$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1091910320722542594/0/34332e3235352e39362e302f32322d3234203d3e2034383337.roa File: 34332e3235352e39362e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: wbxa7dpgFToQaI0alfskq+blHdOpT/fn3yyu5WpNQf0= Subject key identifier: 32:40:96:B5:E7:B9:EC:69:61:65:D5:77:C8:DF:5C:10:44:A1:7E:28 Certificate issuer: /CN=2970708A1B73BC2BF2FF6CD7F397C536523226BE Certificate serial: 3112E43340F07E75FF31A493AD786CF20D48710C Authority key identifier: 29:70:70:8A:1B:73:BC:2B:F2:FF:6C:D7:F3:97:C5:36:52:32:26:BE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2970708A1B73BC2BF2FF6CD7F397C536523226BE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1091910320722542594/0/34332e3235352e39362e302f32322d3234203d3e2034383337.roa Signing time: Thu 11 Jun 2026 01:16:14 +0000 ROA not before: Thu 11 Jun 2026 01:11:14 +0000 ROA not after: Thu 10 Jun 2027 01:16:14 +0000 asID: 4837 IP address blocks: 43.255.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1091910320722542594/0/2970708A1B73BC2BF2FF6CD7F397C536523226BE.crl rsync://rpki-rps.cnnic.cn/repo/A1091910320722542594/0/2970708A1B73BC2BF2FF6CD7F397C536523226BE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2970708A1B73BC2BF2FF6CD7F397C536523226BE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 21:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:12:e4:33:40:f0:7e:75:ff:31:a4:93:ad:78:6c:f2:0d:48:71:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2970708A1B73BC2BF2FF6CD7F397C536523226BE Validity Not Before: Jun 11 01:11:14 2026 GMT Not After : Jun 10 01:16:14 2027 GMT Subject: CN=324096B5E7B9EC696165D577C8DF5C1044A17E28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8d:18:7c:d4:51:92:53:fd:93:03:06:77:40: 2f:7a:28:50:9d:b3:45:49:be:45:1e:4f:9a:6d:58: e9:71:bf:bc:24:b3:e7:f3:5d:c7:e3:85:39:18:44: ea:63:fa:67:be:e7:b5:14:70:c1:a6:39:da:e4:fd: 05:7a:05:be:f5:9c:4d:67:17:17:c9:f2:05:96:93: 2c:ab:97:10:24:99:93:1a:9b:8f:7f:94:f6:56:3f: 0d:b4:54:d7:01:db:b7:4f:fb:ce:55:a1:e2:fb:83: 41:8f:16:1d:25:55:47:97:d2:90:74:b6:d3:09:ce: 56:bf:90:96:47:c5:a4:47:8f:9b:35:9c:54:b7:19: 80:46:0c:45:1f:ab:54:d9:43:c0:55:af:79:a8:ab: 4c:61:7b:70:2a:37:95:e1:5e:d4:1b:97:93:a1:dd: 79:87:7c:48:78:95:4f:ad:ac:29:23:56:00:e6:78: be:dc:5b:ab:59:ce:3e:a2:58:b7:ea:71:3c:7b:0a: 84:a6:7d:33:ec:88:f2:cb:f3:14:9f:8f:4c:07:f1: 92:9d:04:1e:3a:e3:5a:cd:0a:3c:0e:e1:e0:cf:33: e6:95:2d:e0:c6:30:2e:80:6a:19:45:6e:b4:7c:fb: 92:1c:ef:d5:ad:c5:08:b2:31:c9:95:af:52:44:31: b5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:40:96:B5:E7:B9:EC:69:61:65:D5:77:C8:DF:5C:10:44:A1:7E:28 X509v3 Authority Key Identifier: