$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1101059168732708865/0/35392e3135332e39322e302f32332d3332203d3e2034383131.roa File: 35392e3135332e39322e302f32332d3332203d3e2034383131.roa (raw, json) Hash identifier: dQ5nqVgh7GWsz4jiy9GRchNyAdjxpS1QTiS+gB82vlM= Subject key identifier: 68:6E:43:8B:95:27:54:39:3C:59:2A:68:66:9A:A7:5D:AD:E6:BC:FA Certificate issuer: /CN=D8E9745B505CCD7D22105CB89D5574E599B45E13 Certificate serial: 6FF77FAD75E8208C3499C51052C52218B8788007 Authority key identifier: D8:E9:74:5B:50:5C:CD:7D:22:10:5C:B8:9D:55:74:E5:99:B4:5E:13 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/35392e3135332e39322e302f32332d3332203d3e2034383131.roa Signing time: Tue 28 Apr 2026 03:00:55 +0000 ROA not before: Tue 28 Apr 2026 02:55:55 +0000 ROA not after: Tue 27 Apr 2027 03:00:55 +0000 asID: 4811 IP address blocks: 59.153.92.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.crl rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f7:7f:ad:75:e8:20:8c:34:99:c5:10:52:c5:22:18:b8:78:80:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8E9745B505CCD7D22105CB89D5574E599B45E13 Validity Not Before: Apr 28 02:55:55 2026 GMT Not After : Apr 27 03:00:55 2027 GMT Subject: CN=686E438B952754393C592A68669AA75DADE6BCFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:78:e6:11:3d:0a:0d:c5:87:3f:67:99:fb:07: b3:cc:82:af:4a:15:6a:4e:6e:eb:a9:06:b5:60:72: 10:57:37:df:b1:85:b0:3b:dd:e5:31:bc:d8:f0:88: 72:d1:ce:50:7c:ae:98:76:d2:ef:18:8a:bd:28:dd: 75:a6:9d:c9:21:50:d0:0a:b6:ef:22:3c:39:60:9c: bb:14:7d:5d:01:55:38:a4:89:9c:7e:e6:6b:63:18: 7e:3c:de:ca:67:ea:e8:22:e1:64:d9:9f:4c:46:4a: 5e:c1:db:75:c4:af:6c:33:9c:7b:a3:d7:75:41:29: 42:6c:80:32:1d:d2:bf:38:b8:90:3e:de:f3:75:20: b8:b9:dc:3f:9a:8c:e8:73:73:13:07:2d:78:ac:7b: 41:88:dd:8e:aa:86:df:fe:ce:75:f4:5c:31:7c:b4: 29:98:70:6f:ee:a3:ab:88:f6:27:b9:cc:a8:d8:c1: dd:b1:3e:ad:bb:d1:61:17:84:1f:85:ee:a2:2b:37: cb:a6:86:bc:93:d9:2e:68:17:1d:2e:ca:cc:8a:7f: 6d:da:a9:9d:7b:08:ac:69:0a:3a:44:0f:96:04:53: 5b:8a:5b:93:36:bf:91:7c:ea:bb:9f:ad:a5:c0:9b: 17:00:59:d2:58:ce:02:f0:b5:92:0c:a7:91:21:60: c2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6E:43:8B:95:27:54:39:3C:59:2A:68:66:9A:A7:5D:AD:E6:BC:FA X509v3 Authority Key Identifier: keyid:D8:E9:74:5B:50:5C:CD:7D:22:10:5C:B8:9D:55:74:E5:99:B4:5E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/D8E9745B505CCD7D22105CB89D5574E599B45E13.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D8E9745B505CCD7D22105CB89D5574E599B45E13.