$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947812867/0/35382e36372e3232312e302f32342d3234203d3e20313336393539.roa File: 35382e36372e3232312e302f32342d3234203d3e20313336393539.roa (raw, json) Hash identifier: NJLVCh3jrFt223gA0h3ybLIYlAAaJmo0YFeJIMr63EI= Subject key identifier: 8D:A4:61:B5:88:AB:0B:FA:27:FF:09:31:D7:B1:72:52:8A:34:54:6C Certificate issuer: /CN=F329F518724FAC695E33F5C78532CBF56BF4243D Certificate serial: 2A6E5DB39AC613EE2ACD9AEC52AE9FF29385FA77 Authority key identifier: F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/35382e36372e3232312e302f32342d3234203d3e20313336393539.roa Signing time: Tue 14 Apr 2026 03:27:43 +0000 ROA not before: Tue 14 Apr 2026 03:22:43 +0000 ROA not after: Tue 13 Apr 2027 03:27:43 +0000 asID: 136959 IP address blocks: 58.67.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 08:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:6e:5d:b3:9a:c6:13:ee:2a:cd:9a:ec:52:ae:9f:f2:93:85:fa:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F329F518724FAC695E33F5C78532CBF56BF4243D Validity Not Before: Apr 14 03:22:43 2026 GMT Not After : Apr 13 03:27:43 2027 GMT Subject: CN=8DA461B588AB0BFA27FF0931D7B172528A34546C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4d:22:3a:0f:7a:a0:29:92:bb:d2:6a:6d:c5: e0:49:8e:ea:18:e4:d3:1a:3f:fd:18:3b:8d:55:76: 06:31:47:58:50:a0:ad:a6:ad:1c:b5:30:62:46:31: cd:a8:1e:24:a5:cf:89:d3:69:36:33:ae:77:de:81: f3:97:f3:59:8d:a6:af:08:97:be:6f:f0:c3:f9:74: 8e:ed:ea:f7:31:70:6b:db:98:93:f6:ac:dd:70:c8: 4c:58:07:31:1b:06:3b:4d:aa:e0:4a:90:60:cd:9e: c1:f8:f2:f5:d5:3d:5f:4f:c3:de:43:77:e3:fc:26: c7:d3:30:26:4d:c9:aa:64:0e:da:7e:74:39:5e:24: 74:d4:19:3a:06:77:d1:d9:3c:be:5c:04:f4:05:ba: 95:37:8c:cd:83:f1:be:63:ea:49:a6:ed:47:0d:95: 54:1c:95:04:7f:ae:a5:a9:d4:7d:7b:7b:a5:70:ac: e1:dc:e3:04:a7:ba:71:32:f9:96:37:50:fd:d5:a4: 66:d1:b4:97:35:b2:9f:ab:66:f6:60:3d:4b:9c:d5: b3:21:37:40:f7:1b:7e:0e:dd:41:1d:09:e1:21:b9: e0:14:0e:ad:67:24:bb:97:fd:d0:51:1c:e0:29:5a: c0:23:b6:b5:d1:0b:13:93:06:c8:ac:9c:1e:bc:c0: 31:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A4:61:B5:88:AB:0B:FA:27:FF:09:31:D7:B1:72:52:8A:34:54:6C X509v3 Authority Key Identifier: keyid:F3:29:F5:18:72:4F:AC:69:5E:33:F5:C7:85:32:CB:F5:6B:F4:24:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/F329F518724FAC695E33F5C78532CBF56BF4243D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/F329F518724FAC695E33F5C78532CBF56BF4243D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947812867/0/35382e36372e3232312e302f32342d3234203d3e20313336393539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 