$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094865295295643651/0/36312e32382e32302e302f32342d3234203d3e203137343930.roa File: 36312e32382e32302e302f32342d3234203d3e203137343930.roa (raw, json) Hash identifier: gcRJWMv4hzquoRvAdEge38qqL47KkxPgYFvdxOJg3H0= Subject key identifier: BE:BB:77:AB:60:17:C9:EB:88:E6:CF:57:04:87:26:90:BA:6A:DA:32 Certificate issuer: /CN=5253565A27C06C800009631402F5A6EE85C46456 Certificate serial: 34840D230A343E8EA5409BE10BE43273BDE1CAE2 Authority key identifier: 52:53:56:5A:27:C0:6C:80:00:09:63:14:02:F5:A6:EE:85:C4:64:56 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5253565A27C06C800009631402F5A6EE85C46456.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/36312e32382e32302e302f32342d3234203d3e203137343930.roa Signing time: Wed 13 May 2026 05:40:33 +0000 ROA not before: Wed 13 May 2026 05:35:33 +0000 ROA not after: Wed 12 May 2027 05:40:33 +0000 asID: 17490 IP address blocks: 61.28.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/5253565A27C06C800009631402F5A6EE85C46456.crl rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/5253565A27C06C800009631402F5A6EE85C46456.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5253565A27C06C800009631402F5A6EE85C46456.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:84:0d:23:0a:34:3e:8e:a5:40:9b:e1:0b:e4:32:73:bd:e1:ca:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5253565A27C06C800009631402F5A6EE85C46456 Validity Not Before: May 13 05:35:33 2026 GMT Not After : May 12 05:40:33 2027 GMT Subject: CN=BEBB77AB6017C9EB88E6CF5704872690BA6ADA32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e6:67:f0:6e:bd:db:12:b2:78:14:13:19:b0: d1:28:70:7a:53:70:26:72:c8:2d:64:13:6a:6d:99: 2c:1f:7c:55:70:09:05:81:25:6c:db:60:e8:3c:04: 62:88:bd:aa:63:4d:a9:21:94:a2:24:c7:46:01:8e: 75:b4:08:44:92:26:ec:ef:96:17:ed:e7:87:3b:89: 71:85:53:3d:8f:4c:b7:23:9e:c3:fb:37:ad:1e:20: c3:55:6c:9f:c2:6e:64:e6:97:18:b5:b5:5f:04:72: 30:8c:9a:5a:0d:69:7c:48:bc:d4:91:c8:60:9f:f1: 52:7d:7f:f8:c9:d3:b0:91:6b:02:14:a9:6a:30:1e: 81:a7:cc:51:5c:b5:62:59:9b:b5:cd:9c:8b:ae:55: 17:44:b4:ad:86:62:80:7e:cb:77:4c:09:6f:66:ee: 73:0c:67:b8:d0:4d:51:7d:f3:7e:77:c7:d9:29:9c: 5e:8c:df:25:6b:f6:f8:5c:0b:2e:75:b2:9b:4b:5f: 80:a0:fe:38:0c:b5:0e:d0:e6:bf:d0:b3:11:a5:34: e8:e5:a6:88:93:d4:68:5c:eb:5e:06:13:37:45:e5: b0:9d:e7:f4:4e:74:9c:9d:b3:89:d4:e9:88:1c:a7: 9e:70:51:4c:20:c9:6b:66:d5:44:21:6c:d5:4c:96: 8a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:BB:77:AB:60:17:C9:EB:88:E6:CF:57:04:87:26:90:BA:6A:DA:32 X509v3 Authority Key Identifier: keyid:52:53:56:5A:27:C0:6C:80:00:09:63:14:02:F5:A6:EE:85:C4:64:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/5253565A27C06C800009631402F5A6EE85C46456.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5253565A27C06C800009631402F5A6EE85C46456.