$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094819527910227971/0/AS23724.roa File: AS23724.roa (raw, json) Hash identifier: Y3qEhB43CJZrmhjZnPqwmuJr8CCGz2Q8BFki4mMZ6IQ= Subject key identifier: 1A:C2:7D:EA:AB:B6:5A:18:F4:FE:1C:B9:97:BC:67:75:E4:75:69:B1 Certificate issuer: /CN=379467D9F9D2DBFEFEB8095755004EDD42CE00E6 Certificate serial: 5073844BAE3662E9859749A1B1F6CDE54F0570E4 Authority key identifier: 37:94:67:D9:F9:D2:DB:FE:FE:B8:09:57:55:00:4E:DD:42:CE:00:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/AS23724.roa Signing time: Mon 18 May 2026 02:07:07 +0000 ROA not before: Mon 18 May 2026 02:02:07 +0000 ROA not after: Mon 17 May 2027 02:07:07 +0000 asID: 23724 IP address blocks: 45.254.64.0/20 maxlen: 24 45.254.64.0/22 maxlen: 24 45.254.68.0/22 maxlen: 24 45.254.72.0/22 maxlen: 24 45.254.76.0/22 maxlen: 24 103.74.24.0/22 maxlen: 24 103.74.28.0/22 maxlen: 24 103.74.48.0/22 maxlen: 24 2407:b380::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.crl rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 11:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:73:84:4b:ae:36:62:e9:85:97:49:a1:b1:f6:cd:e5:4f:05:70:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=379467D9F9D2DBFEFEB8095755004EDD42CE00E6 Validity Not Before: May 18 02:02:07 2026 GMT Not After : May 17 02:07:07 2027 GMT Subject: CN=1AC27DEAABB65A18F4FE1CB997BC6775E47569B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:27:bb:be:61:e1:c7:a8:50:3b:03:6c:04:a4: 68:f0:79:e9:f2:65:8e:ac:45:5b:66:46:f2:d3:25: 98:0c:ed:9e:34:aa:a6:d0:7f:14:5c:18:c3:f2:98: f2:ab:0c:16:d4:1c:99:cd:68:af:0a:d8:8d:25:d2: ec:ae:7d:8b:a9:b3:b8:4b:f9:9b:e0:cd:b9:89:c0: 29:c1:90:18:fa:4a:77:39:ac:a9:1a:f3:d4:73:2e: b8:58:4f:26:ef:8d:e3:2d:8d:2b:6b:bf:2d:57:b4: 1c:9b:ce:ef:20:53:06:e3:c7:5c:80:5d:9f:7d:b0: d3:bb:50:56:51:0e:cc:d9:ad:61:2e:1d:bf:96:df: 7a:85:bf:2c:ef:03:c6:6f:01:46:db:27:61:1f:9f: 9b:95:7c:ca:d8:63:3d:23:1f:72:ed:aa:00:7e:dc: a0:65:ad:d4:94:64:34:4c:28:fa:15:ef:5e:f9:c8: bd:cf:d3:18:f9:be:13:f6:4e:a2:fa:88:da:2d:51: 84:81:a4:5d:79:0f:9e:47:9d:6e:a6:17:36:bd:b8: ed:ff:e0:65:9c:3e:58:f7:ee:72:e5:d8:f2:63:2a: c4:1c:7e:df:a8:c3:aa:d5:9c:be:f2:61:1a:41:47: b8:16:fd:78:17:ca:02:49:d3:7e:1e:28:d4:ec:76: 3c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C2:7D:EA:AB:B6:5A:18:F4:FE:1C:B9:97:BC:67:75:E4:75:69:B1 X509v3 Authority Key Identifier: keyid:37:94:67:D9:F9:D2:DB:FE:FE:B8:09:57:55:00:4E:DD:42:CE:00:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/AS23724.