2 JZk6h46lzmzwx3vFlOXk836yqrCzVU8Qfasy9wUHpJE2nIq1XjsyMMBYMFfXwU0E cTmusXHKsHz01L5Hy2v+ur326nnuVVudwekpPbFhAqU+aZAie8JpG6g= -----END CERTIFICATE-----Generated at Fri Jun 12 06:44:24 2026 by rpki-client