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/36312e32382e32302e302f32342d3234203d3e203137343930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 61.28.20.0/24 Signature Algorithm: sha256WithRSAEncryption c0:af:2e:84:7e:86:64:6d:3f:22:af:88:3d:a3:cd:e2:4e:83: 9d:68:cf:08:0a:11:ab:b4:4a:71:26:25:14:c6:97:f2:83:f5: 30:8a:67:b0:75:4c:bf:8f:0f:be:b1:63:f6:46:43:6f:97:01: 80:6f:24:94:59:9a:9d:aa:43:ca:96:76:28:6e:d4:ff:89:cb: 13:b6:d5:7b:1c:40:76:a7:8d:a6:da:bd:88:72:d0:42:6e:38: 4a:49:2c:eb:d5:46:a5:74:0b:21:39:ac:50:da:5c:0e:71:22: 0d:1a:f8:34:26:2e:28:cb:c7:24:00:2e:00:32:9f:03:a9:13: 4d:ae:54:29:43:c7:84:8a:1d:be:25:56:50:a6:7a:3c:73:06: a0:d2:8a:4a:90:1a:8a:84:24:54:3c:99:b6:ef:51:0e:b5:8a: db:77:1c:3a:fb:d2:42:c5:e9:01:88:44:47:e8:8d:3c:29:17: 59:ea:50:d3:2d:8b:ad:68:f4:25:47:88:5d:af:6e:db:b2:e5: 3f:2c:5b:83:86:10:82:db:98:9b:4d:91:f1:72:6f:ac:49:ad: 20:a6:fc:2c:5e:66:4f:18:6f:4e:a6:36:ac:01:f8:92:d5:f4: d9:21:1b:28:a7:ba:36:da:2b:af:70:3c:56:dc:b0:98:bc:74: 93:9f:7e:5b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUNIQNIwo0Po6lQJvhC+Qyc73hyuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI1MzU2NUEyN0MwNkM4MDAwMDk2MzE0MDJGNUE2RUU4 NUM0NjQ1NjAeFw0yNjA1MTMwNTM1MzNaFw0yNzA1MTIwNTQwMzNaMDMxMTAvBgNV BAMTKEJFQkI3N0FCNjAxN0M5RUI4OEU2Q0Y1NzA0ODcyNjkwQkE2QURBMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw5mfwbr3bErJ4FBMZsNEocHpT cCZyyC1kE2ptmSwffFVwCQWBJWzbYOg8BGKIvapjTakhlKIkx0YBjnW0CESSJuzv lhft54c7iXGFUz2PTLcjnsP7N60eIMNVbJ/CbmTmlxi1tV8EcjCMmloNaXxIvNSR yGCf8VJ9f/jJ07CRawIUqWowHoGnzFFctWJZm7XNnIuuVRdEtK2GYoB+y3dMCW9m 7nMMZ7jQTVF98353x9kpnF6M3yVr9vhcCy51sptLX4Cg/jgMtQ7Q5r/QsxGlNOjl poiT1Ghc614GEzdF5bCd5/ROdJyds4nU6Ygcp55wUUwgyWtm1UQhbNVMlorNAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUvrt3q2AXyeuI5s9XBIcmkLpq2jIwHwYDVR0j BBgwFoAUUlNWWifAbIAACWMUAvWm7oXEZFYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg2NTI5NTI5NTY0MzY1MS8wLzUyNTM1NjVBMjdDMDZDODAwMDA5NjMxNDAyRjVB NkVFODVDNDY0NTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTI1MzU2NUEyN0MwNkM4MDAwMDk2MzE0MDJGNUE2RUU4NUM0NjQ1Ni5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODY1Mjk1Mjk1NjQzNjUxLzAvMzYzMTJlMzIzODJl MzIzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzczNDM5MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAA9HBQwDQYJKoZIhvcNAQELBQADggEBAMCvLoR+hmRtPyKviD2jzeJOg51ozwgK Eau0SnEmJRTGl/KD9TCKZ7B1TL+PD76xY/ZGQ2+XAYBvJJRZmp2qQ8qWdihu1P+J yxO21XscQHanjabavYhy0EJuOEpJLOvVRqV0CyE5rFDaXA5xIg0a+DQmLijLxyQA LgAynwOpE02uVClDx4SKHb4lVlCmejxzBqDSikqQGoqEJFQ8mbbvUQ61itt3HDr7 0kLF6QGIREfojTwpF1nqUNMti61o9CVHiF2vbtuy5T8sW4OGEILbmJtNkfFyb6xJ rSCm/CxeZk8Yb06mNqwB+JLV9NkhGyinujbaK69wPFbcsJi8dJOffls= -----END CERTIFICATE-----Generated at Wed May 13 21:31:09 2026 by rpki-client