$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372048386/0/35392e3135332e342e302f32322d3232203d3e203233373731.roa File: 35392e3135332e342e302f32322d3232203d3e203233373731.roa (raw, json) Hash identifier: hJm80eD3+1RYco3NedeMKPdGx6HVdNmV1+q701sCOjw= Subject key identifier: 7F:AC:8C:11:5B:32:28:29:6A:E2:DE:FA:FF:2D:C4:23:31:45:E7:C6 Certificate issuer: /CN=FB7B794F123725FE800A647F3F7E8BE99B1F5B2C Certificate serial: 3E55B9FCF8B07B1707CC2F3E41BFEBB2FF7C5DCB Authority key identifier: FB:7B:79:4F:12:37:25:FE:80:0A:64:7F:3F:7E:8B:E9:9B:1F:5B:2C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/35392e3135332e342e302f32322d3232203d3e203233373731.roa Signing time: Tue 14 Apr 2026 02:17:59 +0000 ROA not before: Tue 14 Apr 2026 02:12:59 +0000 ROA not after: Tue 13 Apr 2027 02:17:59 +0000 asID: 23771 IP address blocks: 59.153.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:55:b9:fc:f8:b0:7b:17:07:cc:2f:3e:41:bf:eb:b2:ff:7c:5d:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB7B794F123725FE800A647F3F7E8BE99B1F5B2C Validity Not Before: Apr 14 02:12:59 2026 GMT Not After : Apr 13 02:17:59 2027 GMT Subject: CN=7FAC8C115B3228296AE2DEFAFF2DC4233145E7C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bc:94:81:31:01:65:69:2e:f2:42:33:df:75: 19:fa:a9:ed:b3:91:94:3f:75:0a:49:30:b5:a1:5e: 99:5f:26:66:f8:cb:d2:b3:b3:85:56:c4:a5:61:d1: 4c:22:47:06:a2:e3:d8:96:98:14:8a:31:f2:25:48: 4e:b4:01:76:2a:91:ff:86:0c:6e:49:f9:bf:80:c2: 9b:11:7b:50:58:12:39:f5:5e:41:4b:84:4f:56:56: 92:80:f8:30:48:f3:cd:b4:8c:a1:b7:f5:43:be:74: 13:ea:b3:2a:e8:b1:03:3f:b8:6b:16:84:b0:0e:0a: d9:17:4a:56:00:f0:e7:8c:63:3c:e2:f2:d3:27:40: b8:88:fe:c3:6b:c8:fe:a2:7e:f7:96:c0:36:2f:04: 90:fb:c9:62:7b:b3:1d:ba:1c:2c:74:55:83:b0:7f: ec:78:9c:0f:2a:26:7d:89:f7:b9:ca:f0:63:ff:1e: ff:39:88:b3:0a:ed:9b:e7:7d:9f:81:1b:36:14:19: 41:81:9e:3a:98:66:9d:9e:63:68:2e:eb:fd:a9:2c: f1:af:b6:ce:3b:d1:01:b7:2c:a1:6a:63:08:cb:76: 81:72:16:36:ce:dc:5b:3b:a7:17:29:7e:c9:6b:d2: 88:bf:fb:00:42:9e:36:14:9e:17:dd:93:ac:e8:b0: b5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AC:8C:11:5B:32:28:29:6A:E2:DE:FA:FF:2D:C4:23:31:45:E7:C6 X509v3 Authority Key Identifier: keyid:FB:7B:79:4F:12:37:25:FE:80:0A:64:7F:3F:7E:8B:E9:9B:1F:5B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB7B794F123725FE800A647F3F7E8BE99B1F5B2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372048386/0/35392e3135332e342e302f32322d3232203d3e203233373731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.153.4.