$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203539303433.roa File: 34332e3235352e3232382e302f32322d3232203d3e203539303433.roa (raw, json) Hash identifier: p6a9V5OeyK0/7K91vnWGRfhAfM7IjPj37nbDG7sqFs8= Subject key identifier: 6F:CD:12:93:FD:FD:0F:31:19:A6:3A:E2:06:7E:E3:19:EC:FB:2D:68 Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 110116E985CA31F0D60810123A537CE57C177AC4 Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203539303433.roa Signing time: Thu 14 May 2026 03:59:24 +0000 ROA not before: Thu 14 May 2026 03:54:24 +0000 ROA not after: Thu 13 May 2027 03:59:24 +0000 asID: 59043 IP address blocks: 43.255.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 11:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:01:16:e9:85:ca:31:f0:d6:08:10:12:3a:53:7c:e5:7c:17:7a:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: May 14 03:54:24 2026 GMT Not After : May 13 03:59:24 2027 GMT Subject: CN=6FCD1293FDFD0F3119A63AE2067EE319ECFB2D68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a7:fd:b5:11:2d:e6:0c:95:95:19:70:5e:46: a2:74:0b:0a:26:45:de:17:96:37:82:b8:96:64:c8: ca:87:1e:f7:60:68:27:e2:1a:b8:38:18:48:a1:96: 5d:63:77:97:98:ff:81:40:87:4f:78:5c:3e:63:e3: 12:b5:b6:10:3a:b1:df:30:21:a1:06:8a:82:78:67: 8b:1a:0d:d2:a5:16:4a:84:5b:b7:36:0a:aa:08:7f: 41:65:42:d6:8b:51:f8:ba:6b:51:ee:01:5f:92:f0: 8e:2f:9c:f4:49:30:82:ba:cf:39:30:c8:53:ae:24: b1:28:ac:0f:7a:af:89:28:fc:a3:34:ee:b7:da:cf: 08:e3:48:fa:48:32:76:cd:80:b1:7b:4d:dc:6c:73: 02:9a:06:2a:f1:31:54:84:c2:4a:33:f9:6a:26:5b: 00:7a:79:4b:9b:41:33:97:f2:65:77:06:86:34:f7: b0:ff:0c:55:3e:3d:ea:59:c2:66:56:4e:8a:5b:fc: 61:a9:e6:06:e7:1c:9d:6d:ec:c5:94:c3:16:ce:61: 5f:e4:c3:47:9f:d1:ed:b9:8d:39:d6:23:ac:71:dd: ff:40:d5:11:c6:7d:66:c1:12:b0:6b:44:fe:56:15: ff:12:31:7e:0f:4f:2f:5a:06:c1:66:56:5e:7f:3b: b9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CD:12:93:FD:FD:0F:31:19:A6:3A:E2:06:7E:E3:19:EC:FB:2D:68 X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203539303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.228.0/22 Signature Algorithm: sha256WithRSAEncryption 28:c9:b2:69:ee:f7:4b:0c:57:1b:17:b6:b4:5d:a2:97:a4:4b: ac:aa:c6:22:7f:63:58:26:a2:9b:53:d8:9b:68:8f:72:62:9a: 3e:7e:8e:63:69:d6:74:34:d2:07:a4:78:0c:79:bd:79:cf:ff: 04:29:fd:0c:ae:74:48:bc:87:b1:69:e9:8e:9e:b4:ab:20:b7: 4b:e3:c2:d0:43:04:f9:a3:f8:58:21:8b:78:ad:66:eb:90:7c: bc:20:51:f7:c1:aa:15:a6:da:2f:3d:d7:c7:3c:24:f3:79:12: aa:9e:51:55:68:8c:19:46:f0:fe:9a:81:a9:de:ce:55:60:04: f7:45:ad:6f:61:3f:a5:0f:8e:8e:90:c3:38:cb:17:a4:72:76: 07:71:54:25:99:4f:db:2c:60:95:70:ab:bd:ed:3c:22:3a:ae: 80:cb:f5:6a:64:0f:8b:1a:20:fc:90:6e:61:86:12:69:d1:58: 41:19:64:7c:15:42:4e:e5:65:05:0a:b4:3d:4b:e9:20:d7:23: 98:cd:44:80:05:5f:f5:5e:4f:22:cd:66:f8:ef:33:50:93:f8: 9b:93:03:2b:89:fa:67:74:54:21:85:72:c0:1c:77:29:94:9c: f2:0d:0e:ab:2e:ff:8d:85:d7:e0:a6:04:1e:9d:43:36:d1:02: 4b:fd:a3:a0 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUEQEW6YXKMfDWCBASOlN85XwXesQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA1MTQwMzU0MjRaFw0yNzA1MTMwMzU5MjRaMDMxMTAvBgNV BAMTKDZGQ0QxMjkzRkRGRDBGMzExOUE2M0FFMjA2N0VFMzE5RUNGQjJENjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClp/21ES3mDJWVGXBeRqJ0Cwom Rd4XljeCuJZkyMqHHvdgaCfiGrg4GEihll1jd5eY/4FAh094XD5j4xK1thA6sd8w IaEGioJ4Z4saDdKlFkqEW7c2CqoIf0FlQtaLUfi6a1HuAV+S8I4vnPRJMIK6zzkw yFOuJLEorA96r4ko/KM07rfazwjjSPpIMnbNgLF7TdxscwKaBirxMVSEwkoz+Wom WwB6eUubQTOX8mV3BoY097D/DFU+PepZwmZWTopb/GGp5gbnHJ1t7MWUwxbOYV/k w0ef0e25jTnWI6xx3f9A1RHGfWbBErBrRP5WFf8SMX4PTy9aBsFmVl5/O7kFAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUb80Sk/39DzEZpjriBn7jGez7LWgwHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDcyMDI1OS8wLzM0MzMyZTMyMzUz NTJlMzIzMjM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzOTMwMzQzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv/5DANBgkqhkiG9w0BAQsFAAOCAQEAKMmyae73SwxXGxe2tF2il6RL rKrGIn9jWCaim1PYm2iPcmKaPn6OY2nWdDTSB6R4DHm9ec//BCn9DK50SLyHsWnp jp60qyC3S+PC0EME+aP4WCGLeK1m65B8vCBR98GqFabaLz3Xxzwk83kSqp5RVWiM GUbw/pqBqd7OVWAE90Wtb2E/pQ+OjpDDOMsXpHJ2B3FUJZlP2yxglXCrve08Ijqu gMv1amQPixog/JBuYYYSadFYQRlkfBVCTuVlBQq0PUvpINcjmM1EgAVf9V5PIs1m +O8zUJP4m5MDK4n6Z3RUIYVywBx3KZSc8g0Oqy7/jYXX4KYEHp1DNtECS/2joA== -----END CERTIFICATE-----Generated at Sat May 30 00:02:54 2026 by rpki-client