$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e3134312e302f32342d3234203d3e20313336393538.roa File: 34352e3131362e3134312e302f32342d3234203d3e20313336393538.roa (raw, json) Hash identifier: h5Sd5QfZ+jrcfzy19xnH1ge84VV2Tw5UMLJLOUaRH2U= Subject key identifier: 97:2E:3C:F8:1B:E3:90:8A:E9:48:C1:27:78:B9:9A:4E:B1:E5:0F:86 Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 066D144C7DEAA0D832F406313B7028BAE5681C9E Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e3134312e302f32342d3234203d3e20313336393538.roa Signing time: Thu 21 May 2026 08:16:47 +0000 ROA not before: Thu 21 May 2026 08:11:47 +0000 ROA not after: Thu 20 May 2027 08:16:47 +0000 asID: 136958 IP address blocks: 45.116.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 11:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:6d:14:4c:7d:ea:a0:d8:32:f4:06:31:3b:70:28:ba:e5:68:1c:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: May 21 08:11:47 2026 GMT Not After : May 20 08:16:47 2027 GMT Subject: CN=972E3CF81BE3908AE948C12778B99A4EB1E50F86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:9b:fe:f6:2e:74:4b:b4:35:81:be:59:19:1b: 82:a2:89:06:0a:6a:08:25:fd:12:7b:2a:73:a1:e0: 5d:d8:01:82:be:c7:a3:07:05:de:3f:d2:ce:be:37: ff:98:a8:cb:0d:11:09:33:84:ae:3e:b0:a8:4b:a1: 5d:42:cf:27:25:d8:b6:18:c8:9d:f3:85:76:a5:fb: 30:2c:30:10:5f:1f:f3:1f:50:a4:38:f7:ce:4c:5d: 7e:16:c5:7b:7e:43:12:b1:0d:40:79:57:6e:86:f0: 68:4a:9a:a2:80:50:eb:9d:b5:24:14:14:ed:a9:4b: 17:89:ab:1d:cb:ae:b8:f7:b2:56:3b:62:1d:5d:c9: 6c:d5:52:32:ef:e2:7b:5f:b7:ec:28:57:c0:0b:cb: 51:4f:4a:d8:0d:19:71:75:50:3a:3c:d3:3e:49:fe: 6e:83:d8:07:e2:0b:ce:08:9b:49:e0:04:95:91:6a: 74:07:24:6b:32:7e:b0:ba:1d:40:fa:ec:73:c9:92: d8:b6:ea:68:ff:b5:9f:2d:72:02:43:db:85:9e:3b: c1:39:90:1d:03:1e:b5:49:5b:53:77:e0:66:df:04: f2:79:43:1b:e8:a3:17:16:53:d6:78:29:a1:65:0a: 31:f1:99:ed:90:c6:a1:c8:f7:d7:16:be:f5:8a:98: dc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:2E:3C:F8:1B:E3:90:8A:E9:48:C1:27:78:B9:9A:4E:B1:E5:0F:86 X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e3134312e302f32342d3234203d3e20313336393538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.141.0/24 Signature Algorithm: sha256WithRSAEncryption 51:ee:e7:73:a1:6c:db:ca:25:d4:6f:19:c6:1c:fc:83:40:5e: f6:c9:c7:29:69:42:6b:84:c0:db:32:14:e9:c2:a9:da:f6:c4: 2a:79:0b:0e:e2:0e:c8:3d:f6:22:56:ed:b1:e7:81:df:1c:39: d5:89:65:66:43:bb:cd:6b:39:1c:68:82:4f:45:81:52:d0:08: a0:f3:c3:37:43:7e:d4:ec:5c:90:97:f6:24:ac:0e:e9:27:95: 99:49:a0:9a:67:c5:ee:19:90:05:59:e6:57:6a:5b:5a:f3:93: 09:ca:5f:ff:63:c1:89:39:92:78:f5:41:38:96:97:44:48:21: e4:0a:4b:69:d1:91:24:b8:c7:10:ad:7e:74:ba:8f:be:bc:cf: b4:96:3c:b9:5f:53:d5:a5:69:35:3b:5a:be:15:fc:c8:16:20: 55:f1:87:97:cf:e4:ab:58:7c:e1:94:1a:84:f2:ce:5f:7c:1c: 10:38:2e:69:ec:f8:e0:08:c3:6c:b5:37:fe:b3:6b:63:98:6c: c1:06:32:07:75:cc:86:db:a2:8c:54:4d:21:ad:20:f4:be:65: ff:30:eb:80:8c:38:9f:34:a6:c3:18:c0:75:74:63:a5:cf:62: 2d:e1:0a:37:2f:8f:23:9e:1e:b9:52:c6:d2:94:46:c1:49:5f: ee:4b:5f:f4 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUBm0UTH3qoNgy9AYxO3AouuVoHJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA1MjEwODExNDdaFw0yNzA1MjAwODE2NDdaMDMxMTAvBgNV BAMTKDk3MkUzQ0Y4MUJFMzkwOEFFOTQ4QzEyNzc4Qjk5QTRFQjFFNTBGODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTm/72LnRLtDWBvlkZG4KiiQYK aggl/RJ7KnOh4F3YAYK+x6MHBd4/0s6+N/+YqMsNEQkzhK4+sKhLoV1Czycl2LYY yJ3zhXal+zAsMBBfH/MfUKQ4985MXX4WxXt+QxKxDUB5V26G8GhKmqKAUOudtSQU FO2pSxeJqx3Lrrj3slY7Yh1dyWzVUjLv4ntft+woV8ALy1FPStgNGXF1UDo80z5J /m6D2AfiC84Im0ngBJWRanQHJGsyfrC6HUD67HPJkti26mj/tZ8tcgJD24WeO8E5 kB0DHrVJW1N34GbfBPJ5QxvooxcWU9Z4KaFlCjHxme2QxqHI99cWvvWKmNxVAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUly48+BvjkIrpSMEneLmaTrHlD4YwHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3MjAyNTkvMC8zNDM1MmUzMTMx MzYyZTMxMzQzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNjM5MzUzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAC10jTANBgkqhkiG9w0BAQsFAAOCAQEAUe7nc6Fs28ol1G8Zxhz8 g0Be9snHKWlCa4TA2zIU6cKp2vbEKnkLDuIOyD32IlbtseeB3xw51YllZkO7zWs5 HGiCT0WBUtAIoPPDN0N+1OxckJf2JKwO6SeVmUmgmmfF7hmQBVnmV2pbWvOTCcpf /2PBiTmSePVBOJaXREgh5ApLadGRJLjHEK1+dLqPvrzPtJY8uV9T1aVpNTtavhX8 yBYgVfGHl8/kq1h84ZQahPLOX3wcEDguaez44AjDbLU3/rNrY5hswQYyB3XMhtui jFRNIa0g9L5l/zDrgIw4nzSmwxjAdXRjpc9iLeEKNy+PI54euVLG0pRGwUlf7ktf 9A== -----END CERTIFICATE-----Generated at Fri May 29 22:57:54 2026 by rpki-client