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.254.64.0/20 103.74.24.0/21 103.74.48.0/22 IPv6: 2407:b380::/32 Signature Algorithm: sha256WithRSAEncryption 8a:35:8b:d5:ba:5a:e5:24:94:ff:b7:f3:b8:2a:82:9d:46:82: cc:f0:1d:90:63:62:d1:0c:f3:f7:d5:f9:2f:fc:9b:15:71:01: 90:74:18:d2:62:3e:51:cb:f9:04:49:fe:dd:67:91:d3:48:67: 01:3f:5b:25:4c:65:8e:82:ef:13:e3:f3:e7:a6:94:f2:03:45: 9b:ba:86:5c:72:38:8c:54:bb:0e:5e:2d:91:82:19:7c:0e:88: b4:42:82:80:23:1b:41:4d:2e:22:1c:f6:bb:58:fb:7e:4c:55: 35:fe:91:74:5e:8b:1b:ac:b3:5a:6c:ac:93:90:e3:c1:c5:1a: 89:9e:ea:e5:a2:2b:ab:05:8c:47:3b:db:3a:8f:71:3c:e7:c7: 9f:2e:29:30:e9:70:e2:ad:67:f2:15:2a:9d:38:79:a5:6b:4d: ba:a4:83:1e:9a:d9:f1:e5:12:56:0d:5d:93:cb:66:3c:e1:03: 2c:27:3d:92:1c:74:ac:8c:76:66:c0:53:63:ca:fe:1e:d5:20: 5f:f4:b3:00:37:e8:0a:8d:2b:f0:fd:ab:6e:5c:44:34:5d:29: 1e:97:3b:09:c8:e8:07:c8:a5:75:62:6c:ba:0c:50:29:e2:40: be:61:55:c0:41:62:e9:26:33:f5:b1:38:2a:f7:c0:70:a3:8f: 85:2b:b2:15 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUUHOES642YumFl0mhsfbN5U8FcOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzc5NDY3RDlGOUQyREJGRUZFQjgwOTU3NTUwMDRFREQ0 MkNFMDBFNjAeFw0yNjA1MTgwMjAyMDdaFw0yNzA1MTcwMjA3MDdaMDMxMTAvBgNV BAMTKDFBQzI3REVBQUJCNjVBMThGNEZFMUNCOTk3QkM2Nzc1RTQ3NTY5QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmJ7u+YeHHqFA7A2wEpGjweeny ZY6sRVtmRvLTJZgM7Z40qqbQfxRcGMPymPKrDBbUHJnNaK8K2I0l0uyufYups7hL +ZvgzbmJwCnBkBj6Snc5rKka89RzLrhYTybvjeMtjStrvy1XtBybzu8gUwbjx1yA XZ99sNO7UFZRDszZrWEuHb+W33qFvyzvA8ZvAUbbJ2Efn5uVfMrYYz0jH3LtqgB+ 3KBlrdSUZDRMKPoV7175yL3P0xj5vhP2TqL6iNotUYSBpF15D55HnW6mFza9uO3/ 4GWcPlj37nLl2PJjKsQcft+ow6rVnL7yYRpBR7gW/XgXygJJ034eKNTsdjwfAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQUGsJ96qu2Whj0/hy5l7xndeR1abEwHwYDVR0j BBgwFoAUN5Rn2fnS2/7+uAlXVQBO3ULOAOYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxOTUyNzkxMDIyNzk3MS8wLzM3OTQ2N0Q5RjlEMkRCRkVGRUI4MDk1NzU1MDA0 RURENDJDRTAwRTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzc5NDY3RDlGOUQyREJGRUZFQjgwOTU3NTUwMDRFREQ0MkNFMDBFNi5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTQ4MTk1Mjc5MTAyMjc5NzEvMC9BUzIzNzI0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIA ATASAwQELf5AAwQDZ0oYAwQCZ0owMA0EAgACMAcDBQAkB7OAMA0GCSqGSIb3DQEB CwUAA4IBAQCKNYvVulrlJJT/t/O4KoKdRoLM8B2QY2LRDPP31fkv/JsVcQGQdBjS Yj5Ry/kESf7dZ5HTSGcBP1slTGWOgu8T4/PnppTyA0WbuoZccjiMVLsOXi2Rghl8 Doi0QoKAIxtBTS4iHPa7WPt+TFU1/pF0XosbrLNabKyTkOPBxRqJnurloiurBYxH O9s6j3E858efLikw6XDirWfyFSqdOHmla026pIMemtnx5RJWDV2Ty2Y84QMsJz2S HHSsjHZmwFNjyv4e1SBf9LMAN+gKjSvw/atuXEQ0XSkelzsJyOgHyKV1Ymy6DFAp 4kC+YVXAQWLpJjP1sTgq98Bwo4+FK7IV -----END CERTIFICATE-----Generated at Fri May 29 23:49:09 2026 by rpki-client