$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3138342e302f32312d3231203d3e20313335363239.roa File: 36392e3233352e3138342e302f32312d3231203d3e20313335363239.roa (raw, json) Hash identifier: bXtRngVO1ZHZloYd3fw60uZkV2dYuwOu5FeJjvbf0DU= Subject key identifier: 1F:13:85:7B:9E:06:5C:64:62:E3:59:F3:64:45:CF:A4:51:44:B5:3B Certificate issuer: /CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Certificate serial: 4129C39CCA99E04FDDEC06E084A85CF1379B9F4D Authority key identifier: BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3138342e302f32312d3231203d3e20313335363239.roa Signing time: Wed 15 Apr 2026 02:32:11 +0000 ROA not before: Wed 15 Apr 2026 02:27:11 +0000 ROA not after: Wed 14 Apr 2027 02:32:11 +0000 asID: 135629 IP address blocks: 69.235.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 15:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:29:c3:9c:ca:99:e0:4f:dd:ec:06:e0:84:a8:5c:f1:37:9b:9f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA443CFDA40373E3F27A14B414EC248A46A7DF6D Validity Not Before: Apr 15 02:27:11 2026 GMT Not After : Apr 14 02:32:11 2027 GMT Subject: CN=1F13857B9E065C6462E359F36445CFA45144B53B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:61:29:ea:0c:84:e6:2f:f3:ab:08:e0:de:80: 2b:d9:5d:26:3e:5b:f5:7f:3e:0c:17:d6:0c:1b:90: 73:06:58:34:24:b6:63:8a:4b:4d:47:d4:16:8d:fc: f5:02:28:22:23:2d:5b:bb:a1:fa:24:42:3c:51:b1: 57:10:a0:f0:2b:bc:9c:e2:3a:02:af:e3:e6:96:42: 97:48:7e:76:0e:bf:50:f0:9b:57:f5:85:67:35:2e: 92:28:45:4b:22:9b:d2:c8:7b:24:5a:d4:e3:4e:2e: d9:31:38:f6:c8:08:c3:af:17:7a:aa:6c:be:12:90: b4:ff:85:52:d3:b0:2b:81:7e:49:42:70:96:3c:72: 77:62:dd:4e:df:13:93:b3:1a:e9:d8:52:57:52:8c: 3b:35:ca:7a:e4:91:eb:0d:dd:a9:aa:c6:46:3e:24: 96:7e:e9:74:b6:c0:80:cb:14:04:f0:e6:f7:05:04: 98:16:38:63:b9:ec:0f:7b:84:9e:57:b7:bf:79:69: 1d:89:5e:56:dc:4f:e0:aa:bf:10:7a:fe:72:87:bf: 65:a0:7a:60:da:69:aa:91:70:0d:62:9a:66:41:43: 19:5f:75:98:a2:5e:87:b7:74:f2:f0:42:06:ea:51: 60:c5:47:fc:9e:6f:1a:a9:a2:fd:23:78:6a:96:82: ef:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:13:85:7B:9E:06:5C:64:62:E3:59:F3:64:45:CF:A4:51:44:B5:3B X509v3 Authority Key Identifier: keyid:BA:44:3C:FD:A4:03:73:E3:F2:7A:14:B4:14:EC:24:8A:46:A7:DF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/BA443CFDA40373E3F27A14B414EC248A46A7DF6D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394982403/1/36392e3233352e3138342e302f32312d3231203d3e20313335363239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.235.184.0/21 Signature Algorithm: