$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096265459348537346/1/35392e3135312e302e302f31372d3332203d3e2039383032.roa File: 35392e3135312e302e302f31372d3332203d3e2039383032.roa (raw, json) Hash identifier: iBbJZXHPeq9OKSYThwM+5qp/2KpXhDM5P/OHhwsSOMM= Subject key identifier: 83:68:6F:10:B0:0E:C4:C3:3B:4F:37:9F:DA:77:A0:D5:3C:FD:B2:70 Certificate issuer: /CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Certificate serial: 7138383544BF8FF024918891FC0BD8C8BA062ABD Authority key identifier: 1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/35392e3135312e302e302f31372d3332203d3e2039383032.roa Signing time: Tue 14 Apr 2026 03:06:35 +0000 ROA not before: Tue 14 Apr 2026 03:01:35 +0000 ROA not after: Tue 13 Apr 2027 03:06:35 +0000 asID: 9802 IP address blocks: 59.151.0.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:38:38:35:44:bf:8f:f0:24:91:88:91:fc:0b:d8:c8:ba:06:2a:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C519CD1C415925E7FCE92FDA20FF18EC544C74B Validity Not Before: Apr 14 03:01:35 2026 GMT Not After : Apr 13 03:06:35 2027 GMT Subject: CN=83686F10B00EC4C33B4F379FDA77A0D53CFDB270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5e:cf:08:f2:8d:62:f3:bd:c0:eb:94:62:5a: 25:1d:85:ed:77:da:b4:b0:57:34:d4:4e:15:91:92: df:81:9d:2e:10:ab:2d:b2:e0:46:25:e1:90:35:6e: 84:bb:0f:c1:dc:54:99:42:60:85:90:ca:15:58:4a: 73:78:b6:17:6f:68:e1:45:46:35:01:f9:e8:9b:94: 78:a9:7a:5b:99:17:49:7c:68:09:75:96:a5:d1:2e: f4:b9:79:ec:ae:b6:42:26:ae:a6:de:6f:23:fe:5c: c5:3f:47:2d:bb:df:6c:7f:4d:ed:4f:86:f1:6b:d5: 33:63:d3:38:e8:a7:2e:ea:bc:2e:59:07:fd:ee:1d: 00:ce:3c:7f:8b:65:65:9e:09:28:2b:5c:2f:29:84: 4f:58:66:2b:f4:5b:03:bd:74:5a:84:9f:42:db:57: 51:89:53:20:c0:cb:23:92:c6:c8:58:3a:eb:82:03: 39:a9:16:8b:07:ed:fb:55:d0:00:3a:40:98:5e:c6: f2:3c:bf:58:f1:16:b0:03:28:4b:0a:c9:0d:5b:53: 74:4c:41:38:06:ea:a2:92:f1:d7:fb:83:fb:3c:62: 1a:c0:bf:da:0f:52:51:f9:5a:f9:33:98:de:20:f5: 03:2d:92:05:df:18:d9:5c:0b:90:e9:eb:f3:98:99: 23:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:68:6F:10:B0:0E:C4:C3:3B:4F:37:9F:DA:77:A0:D5:3C:FD:B2:70 X509v3 Authority Key Identifier: keyid:1C:51:9C:D1:C4:15:92:5E:7F:CE:92:FD:A2:0F:F1:8E:C5:44:C7:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1C519CD1C415925E7FCE92FDA20FF18EC544C74B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096265459348537346/1/35392e3135312e302e302f31372d3332203d3e2039383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 59.151.0.0/17 Signature Algorithm: