$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3137362e302f32312d3231203d3e203539303337.roa File: 34332e3232372e3137362e302f32312d3231203d3e203539303337.roa (raw, json) Hash identifier: gGI6VfwnsWiX6Xt4eelEH9yUymsgRx5+rq1tGILXWuw= Subject key identifier: D5:6B:85:F1:EF:7D:6E:D5:49:DB:43:37:4B:0E:4F:C2:D2:1F:4B:38 Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 64CC96DDDC906A8DBECD92B06E029CA06E6F64F3 Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3137362e302f32312d3231203d3e203539303337.roa Signing time: Wed 27 May 2026 06:39:05 +0000 ROA not before: Wed 27 May 2026 06:34:05 +0000 ROA not after: Wed 26 May 2027 06:39:05 +0000 asID: 59037 IP address blocks: 43.227.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:cc:96:dd:dc:90:6a:8d:be:cd:92:b0:6e:02:9c:a0:6e:6f:64:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:34:05 2026 GMT Not After : May 26 06:39:05 2027 GMT Subject: CN=D56B85F1EF7D6ED549DB43374B0E4FC2D21F4B38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:54:4f:16:ca:f4:13:29:e3:27:53:e4:a0:28: 0c:37:ec:d5:5e:f0:36:48:7c:cd:ef:46:66:a5:2b: 10:c9:74:83:7d:75:55:3c:61:1c:80:9f:83:aa:e7: 0e:01:0c:4f:11:03:33:f4:bf:06:e2:a9:1f:52:c1: 48:96:78:06:c5:42:10:32:a4:62:ff:5c:a2:90:30: ff:24:87:7b:94:7c:01:29:3c:cb:f3:4b:84:cc:e3: 16:3b:be:eb:fb:56:d0:37:22:ee:fe:ea:ce:03:57: ab:3a:ce:65:03:fc:11:2e:50:15:28:47:6b:50:88: 95:09:52:d6:31:4e:72:00:e1:ee:bd:9a:35:6a:a3: 20:cc:14:8f:f6:5a:eb:5a:7e:59:b7:3e:52:66:97: 2a:6c:e7:19:bb:b4:24:44:3b:9e:32:a4:3c:57:f0: bf:41:15:86:4e:27:5a:0d:23:ad:ea:97:39:b2:45: 99:3f:3e:06:53:7d:b9:3d:77:a5:00:44:a5:c2:5f: 69:38:a0:82:5f:b6:98:bd:ca:07:2b:8f:55:eb:d5: f6:cf:42:42:54:42:b4:77:ac:a3:34:70:39:83:f6: 05:62:52:32:6f:f0:dd:36:2d:8d:b9:25:29:a0:3a: 19:06:d8:d6:9a:e7:ad:20:7e:89:70:29:ee:f8:4b: ac:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:6B:85:F1:EF:7D:6E:D5:49:DB:43:37:4B:0E:4F:C2:D2:1F:4B:38 X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3137362e302f32312d3231203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.176.0/21 Signature Algorithm: sha256WithRSAEncryption 51:d6:72:fe:00:d2:58:a3:04:c5:9a:3a:3a:71:52:68:4c:e8: 4d:af:b2:1f:65:03:d1:23:78:88:e4:89:8b:e4:45:c0:9c:5a: 7b:02:12:8b:24:e7:55:51:46:5a:9d:d6:60:53:26:16:cc:de: e4:21:2d:86:a6:fd:f9:03:cf:cb:cf:1c:2b:2f:70:a7:5c:af: 07:38:24:04:26:f8:44:fe:8f:b1:21:0f:3d:e8:9b:12:96:66: 5a:79:e6:94:04:c3:25:d5:00:65:92:2c:7f:56:d9:af:dd:7a: 16:e1:ce:73:41:ba:08:a3:ea:05:d9:13:a9:01:79:c7:b4:f4: 80:dc:17:3f:1c:8e:f2:02:75:2f:17:3b:c8:ba:d9:11:39:54: 75:6b:fe:c1:ef:75:3d:1b:50:91:33:14:2b:87:e0:74:ff:ab: 6a:aa:bd:fd:55:ff:a3:ce:c2:0c:13:7f:ca:1a:0a:a6:bf:d8: f1:d7:06:27:3e:84:f7:eb:42:e8:20:e5:59:cb:b8:c7:60:61: db:2f:b2:ff:c8:a1:3f:db:80:94:5e:68:10:37:17:e4:21:cb: da:91:06:dc:57:e0:aa:12:af:0d:9a:48:31:28:de:ac:3f:d8: 67:cc:f0:63:64:f4:21:c8:46:a6:f5:21:e2:45:81:be:7e:65: c5:73:c6:e6 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUZMyW3dyQao2+zZKwbgKcoG5vZPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjM0MDVaFw0yNzA1MjYwNjM5MDVaMDMxMTAvBgNV BAMTKEQ1NkI4NUYxRUY3RDZFRDU0OURCNDMzNzRCMEU0RkMyRDIxRjRCMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMVE8WyvQTKeMnU+SgKAw37NVe 8DZIfM3vRmalKxDJdIN9dVU8YRyAn4Oq5w4BDE8RAzP0vwbiqR9SwUiWeAbFQhAy pGL/XKKQMP8kh3uUfAEpPMvzS4TM4xY7vuv7VtA3Iu7+6s4DV6s6zmUD/BEuUBUo R2tQiJUJUtYxTnIA4e69mjVqoyDMFI/2Wutaflm3PlJmlyps5xm7tCREO54ypDxX 8L9BFYZOJ1oNI63qlzmyRZk/PgZTfbk9d6UARKXCX2k4oIJftpi9ygcrj1Xr1fbP QkJUQrR3rKM0cDmD9gViUjJv8N02LY25JSmgOhkG2Naa560gfolwKe74S6xtAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU1WuF8e99btVJ20M3Sw5PwtIfSzgwHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMwMTE0OTM3MzM5OTA0MS8xLzM0MzMyZTMyMzIz NzJlMzEzNzM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzOTMwMzMzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyvjsDANBgkqhkiG9w0BAQsFAAOCAQEAUdZy/gDSWKMExZo6OnFSaEzo Ta+yH2UD0SN4iOSJi+RFwJxaewISiyTnVVFGWp3WYFMmFsze5CEthqb9+QPPy88c Ky9wp1yvBzgkBCb4RP6PsSEPPeibEpZmWnnmlATDJdUAZZIsf1bZr916FuHOc0G6 CKPqBdkTqQF5x7T0gNwXPxyO8gJ1Lxc7yLrZETlUdWv+we91PRtQkTMUK4fgdP+r aqq9/VX/o87CDBN/yhoKpr/Y8dcGJz6E9+tC6CDlWcu4x2Bh2y+y/8ihP9uAlF5o EDcX5CHL2pEG3FfgqhKvDZpIMSjerD/YZ8zwY2T0IchGpvUh4kWBvn5lxXPG5g== -----END CERTIFICATE-----Generated at Fri May 29 22:56:14 2026 by rpki-client