$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233342e3139322e302f31382d3234203d3e20313335363239.roa File: 36392e3233342e3139322e302f31382d3234203d3e20313335363239.roa (raw, json) Hash identifier: 2JgPRqzChL6aRN2HHWJ+liAA49OceEMdwqv4mL4g3TA= Subject key identifier: 95:70:29:F7:F5:D0:FE:F0:59:6D:7F:77:34:2C:1B:71:48:F0:38:92 Certificate issuer: /CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Certificate serial: 20114EEA77B2FF254910761A870676582C8097A8 Authority key identifier: BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233342e3139322e302f31382d3234203d3e20313335363239.roa Signing time: Wed 18 Mar 2026 07:49:42 +0000 ROA not before: Wed 18 Mar 2026 07:44:42 +0000 ROA not after: Wed 17 Mar 2027 07:49:42 +0000 asID: 135629 IP address blocks: 69.234.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 22:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:11:4e:ea:77:b2:ff:25:49:10:76:1a:87:06:76:58:2c:80:97:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Validity Not Before: Mar 18 07:44:42 2026 GMT Not After : Mar 17 07:49:42 2027 GMT Subject: CN=957029F7F5D0FEF0596D7F77342C1B7148F03892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f0:f8:1e:2c:ea:20:d9:fa:1b:f2:04:10:a1: 9f:61:8d:2c:6d:fe:5c:59:6e:a8:eb:eb:51:0e:2c: bb:a6:03:6e:e6:60:bd:af:31:43:75:8d:46:fd:40: 8a:2f:85:19:fc:f2:92:c0:c6:c0:44:8c:86:13:bb: f2:05:f8:c7:59:b3:d5:2f:32:8f:99:06:d5:64:5f: d9:73:0b:7e:ee:4f:6d:c3:3f:72:a2:9e:a9:52:7f: 13:bd:87:b1:c4:91:ff:f0:db:fd:03:c4:1d:d6:b2: e1:68:ac:3f:4d:31:e9:d5:0d:56:fa:df:17:03:2b: c3:be:13:20:62:17:23:07:c5:67:b2:79:88:cd:6c: 22:bb:03:cf:5e:9f:11:b6:da:fe:bd:fb:18:22:79: f2:a5:8e:d4:57:96:f4:ef:f0:bb:b7:29:2b:7e:bd: 59:0f:fa:c5:6a:db:8c:bc:e6:4a:8a:c3:6b:21:08: 61:d5:61:c7:21:40:9b:c7:4c:34:4a:dc:da:a3:d3: ff:fc:ef:e0:f8:df:a8:6d:a5:d1:bd:21:7e:9e:c2: de:20:76:90:78:6f:9b:51:5a:76:21:56:1c:38:47: 65:90:f5:69:aa:37:62:46:48:d9:5f:ba:4a:91:00: 59:e9:f2:ed:0c:02:48:e0:b9:64:6c:45:8e:09:cc: 52:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:70:29:F7:F5:D0:FE:F0:59:6D:7F:77:34:2C:1B:71:48:F0:38:92 X509v3 Authority Key Identifier: keyid:BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233342e3139322e302f31382d3234203d3e20313335363239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.234.192.0/18 Signature Algorithm: sha256WithRSAEncryption 56:ae:4e:1b:00:f1:98:07:c3:d4:5c:a4:0f:95:da:0d:e2:96: 1a:07:13:5a:40:03:7a:76:a1:4a:c1:1d:e8:0e:e6:a9:ac:5f: c5:30:93:44:02:58:76:01:df:af:b0:fd:68:a0:82:f2:09:b8: 85:9d:17:0c:c2:eb:94:fb:87:8c:fd:82:3d:d7:d2:d6:aa:d7: 1f:e9:6d:23:29:d8:35:4f:3b:af:f7:b7:e0:ff:16:9c:00:e0: db:dc:8f:77:a1:a4:c4:6b:33:81:61:44:14:23:b9:b6:52:06: b9:b5:55:93:29:19:29:4a:99:9b:23:25:98:8c:aa:b3:97:6d: ab:7a:a8:47:dd:c4:e8:b0:de:ed:69:89:f4:cb:ff:c9:16:7c: 16:81:96:8a:8b:20:7a:0b:14:17:b8:2a:4e:18:2a:89:52:d0: 64:21:79:95:a8:d5:da:b7:8c:0d:14:5c:9e:c3:df:19:89:46: 68:ae:ce:49:15:4e:69:fe:36:04:e7:16:6f:c2:c7:f2:37:f0: b6:4a:fd:f0:60:fc:c5:99:b0:a4:03:8c:0c:e5:85:6a:85:04: 05:0f:17:8a:0b:4f:cf:e6:5d:35:d6:c0:d8:2e:4f:f8:2f:3c: 63:e0:76:48:c7:df:9b:74:56:74:49:4a:85:38:d6:fa:23:fb: 09:db:9e:83 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUIBFO6ney/yVJEHYahwZ2WCyAl6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0 NkE3REY2RDAeFw0yNjAzMTgwNzQ0NDJaFw0yNzAzMTcwNzQ5NDJaMDMxMTAvBgNV BAMTKDk1NzAyOUY3RjVEMEZFRjA1OTZEN0Y3NzM0MkMxQjcxNDhGMDM4OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS8PgeLOog2fob8gQQoZ9hjSxt /lxZbqjr61EOLLumA27mYL2vMUN1jUb9QIovhRn88pLAxsBEjIYTu/IF+MdZs9Uv Mo+ZBtVkX9lzC37uT23DP3KinqlSfxO9h7HEkf/w2/0DxB3WsuForD9NMenVDVb6 3xcDK8O+EyBiFyMHxWeyeYjNbCK7A89enxG22v69+xgiefKljtRXlvTv8Lu3KSt+ vVkP+sVq24y85kqKw2shCGHVYcchQJvHTDRK3Nqj0//87+D436htpdG9IX6ewt4g dpB4b5tRWnYhVhw4R2WQ9WmqN2JGSNlfukqRAFnp8u0MAkjguWRsRY4JzFJ1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUlXAp9/XQ/vBZbX93NCwbcUjwOJIwHwYDVR0j BBgwFoAUukQ8/aQDc+PyehS0FOwkikan320wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDk4MjQwMy8xL0JBNDQzQ0ZEQTQwMzczRTNGMjdBMTRCNDE0RUMy NDhBNDZBN0RGNkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0NkE3REY2RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ5ODI0MDMvMS8zNjM5MmUzMjMz MzQyZTMxMzkzMjJlMzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMxMzMzNTM2MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBkXqwDANBgkqhkiG9w0BAQsFAAOCAQEAVq5OGwDxmAfD1FykD5Xa DeKWGgcTWkADenahSsEd6A7mqaxfxTCTRAJYdgHfr7D9aKCC8gm4hZ0XDMLrlPuH jP2CPdfS1qrXH+ltIynYNU87r/e34P8WnADg29yPd6GkxGszgWFEFCO5tlIGubVV kykZKUqZmyMlmIyqs5dtq3qoR93E6LDe7WmJ9Mv/yRZ8FoGWiosgegsUF7gqThgq iVLQZCF5lajV2reMDRRcnsPfGYlGaK7OSRVOaf42BOcWb8LH8jfwtkr98GD8xZmw pAOMDOWFaoUEBQ8XigtPz+ZdNdbA2C5P+C88Y+B2SMffm3RWdElKhTjW+iP7Cdue gw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:41:34 2026 by rpki-client