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:71:f5:0e:c9:81:a7:d7:22:da:09:b6:34:63:d4:40:e6:31: b8:5e:12:ed:ee:5b:74:de:70:f8:bd:0b:44:6f:b3:fb:32:a6: 2f:b5:d9:0b:b8:3d:03:23:4d:7a:c2:b1:9d:bd:d5:31:1b:7d: ec:fc:e2:a2:f5:25:10:e2:e3:d2:0e:69:15:e2:0f:4a:71:72: 13:86:1f:8f:0c:0f:9d:f4:95:41:9f:38:4b:3f:ca:69:a7:ae: 0d:f0:49:82:60:ad:01:68:3c:ac:f3:bf:78:c0:8d:5b:e1:0d: 55:4f:b6:42:be:f6:33:c8:47:8b:a9:29:ab:79:1d:29:fc:3d: 20:c6:e5:11:64:2c:24:4c:b9:e0:d8:b7:53:55:f8:73:37:f6: c6:e9:f1:02:be:f3:a1:4e:98:37:a6:25:37:06:53:0a:d4:cf: 3f:06:96:df:c4:79:13:fd:44:94:09:53:52:e0:12:b5:57:be: 24:71:8d:4b:64:64:a7:bb:7f:5e:bb:ba:4d:84:d3:63:a2:29: 1d:eb:40:83:31:62:ce:fe:bd:28:2a:f5:1b:c0:54:34:58:a6: d6:44:15:03:6c:b6:bd:f7:2f:c6:d7:62:1a:5f:0a:f0:90:df: 0f:8a:54:85:df:57:16:3d:36:67:1b:20:89:a7:86:1d:77:03: 51:7b:41:d9 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUPlW5/PiwexcHzC8+Qb/rsv98XcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkI3Qjc5NEYxMjM3MjVGRTgwMEE2NDdGM0Y3RThCRTk5 QjFGNUIyQzAeFw0yNjA0MTQwMjEyNTlaFw0yNzA0MTMwMjE3NTlaMDMxMTAvBgNV BAMTKDdGQUM4QzExNUIzMjI4Mjk2QUUyREVGQUZGMkRDNDIzMzE0NUU3QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKvJSBMQFlaS7yQjPfdRn6qe2z kZQ/dQpJMLWhXplfJmb4y9Kzs4VWxKVh0UwiRwai49iWmBSKMfIlSE60AXYqkf+G DG5J+b+AwpsRe1BYEjn1XkFLhE9WVpKA+DBI8820jKG39UO+dBPqsyrosQM/uGsW hLAOCtkXSlYA8OeMYzzi8tMnQLiI/sNryP6ifveWwDYvBJD7yWJ7sx26HCx0VYOw f+x4nA8qJn2J97nK8GP/Hv85iLMK7ZvnfZ+BGzYUGUGBnjqYZp2eY2gu6/2pLPGv ts470QG3LKFqYwjLdoFyFjbO3Fs7pxcpfslr0oi/+wBCnjYUnhfdk6zosLXvAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUf6yMEVsyKClq4t76/y3EIzFF58YwHwYDVR0j BBgwFoAU+3t5TxI3Jf6ACmR/P36L6ZsfWywwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjA0ODM4Ni8wL0ZCN0I3OTRGMTIzNzI1RkU4MDBBNjQ3RjNGN0U4 QkU5OUIxRjVCMkMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkI3Qjc5NEYxMjM3MjVGRTgwMEE2NDdGM0Y3RThCRTk5QjFGNUIyQy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2NzIzMzcyMDQ4Mzg2LzAvMzUzOTJlMzEzNTMz MmUzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMyMzMzNzM3MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAI7mQQwDQYJKoZIhvcNAQELBQADggEBAA5x9Q7JgafXItoJtjRj1EDmMbheEu3u W3TecPi9C0Rvs/sypi+12Qu4PQMjTXrCsZ291TEbfez84qL1JRDi49IOaRXiD0px chOGH48MD530lUGfOEs/ymmnrg3wSYJgrQFoPKzzv3jAjVvhDVVPtkK+9jPIR4up Kat5HSn8PSDG5RFkLCRMueDYt1NV+HM39sbp8QK+86FOmDemJTcGUwrUzz8Glt/E eRP9RJQJU1LgErVXviRxjUtkZKe7f167uk2E02OiKR3rQIMxYs7+vSgq9RvAVDRY ptZEFQNstr33L8bXYhpfCvCQ3w+KVIXfVxY9NmcbIImnhh13A1F7Qdk= -----END CERTIFICATE-----Generated at Fri Apr 17 19:42:35 2026 by rpki-client