$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3138342e302f32312d3231203d3e203130323036.roa File: 36392e3233352e3138342e302f32312d3231203d3e203130323036.roa (raw, json) Hash identifier: XdIIytMKeURqugQsIhiCG8921zvCYPpLFXWW/uA/1S4= Subject key identifier: 2B:80:0A:46:22:BA:4E:36:B6:1F:DC:8F:AE:4B:50:33:0F:9C:D9:B0 Certificate issuer: /CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Certificate serial: 5EB7A664E008D1A8E67DEEF7B97D2CFFC56C5139 Authority key identifier: BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3138342e302f32312d3231203d3e203130323036.roa Signing time: Wed 15 Apr 2026 02:32:11 +0000 ROA not before: Wed 15 Apr 2026 02:27:11 +0000 ROA not after: Wed 14 Apr 2027 02:32:11 +0000 asID: 10206 IP address blocks: 69.235.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b7:a6:64:e0:08:d1:a8:e6:7d:ee:f7:b9:7d:2c:ff:c5:6c:51:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Validity Not Before: Apr 15 02:27:11 2026 GMT Not After : Apr 14 02:32:11 2027 GMT Subject: CN=2B800A4622BA4E36B61FDC8FAE4B50330F9CD9B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b1:59:06:e7:62:8f:d3:f7:d6:04:9e:5a:de: e3:5b:cd:c9:aa:d9:7f:23:67:63:33:ab:fa:cb:14: ea:95:84:98:eb:0a:62:d2:18:cc:68:96:0b:63:98: eb:d8:02:3d:8a:12:f0:1f:c4:05:7d:6e:ff:13:62: 55:46:d6:fb:9e:35:7c:3a:12:1c:f2:ff:75:11:6e: f1:f1:5a:30:47:d9:b5:6d:9a:42:e0:27:64:b3:28: 73:0b:72:99:7b:3a:b3:a5:d1:a3:5f:ca:7d:c7:da: 08:cc:e6:a3:fa:e4:33:54:ba:65:ec:8d:5d:15:b8: 6f:3f:25:b3:ee:7a:ec:51:f6:b8:a7:1a:c8:52:fa: b7:d0:9b:73:54:d4:03:89:f9:31:5d:fd:84:70:6d: 76:7f:46:6d:b8:c1:36:c3:ec:45:f1:d9:04:d1:e4: 98:5e:c7:9f:83:73:5f:25:2a:3e:e8:2f:78:4a:00: 85:39:bf:be:40:ea:0c:9a:a5:e9:8a:ab:0a:3c:67: c7:b4:23:c2:eb:ad:0d:52:2b:4c:2b:8b:76:0a:ce: 9c:37:aa:c2:44:e3:a7:93:23:13:ea:13:40:24:02: da:32:02:9d:22:40:2a:5e:8b:2f:e5:23:7f:61:6e: 2f:3f:cd:f4:dd:7a:98:91:4a:df:05:9a:22:71:58: 64:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:80:0A:46:22:BA:4E:36:B6:1F:DC:8F:AE:4B:50:33:0F:9C:D9:B0 X509v3 Authority Key Identifier: keyid:BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3138342e302f32312d3231203d3e203130323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.235.184.0/21 Signature Algorithm: sha256WithRSAEncryption 77:0c:2b:79:d3:5c:d4:42:32:f8:3b:9d:5c:bc:14:6d:13:eb: fb:c5:ee:9b:90:71:c1:35:62:89:50:58:c7:40:20:2a:62:02: 06:9a:b8:78:0f:64:e4:c7:3c:b9:5b:9c:0b:a3:ab:f1:f7:db: af:46:59:e3:27:62:79:3f:9b:6f:bc:2d:4d:89:64:f1:9b:84: 39:b0:e7:20:8c:2f:ee:74:f5:e4:29:93:6f:19:8b:28:67:ee: a3:6c:12:8b:78:12:51:1d:9b:b7:bd:4e:a7:5c:39:5a:54:f4: 0c:f9:2d:1e:9c:89:4f:f3:62:f2:d5:5b:44:3d:15:f4:4f:1f: d8:98:98:d4:23:03:14:5d:40:c7:8e:54:4a:fa:7a:98:f0:55: 90:76:a7:24:90:bf:de:bc:74:9e:f9:b7:1a:6a:dd:cd:f3:cd: 5d:09:4d:61:99:ee:89:b8:95:54:e2:e7:4e:16:fa:46:39:ef: 0e:5d:9d:89:de:93:9d:c4:44:ee:84:8d:20:73:63:24:e0:61: 37:4b:94:3b:ed:1b:28:e8:27:76:bd:d1:21:6e:c7:24:a0:3d: 0b:6f:06:22:66:97:45:eb:1c:af:3b:1e:ef:04:1d:1d:a2:a2: 18:58:d6:f8:78:c6:9b:26:b3:9b:85:fa:5f:cf:1e:30:7b:8a: e9:fe:49:9b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUXremZOAI0ajmfe73uX0s/8VsUTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0 NkE3REY2RDAeFw0yNjA0MTUwMjI3MTFaFw0yNzA0MTQwMjMyMTFaMDMxMTAvBgNV BAMTKDJCODAwQTQ2MjJCQTRFMzZCNjFGREM4RkFFNEI1MDMzMEY5Q0Q5QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4sVkG52KP0/fWBJ5a3uNbzcmq 2X8jZ2Mzq/rLFOqVhJjrCmLSGMxolgtjmOvYAj2KEvAfxAV9bv8TYlVG1vueNXw6 Ehzy/3URbvHxWjBH2bVtmkLgJ2SzKHMLcpl7OrOl0aNfyn3H2gjM5qP65DNUumXs jV0VuG8/JbPueuxR9rinGshS+rfQm3NU1AOJ+TFd/YRwbXZ/Rm24wTbD7EXx2QTR 5Jhex5+Dc18lKj7oL3hKAIU5v75A6gyapemKqwo8Z8e0I8LrrQ1SK0wri3YKzpw3 qsJE46eTIxPqE0AkAtoyAp0iQCpeiy/lI39hbi8/zfTdepiRSt8FmiJxWGQrAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUK4AKRiK6Tja2H9yPrktQMw+c2bAwHwYDVR0j BBgwFoAUukQ8/aQDc+PyehS0FOwkikan320wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDk4MjQwMy8xL0JBNDQzQ0ZEQTQwMzczRTNGMjdBMTRCNDE0RUMy NDhBNDZBN0RGNkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0NkE3REY2RC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDk4MjQwMy8xLzM2MzkyZTMyMzMz NTJlMzEzODM0MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzEzMDMyMzAzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA0XruDANBgkqhkiG9w0BAQsFAAOCAQEAdwwredNc1EIy+DudXLwUbRPr +8Xum5BxwTViiVBYx0AgKmICBpq4eA9k5Mc8uVucC6Or8ffbr0ZZ4ydieT+bb7wt TYlk8ZuEObDnIIwv7nT15CmTbxmLKGfuo2wSi3gSUR2bt71Op1w5WlT0DPktHpyJ T/Ni8tVbRD0V9E8f2JiY1CMDFF1Ax45USvp6mPBVkHanJJC/3rx0nvm3GmrdzfPN XQlNYZnuibiVVOLnThb6RjnvDl2did6TncRE7oSNIHNjJOBhN0uUO+0bKOgndr3R IW7HJKA9C28GImaXRescrzse7wQdHaKiGFjW+HjGmyazm4X6X88eMHuK6f5Jmw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:54:23 2026 by rpki-client