$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/33392e39362e302e302f31332d3234203d3e203337393633.roa File: 33392e39362e302e302f31332d3234203d3e203337393633.roa (raw, json) Hash identifier: IeT+GR3Nh+8fHGr3s9DuYXGOpPTGA+gCFlQbGUgroMo= Subject key identifier: 06:77:66:9A:5E:2D:B9:65:C3:D8:9D:55:03:54:0A:1B:36:2C:5A:63 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 273C7E1D78E205567E6A8FA33BACBD9063DD0C90 Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/33392e39362e302e302f31332d3234203d3e203337393633.roa Signing time: Tue 12 May 2026 09:07:34 +0000 ROA not before: Tue 12 May 2026 09:02:34 +0000 ROA not after: Tue 11 May 2027 09:07:34 +0000 asID: 37963 IP address blocks: 39.96.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3c:7e:1d:78:e2:05:56:7e:6a:8f:a3:3b:ac:bd:90:63:dd:0c:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: May 12 09:02:34 2026 GMT Not After : May 11 09:07:34 2027 GMT Subject: CN=0677669A5E2DB965C3D89D5503540A1B362C5A63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ce:b2:c3:a0:c1:54:34:fd:a4:17:48:86:f6: 35:c3:e2:1c:18:91:8a:08:ca:9f:02:ba:de:fd:23: 56:da:b0:35:db:04:5e:08:4f:04:88:db:f7:d0:f9: b8:a7:be:f4:3c:e8:65:f7:b9:18:80:ee:72:e6:16: 4d:9a:20:37:d7:7e:1d:73:4d:fc:16:25:f3:60:76: 03:be:14:38:a9:e6:dc:d9:3a:1c:39:17:cc:74:b8: 08:51:77:4d:2d:48:4d:51:3c:68:5f:82:2a:37:54: f6:15:ad:3b:02:b5:e5:d4:95:64:08:46:69:4c:4a: b7:5c:fe:29:d2:ed:92:77:34:e4:26:08:ba:f3:e3: ff:8a:95:62:27:f0:77:76:4f:74:51:72:7b:49:04: e9:e3:50:7e:b3:45:f8:fa:f0:dd:6e:ea:9d:bd:d5: d5:7c:51:db:2d:d7:da:a9:ca:b7:fb:5e:98:65:98: 81:0c:0b:73:b3:c5:f5:d6:de:94:1d:cb:c2:df:96: 73:8e:38:7f:a1:c1:35:f4:41:9e:5f:33:a1:39:bd: 2b:01:4a:07:e8:58:cb:df:37:b3:a6:bf:c1:9b:b3: 04:e3:7b:77:61:3f:4a:9a:b1:c1:60:29:a2:25:94: 23:4f:01:90:68:74:8d:c5:21:9b:f5:a5:21:de:c6: 16:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:77:66:9A:5E:2D:B9:65:C3:D8:9D:55:03:54:0A:1B:36:2C:5A:63 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/33392e39362e302e302f31332d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 39.96.0.0/13 Signature Algorithm: sha256WithRSAEncryption 6a:56:5c:a3:7c:4f:b3:1c:32:dc:22:18:ed:67:8b:9c:ef:cb: 27:0d:99:05:ab:2e:93:26:7a:d2:93:0f:a3:37:bf:f7:a2:f8: 5c:be:a3:ae:81:1b:a2:bf:84:a7:52:84:28:8a:98:4f:5a:94: 23:2d:f6:4b:6d:0c:38:b6:f0:10:bd:66:43:2c:2e:b3:3d:20: 35:4f:63:57:16:0d:bc:12:bb:b9:f3:e7:ed:e1:93:d6:95:74: e7:c2:4a:96:1d:bf:da:0f:b2:f6:22:b4:d1:3e:1e:09:81:bd: f6:9b:41:97:46:db:7e:2d:ab:36:3c:ac:9a:28:13:a4:b1:76: be:a6:35:f7:57:2e:03:09:ab:56:b4:aa:63:35:4a:35:6a:80: 80:c6:16:80:c0:c3:a4:11:44:09:d7:0a:de:a0:42:09:e6:fd: 96:f6:f4:66:dd:61:d0:ae:ba:3d:b9:07:42:6c:a7:a6:e5:4d: 67:be:f2:2a:5e:9e:be:f7:88:97:5f:7d:de:9e:32:79:ef:6b: 21:a2:3b:cb:6f:e6:ab:dd:7b:83:18:db:e9:68:be:20:64:8b: 0f:87:48:e2:f6:31:68:fb:91:99:a0:22:59:23:3d:95:c6:c8: 1d:b2:54:c5:7d:24:a9:e9:b6:16:ac:f4:d2:54:9c:be:67:4c: d9:fc:7d:3f -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUJzx+HXjiBVZ+ao+jO6y9kGPdDJAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA1MTIwOTAyMzRaFw0yNzA1MTEwOTA3MzRaMDMxMTAvBgNV BAMTKDA2Nzc2NjlBNUUyREI5NjVDM0Q4OUQ1NTAzNTQwQTFCMzYyQzVBNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuzrLDoMFUNP2kF0iG9jXD4hwY kYoIyp8Cut79I1basDXbBF4ITwSI2/fQ+binvvQ86GX3uRiA7nLmFk2aIDfXfh1z TfwWJfNgdgO+FDip5tzZOhw5F8x0uAhRd00tSE1RPGhfgio3VPYVrTsCteXUlWQI RmlMSrdc/inS7ZJ3NOQmCLrz4/+KlWIn8Hd2T3RRcntJBOnjUH6zRfj68N1u6p29 1dV8Udst19qpyrf7XphlmIEMC3OzxfXW3pQdy8LflnOOOH+hwTX0QZ5fM6E5vSsB SgfoWMvfN7Omv8GbswTje3dhP0qascFgKaIllCNPAZBodI3FIZv1pSHexhbDAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUBndmml4tuWXD2J1VA1QKGzYsWmMwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzMzOTJlMzkzNjJl MzAyZTMwMmYzMTMzMmQzMjM0MjAzZDNlMjAzMzM3MzkzNjMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMD J2AwDQYJKoZIhvcNAQELBQADggEBAGpWXKN8T7McMtwiGO1ni5zvyycNmQWrLpMm etKTD6M3v/ei+Fy+o66BG6K/hKdShCiKmE9alCMt9kttDDi28BC9ZkMsLrM9IDVP Y1cWDbwSu7nz5+3hk9aVdOfCSpYdv9oPsvYitNE+HgmBvfabQZdG234tqzY8rJoo E6Sxdr6mNfdXLgMJq1a0qmM1SjVqgIDGFoDAw6QRRAnXCt6gQgnm/Zb29GbdYdCu uj25B0Jsp6blTWe+8ipenr73iJdffd6eMnnvayGiO8tv5qvde4MY2+loviBkiw+H SOL2MWj7kZmgIlkjPZXGyB2yVMV9JKnpthas9NJUnL5nTNn8fT8= -----END CERTIFICATE-----Generated at Wed May 13 07:15:36 2026 by rpki-client