58.67.221.0/24 Signature Algorithm: sha256WithRSAEncryption a5:cd:b0:0f:96:6f:95:5a:ec:26:2f:dd:f3:a4:9a:6b:8b:05: 88:3d:6f:a4:15:00:b2:63:a6:a2:16:a2:04:2d:79:d9:03:47: b4:8c:7d:47:34:f7:fa:c6:03:18:4f:76:ce:97:41:a3:f4:56: 59:59:54:2c:74:0c:21:9b:c6:5f:14:5f:09:e6:43:56:b3:cb: 02:87:a5:ed:36:a7:2c:c1:cb:20:28:00:9e:23:72:74:67:30: fd:77:76:44:e9:19:5c:d2:91:62:c4:b2:ab:a9:93:93:af:f5: 58:b3:5d:2f:c0:8e:b1:9e:d3:17:c7:f0:ec:f7:34:10:66:b4: 39:60:6f:7f:a1:04:19:93:64:be:b6:de:8a:ee:1b:44:e7:b0: cf:11:d0:0f:32:29:83:f2:74:c7:eb:1e:3d:c4:f1:fb:6b:f7: b6:43:41:86:80:4c:20:73:00:24:73:0c:e8:77:b9:e3:25:89: d0:51:aa:7e:87:01:87:79:f3:b9:58:85:87:3c:c7:d3:4f:67: 73:50:66:0a:89:5f:d7:f2:46:5a:a3:e1:6f:ea:57:46:6c:0e: d0:c4:c7:1d:54:5b:f4:fa:0b:4d:18:06:b8:13:44:49:41:fe: 88:fd:0a:76:7e:85:d2:fa:6e:51:25:c6:3e:ff:15:a1:c4:2d: b9:ea:fd:f1 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUKm5ds5rGE+4qzZrsUq6f8pOF+ncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2 QkY0MjQzRDAeFw0yNjA0MTQwMzIyNDNaFw0yNzA0MTMwMzI3NDNaMDMxMTAvBgNV BAMTKDhEQTQ2MUI1ODhBQjBCRkEyN0ZGMDkzMUQ3QjE3MjUyOEEzNDU0NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJTSI6D3qgKZK70mptxeBJjuoY 5NMaP/0YO41VdgYxR1hQoK2mrRy1MGJGMc2oHiSlz4nTaTYzrnfegfOX81mNpq8I l75v8MP5dI7t6vcxcGvbmJP2rN1wyExYBzEbBjtNquBKkGDNnsH48vXVPV9Pw95D d+P8JsfTMCZNyapkDtp+dDleJHTUGToGd9HZPL5cBPQFupU3jM2D8b5j6kmm7UcN lVQclQR/rqWp1H17e6VwrOHc4wSnunEy+ZY3UP3VpGbRtJc1sp+rZvZgPUuc1bMh N0D3G34O3UEdCeEhueAUDq1nJLuX/dBRHOApWsAjtrXRCxOTBsisnB68wDFDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUjaRhtYirC/on/wkx17FyUoo0VGwwHwYDVR0j BBgwFoAU8yn1GHJPrGleM/XHhTLL9Wv0JD0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0NzgxMjg2Ny8wL0YzMjlGNTE4NzI0RkFDNjk1RTMzRjVDNzg1MzJD QkY1NkJGNDI0M0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRjMyOUY1MTg3MjRGQUM2OTVFMzNGNUM3ODUzMkNCRjU2QkY0MjQzRC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjE5OTk0NzgxMjg2Ny8wLzM1MzgyZTM2Mzcy ZTMyMzIzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM5MzUzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEADpD3TANBgkqhkiG9w0BAQsFAAOCAQEApc2wD5ZvlVrsJi/d86Saa4sF iD1vpBUAsmOmohaiBC152QNHtIx9RzT3+sYDGE92zpdBo/RWWVlULHQMIZvGXxRf CeZDVrPLAoel7TanLMHLICgAniNydGcw/Xd2ROkZXNKRYsSyq6mTk6/1WLNdL8CO sZ7TF8fw7Pc0EGa0OWBvf6EEGZNkvrbeiu4bROewzxHQDzIpg/J0x+sePcTx+2v3 tkNBhoBMIHMAJHMM6He54yWJ0FGqfocBh3nzuViFhzzH009nc1BmColf1/JGWqPh b+pXRmwO0MTHHVRb9PoLTRgGuBNESUH+iP0Kdn6F0vpuUSXGPv8VocQtuer98Q== -----END CERTIFICATE-----Generated at Fri Apr 17 19:26:31 2026 by rpki-client