$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3132382e302f31382d3234203d3e20313335363239.roa File: 36392e3233352e3132382e302f31382d3234203d3e20313335363239.roa (raw, json) Hash identifier: xFWMWs1c6SAwWOInmbWsHWAmEOaJMBB4hoMBTc7gn8c= Subject key identifier: BD:0C:63:74:CD:3E:12:BF:F0:17:DB:91:7B:78:7D:45:E5:B9:77:BA Certificate issuer: /CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Certificate serial: 3E450887FFFFFDAF3D3FE83050E3E44ED97589C8 Authority key identifier: BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3132382e302f31382d3234203d3e20313335363239.roa Signing time: Wed 15 Apr 2026 02:35:54 +0000 ROA not before: Wed 15 Apr 2026 02:30:54 +0000 ROA not after: Wed 14 Apr 2027 02:35:54 +0000 asID: 135629 IP address blocks: 69.235.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:45:08:87:ff:ff:fd:af:3d:3f:e8:30:50:e3:e4:4e:d9:75:89:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Validity Not Before: Apr 15 02:30:54 2026 GMT Not After : Apr 14 02:35:54 2027 GMT Subject: CN=BD0C6374CD3E12BFF017DB917B787D45E5B977BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:06:31:92:28:79:17:ed:86:e5:11:e5:2c:3f: 6e:f0:f1:15:79:2f:bb:71:93:62:dc:5d:d1:6d:f3: 9a:f2:0b:51:81:05:7b:d8:0a:b2:1b:23:35:e0:89: 6d:71:0e:1a:fd:cb:c6:e4:02:4f:b7:29:51:47:84: 6f:45:d1:5c:de:67:18:e6:65:33:53:f6:8d:66:a9: 51:91:e4:ae:c3:55:c3:88:a0:71:a4:82:ae:0d:78: 77:b3:2f:64:35:4e:23:ce:a8:95:2d:70:f8:88:94: ac:17:8f:6f:b5:be:ac:f1:1b:61:56:aa:66:a6:e9: 9e:ff:07:6c:c4:b9:b8:b8:bc:d2:3b:b2:90:c9:eb: 5c:b5:61:4c:25:e7:d6:b3:71:df:40:91:63:22:3a: e3:61:14:18:e5:ed:0a:d0:c7:90:9f:74:cc:3b:da: 5c:24:7e:8b:41:54:b5:ab:cc:c0:c0:f3:f9:95:b5: 83:5f:5b:ff:c0:d0:d3:92:10:52:95:87:ae:e2:44: c4:1d:e3:e1:fc:21:b1:76:83:58:b5:7b:63:84:6a: cb:7c:75:fd:65:86:79:4c:61:82:34:ba:22:2e:58: 18:9c:d7:cb:16:74:f3:04:97:0e:d6:ca:16:53:11: 48:d2:53:96:29:73:85:2b:cd:b9:d7:34:96:b6:8a: a2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0C:63:74:CD:3E:12:BF:F0:17:DB:91:7B:78:7D:45:E5:B9:77:BA X509v3 Authority Key Identifier: keyid:BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3132382e302f31382d3234203d3e20313335363239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.235.128.0/18 Signature Algorithm: sha256WithRSAEncryption 6b:c2:d8:42:90:63:b6:64:d4:32:45:4c:2a:2f:db:67:aa:07: 2a:d4:8d:16:dc:dc:2e:62:a1:b6:05:36:69:92:97:c4:ec:78: d9:68:9f:2b:28:e8:9c:b8:e5:09:10:ea:aa:21:41:89:e4:d5: ad:db:8d:80:61:ca:22:a4:5e:40:20:d2:e1:bb:da:94:04:e1: 07:93:35:aa:26:a4:6e:10:7e:0b:9c:e7:c8:38:78:c3:62:01: ff:68:d1:8d:07:56:8e:ca:f2:29:fa:f6:80:55:3c:ca:47:17: 35:39:fa:34:ef:7c:00:a4:fa:16:cd:a7:36:fb:42:74:ab:62: ef:d8:bc:6d:ba:ff:16:34:90:05:f2:ab:5c:9d:42:ec:aa:b6: 30:8d:34:b1:d5:92:37:ed:02:89:cf:a4:45:bc:2e:65:30:0b: eb:82:9c:cf:f1:9b:af:3e:c4:61:60:80:a1:fd:8a:3a:df:16: 0f:d7:fe:63:af:42:6b:3c:e5:7b:36:34:0d:f9:8b:82:98:26: 59:ed:61:b8:a0:03:d7:06:7c:80:8c:55:6f:cb:27:64:9e:69: 99:96:80:80:c4:25:be:a0:68:09:a5:d9:94:ba:b1:93:97:e6: 46:59:53:26:81:6f:41:dc:30:be:40:a9:a1:7d:81:c1:41:54: 89:11:4e:c8 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUPkUIh////a89P+gwUOPkTtl1icgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0 NkE3REY2RDAeFw0yNjA0MTUwMjMwNTRaFw0yNzA0MTQwMjM1NTRaMDMxMTAvBgNV BAMTKEJEMEM2Mzc0Q0QzRTEyQkZGMDE3REI5MTdCNzg3RDQ1RTVCOTc3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjBjGSKHkX7YblEeUsP27w8RV5 L7txk2LcXdFt85ryC1GBBXvYCrIbIzXgiW1xDhr9y8bkAk+3KVFHhG9F0VzeZxjm ZTNT9o1mqVGR5K7DVcOIoHGkgq4NeHezL2Q1TiPOqJUtcPiIlKwXj2+1vqzxG2FW qmam6Z7/B2zEubi4vNI7spDJ61y1YUwl59azcd9AkWMiOuNhFBjl7QrQx5CfdMw7 2lwkfotBVLWrzMDA8/mVtYNfW//A0NOSEFKVh67iRMQd4+H8IbF2g1i1e2OEast8 df1lhnlMYYI0uiIuWBic18sWdPMElw7WyhZTEUjSU5Ypc4UrzbnXNJa2iqLnAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUvQxjdM0+Er/wF9uRe3h9ReW5d7owHwYDVR0j BBgwFoAUukQ8/aQDc+PyehS0FOwkikan320wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDk4MjQwMy8xL0JBNDQzQ0ZEQTQwMzczRTNGMjdBMTRCNDE0RUMy NDhBNDZBN0RGNkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0NkE3REY2RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ5ODI0MDMvMS8zNjM5MmUzMjMz MzUyZTMxMzIzODJlMzAyZjMxMzgyZDMyMzQyMDNkM2UyMDMxMzMzNTM2MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBkXrgDANBgkqhkiG9w0BAQsFAAOCAQEAa8LYQpBjtmTUMkVMKi/b Z6oHKtSNFtzcLmKhtgU2aZKXxOx42WifKyjonLjlCRDqqiFBieTVrduNgGHKIqRe QCDS4bvalAThB5M1qiakbhB+C5znyDh4w2IB/2jRjQdWjsryKfr2gFU8ykcXNTn6 NO98AKT6Fs2nNvtCdKti79i8bbr/FjSQBfKrXJ1C7Kq2MI00sdWSN+0Cic+kRbwu ZTAL64Kcz/Gbrz7EYWCAof2KOt8WD9f+Y69CazzlezY0DfmLgpgmWe1huKAD1wZ8 gIxVb8snZJ5pmZaAgMQlvqBoCaXZlLqxk5fmRllTJoFvQdwwvkCpoX2BwUFUiRFO yA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:43:26 2026 by rpki-client