keyid:29:70:70:8A:1B:73:BC:2B:F2:FF:6C:D7:F3:97:C5:36:52:32:26:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1091910320722542594/0/2970708A1B73BC2BF2FF6CD7F397C536523226BE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2970708A1B73BC2BF2FF6CD7F397C536523226BE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1091910320722542594/0/34332e3235352e39362e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.96.0/22 Signature Algorithm: sha256WithRSAEncryption 17:4e:0b:d3:f1:2a:75:48:d2:b9:b7:e1:92:f3:90:b9:31:cb: ef:f8:00:89:15:ad:dc:2c:e7:58:14:0d:17:e7:fa:0a:ba:b5: 85:52:42:c1:b9:4b:b6:d0:34:d7:f1:f9:7b:53:51:58:3a:12: 96:80:b2:a5:7e:41:13:9a:bd:d9:3b:ea:fc:b8:ff:58:78:3f: ca:79:95:0b:c6:ca:22:25:af:8d:76:b2:fe:a8:e0:c7:e2:cf: 52:25:e2:ca:36:af:e6:74:98:dd:a8:f9:55:62:34:05:56:03: 9a:89:5a:0c:7b:66:51:53:0f:6a:d2:1f:25:0c:75:ae:81:53: 58:45:4f:26:c6:be:32:d1:90:08:50:a9:15:80:ab:b1:e2:1d: b0:36:91:b1:77:b0:a6:86:39:ed:28:2c:3d:a0:c1:e7:fb:4c: 95:a6:3e:51:89:78:cf:39:80:ca:4e:58:c7:72:14:07:47:e0: 60:2f:6f:66:ac:a6:96:fb:39:5b:60:01:48:52:0b:9a:47:88: 44:77:75:12:66:55:14:95:3e:19:fe:63:ba:54:6c:bf:a5:1b: f0:c8:84:c8:d0:ff:5d:87:49:ce:7d:61:21:4d:ee:14:cc:26: a7:dc:69:97:b3:34:85:eb:96:62:00:7c:29:ea:86:d0:53:93: a4:9f:ed:9b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUMRLkM0DwfnX/MaSTrXhs8g1IcQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3MDcwOEExQjczQkMyQkYyRkY2Q0Q3RjM5N0M1MzY1 MjMyMjZCRTAeFw0yNjA2MTEwMTExMTRaFw0yNzA2MTAwMTE2MTRaMDMxMTAvBgNV BAMTKDMyNDA5NkI1RTdCOUVDNjk2MTY1RDU3N0M4REY1QzEwNDRBMTdFMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMjRh81FGSU/2TAwZ3QC96KFCd s0VJvkUeT5ptWOlxv7wks+fzXcfjhTkYROpj+me+57UUcMGmOdrk/QV6Bb71nE1n FxfJ8gWWkyyrlxAkmZMam49/lPZWPw20VNcB27dP+85VoeL7g0GPFh0lVUeX0pB0 ttMJzla/kJZHxaRHj5s1nFS3GYBGDEUfq1TZQ8BVr3moq0xhe3AqN5XhXtQbl5Oh 3XmHfEh4lU+trCkjVgDmeL7cW6tZzj6iWLfqcTx7CoSmfTPsiPLL8xSfj0wH8ZKd BB4641rNCjwO4eDPM+aVLeDGMC6AahlFbrR8+5Ic79WtxQiyMcmVr1JEMbVvAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUMkCWtee57GlhZdV3yN9cEEShfigwHwYDVR0j BBgwFoAUKXBwihtzvCvy/2zX85fFNlIyJr4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 MTkxMDMyMDcyMjU0MjU5NC8wLzI5NzA3MDhBMUI3M0JDMkJGMkZGNkNEN0YzOTdD NTM2NTIzMjI2QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjk3MDcwOEExQjczQkMyQkYyRkY2Q0Q3RjM5N0M1MzY1MjMyMjZCRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDkxOTEwMzIwNzIyNTQyNTk0LzAvMzQzMzJlMzIzNTM1 MmUzOTM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr/2AwDQYJKoZIhvcNAQELBQADggEBABdOC9PxKnVI0rm34ZLzkLkxy+/4AIkV rdws51gUDRfn+gq6tYVSQsG5S7bQNNfx+XtTUVg6EpaAsqV+QROavdk76vy4/1h4 P8p5lQvGyiIlr412sv6o4Mfiz1Il4so2r+Z0mN2o+VViNAVWA5qJWgx7ZlFTD2rS HyUMda6BU1hFTybGvjLRkAhQqRWAq7HiHbA2kbF3sKaGOe0oLD2gwef7TJWmPlGJ eM85gMpOWMdyFAdH4GAvb2asppb7OVtgAUhSC5pHiER3dRJmVRSVPhn+Y7pUbL+l G/DIhMjQ/12HSc59YSFN7hTMJqfcaZezNIXrlmIAfCnqhtBTk6Sf7Zs= -----END CERTIFICATE-----Generated at Fri Jun 12 06:44:33 2026 by rpki-client