$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS58466.roa File: AS58466.roa (raw, json) Hash identifier: 607sAR2dbgCiNziTsqpXz6tGfv37/stPkOdP6bVEEO0= Subject key identifier: 98:23:65:A6:ED:75:51:9F:76:CA:A7:7B:CA:E3:3C:64:F2:71:9F:CC Certificate issuer: /CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Certificate serial: 25912E7A67B72B0701D8392A97AC2259777DB909 Authority key identifier: 9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS58466.roa Signing time: Tue 12 May 2026 09:40:17 +0000 ROA not before: Tue 12 May 2026 09:35:17 +0000 ROA not after: Tue 11 May 2027 09:40:17 +0000 asID: 58466 IP address blocks: 42.240.128.0/20 maxlen: 20 42.240.144.0/20 maxlen: 20 42.240.160.0/20 maxlen: 20 106.75.128.0/20 maxlen: 20 106.75.144.0/20 maxlen: 20 106.75.160.0/20 maxlen: 20 106.75.176.0/20 maxlen: 20 2401:3480:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:91:2e:7a:67:b7:2b:07:01:d8:39:2a:97:ac:22:59:77:7d:b9:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Validity Not Before: May 12 09:35:17 2026 GMT Not After : May 11 09:40:17 2027 GMT Subject: CN=982365A6ED75519F76CAA77BCAE33C64F2719FCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:20:c1:08:67:b9:fc:73:2f:90:98:ec:68:9b: f3:c9:0c:2b:30:cf:ad:af:16:74:62:5f:01:3e:87: 9e:f1:f9:8c:f3:95:c9:20:0e:22:86:a7:80:d3:e9: 80:f4:01:89:41:e5:37:5c:ba:6c:6b:84:f4:55:42: 19:70:2e:7d:77:ba:72:93:19:1b:47:99:10:9b:da: 26:71:66:a9:00:30:25:fb:b1:34:4e:9a:ee:72:25: ea:38:c7:ba:44:e2:7c:2d:61:17:ee:ea:a3:b1:de: 2f:b6:a7:81:53:bf:9d:d7:ae:94:f9:56:ea:b6:8c: 9e:1d:f7:41:e1:19:75:9f:9d:0f:a1:16:f8:3e:27: 28:8b:59:fa:9b:eb:8a:b3:a3:12:9f:00:28:b9:4f: ce:42:bd:b4:e8:52:a5:36:35:db:2e:e4:33:45:ab: ed:cb:f3:70:30:a5:aa:b9:32:7d:e6:8d:26:7f:b8: de:8c:99:2e:01:97:7f:a0:71:d5:b6:28:fc:77:2b: 8e:fe:9e:7b:51:0c:db:0b:51:e0:b9:f7:62:09:6e: 95:59:52:99:ea:da:49:87:52:2e:51:7e:46:0b:79: 7b:ed:cc:2e:80:69:aa:3a:2a:de:73:f4:12:e7:06: 60:c9:db:76:14:2a:1b:f0:84:02:4b:c3:87:1a:86: 1b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:23:65:A6:ED:75:51:9F:76:CA:A7:7B:CA:E3:3C:64:F2:71:9F:CC X509v3 Authority Key Identifier: keyid:9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/AS58466.