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1101059168732708865/0/35392e3135332e39322e302f32332d3332203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.153.92.0/23 Signature Algorithm: sha256WithRSAEncryption 56:66:8e:3d:eb:12:9a:21:91:02:8f:e0:d4:26:30:6b:6a:af: b9:3e:65:18:ee:da:64:d2:c7:7d:f9:b0:c4:f2:51:cf:92:4c: a1:fa:95:5e:cd:36:65:7e:ac:f6:a8:5b:d4:45:32:54:bf:17: 5d:1d:34:e4:19:9a:d9:c0:f6:b1:ab:7b:92:3c:bb:11:90:e5: e7:51:19:3f:b9:a2:57:2d:b3:9c:cc:1b:81:18:55:fa:48:68: 6f:02:75:e4:49:4f:ff:c0:79:bb:e7:fe:27:88:f1:cb:1e:74: 8a:06:20:7a:f8:3a:57:d7:a3:cb:10:b8:2f:61:40:cd:16:a6: e2:10:69:ac:5d:41:62:82:0d:82:fd:81:10:91:d8:d2:19:aa: 4f:f7:b4:02:b2:3a:8a:0e:fb:00:c0:ef:ea:e6:69:d0:d3:ba: 83:d0:14:44:8c:88:dc:fc:e2:cc:58:5c:53:9d:c2:ec:6a:e2: 68:c4:b8:f3:f0:23:9f:e4:fe:f5:c5:eb:af:3f:55:28:13:68: 5b:97:86:27:26:f5:67:ae:2e:54:5e:bd:da:09:db:e6:5a:a7: 2a:06:b3:5b:39:bf:31:7b:e7:d6:6d:8f:77:ad:55:86:b4:3b: de:76:b8:90:cd:a0:12:45:12:d5:fb:c6:07:e5:0a:1a:aa:9d: 6b:3e:cd:65 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUb/d/rXXoIIw0mcUQUsUiGLh4gAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDhFOTc0NUI1MDVDQ0Q3RDIyMTA1Q0I4OUQ1NTc0RTU5 OUI0NUUxMzAeFw0yNjA0MjgwMjU1NTVaFw0yNzA0MjcwMzAwNTVaMDMxMTAvBgNV BAMTKDY4NkU0MzhCOTUyNzU0MzkzQzU5MkE2ODY2OUFBNzVEQURFNkJDRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLeOYRPQoNxYc/Z5n7B7PMgq9K FWpObuupBrVgchBXN9+xhbA73eUxvNjwiHLRzlB8rph20u8Yir0o3XWmnckhUNAK tu8iPDlgnLsUfV0BVTikiZx+5mtjGH483spn6ugi4WTZn0xGSl7B23XEr2wznHuj 13VBKUJsgDId0r84uJA+3vN1ILi53D+ajOhzcxMHLXise0GI3Y6qht/+znX0XDF8 tCmYcG/uo6uI9ie5zKjYwd2xPq270WEXhB+F7qIrN8umhryT2S5oFx0uysyKf23a qZ17CKxpCjpED5YEU1uKW5M2v5F86rufraXAmxcAWdJYzgLwtZIMp5EhYMJxAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUaG5Di5UnVDk8WSpoZpqnXa3mvPowHwYDVR0j BBgwFoAU2Ol0W1BczX0iEFy4nVV05Zm0XhMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MTA1OTE2ODczMjcwODg2NS8wL0Q4RTk3NDVCNTA1Q0NEN0QyMjEwNUNCODlENTU3 NEU1OTlCNDVFMTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDhFOTc0NUI1MDVDQ0Q3RDIyMTA1Q0I4OUQ1NTc0RTU5OUI0NUUxMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAxMDU5MTY4NzMyNzA4ODY1LzAvMzUzOTJlMzEzNTMz MmUzOTMyMmUzMDJmMzIzMzJkMzMzMjIwM2QzZTIwMzQzODMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAE7mVwwDQYJKoZIhvcNAQELBQADggEBAFZmjj3rEpohkQKP4NQmMGtqr7k+ZRju 2mTSx335sMTyUc+STKH6lV7NNmV+rPaoW9RFMlS/F10dNOQZmtnA9rGre5I8uxGQ 5edRGT+5olcts5zMG4EYVfpIaG8CdeRJT//Aebvn/ieI8csedIoGIHr4OlfXo8sQ uC9hQM0WpuIQaaxdQWKCDYL9gRCR2NIZqk/3tAKyOooO+wDA7+rmadDTuoPQFESM iNz84sxYXFOdwuxq4mjEuPPwI5/k/vXF668/VSgTaFuXhicm9WeuLlRevdoJ2+Za pyoGs1s5vzF759Ztj3etVYa0O952uJDNoBJFEtX7xgflChqqnWs+zWU= -----END CERTIFICATE-----Generated at Wed May 13 13:24:47 2026 by rpki-client