$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065574560142786561/0/34322e3230342e302e302f31342d3234203d3e2037363431.roa File: 34322e3230342e302e302f31342d3234203d3e2037363431.roa (raw, json) Hash identifier: sERGtGjMTGA8b+P9yP5xeSwbw2FsBqoC6NnrH/U8+Lw= Subject key identifier: F6:F4:5E:38:51:9C:F8:C4:96:DB:9C:9C:C7:43:D4:A0:FD:DB:68:88 Certificate issuer: /CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Certificate serial: 01BC180C351769E53C044841397B984587A5836E Authority key identifier: CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/34322e3230342e302e302f31342d3234203d3e2037363431.roa Signing time: Wed 27 May 2026 07:34:56 +0000 ROA not before: Wed 27 May 2026 07:29:56 +0000 ROA not after: Wed 26 May 2027 07:34:56 +0000 asID: 7641 IP address blocks: 42.204.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:bc:18:0c:35:17:69:e5:3c:04:48:41:39:7b:98:45:87:a5:83:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7 Validity Not Before: May 27 07:29:56 2026 GMT Not After : May 26 07:34:56 2027 GMT Subject: CN=F6F45E38519CF8C496DB9C9CC743D4A0FDDB6888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1f:08:8b:6c:4c:55:c8:9e:b1:22:5b:19:8d: 3e:c0:4d:6a:bf:9b:dc:02:ff:a7:a8:0a:f3:e1:ae: 87:6b:47:78:72:36:f2:57:cc:07:4f:b2:09:28:28: 9e:3f:77:4c:58:7d:f5:69:72:74:7b:34:5b:aa:d9: 3e:ed:48:cb:8b:89:61:19:66:73:ff:22:8c:e3:ff: d0:e1:70:6a:eb:83:f5:b9:6e:cb:ef:84:6d:62:8e: 7c:01:30:81:3b:cb:56:28:31:88:59:aa:ff:20:64: 41:e5:c5:e4:50:12:f0:89:24:eb:73:c5:2d:6e:82: 03:53:49:0e:db:be:26:d9:a6:ff:b2:54:ba:82:84: 29:73:67:53:22:98:03:64:50:76:c8:7f:a3:fc:4f: 86:f0:d0:61:55:9b:d6:bf:fe:42:dd:6d:3d:33:9d: 62:83:44:b2:07:9c:74:27:32:5b:17:1c:06:ba:d0: a4:ab:0a:88:34:8f:4b:15:18:6e:ff:07:d7:84:1f: 97:30:da:fa:04:2e:38:f5:b7:13:c5:bb:b5:c6:44: d4:8f:e2:30:7e:79:5e:c4:14:06:9f:19:34:fa:e5: f7:b7:fd:84:ea:bd:61:b9:8e:9b:ff:51:92:b9:23: 69:9c:e9:0a:96:84:2c:d0:9e:2a:07:0a:7d:08:24: 73:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F4:5E:38:51:9C:F8:C4:96:DB:9C:9C:C7:43:D4:A0:FD:DB:68:88 X509v3 Authority Key Identifier: keyid:CD:D5:5F:3D:78:FC:75:75:3F:F9:C6:C8:26:A7:D8:1A:A5:EB:EE:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CDD55F3D78FC75753FF9C6C826A7D81AA5EBEEB7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065574560142786561/0/34322e3230342e302e302f31342d3234203d3e2037363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.204.0.0/14 Signature Algorithm: sha256WithRSAEncryption