$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/36302e3230352e302e302f31362d3234203d3e203337393633.roa File: 36302e3230352e302e302f31362d3234203d3e203337393633.roa (raw, json) Hash identifier: qwwF5A0JJ6nFBOZg5wYlWgUNuVpu2phH0DDJZkpZgXM= Subject key identifier: FD:57:73:3D:A5:20:93:3A:B2:C9:58:BA:4B:BE:11:40:24:64:32:36 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 07D7E82D28ED0E2A744216C01A9C43316CC44107 Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/36302e3230352e302e302f31362d3234203d3e203337393633.roa Signing time: Fri 10 Apr 2026 02:06:16 +0000 ROA not before: Fri 10 Apr 2026 02:01:16 +0000 ROA not after: Fri 09 Apr 2027 02:06:16 +0000 asID: 37963 IP address blocks: 60.205.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 11:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d7:e8:2d:28:ed:0e:2a:74:42:16:c0:1a:9c:43:31:6c:c4:41:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 10 02:01:16 2026 GMT Not After : Apr 9 02:06:16 2027 GMT Subject: CN=FD57733DA520933AB2C958BA4BBE114024643236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9a:4b:ba:26:4a:0d:31:97:69:6e:e7:c6:3e: 5a:6c:45:e7:0c:98:74:72:23:0c:82:ad:29:89:53: e6:91:24:55:ca:40:7a:dd:6d:76:1f:b1:e2:ce:13: 2e:3e:83:d7:b7:c2:6a:37:62:3b:76:af:78:0e:e5: 21:e5:7a:ca:aa:c1:3b:f7:4c:ea:66:8a:0b:14:fd: c6:a5:c5:6e:75:b0:73:70:69:21:f5:3e:2c:b4:2e: c9:e0:e7:ed:dd:65:c6:63:53:e4:99:51:cb:62:da: 37:b9:1f:24:d5:8c:e0:43:e5:41:44:7d:71:a7:3a: 1d:35:2c:72:e7:6e:0d:27:8b:23:47:40:62:1b:cd: 0c:ca:67:a4:47:1f:af:dc:1d:46:f2:27:1d:b7:8a: 54:b7:5c:1b:20:e1:75:07:5c:93:81:98:75:3e:1e: 9d:05:25:9c:10:3a:2c:0b:30:65:16:c6:c5:52:d1: 10:87:a1:4b:1f:7b:d7:62:a5:11:bc:1e:a9:77:8f: 94:63:38:98:1f:72:f6:df:10:c3:f6:24:7c:d0:3f: ed:e8:55:b4:97:8f:31:98:2e:df:a2:f1:50:59:97: 28:70:80:31:eb:77:34:88:d9:33:07:05:11:dc:e9: 69:36:53:4c:0c:e9:19:2d:c8:74:0b:a9:20:4f:3c: 17:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:57:73:3D:A5:20:93:3A:B2:C9:58:BA:4B:BE:11:40:24:64:32:36 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/36302e3230352e302e302f31362d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 60.205.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:fe:6e:53:31:1f:35:f6:e5:eb:d5:07:60:18:c1:35:24:b6: ab:5e:22:c2:50:58:6e:16:20:a8:77:54:ca:4e:71:8e:12:5e: 4b:eb:f1:be:5d:2b:49:c8:77:f0:53:9f:b1:91:fe:cf:8b:92: cc:79:d2:7b:8c:af:45:42:c1:08:17:b3:00:e5:20:53:cf:0f: dc:00:fb:1b:36:3f:d0:1f:da:ee:91:77:3d:b8:d8:f5:29:b2: a9:05:56:d4:7f:8e:3f:d0:8f:9e:6d:d7:3a:6a:f2:d7:69:56: 50:92:fe:7d:35:51:37:94:83:c3:c5:28:fa:30:b5:c1:9b:96: 34:58:42:3d:23:70:7f:11:54:96:ad:80:00:ff:6c:04:31:1f: 49:bc:7a:04:37:7d:dd:a3:cb:86:b4:08:17:8b:fc:0a:0d:ba: 37:b8:e5:9d:e9:7c:ed:9f:e0:cb:3d:a5:55:2a:06:f8:cc:27: 90:e8:97:b1:b4:fe:5c:9f:56:a4:6c:e5:17:68:af:9b:51:30: d7:21:af:2e:79:f9:1f:a3:40:90:f8:3f:8c:9e:6c:f7:de:ee: af:46:34:e4:fb:a9:34:f9:a8:44:ab:8b:35:1e:aa:41:a0:b0: 77:ea:80:ec:71:d0:c4:ea:1b:aa:e6:e4:bf:a6:ab:16:02:7a: 4d:00:14:c2 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUB9foLSjtDip0QhbAGpxDMWzEQQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MTAwMjAxMTZaFw0yNzA0MDkwMjA2MTZaMDMxMTAvBgNV BAMTKEZENTc3MzNEQTUyMDkzM0FCMkM5NThCQTRCQkUxMTQwMjQ2NDMyMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjmku6JkoNMZdpbufGPlpsRecM mHRyIwyCrSmJU+aRJFXKQHrdbXYfseLOEy4+g9e3wmo3Yjt2r3gO5SHlesqqwTv3 TOpmigsU/calxW51sHNwaSH1Piy0Lsng5+3dZcZjU+SZUcti2je5HyTVjOBD5UFE fXGnOh01LHLnbg0niyNHQGIbzQzKZ6RHH6/cHUbyJx23ilS3XBsg4XUHXJOBmHU+ Hp0FJZwQOiwLMGUWxsVS0RCHoUsfe9dipRG8Hql3j5RjOJgfcvbfEMP2JHzQP+3o VbSXjzGYLt+i8VBZlyhwgDHrdzSI2TMHBRHc6Wk2U0wM6RktyHQLqSBPPBelAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQU/VdzPaUgkzqyyVi6S74RQCRkMjYwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzYzMDJlMzIzMDM1 MmUzMDJlMzAyZjMxMzYyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwA8zTANBgkqhkiG9w0BAQsFAAOCAQEAgf5uUzEfNfbl69UHYBjBNSS2q14iwlBY bhYgqHdUyk5xjhJeS+vxvl0rSch38FOfsZH+z4uSzHnSe4yvRULBCBezAOUgU88P 3AD7GzY/0B/a7pF3PbjY9SmyqQVW1H+OP9CPnm3XOmry12lWUJL+fTVRN5SDw8Uo +jC1wZuWNFhCPSNwfxFUlq2AAP9sBDEfSbx6BDd93aPLhrQIF4v8Cg26N7jlnel8 7Z/gyz2lVSoG+MwnkOiXsbT+XJ9WpGzlF2ivm1Ew1yGvLnn5H6NAkPg/jJ5s997u r0Y05PupNPmoRKuLNR6qQaCwd+qA7HHQxOobqubkv6arFgJ6TQAUwg== -----END CERTIFICATE-----Generated at Fri Apr 17 23:55:16 2026 by rpki-client