$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097099402905976835/1/35382e33342e32362e302f32342d3234203d3e2034383132.roa File: 35382e33342e32362e302f32342d3234203d3e2034383132.roa (raw, json) Hash identifier: qQLmxwalPvLpiXed9ostGreXMDQDdcXLcexUmNCHPWA= Subject key identifier: 4E:72:1A:EE:DA:60:8D:52:04:BF:C1:00:2A:7A:B5:8D:60:03:CB:1E Certificate issuer: /CN=A914EAE40000/serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Certificate serial: 1E686D28569B2EE5A167F1625717F6F8F03328F7 Authority key identifier: 19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/35382e33342e32362e302f32342d3234203d3e2034383132.roa Signing time: Mon 11 May 2026 16:11:20 +0000 ROA not before: Mon 11 May 2026 16:06:20 +0000 ROA not after: Mon 10 May 2027 16:11:20 +0000 asID: 4812 IP address blocks: 58.34.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:68:6d:28:56:9b:2e:e5:a1:67:f1:62:57:17:f6:f8:f0:33:28:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE40000, serialNumber=196F2188A356D1C42D39F6D165719B596B4CD91E Validity Not Before: May 11 16:06:20 2026 GMT Not After : May 10 16:11:20 2027 GMT Subject: CN=4E721AEEDA608D5204BFC1002A7AB58D6003CB1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4f:3b:33:ad:bb:f6:af:54:43:be:a5:88:60: 47:06:ed:41:fe:94:a3:5a:34:0a:2e:f3:db:b4:da: 16:82:90:09:c7:04:e3:37:28:99:55:4d:be:6f:f8: 27:b8:c5:9d:df:b7:76:2c:2f:8e:75:5c:6a:4e:5a: a7:46:1c:86:b9:39:9b:e7:7b:7f:68:3d:de:76:28: 81:d9:16:b1:4d:c1:7c:4d:5c:c3:83:04:a8:f9:ce: 94:2d:53:c2:2a:f8:bf:f5:12:86:9b:2d:ca:94:54: 46:73:36:7a:4b:d7:98:47:26:b0:4b:96:e0:d5:a4: 8e:98:b9:ec:e2:85:02:2f:9d:41:63:a8:a4:6e:1f: 8c:25:2c:66:23:d9:47:72:35:17:4b:a4:50:d4:bc: e9:81:48:c4:65:30:5e:82:30:9a:f1:53:7d:8e:e3: 5f:79:41:f2:bc:1b:69:92:d1:8f:c2:33:48:ee:85: bd:68:52:6b:15:0a:c8:40:f4:13:04:e5:59:a6:d0: 0b:56:b0:9e:f3:66:55:b1:db:bb:af:10:1b:8e:e8: cf:5c:b6:f6:3d:26:78:04:e0:17:06:53:65:95:cb: b3:83:73:6a:a2:b9:35:b6:84:f1:80:42:44:ef:68: d2:66:74:6f:d7:84:e8:61:05:bb:2d:8c:90:45:7c: c7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:72:1A:EE:DA:60:8D:52:04:BF:C1:00:2A:7A:B5:8D:60:03:CB:1E X509v3 Authority Key Identifier: keyid:19:6F:21:88:A3:56:D1:C4:2D:39:F6:D1:65:71:9B:59:6B:4C:D9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/196F2188A356D1C42D39F6D165719B596B4CD91E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GW8hiKNW0cQtOfbRZXGbWWtM2R4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097099402905976835/1/35382e33342e32362e302f32342d3234203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.34.26.