$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3135362e302f32342d3234203d3e203539303337.roa File: 34332e3232372e3135362e302f32342d3234203d3e203539303337.roa (raw, json) Hash identifier: f8k2uHJkxlDOHk6U2wcq6Y9MtTN6Ns1VpmNNEm8tdvI= Subject key identifier: 36:86:E2:43:F9:F5:65:AC:F2:BC:12:86:E2:9D:10:62:3F:45:BC:CD Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 14078290C1237929A3A1677BF11B0AD24790850C Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3135362e302f32342d3234203d3e203539303337.roa Signing time: Wed 27 May 2026 06:56:11 +0000 ROA not before: Wed 27 May 2026 06:51:11 +0000 ROA not after: Wed 26 May 2027 06:56:11 +0000 asID: 59037 IP address blocks: 43.227.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:07:82:90:c1:23:79:29:a3:a1:67:7b:f1:1b:0a:d2:47:90:85:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:51:11 2026 GMT Not After : May 26 06:56:11 2027 GMT Subject: CN=3686E243F9F565ACF2BC1286E29D10623F45BCCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:1f:8f:8a:b9:68:17:71:c0:9c:40:fc:41: 26:58:2f:34:c3:5d:5f:ca:46:fb:3d:ec:38:e4:33: 54:b1:11:4f:7d:e9:6f:15:72:53:6a:9f:75:67:71: c2:db:c6:18:97:9d:10:40:37:e1:4b:52:0c:4c:1c: e8:68:f4:e9:68:80:e7:6b:0b:65:19:2c:d4:5b:98: 09:5d:e1:0e:bd:41:e5:3a:f4:46:77:53:42:86:93: 8d:55:f6:b6:37:f9:56:45:34:fc:df:ca:ad:42:64: f1:47:24:58:f8:4a:8b:6b:99:32:0b:77:4e:77:66: 1c:de:46:15:af:ef:07:3c:31:c0:7d:88:5e:c1:38: 97:00:34:a3:d8:51:70:d0:50:3e:db:7f:2f:e8:fa: 6f:3d:cc:72:82:3d:21:6e:24:97:69:d6:13:44:a8: 0d:77:89:7d:e2:ae:70:1c:86:a3:7e:e3:17:47:c2: fc:ec:7d:5b:8d:ec:26:6c:dc:07:7b:98:9e:27:bc: 46:17:28:8d:e4:c3:b8:ab:ce:03:ac:ba:b8:53:05: ec:da:0a:0e:0a:ff:86:8a:84:4c:c4:bc:f6:a0:6e: d3:fc:68:ee:ca:cb:43:3e:a7:01:48:4d:1b:4a:1e: 68:42:0e:e8:eb:25:ca:3f:25:5f:5f:27:dc:03:95: f0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:86:E2:43:F9:F5:65:AC:F2:BC:12:86:E2:9D:10:62:3F:45:BC:CD X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3135362e302f32342d3234203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.156.0/24 Signature Algorithm: sha256WithRSAEncryption cc:bb:72:57:32:35:0e:b5:27:04:c2:44:8e:a2:40:90:a9:2e: 21:74:e1:42:5f:4a:8a:fe:e6:00:32:7d:a1:dd:36:5c:db:9d: af:7d:c3:17:54:14:49:8a:04:64:34:f8:74:c7:3e:8b:8f:7f: 05:41:cd:ab:e5:39:1d:50:38:58:85:5e:27:08:8d:39:21:30: 97:bc:2c:f6:34:ea:4b:01:ea:2e:56:f2:40:af:5b:cf:52:cd: 6a:64:b3:28:29:4c:05:9d:f4:bd:e7:88:01:34:ba:6d:c3:32: a2:37:a9:91:c1:40:63:0d:96:6a:36:0f:25:e1:23:83:b3:f0: e1:d9:b5:fc:78:21:86:2c:00:61:6d:5d:34:8f:9e:11:dc:6c: 50:f2:32:38:6e:39:f6:51:dc:42:cb:45:b9:8f:a7:d4:55:a5: 66:21:6c:95:4e:16:c5:76:35:c4:17:5e:8f:6e:a8:07:ed:4d: c3:e6:5e:ff:dc:fc:c7:1b:be:0a:e3:e4:e7:66:fe:8d:bd:79: 73:1a:15:2c:1d:ab:30:ac:ed:15:0f:a1:1c:81:24:7b:1a:2f: 98:d6:3f:aa:71:5a:46:30:d7:90:a9:f1:16:32:72:c8:d7:20: 7a:e6:a4:48:05:fd:e0:1c:b8:9b:c3:50:f2:8d:bc:22:a3:3f: d8:ab:3d:d3 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUFAeCkMEjeSmjoWd78RsK0keQhQwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjUxMTFaFw0yNzA1MjYwNjU2MTFaMDMxMTAvBgNV BAMTKDM2ODZFMjQzRjlGNTY1QUNGMkJDMTI4NkUyOUQxMDYyM0Y0NUJDQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC19x+PirloF3HAnED8QSZYLzTD XV/KRvs97DjkM1SxEU996W8VclNqn3VnccLbxhiXnRBAN+FLUgxMHOho9OlogOdr C2UZLNRbmAld4Q69QeU69EZ3U0KGk41V9rY3+VZFNPzfyq1CZPFHJFj4SotrmTIL d053ZhzeRhWv7wc8McB9iF7BOJcANKPYUXDQUD7bfy/o+m89zHKCPSFuJJdp1hNE qA13iX3irnAchqN+4xdHwvzsfVuN7CZs3Ad7mJ4nvEYXKI3kw7irzgOsurhTBeza Cg4K/4aKhEzEvPagbtP8aO7Ky0M+pwFITRtKHmhCDujrJco/JV9fJ9wDlfC7AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUNobiQ/n1ZazyvBKG4p0QYj9FvM0wHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMwMTE0OTM3MzM5OTA0MS8xLzM0MzMyZTMyMzIz NzJlMzEzNTM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzMzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvjnDANBgkqhkiG9w0BAQsFAAOCAQEAzLtyVzI1DrUnBMJEjqJAkKku IXThQl9Kiv7mADJ9od02XNudr33DF1QUSYoEZDT4dMc+i49/BUHNq+U5HVA4WIVe JwiNOSEwl7ws9jTqSwHqLlbyQK9bz1LNamSzKClMBZ30veeIATS6bcMyojepkcFA Yw2WajYPJeEjg7Pw4dm1/HghhiwAYW1dNI+eEdxsUPIyOG459lHcQstFuY+n1FWl ZiFslU4WxXY1xBdej26oB+1Nw+Ze/9z8xxu+CuPk52b+jb15cxoVLB2rMKztFQ+h HIEkexovmNY/qnFaRjDXkKnxFjJyyNcgeuakSAX94By4m8NQ8o28IqM/2Ks90w== -----END CERTIFICATE-----Generated at Fri May 29 23:52:44 2026 by rpki-client