$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3230382e302f32312d3231203d3e203539303337.roa File: 34332e3232372e3230382e302f32312d3231203d3e203539303337.roa (raw, json) Hash identifier: bo1ZP0YzQU1rJ2s6NixhslV0CR6fL1oWv36KgCoRWTA= Subject key identifier: 06:07:D0:99:F9:7B:35:04:0F:0A:1D:2E:CA:B2:ED:A8:12:B8:59:94 Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 4751115B6B5F0E8FD410F69EACBF68DF2F141239 Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3230382e302f32312d3231203d3e203539303337.roa Signing time: Wed 27 May 2026 06:39:05 +0000 ROA not before: Wed 27 May 2026 06:34:05 +0000 ROA not after: Wed 26 May 2027 06:39:05 +0000 asID: 59037 IP address blocks: 43.227.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:51:11:5b:6b:5f:0e:8f:d4:10:f6:9e:ac:bf:68:df:2f:14:12:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:34:05 2026 GMT Not After : May 26 06:39:05 2027 GMT Subject: CN=0607D099F97B35040F0A1D2ECAB2EDA812B85994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a8:18:f8:bd:c4:71:5f:49:f2:e4:50:4a:cc: b2:74:0d:bf:6a:e6:2a:23:ff:58:f0:99:f4:b3:e8: 8a:0a:e5:b5:9b:73:f6:66:a1:6f:2d:42:12:28:c7: 28:32:dc:f9:a7:7c:bf:46:d1:4b:9b:27:04:20:7f: 55:2c:b6:c8:c2:27:06:77:b6:ba:5b:dd:af:4e:01: 1b:09:36:0e:eb:30:b7:93:89:c6:43:a2:54:ed:47: df:05:fc:89:d7:cd:86:ab:cf:3b:c6:8f:90:0b:8e: 51:9b:49:de:03:70:b7:64:df:ff:66:27:50:18:66: 10:90:a9:c5:24:0b:c3:db:1c:d7:dc:29:7e:33:ac: bf:ad:b7:d9:d9:d0:cf:9a:14:a1:b8:20:ee:50:b4: 66:e2:4f:d5:04:91:d6:29:a6:76:31:33:12:47:f5: f6:1b:90:f1:bc:d9:6d:e5:59:5c:d9:ce:e6:48:00: 5c:4a:14:fa:06:f8:a3:40:87:d3:7d:e6:1e:32:47: e4:16:45:23:6f:f6:79:ff:05:b9:ba:b1:18:58:56: 73:35:0e:dd:f5:4a:ee:49:c8:c7:2c:cd:c0:96:ba: f5:ca:8b:c7:a5:08:03:28:3a:1e:d1:d8:c5:f1:d8: 32:32:01:b3:18:90:5c:11:56:95:9c:7f:7b:1b:e0: c3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:07:D0:99:F9:7B:35:04:0F:0A:1D:2E:CA:B2:ED:A8:12:B8:59:94 X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3230382e302f32312d3231203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.208.0/21 Signature Algorithm: sha256WithRSAEncryption 56:97:67:c5:34:4f:36:81:f2:e0:39:0b:41:90:cf:e7:29:58: 9e:75:33:2d:dc:a4:92:0f:e8:85:0d:bc:15:05:77:bb:b5:56: db:7c:1b:3b:03:5b:bd:6a:3c:a3:d9:c6:20:65:f3:73:10:e6: f7:0b:c5:9f:83:13:58:97:d1:f4:a1:81:9c:06:e6:7b:1c:3b: 3f:ff:43:ec:73:41:51:93:83:1a:a9:05:8d:6b:1e:b4:26:74: b1:aa:8d:22:5c:86:7c:d7:7f:01:38:5c:74:17:7a:06:5c:09: 2a:97:26:df:2a:69:92:97:ef:7d:cf:39:92:f8:93:cd:1f:c2: 9c:56:bd:4d:80:5f:53:3a:db:19:bf:6f:69:11:b2:e5:03:5a: 0c:1f:5f:d4:db:c9:a2:9e:0c:f6:5a:9a:c9:48:11:56:13:73: 80:19:58:f7:5d:1a:80:bf:6e:66:df:cb:eb:3b:bf:40:3f:24: 1a:8d:bb:54:03:a4:24:17:17:cd:d5:a0:11:7e:9b:32:48:7e: 21:00:0a:2d:43:c2:06:08:28:b9:56:9e:5f:93:4f:40:6f:b7: 65:b6:eb:5c:5a:ee:21:51:03:0f:ec:b9:b1:6d:98:36:f5:b2: f8:58:7c:8f:ad:37:fa:83:f6:32:d6:85:1e:25:22:a2:0d:91: bb:f1:a6:27 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUR1ERW2tfDo/UEPaerL9o3y8UEjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjM0MDVaFw0yNzA1MjYwNjM5MDVaMDMxMTAvBgNV BAMTKDA2MDdEMDk5Rjk3QjM1MDQwRjBBMUQyRUNBQjJFREE4MTJCODU5OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6qBj4vcRxX0ny5FBKzLJ0Db9q 5ioj/1jwmfSz6IoK5bWbc/ZmoW8tQhIoxygy3PmnfL9G0UubJwQgf1UstsjCJwZ3 trpb3a9OARsJNg7rMLeTicZDolTtR98F/InXzYarzzvGj5ALjlGbSd4DcLdk3/9m J1AYZhCQqcUkC8PbHNfcKX4zrL+tt9nZ0M+aFKG4IO5QtGbiT9UEkdYppnYxMxJH 9fYbkPG82W3lWVzZzuZIAFxKFPoG+KNAh9N95h4yR+QWRSNv9nn/Bbm6sRhYVnM1 Dt31Su5JyMcszcCWuvXKi8elCAMoOh7R2MXx2DIyAbMYkFwRVpWcf3sb4MPvAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUBgfQmfl7NQQPCh0uyrLtqBK4WZQwHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMwMTE0OTM3MzM5OTA0MS8xLzM0MzMyZTMyMzIz NzJlMzIzMDM4MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzOTMwMzMzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyvj0DANBgkqhkiG9w0BAQsFAAOCAQEAVpdnxTRPNoHy4DkLQZDP5ylY nnUzLdykkg/ohQ28FQV3u7VW23wbOwNbvWo8o9nGIGXzcxDm9wvFn4MTWJfR9KGB nAbmexw7P/9D7HNBUZODGqkFjWsetCZ0saqNIlyGfNd/AThcdBd6BlwJKpcm3ypp kpfvfc85kviTzR/CnFa9TYBfUzrbGb9vaRGy5QNaDB9f1NvJop4M9lqayUgRVhNz gBlY910agL9uZt/L6zu/QD8kGo27VAOkJBcXzdWgEX6bMkh+IQAKLUPCBggouVae X5NPQG+3ZbbrXFruIVEDD+y5sW2YNvWy+Fh8j603+oP2MtaFHiUiog2Ru/GmJw== -----END CERTIFICATE-----Generated at Fri May 29 22:56:40 2026 by rpki-client