$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3231362e302f32312d3231203d3e203539303337.roa File: 34332e3232372e3231362e302f32312d3231203d3e203539303337.roa (raw, json) Hash identifier: eOdDSpohvIQaRUhNCKd/AludGOi6DkSOuO5M4MbkIhU= Subject key identifier: 2B:65:BE:09:AA:24:E9:1E:23:1F:CD:DD:94:D3:14:84:B1:69:5B:2A Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 1DBF6BE8420BD6B61A2C86EE0D086AAEE7278896 Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3231362e302f32312d3231203d3e203539303337.roa Signing time: Wed 27 May 2026 06:39:05 +0000 ROA not before: Wed 27 May 2026 06:34:05 +0000 ROA not after: Wed 26 May 2027 06:39:05 +0000 asID: 59037 IP address blocks: 43.227.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:bf:6b:e8:42:0b:d6:b6:1a:2c:86:ee:0d:08:6a:ae:e7:27:88:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:34:05 2026 GMT Not After : May 26 06:39:05 2027 GMT Subject: CN=2B65BE09AA24E91E231FCDDD94D31484B1695B2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a6:a5:e2:07:41:6e:e0:4b:16:9b:60:10:02: 11:ec:7c:88:48:9f:8a:41:d1:f5:d3:0c:46:dd:4f: 75:59:6a:45:02:17:52:89:5d:d6:f9:d7:9c:cd:21: a2:e5:a3:fd:cb:f0:d1:38:08:17:74:93:c8:56:0c: a2:fd:34:a7:4b:61:d0:13:20:73:bb:ce:c4:bc:a0: 2b:9d:90:aa:af:dd:54:b1:fe:2c:e4:25:57:46:74: 34:46:76:87:b1:cc:5e:63:b4:0e:b3:ac:53:9e:4c: fe:b3:d8:06:7e:c3:2e:68:88:50:5a:e4:46:13:27: c8:b7:a0:3a:19:9e:13:6c:2d:0b:79:d4:1a:9b:8d: 5d:f9:64:2d:ab:4f:13:8c:3c:4a:97:bf:e5:31:37: 7d:df:1f:fa:13:00:53:a9:8f:8b:31:d8:3f:0b:62: 53:da:b4:85:23:ff:84:98:1d:81:1f:cf:1d:71:d3: e9:99:14:7e:e0:d4:8b:20:13:06:85:cb:f8:d6:e2: 5b:a3:54:68:74:07:1f:34:d2:c9:2e:2f:42:41:91: 2b:3c:06:6b:88:18:07:3b:b7:c9:31:c4:a3:5a:fb: 10:d4:d3:67:09:27:18:19:e1:16:21:bc:81:52:65: 9c:33:e3:24:ff:9a:ec:59:19:25:1d:4d:5c:bd:37: cd:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:65:BE:09:AA:24:E9:1E:23:1F:CD:DD:94:D3:14:84:B1:69:5B:2A X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232372e3231362e302f32312d3231203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.216.0/21 Signature Algorithm: sha256WithRSAEncryption b1:a2:6e:57:df:52:d6:72:a0:32:b8:0b:d0:f6:64:26:72:d9: dd:4b:80:5c:b9:24:1d:2b:81:05:71:33:cf:82:e2:de:1d:54: 64:e3:cc:e9:b0:93:49:12:77:fb:43:23:2a:15:dd:d4:61:be: 83:59:c1:0c:a2:9a:ac:96:ca:6e:c8:c8:52:ef:68:25:79:96: 0d:10:9e:2d:ff:b4:1f:34:78:0f:b0:57:18:69:ec:81:a4:d3: ae:bf:1b:af:0d:1e:0d:50:17:be:61:c7:b9:b1:f5:2a:86:db: b0:ce:66:c4:75:73:16:f2:6e:14:d8:fd:1e:d3:12:59:bb:f2: 45:c4:d7:2a:8d:34:c3:f0:e5:3e:61:2e:39:cf:56:fa:a2:5a: 3a:de:e8:31:49:41:92:fd:b2:9a:4b:42:67:52:c9:4d:38:ac: 0a:12:6a:e1:5e:5e:d8:fd:69:6e:05:99:e0:f0:c2:c3:e9:a4: f4:de:c2:09:e0:f0:15:e3:3d:f3:a5:df:40:be:cd:89:13:26: 28:68:e7:d3:f1:c7:6f:71:84:0d:8c:05:48:71:2e:95:73:3d: c4:70:b2:d0:07:9c:6b:52:12:83:f9:c7:d9:3c:9a:cc:39:00: 21:88:32:60:bc:2b:18:63:c8:f0:18:5d:3f:55:86:d1:26:80: a1:3a:9b:eb -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUHb9r6EIL1rYaLIbuDQhqrucniJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjM0MDVaFw0yNzA1MjYwNjM5MDVaMDMxMTAvBgNV BAMTKDJCNjVCRTA5QUEyNEU5MUUyMzFGQ0RERDk0RDMxNDg0QjE2OTVCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwpqXiB0Fu4EsWm2AQAhHsfIhI n4pB0fXTDEbdT3VZakUCF1KJXdb515zNIaLlo/3L8NE4CBd0k8hWDKL9NKdLYdAT IHO7zsS8oCudkKqv3VSx/izkJVdGdDRGdoexzF5jtA6zrFOeTP6z2AZ+wy5oiFBa 5EYTJ8i3oDoZnhNsLQt51BqbjV35ZC2rTxOMPEqXv+UxN33fH/oTAFOpj4sx2D8L YlPatIUj/4SYHYEfzx1x0+mZFH7g1IsgEwaFy/jW4lujVGh0Bx800skuL0JBkSs8 BmuIGAc7t8kxxKNa+xDU02cJJxgZ4RYhvIFSZZwz4yT/muxZGSUdTVy9N81jAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUK2W+Caok6R4jH83dlNMUhLFpWyowHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjMwMTE0OTM3MzM5OTA0MS8xLzM0MzMyZTMyMzIz NzJlMzIzMTM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzOTMwMzMzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyvj2DANBgkqhkiG9w0BAQsFAAOCAQEAsaJuV99S1nKgMrgL0PZkJnLZ 3UuAXLkkHSuBBXEzz4Li3h1UZOPM6bCTSRJ3+0MjKhXd1GG+g1nBDKKarJbKbsjI Uu9oJXmWDRCeLf+0HzR4D7BXGGnsgaTTrr8brw0eDVAXvmHHubH1KobbsM5mxHVz FvJuFNj9HtMSWbvyRcTXKo00w/DlPmEuOc9W+qJaOt7oMUlBkv2ymktCZ1LJTTis ChJq4V5e2P1pbgWZ4PDCw+mk9N7CCeDwFeM986XfQL7NiRMmKGjn0/HHb3GEDYwF SHEulXM9xHCy0Aeca1ISg/nH2TyazDkAIYgyYLwrGGPI8BhdP1WG0SaAoTqb6w== -----END CERTIFICATE-----Generated at Fri May 29 22:56:27 2026 by rpki-client