$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101059168732708865/0/35392e3135332e39322e302f32322d3332203d3e2034383132.roa File: 35392e3135332e39322e302f32322d3332203d3e2034383132.roa (raw, json) Hash identifier: lt4KWknfUObH/qHkUtN+btOyemHSMksphdlyLLyfK/g= Subject key identifier: EC:D9:E6:41:6F:FC:C1:57:04:05:45:B6:EB:DF:27:1D:48:EF:23:9F Certificate issuer: /CN=D8E9745B505CCD7D22105CB89D5574E599B45E13 Certificate serial: 581A3DB548890DAE4C07DC8BBC90140CD58D9E84 Authority key identifier: D8:E9:74:5B:50:5C:CD:7D:22:10:5C:B8:9D:55:74:E5:99:B4:5E:13 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/35392e3135332e39322e302f32322d3332203d3e2034383132.roa Signing time: Tue 28 Apr 2026 03:00:55 +0000 ROA not before: Tue 28 Apr 2026 02:55:55 +0000 ROA not after: Tue 27 Apr 2027 03:00:55 +0000 asID: 4812 IP address blocks: 59.153.92.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.crl rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:1a:3d:b5:48:89:0d:ae:4c:07:dc:8b:bc:90:14:0c:d5:8d:9e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8E9745B505CCD7D22105CB89D5574E599B45E13 Validity Not Before: Apr 28 02:55:55 2026 GMT Not After : Apr 27 03:00:55 2027 GMT Subject: CN=ECD9E6416FFCC157040545B6EBDF271D48EF239F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7e:f0:73:48:1e:5c:cc:78:00:b1:d5:8c:a6: 53:f7:53:3d:0a:37:24:26:d5:18:5e:f9:62:5c:6b: 7c:ec:fd:9c:75:c9:03:98:a3:22:9c:5c:02:36:49: a6:84:ea:06:07:c8:6d:14:40:41:22:39:3e:83:ce: 41:93:13:07:4e:d0:99:2c:44:36:1f:e3:a4:e1:30: dd:9c:ed:46:c4:10:81:e1:cc:7e:f2:36:19:44:ba: bb:b8:9c:2c:3c:e5:c0:a0:fb:5b:8e:50:31:14:fa: a3:e3:27:ba:22:97:f5:a8:70:8e:93:92:0d:ff:92: 71:11:b7:a8:f3:80:54:58:f7:8c:cd:99:a7:f0:db: 0c:7a:83:d5:5f:86:20:25:fd:49:35:7d:b3:f4:79: 02:f9:33:15:15:8b:a3:6e:0d:f2:67:f2:ae:ef:8c: 98:6c:79:9f:b5:8e:f2:bc:1f:94:fc:a5:d8:ad:9b: 14:d9:d2:bc:07:c4:56:ed:76:11:74:da:47:e3:36: 06:8f:4a:6c:49:ec:99:57:c5:37:ab:87:54:6e:4c: b4:97:ee:ff:0a:50:01:59:09:a9:e7:e7:a1:b6:77: f3:fa:10:12:c8:ee:67:9f:b8:b7:ed:3d:6c:76:c5: 43:96:9c:ee:90:1e:de:2a:f1:fc:cf:2c:51:d3:ab: 9c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D9:E6:41:6F:FC:C1:57:04:05:45:B6:EB:DF:27:1D:48:EF:23:9F X509v3 Authority Key Identifier: keyid:D8:E9:74:5B:50:5C:CD:7D:22:10:5C:B8:9D:55:74:E5:99:B4:5E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/35392e3135332e39322e302f32322d3332203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.153.92.