$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100955007496224770/0/AS17623.roa File: AS17623.roa (raw, json) Hash identifier: z6g5MCOUrEssoy1uJfKEk94+LrQeJ2+bymHuIDB9xxE= Subject key identifier: C8:36:C7:BD:2B:8F:61:A7:41:1D:EB:F8:99:20:4B:5D:0D:CA:9E:A1 Certificate issuer: /CN=78A1695C768D09B6CA7E1978308E54BE84FEBAAE Certificate serial: 7AF0C739ABA405576D954444A393FD7E92FBB2C3 Authority key identifier: 78:A1:69:5C:76:8D:09:B6:CA:7E:19:78:30:8E:54:BE:84:FE:BA:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/AS17623.roa Signing time: Tue 09 Jun 2026 06:16:21 +0000 ROA not before: Tue 09 Jun 2026 06:11:21 +0000 ROA not after: Tue 08 Jun 2027 06:16:21 +0000 asID: 17623 IP address blocks: 211.96.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.crl rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 23:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:f0:c7:39:ab:a4:05:57:6d:95:44:44:a3:93:fd:7e:92:fb:b2:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78A1695C768D09B6CA7E1978308E54BE84FEBAAE Validity Not Before: Jun 9 06:11:21 2026 GMT Not After : Jun 8 06:16:21 2027 GMT Subject: CN=C836C7BD2B8F61A7411DEBF899204B5D0DCA9EA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b9:44:29:a8:5e:27:b8:2f:08:12:4c:ab:63: b9:87:16:5b:6e:f3:d6:07:ce:64:b9:f2:54:26:d1: ec:98:f7:d8:61:b0:91:1c:63:ca:9a:ed:6c:94:f5: a6:a8:6b:07:ce:ba:c2:f4:20:20:87:30:11:2f:7d: 7f:ea:69:b3:89:27:1e:0f:23:d1:75:94:e3:87:1d: 6f:f5:64:ae:8a:4d:04:75:04:15:83:6f:14:4c:56: 86:54:60:2c:0b:4e:29:96:c6:02:d3:b2:87:fa:fc: a6:9f:23:06:18:fb:9d:30:0e:71:e5:3a:46:69:a2: 4f:82:17:27:6e:07:71:b9:1b:4d:2b:b5:a4:bf:93: 62:29:be:f8:b9:e6:a7:a4:10:9c:32:69:26:27:10: 8c:1a:d5:b4:0f:34:cc:b9:db:7e:67:a9:be:f0:15: 3b:21:50:7d:a2:62:2c:8f:ea:1e:0c:d1:52:48:97: ed:bf:c1:03:fd:66:a1:1b:46:47:f2:da:46:98:e9: 4f:07:97:13:16:a2:c4:12:1c:99:98:a6:ae:c7:9f: e3:19:6c:77:0b:54:3e:ad:67:aa:9a:33:f8:fd:66: 00:c0:11:69:33:56:05:95:01:73:7b:58:86:3a:76: 35:bb:da:46:08:d1:3c:06:98:cd:2b:89:56:24:82: ec:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:36:C7:BD:2B:8F:61:A7:41:1D:EB:F8:99:20:4B:5D:0D:CA:9E:A1 X509v3 Authority Key Identifier: keyid:78:A1:69:5C:76:8D:09:B6:CA:7E:19:78:30:8E:54:BE:84:FE:BA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/78A1695C768D09B6CA7E1978308E54BE84FEBAAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100955007496224770/0/AS17623.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 211.96.107.