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:bd:13:2c:43:a3:c5:89:95:61:f4:e3:93:f3:78:40:bf:a3: a8:cc:cc:4a:65:97:ac:2d:e6:04:3f:f7:2e:6a:4b:39:79:70: f7:15:93:76:55:87:45:6f:3d:6c:d9:5c:02:1b:05:1e:55:40: 13:35:ad:a7:9b:20:3c:04:c6:02:b6:7a:03:3b:e0:9f:a7:10: ca:9a:d1:6c:ba:b5:ce:44:54:23:a4:69:f8:18:07:08:0d:ee: 56:64:01:4b:e2:00:62:58:85:4d:44:56:d6:42:ad:90:76:8a: 12:9f:d9:ed:76:90:d3:ff:1c:d9:72:f7:76:7a:c6:25:0f:e1: 78:3c:02:1a:8b:18:e9:9d:fc:92:67:53:fe:c1:55:87:44:0a: 80:77:1a:97:92:b4:b7:22:da:80:4e:f4:8a:e9:16:ca:64:96: d2:89:b0:86:a6:d6:dc:00:eb:1c:ff:16:63:a8:e9:60:fd:97: 08:1a:c0:47:9e:fa:41:e4:da:87:ab:fb:8c:05:3c:3b:3d:54: de:72:49:6c:69:9d:66:b1:de:11:ab:d0:8b:84:68:b2:7d:fb: 15:95:5b:f1:f9:e6:c5:3c:01:87:8a:35:f0:b1:c8:75:6f:47: a4:7e:b0:4b:0e:dc:dd:16:6b:43:94:19:af:9a:f5:b9:ce:22: 21:6c:bf:23 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgIUHmhtKFabLuWhZ/FiVxf2+PAzKPcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNEVBRTQwMDAwMTEwLwYDVQQFEygxOTZGMjE4OEEz NTZEMUM0MkQzOUY2RDE2NTcxOUI1OTZCNENEOTFFMB4XDTI2MDUxMTE2MDYyMFoX DTI3MDUxMDE2MTEyMFowMzExMC8GA1UEAxMoNEU3MjFBRUVEQTYwOEQ1MjA0QkZD MTAwMkE3QUI1OEQ2MDAzQ0IxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpPOzOtu/avVEO+pYhgRwbtQf6Uo1o0Ci7z27TaFoKQCccE4zcomVVNvm/4 J7jFnd+3diwvjnVcak5ap0Ychrk5m+d7f2g93nYogdkWsU3BfE1cw4MEqPnOlC1T wir4v/UShpstypRURnM2ekvXmEcmsEuW4NWkjpi57OKFAi+dQWOopG4fjCUsZiPZ R3I1F0ukUNS86YFIxGUwXoIwmvFTfY7jX3lB8rwbaZLRj8IzSO6FvWhSaxUKyED0 EwTlWabQC1awnvNmVbHbu68QG47oz1y29j0meATgFwZTZZXLs4NzaqK5NbaE8YBC RO9o0mZ0b9eE6GEFuy2MkEV8x88CAwEAAaOCAg0wggIJMB0GA1UdDgQWBBROchru 2mCNUgS/wQAqerWNYAPLHjAfBgNVHSMEGDAWgBQZbyGIo1bRxC059tFlcZtZa0zZ HjAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk3MDk5NDAyOTA1OTc2ODM1LzEvMTk2RjIx ODhBMzU2RDFDNDJEMzlGNkQxNjU3MTlCNTk2QjRDRDkxRS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvR1c4aGlLTlcw Y1F0T2ZiUlpYR2JXV3RNMlI0LmNlcjCBhgYIKwYBBQUHAQsEejB4MHYGCCsGAQUF BzALhmpyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTcwOTk0MDI5 MDU5NzY4MzUvMS8zNTM4MmUzMzM0MmUzMjM2MmUzMDJmMzIzNDJkMzIzNDIwM2Qz ZTIwMzQzODMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYB BQUHAQcBAf8EEDAOMAwEAgABMAYDBAA6IhowDQYJKoZIhvcNAQELBQADggEBAIq9 EyxDo8WJlWH045PzeEC/o6jMzEpll6wt5gQ/9y5qSzl5cPcVk3ZVh0VvPWzZXAIb BR5VQBM1raebIDwExgK2egM74J+nEMqa0Wy6tc5EVCOkafgYBwgN7lZkAUviAGJY hU1EVtZCrZB2ihKf2e12kNP/HNly93Z6xiUP4Xg8AhqLGOmd/JJnU/7BVYdECoB3 GpeStLci2oBO9IrpFspkltKJsIam1twA6xz/FmOo6WD9lwgawEee+kHk2oer+4wF PDs9VN5ySWxpnWax3hGr0IuEaLJ9+xWVW/H55sU8AYeKNfCxyHVvR6R+sEsO3N0W a0OUGa+a9bnOIiFsvyM= -----END CERTIFICATE-----Generated at Wed May 13 11:35:01 2026 by rpki-client