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:2a:8a:ec:37:c5:6a:57:17:cc:ad:92:c0:a7:12:17:8a:a8: 21:73:63:c0:d6:f9:d0:cf:5e:a7:75:d3:9f:70:d1:3d:ee:12: da:73:2a:1a:de:b6:28:a1:64:74:02:eb:22:65:fd:fb:c5:7d: f4:72:b6:fe:b6:c4:d8:20:0d:3f:b1:c6:98:22:ab:b5:b0:f9: f2:44:87:38:dd:dd:ef:8b:35:0d:be:16:05:a1:01:97:3a:39: 51:04:b3:0c:da:4b:a6:9a:cf:0a:40:d4:98:10:99:db:8c:3f: b3:77:44:9c:1f:f1:ae:2a:01:e8:5d:fd:b0:d6:ef:ae:0c:fa: 43:1c:8c:f3:3b:60:20:26:2c:cf:e2:9f:82:ae:66:2e:dc:58: 15:60:78:10:86:de:81:43:cd:1b:c1:29:90:e0:e7:a8:c5:f2: 35:31:85:62:f4:38:2e:7a:52:2f:9e:0e:6b:b1:1b:9e:6b:ed: cf:6e:31:1b:2b:bc:20:be:9a:b1:bd:f6:40:e7:0a:8e:9a:e4: 56:6a:20:67:ee:a3:12:80:50:f2:8e:19:2d:b6:a5:de:b7:13: 80:be:ca:ca:64:f4:cd:be:27:0b:52:0f:f3:2b:60:42:23:f0: 60:7d:9b:bf:57:65:07:4d:17:83:0f:3b:45:6a:23:d0:60:bf: 1f:ad:91:d3 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUWBo9tUiJDa5MB9yLvJAUDNWNnoQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhFOTc0NUI1MDVDQ0Q3RDIyMTA1Q0I4OUQ1NTc0RTU5 OUI0NUUxMzAeFw0yNjA0MjgwMjU1NTVaFw0yNzA0MjcwMzAwNTVaMDMxMTAvBgNV BAMTKEVDRDlFNjQxNkZGQ0MxNTcwNDA1NDVCNkVCREYyNzFENDhFRjIzOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcfvBzSB5czHgAsdWMplP3Uz0K NyQm1Rhe+WJca3zs/Zx1yQOYoyKcXAI2SaaE6gYHyG0UQEEiOT6DzkGTEwdO0Jks RDYf46ThMN2c7UbEEIHhzH7yNhlEuru4nCw85cCg+1uOUDEU+qPjJ7oil/WocI6T kg3/knERt6jzgFRY94zNmafw2wx6g9VfhiAl/Uk1fbP0eQL5MxUVi6NuDfJn8q7v jJhseZ+1jvK8H5T8pditmxTZ0rwHxFbtdhF02kfjNgaPSmxJ7JlXxTerh1RuTLSX 7v8KUAFZCann56G2d/P6EBLI7mefuLftPWx2xUOWnO6QHt4q8fzPLFHTq5wRAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU7NnmQW/8wVcEBUW2698nHUjvI58wHwYDVR0j BBgwFoAU2Ol0W1BczX0iEFy4nVV05Zm0XhMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTA1OTE2ODczMjcwODg2NS8wL0Q4RTk3NDVCNTA1Q0NEN0QyMjEwNUNCODlENTU3 NEU1OTlCNDVFMTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDhFOTc0NUI1MDVDQ0Q3RDIyMTA1Q0I4OUQ1NTc0RTU5OUI0NUUxMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAxMDU5MTY4NzMyNzA4ODY1LzAvMzUzOTJlMzEzNTMz MmUzOTMyMmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzQzODMxMzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAI7mVwwDQYJKoZIhvcNAQELBQADggEBAF0qiuw3xWpXF8ytksCnEheKqCFzY8DW +dDPXqd1059w0T3uEtpzKhretiihZHQC6yJl/fvFffRytv62xNggDT+xxpgiq7Ww +fJEhzjd3e+LNQ2+FgWhAZc6OVEEswzaS6aazwpA1JgQmduMP7N3RJwf8a4qAehd /bDW764M+kMcjPM7YCAmLM/in4KuZi7cWBVgeBCG3oFDzRvBKZDg56jF8jUxhWL0 OC56Ui+eDmuxG55r7c9uMRsrvCC+mrG99kDnCo6a5FZqIGfuoxKAUPKOGS22pd63 E4C+yspk9M2+JwtSD/MrYEIj8GB9m79XZQdNF4MPO0VqI9Bgvx+tkdM= -----END CERTIFICATE-----Generated at Wed May 13 15:06:09 2026 by rpki-client