a5:f0:eb:a2:32:07:7c:ce:df:6e:88:00:1c:a4:36:95:f6:ae: e7:02:04:63:6b:a6:e8:21:38:81:74:da:63:de:0f:ea:0b:52: eb:7f:ad:4c:08:2f:c1:82:14:79:c4:0d:d3:ec:a0:7d:7a:77: ba:7d:0d:06:f9:97:5e:4d:c4:0e:58:cb:f4:93:66:ef:68:41: 6e:8a:45:88:d8:42:a7:1c:8f:e9:70:7c:2e:29:bb:e1:7f:33: b9:d0:67:54:27:99:9b:f8:3d:10:2a:ef:98:bd:3b:76:e9:57: 8c:b1:22:5e:86:fa:1e:bd:6d:ad:e1:77:75:6b:f4:e7:5d:21: 19:af:69:00:29:86:d1:d2:33:fd:75:99:bb:39:4b:47:db:82: 54:67:88:04:d6:ec:b4:33:44:b0:d9:79:e9:06:ca:c7:31:d4: aa:16:db:b4:a6:b9:f6:50:ea:01:88:78:84:14:b7:7d:b7:01: 07:01:b5:e5:54:ae:59:97:64:66:2d:96:41:be:85:93:0e:d1: 96:61:8a:9d:b0:6f:23:d7:6f:5a:5e:ab:3a:07:b1:d5:b9:3b: 2a:45:f3:a9:bb:eb:d9:63:44:a5:b6:7f:34:e1:2c:6b:f8:1e: 83:8c:c1:4f:22:06:0c:a1:00:26:1f:03:64:97:49:70:3a:4c: a6:79:43:35 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUAbwYDDUXaeU8BEhBOXuYRYelg24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFB NUVCRUVCNzAeFw0yNjA1MjcwNzI5NTZaFw0yNzA1MjYwNzM0NTZaMDMxMTAvBgNV BAMTKEY2RjQ1RTM4NTE5Q0Y4QzQ5NkRCOUM5Q0M3NDNENEEwRkREQjY4ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAHwiLbExVyJ6xIlsZjT7ATWq/ m9wC/6eoCvPhrodrR3hyNvJXzAdPsgkoKJ4/d0xYffVpcnR7NFuq2T7tSMuLiWEZ ZnP/Iozj/9DhcGrrg/W5bsvvhG1ijnwBMIE7y1YoMYhZqv8gZEHlxeRQEvCJJOtz xS1uggNTSQ7bvibZpv+yVLqChClzZ1MimANkUHbIf6P8T4bw0GFVm9a//kLdbT0z nWKDRLIHnHQnMlsXHAa60KSrCog0j0sVGG7/B9eEH5cw2voELjj1txPFu7XGRNSP 4jB+eV7EFAafGTT65fe3/YTqvWG5jpv/UZK5I2mc6QqWhCzQnioHCn0IJHPbAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQU9vReOFGc+MSW25ycx0PUoP3baIgwHwYDVR0j BBgwFoAUzdVfPXj8dXU/+cbIJqfYGqXr7rcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NDU2MDE0Mjc4NjU2MS8wL0NERDU1RjNENzhGQzc1NzUzRkY5QzZDODI2QTdE ODFBQTVFQkVFQjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0RENTVGM0Q3OEZDNzU3NTNGRjlDNkM4MjZBN0Q4MUFBNUVCRUVCNy5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc0NTYwMTQyNzg2NTYxLzAvMzQzMjJlMzIzMDM0 MmUzMDJlMzAyZjMxMzQyZDMyMzQyMDNkM2UyMDM3MzYzNDMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMC KswwDQYJKoZIhvcNAQELBQADggEBAKXw66IyB3zO326IABykNpX2rucCBGNrpugh OIF02mPeD+oLUut/rUwIL8GCFHnEDdPsoH16d7p9DQb5l15NxA5Yy/STZu9oQW6K RYjYQqccj+lwfC4pu+F/M7nQZ1QnmZv4PRAq75i9O3bpV4yxIl6G+h69ba3hd3Vr 9OddIRmvaQAphtHSM/11mbs5S0fbglRniATW7LQzRLDZeekGyscx1KoW27SmufZQ 6gGIeIQUt323AQcBteVUrlmXZGYtlkG+hZMO0ZZhip2wbyPXb1peqzoHsdW5OypF 86m769ljRKW2fzThLGv4HoOMwU8iBgyhACYfA2SXSXA6TKZ5QzU= -----END CERTIFICATE-----Generated at Sat May 30 00:45:40 2026 by rpki-client