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:48:e0:96:78:5e:8f:20:07:dc:08:5f:27:a6:7f:89:d7:a6: 30:80:ed:2e:11:e0:bf:00:aa:8c:d8:e6:07:cd:f9:ca:89:01: 0c:18:76:4c:a6:6c:8a:de:78:ef:f8:19:44:8d:db:e2:79:fd: d9:e8:40:6f:c2:6a:96:03:47:40:16:e3:0c:a0:8b:28:28:c3: 66:a3:c1:e4:e6:66:d6:9a:3a:a3:e9:29:9e:21:1e:1e:ca:43: b7:6a:56:b9:11:da:13:13:62:48:21:46:6e:ef:49:88:47:57: 6f:a8:2b:b1:72:5c:58:b7:7b:6c:14:92:cc:4f:06:fb:45:ee: 61:06:5b:fa:16:b8:bc:a5:92:f9:16:7a:0b:3f:e3:38:6a:b5: 7c:b4:52:12:b3:e8:4b:b3:4e:4a:c8:e2:6c:82:5f:fd:2f:7d: 2c:bc:42:86:82:7d:10:c6:24:01:6e:d4:c2:91:71:b9:f1:9a: c2:e0:6a:80:9a:5a:43:c4:12:a7:9d:20:a9:d8:0b:f0:0e:a6: 29:df:e5:38:b4:4f:15:52:54:01:fe:1a:a3:4a:2c:85:66:99: 3e:4b:bc:81:1c:97:1a:fe:a4:3d:2a:21:26:f5:96:c5:dd:13: 37:31:b9:14:63:46:1f:a8:a3:62:c4:db:64:88:85:26:02:62: 9e:24:84:a2 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUevDHOaukBVdtlUREo5P9fpL7ssMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzhBMTY5NUM3NjhEMDlCNkNBN0UxOTc4MzA4RTU0QkU4 NEZFQkFBRTAeFw0yNjA2MDkwNjExMjFaFw0yNzA2MDgwNjE2MjFaMDMxMTAvBgNV BAMTKEM4MzZDN0JEMkI4RjYxQTc0MTFERUJGODk5MjA0QjVEMERDQTlFQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2uUQpqF4nuC8IEkyrY7mHFltu 89YHzmS58lQm0eyY99hhsJEcY8qa7WyU9aaoawfOusL0ICCHMBEvfX/qabOJJx4P I9F1lOOHHW/1ZK6KTQR1BBWDbxRMVoZUYCwLTimWxgLTsof6/KafIwYY+50wDnHl OkZpok+CFyduB3G5G00rtaS/k2Ipvvi55qekEJwyaSYnEIwa1bQPNMy5235nqb7w FTshUH2iYiyP6h4M0VJIl+2/wQP9ZqEbRkfy2kaY6U8HlxMWosQSHJmYpq7Hn+MZ bHcLVD6tZ6qaM/j9ZgDAEWkzVgWVAXN7WIY6djW72kYI0TwGmM0riVYkgux1AgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUyDbHvSuPYadBHev4mSBLXQ3KnqEwHwYDVR0j BBgwFoAUeKFpXHaNCbbKfhl4MI5UvoT+uq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk1NTAwNzQ5NjIyNDc3MC8wLzc4QTE2OTVDNzY4RDA5QjZDQTdFMTk3ODMwOEU1 NEJFODRGRUJBQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzhBMTY5NUM3NjhEMDlCNkNBN0UxOTc4MzA4RTU0QkU4NEZFQkFBRS5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTExMDA5NTUwMDc0OTYyMjQ3NzAvMC9BUzE3NjIzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQA02BrMA0GCSqGSIb3DQEBCwUAA4IBAQANSOCWeF6PIAfcCF8npn+J16Yw gO0uEeC/AKqM2OYHzfnKiQEMGHZMpmyK3njv+BlEjdvief3Z6EBvwmqWA0dAFuMM oIsoKMNmo8Hk5mbWmjqj6SmeIR4eykO3ala5EdoTE2JIIUZu70mIR1dvqCuxclxY t3tsFJLMTwb7Re5hBlv6Fri8pZL5FnoLP+M4arV8tFISs+hLs05KyOJsgl/9L30s vEKGgn0QxiQBbtTCkXG58ZrC4GqAmlpDxBKnnSCp2AvwDqYp3+U4tE8VUlQB/hqj SiyFZpk+S7yBHJca/qQ9KiEm9ZbF3RM3MbkUY0YfqKNixNtkiIUmAmKeJISi -----END CERTIFICATE-----Generated at Sat Jun 13 12:42:17 2026 by rpki-client