sha256WithRSAEncryption 97:64:ba:b1:8c:f2:c3:09:6b:42:61:c1:77:6a:ac:66:65:30: 54:65:e1:9d:c3:bd:c9:fb:a0:50:a4:de:19:e0:41:3a:e8:2b: f3:cb:4a:78:7c:a1:41:46:02:a4:1d:22:a8:d8:18:32:11:45: f4:14:4a:45:06:15:6d:31:8b:fd:17:4a:15:8b:d5:14:33:86: 26:ea:ea:8d:0f:09:56:24:98:90:21:5b:ea:2c:54:67:a5:a0: c6:5e:36:9e:af:46:f5:e4:25:86:59:2c:ae:43:94:c5:95:c1: 37:1e:e9:77:bf:0c:1d:fd:b1:fe:a2:58:64:34:d2:41:db:32: 02:3d:74:56:79:b2:9d:e7:3b:29:bf:11:a7:b6:f5:17:3d:c0: 10:4b:d7:7b:87:98:10:ee:1d:e2:f6:ae:eb:84:48:14:de:ff: 62:aa:d3:9d:65:86:8a:95:08:de:89:5c:8e:64:9f:17:ac:f7: 0f:d2:54:47:cc:8b:a1:a5:af:4b:e0:ac:0d:3f:73:83:30:f2: b9:1f:3d:f8:16:84:b8:74:8b:8e:f4:e6:c7:d5:7d:9a:3a:df: e3:38:2a:ca:35:e6:28:1d:97:13:06:ec:97:47:e0:8c:50:7f: 53:25:f3:be:4c:12:44:f6:bf:92:34:8b:e3:ba:90:4f:c4:de: 77:0f:27:71 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUcTg4NUS/j/AkkYiR/AvYyLoGKr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVD NTQ0Qzc0QjAeFw0yNjA0MTQwMzAxMzVaFw0yNzA0MTMwMzA2MzVaMDMxMTAvBgNV BAMTKDgzNjg2RjEwQjAwRUM0QzMzQjRGMzc5RkRBNzdBMEQ1M0NGREIyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYXs8I8o1i873A65RiWiUdhe13 2rSwVzTUThWRkt+BnS4Qqy2y4EYl4ZA1boS7D8HcVJlCYIWQyhVYSnN4thdvaOFF RjUB+eiblHipeluZF0l8aAl1lqXRLvS5eeyutkImrqbebyP+XMU/Ry2732x/Te1P hvFr1TNj0zjopy7qvC5ZB/3uHQDOPH+LZWWeCSgrXC8phE9YZiv0WwO9dFqEn0Lb V1GJUyDAyyOSxshYOuuCAzmpFosH7ftV0AA6QJhexvI8v1jxFrADKEsKyQ1bU3RM QTgG6qKS8df7g/s8YhrAv9oPUlH5WvkzmN4g9QMtkgXfGNlcC5Dp6/OYmSPhAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUg2hvELAOxMM7Tzef2neg1Tz9snAwHwYDVR0j BBgwFoAUHFGc0cQVkl5/zpL9og/xjsVEx0swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI2NTQ1OTM0ODUzNzM0Ni8xLzFDNTE5Q0QxQzQxNTkyNUU3RkNFOTJGREEyMEZG MThFQzU0NEM3NEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUM1MTlDRDFDNDE1OTI1RTdGQ0U5MkZEQTIwRkYxOEVDNTQ0Qzc0Qi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MjY1NDU5MzQ4NTM3MzQ2LzEvMzUzOTJlMzEzNTMx MmUzMDJlMzAyZjMxMzcyZDMzMzIyMDNkM2UyMDM5MzgzMDMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH O5cAMA0GCSqGSIb3DQEBCwUAA4IBAQCXZLqxjPLDCWtCYcF3aqxmZTBUZeGdw73J +6BQpN4Z4EE66Cvzy0p4fKFBRgKkHSKo2BgyEUX0FEpFBhVtMYv9F0oVi9UUM4Ym 6uqNDwlWJJiQIVvqLFRnpaDGXjaer0b15CWGWSyuQ5TFlcE3Hul3vwwd/bH+olhk NNJB2zICPXRWebKd5zspvxGntvUXPcAQS9d7h5gQ7h3i9q7rhEgU3v9iqtOdZYaK lQjeiVyOZJ8XrPcP0lRHzIuhpa9L4KwNP3ODMPK5Hz34FoS4dIuO9ObH1X2aOt/j OCrKNeYoHZcTBuyXR+CMUH9TJfO+TBJE9r+SNIvjupBPxN53Dydx -----END CERTIFICATE-----Generated at Fri Apr 17 19:26:33 2026 by rpki-client