sha256WithRSAEncryption 39:4a:2f:fb:82:7b:3c:ad:d9:de:5a:76:6c:83:49:35:c3:6f: e0:cf:aa:2f:36:36:4b:08:a7:3f:d1:e3:2c:71:60:53:d0:03: 19:a0:19:2e:c2:ea:8c:ff:25:22:44:a1:e2:0e:1f:cd:be:fa: 9f:9e:7c:88:e5:f7:5c:1f:99:e7:45:c3:34:b3:5e:12:15:1d: 10:8f:e8:ff:f9:3c:3f:6c:4f:dc:9f:bb:f7:eb:ab:9e:bc:ef: 72:87:ec:ea:ad:37:05:1e:81:1f:32:28:68:c4:c7:0b:ba:12: 84:ba:35:b3:4d:53:ce:da:0f:e7:66:1b:73:6e:11:23:d3:41: 23:30:d5:1e:47:90:40:08:cf:96:b6:2a:ac:26:0f:09:16:32: 32:c5:49:df:2d:d1:cf:4c:24:da:4c:a7:93:c0:2b:da:69:b9: 64:65:20:d3:dc:6d:ee:99:ad:3c:d1:2c:a9:e7:c3:ad:10:4e: 11:47:87:0b:fa:ae:a8:40:ef:09:57:ac:5a:89:d7:8d:67:3c: 44:3b:d4:69:9f:10:de:d2:e8:35:c5:8a:5c:30:ce:da:7f:f0: 1b:e5:2b:f2:7c:62:f1:c2:dc:69:4a:b6:72:c2:ff:0e:72:b2: 5e:5d:b2:65:99:dc:a1:9f:74:94:1c:3b:03:1b:47:40:b8:ea: d5:0e:93:39 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUQSnDnMqZ4E/d7AbghKhc8Tebn00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0 NkE3REY2RDAeFw0yNjA0MTUwMjI3MTFaFw0yNzA0MTQwMjMyMTFaMDMxMTAvBgNV BAMTKDFGMTM4NTdCOUUwNjVDNjQ2MkUzNTlGMzY0NDVDRkE0NTE0NEI1M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgYSnqDITmL/OrCODegCvZXSY+ W/V/PgwX1gwbkHMGWDQktmOKS01H1BaN/PUCKCIjLVu7ofokQjxRsVcQoPArvJzi OgKv4+aWQpdIfnYOv1Dwm1f1hWc1LpIoRUsim9LIeyRa1ONOLtkxOPbICMOvF3qq bL4SkLT/hVLTsCuBfklCcJY8cndi3U7fE5OzGunYUldSjDs1ynrkkesN3amqxkY+ JJZ+6XS2wIDLFATw5vcFBJgWOGO57A97hJ5Xt795aR2JXlbcT+CqvxB6/nKHv2Wg emDaaaqRcA1immZBQxlfdZiiXoe3dPLwQgbqUWDFR/yebxqpov0jeGqWgu/BAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUHxOFe54GXGRi41nzZEXPpFFEtTswHwYDVR0j BBgwFoAUukQ8/aQDc+PyehS0FOwkikan320wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDk4MjQwMy8xL0JBNDQzQ0ZEQTQwMzczRTNGMjdBMTRCNDE0RUMy NDhBNDZBN0RGNkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQkE0NDNDRkRBNDAzNzNFM0YyN0ExNEI0MTRFQzI0OEE0NkE3REY2RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ5ODI0MDMvMS8zNjM5MmUzMjMz MzUyZTMxMzgzNDJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMxMzMzNTM2MzIzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEA0XruDANBgkqhkiG9w0BAQsFAAOCAQEAOUov+4J7PK3Z3lp2bINJ NcNv4M+qLzY2SwinP9HjLHFgU9ADGaAZLsLqjP8lIkSh4g4fzb76n558iOX3XB+Z 50XDNLNeEhUdEI/o//k8P2xP3J+79+urnrzvcofs6q03BR6BHzIoaMTHC7oShLo1 s01TztoP52Ybc24RI9NBIzDVHkeQQAjPlrYqrCYPCRYyMsVJ3y3Rz0wk2kynk8Ar 2mm5ZGUg09xt7pmtPNEsqefDrRBOEUeHC/quqEDvCVesWonXjWc8RDvUaZ8Q3tLo NcWKXDDO2n/wG+Ur8nxi8cLcaUq2csL/DnKyXl2yZZncoZ90lBw7AxtHQLjq1Q6T OQ== -----END CERTIFICATE-----Generated at Sat Apr 18 07:28:32 2026 by rpki-client