$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32342d3234203d3e203536303430.roa File: 34332e3235352e3232382e302f32342d3234203d3e203536303430.roa (raw, json) Hash identifier: 8+CdKNYt/M1GtwwibddiI3v64DObVekQVtlTm7XUOmE= Subject key identifier: D0:89:67:2F:1D:AE:FD:F0:4D:A5:9F:3E:77:2E:47:EE:C6:80:A4:3E Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 242FF42913DB54907952CC230906B00DE3FF52AB Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32342d3234203d3e203536303430.roa Signing time: Thu 14 May 2026 03:59:24 +0000 ROA not before: Thu 14 May 2026 03:54:24 +0000 ROA not after: Thu 13 May 2027 03:59:24 +0000 asID: 56040 IP address blocks: 43.255.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 11:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:2f:f4:29:13:db:54:90:79:52:cc:23:09:06:b0:0d:e3:ff:52:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: May 14 03:54:24 2026 GMT Not After : May 13 03:59:24 2027 GMT Subject: CN=D089672F1DAEFDF04DA59F3E772E47EEC680A43E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9e:c5:a1:3d:9d:be:3e:0e:13:61:6c:78:e4: af:9d:40:06:d3:9b:36:02:c6:aa:50:bc:cd:0e:35: ec:87:fc:64:27:5a:19:e9:4e:1e:9e:31:e7:f2:f4: a7:2a:28:f4:93:2a:1a:d6:1b:6f:75:92:a2:43:bd: b0:36:73:47:51:5b:f1:94:67:b1:ab:c0:8d:46:b1: 8e:9b:49:5c:16:75:66:09:2f:21:d7:7f:69:1f:63: 09:f0:e1:93:47:f4:f0:f5:30:45:ff:61:67:81:3f: b6:3d:04:2d:3d:29:b3:4c:6e:3a:fb:e9:35:ed:ae: c2:e9:2c:ff:f0:a0:96:67:91:36:59:ee:88:52:ec: d2:30:b4:3b:e2:56:3a:76:ce:62:b8:ee:cf:9f:6b: 14:64:11:1f:5b:de:2c:25:4c:5b:e9:d9:fd:86:cb: 9a:39:fd:3f:26:98:62:85:74:26:59:cf:19:5c:11: 8c:ff:42:70:da:aa:87:fd:7a:6e:ac:83:30:ce:30: 95:dc:ca:86:80:ac:23:97:1e:62:2c:94:17:8d:f1: 21:a4:18:b1:57:1a:36:60:c9:8e:a3:4e:b9:48:3d: ec:e1:80:51:4d:51:2c:17:1e:a1:5d:91:2e:2a:a7: 5e:ee:8a:14:ae:44:c6:fa:94:48:64:cd:f2:6e:a8: e9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:89:67:2F:1D:AE:FD:F0:4D:A5:9F:3E:77:2E:47:EE:C6:80:A4:3E X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32342d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.228.0/24 Signature Algorithm: sha256WithRSAEncryption 56:eb:c4:b7:17:d0:96:1f:13:05:6a:01:07:5c:78:65:8e:7d: 92:3a:ff:50:0c:f7:f9:fb:3a:bd:e4:d1:44:53:00:ce:a3:c0: b7:51:7a:39:81:af:cf:32:90:85:54:8d:83:ab:f7:01:dc:a0: 77:9b:b9:88:36:0d:87:00:36:3f:6c:45:de:cd:e2:00:31:78: c1:09:b7:ea:73:97:bb:d0:83:35:5e:77:93:95:e8:86:0b:24: da:31:b5:99:f0:2d:18:9b:bb:6d:a3:78:26:7c:66:f7:11:54: f8:12:88:0e:ee:b2:42:b1:53:91:2f:c1:cc:97:88:bb:ae:e3: ae:be:64:b2:4f:c5:03:6b:9d:ec:b7:21:48:29:75:88:ff:3b: 80:3d:77:64:11:9b:af:20:96:da:d7:3b:6a:9a:b3:5a:68:da: 75:58:20:14:8e:98:b3:c8:69:35:d7:0b:eb:fd:4a:b7:53:95: 6a:6f:9f:a8:cc:b0:43:c8:93:79:71:57:1d:11:7b:81:66:f9: 67:80:24:66:a2:03:dc:ef:9d:b7:0b:8a:24:09:d7:37:85:cd: 81:98:92:8c:3d:3c:78:76:f6:e1:fd:6c:00:7a:4c:bd:33:9a: de:ea:a8:48:04:59:29:16:b5:54:ed:c5:2b:92:7e:cb:19:b4: f8:cb:e2:ac -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJC/0KRPbVJB5UswjCQawDeP/UqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA1MTQwMzU0MjRaFw0yNzA1MTMwMzU5MjRaMDMxMTAvBgNV BAMTKEQwODk2NzJGMURBRUZERjA0REE1OUYzRTc3MkU0N0VFQzY4MEE0M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQnsWhPZ2+Pg4TYWx45K+dQAbT mzYCxqpQvM0ONeyH/GQnWhnpTh6eMefy9KcqKPSTKhrWG291kqJDvbA2c0dRW/GU Z7GrwI1GsY6bSVwWdWYJLyHXf2kfYwnw4ZNH9PD1MEX/YWeBP7Y9BC09KbNMbjr7 6TXtrsLpLP/woJZnkTZZ7ohS7NIwtDviVjp2zmK47s+faxRkER9b3iwlTFvp2f2G y5o5/T8mmGKFdCZZzxlcEYz/QnDaqof9em6sgzDOMJXcyoaArCOXHmIslBeN8SGk GLFXGjZgyY6jTrlIPezhgFFNUSwXHqFdkS4qp17uihSuRMb6lEhkzfJuqOlxAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU0IlnLx2u/fBNpZ8+dy5H7saApD4wHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDcyMDI1OS8wLzM0MzMyZTMyMzUz NTJlMzIzMjM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACv/5DANBgkqhkiG9w0BAQsFAAOCAQEAVuvEtxfQlh8TBWoBB1x4ZY59 kjr/UAz3+fs6veTRRFMAzqPAt1F6OYGvzzKQhVSNg6v3Adygd5u5iDYNhwA2P2xF 3s3iADF4wQm36nOXu9CDNV53k5Xohgsk2jG1mfAtGJu7baN4Jnxm9xFU+BKIDu6y QrFTkS/BzJeIu67jrr5ksk/FA2ud7LchSCl1iP87gD13ZBGbryCW2tc7apqzWmja dVggFI6Ys8hpNdcL6/1Kt1OVam+fqMywQ8iTeXFXHRF7gWb5Z4AkZqID3O+dtwuK JAnXN4XNgZiSjD08eHb24f1sAHpMvTOa3uqoSARZKRa1VO3FK5J+yxm0+MvirA== -----END CERTIFICATE-----Generated at Sat May 30 00:03:15 2026 by rpki-client