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.240.128.0-42.240.175.255 106.75.128.0/18 IPv6: 2401:3480:3000::/36 Signature Algorithm: sha256WithRSAEncryption d0:14:00:30:60:ec:c4:1e:d1:41:24:43:f4:fe:d2:a5:e6:fb: ac:c9:61:70:65:ba:8b:10:a6:e4:5b:ff:fe:7f:21:ab:5e:3e: f1:a9:1f:a0:57:fb:e3:6f:5b:c6:53:81:ce:ba:be:25:e6:7c: 55:7b:72:73:cb:15:88:5b:ed:15:c1:77:f5:1e:e2:64:02:f2: 10:e4:9f:e1:bb:d5:39:96:7a:3b:03:2c:81:a8:81:e8:0a:11: 30:5e:0c:f8:42:5c:23:f3:26:f3:98:f0:f1:7a:39:ae:fe:3e: 3f:ce:53:fd:f6:36:87:21:17:dc:91:21:6b:ff:9f:12:c6:b0: 47:2a:d0:d2:1e:39:dd:7f:74:84:60:48:bd:86:10:bf:16:f4: 8a:32:6a:ad:a1:d0:9d:12:34:db:e3:e1:49:c8:45:e1:5b:54: 62:18:39:00:08:f5:ec:32:d9:1b:03:a8:ba:f5:b5:5a:1e:ad: 3f:7e:35:46:d2:50:55:83:04:7c:bb:a5:a0:6d:9b:8e:86:a3: 84:63:61:68:3a:15:67:a1:0d:2d:32:6a:85:9a:66:c2:07:cd: 57:32:52:00:49:bc:88:92:01:bb:56:74:25:fa:54:ea:68:d6: 9f:0d:5c:ae:bf:d3:5b:7d:95:b1:cc:97:d7:35:e0:12:28:56: f0:d7:61:51 -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUJZEueme3KwcB2Dkql6wiWXd9uQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNB OUFBM0MyQzAeFw0yNjA1MTIwOTM1MTdaFw0yNzA1MTEwOTQwMTdaMDMxMTAvBgNV BAMTKDk4MjM2NUE2RUQ3NTUxOUY3NkNBQTc3QkNBRTMzQzY0RjI3MTlGQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwIMEIZ7n8cy+QmOxom/PJDCsw z62vFnRiXwE+h57x+YzzlckgDiKGp4DT6YD0AYlB5TdcumxrhPRVQhlwLn13unKT GRtHmRCb2iZxZqkAMCX7sTROmu5yJeo4x7pE4nwtYRfu6qOx3i+2p4FTv53XrpT5 Vuq2jJ4d90HhGXWfnQ+hFvg+JyiLWfqb64qzoxKfACi5T85CvbToUqU2Ndsu5DNF q+3L83Awpaq5Mn3mjSZ/uN6MmS4Bl3+gcdW2KPx3K47+nntRDNsLUeC592IJbpVZ Upnq2kmHUi5RfkYLeXvtzC6Aaao6Kt5z9BLnBmDJ23YUKhvwhAJLw4cahhtxAgMB AAGjggIBMIIB/TAdBgNVHQ4EFgQUmCNlpu11UZ92yqd7yuM8ZPJxn8wwHwYDVR0j BBgwFoAUm/NLOBd0jT5pzDiA8TqDg6mqPCwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDU4OTE4Ny8wLzlCRjM0QjM4MTc3NDhEM0U2OUNDMzg4MEYxM0E4 MzgzQTlBQTNDMkMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNBOUFBM0MyQy5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1ODkxODcvMC9BUzU4NDY2LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAaBAIA ATAUMAwDBAcq8IADBAQq8KADBAZqS4AwDgQCAAIwCAMGBCQBNIAwMA0GCSqGSIb3 DQEBCwUAA4IBAQDQFAAwYOzEHtFBJEP0/tKl5vusyWFwZbqLEKbkW//+fyGrXj7x qR+gV/vjb1vGU4HOur4l5nxVe3JzyxWIW+0VwXf1HuJkAvIQ5J/hu9U5lno7AyyB qIHoChEwXgz4Qlwj8ybzmPDxejmu/j4/zlP99jaHIRfckSFr/58SxrBHKtDSHjnd f3SEYEi9hhC/FvSKMmqtodCdEjTb4+FJyEXhW1RiGDkACPXsMtkbA6i69bVaHq0/ fjVG0lBVgwR8u6WgbZuOhqOEY2FoOhVnoQ0tMmqFmmbCB81XMlIASbyIkgG7VnQl +lTqaNafDVyuv9NbfZWxzJfXNeASKFbw12FR -----END CERTIFICATE-----Generated at Wed May 13 06:04:50 2026 by rpki-client