$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e31362e302f32312d3231203d3e203539303337.roa File: 34332e3232382e31362e302f32312d3231203d3e203539303337.roa (raw, json) Hash identifier: rgr3Igl4YqRPWKPLPI5NqRfuCLNo98whE5uG5eCp4KY= Subject key identifier: D1:70:29:BA:12:E2:ED:D8:05:A6:03:28:9D:08:38:E5:FD:7D:E1:1F Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 225C7251CA279E8768925CD2325FFA7048140436 Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e31362e302f32312d3231203d3e203539303337.roa Signing time: Wed 27 May 2026 06:39:05 +0000 ROA not before: Wed 27 May 2026 06:34:05 +0000 ROA not after: Wed 26 May 2027 06:39:05 +0000 asID: 59037 IP address blocks: 43.228.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5c:72:51:ca:27:9e:87:68:92:5c:d2:32:5f:fa:70:48:14:04:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:34:05 2026 GMT Not After : May 26 06:39:05 2027 GMT Subject: CN=D17029BA12E2EDD805A603289D0838E5FD7DE11F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e7:08:32:0f:bb:8b:1a:25:48:b9:cd:df:c1: 45:33:ba:b8:a1:d1:88:f2:e6:9c:da:db:10:a1:14: f3:f4:6e:fd:bd:77:49:01:b7:0f:f0:f7:08:90:db: 7e:51:8b:da:0a:9d:dd:30:18:69:f7:2b:0c:92:6c: d4:fb:42:7f:29:c1:6b:3e:e2:79:a9:ba:48:77:bf: 4d:20:9b:0b:82:af:cf:5f:d0:f4:cb:e9:38:88:c8: bc:ba:a1:13:64:05:2e:7f:9b:df:fe:8a:73:41:46: 28:f3:1f:28:66:16:0f:3e:98:2e:42:86:74:0d:16: e6:96:55:c4:51:86:9a:d1:4f:c9:6d:18:ba:f2:e0: fa:ad:04:c9:10:96:99:a2:e0:2f:fd:75:cf:c4:01: 80:2a:a1:0a:9d:f5:15:c2:06:df:d9:ba:53:b9:b6: 6d:f2:26:bc:da:e8:ee:d6:f8:f6:a9:fa:75:00:43: de:e0:05:ff:78:38:dd:a7:ff:60:d3:40:75:b3:89: 12:3d:ad:06:a6:ef:5e:40:02:81:ae:5f:36:b1:5e: fc:79:0c:c3:12:a8:cb:65:6b:95:4a:bf:d0:c4:9c: 2e:56:16:10:a9:dd:95:16:48:a1:b8:6e:85:8c:fe: 58:fd:fc:5e:27:25:59:95:15:c9:46:94:b8:22:8f: 32:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:70:29:BA:12:E2:ED:D8:05:A6:03:28:9D:08:38:E5:FD:7D:E1:1F X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e31362e302f32312d3231203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.16.0/21 Signature Algorithm: sha256WithRSAEncryption af:6b:11:63:9f:be:5a:b2:c2:8c:4f:e3:ba:72:66:b0:58:a7: e9:96:43:3a:6e:87:44:f4:d7:11:24:af:1d:7a:e0:02:17:40: f7:02:f5:c3:02:f2:d9:39:e4:ff:fb:9e:03:7e:1f:43:79:73: 71:cf:d2:4e:4e:4e:46:dd:40:10:3a:b1:9f:85:a4:88:d4:49: 52:72:5a:31:43:39:a8:6a:fb:63:1a:80:98:40:a7:f7:b7:d4: cc:76:38:76:c3:79:20:88:fa:ff:27:92:37:fb:94:a7:ed:e0: c2:8d:9b:af:95:b6:97:f4:d5:a2:49:c0:9c:20:9e:e2:c0:7a: 59:44:2d:d6:01:06:c1:a8:47:fa:97:8b:f5:a2:f2:04:09:aa: 1b:8a:df:c0:be:a1:b8:84:b4:af:c6:c6:bf:c1:ac:22:9d:2e: b0:fc:15:bd:bb:67:a1:35:02:26:86:6c:2a:69:11:9b:1c:45: fa:f9:ff:b4:a5:26:c4:95:e0:d4:39:83:a2:71:08:8a:d6:58: a5:63:ec:21:ba:e1:36:36:cb:c7:0f:fb:7e:cb:3c:96:a5:21: bf:bf:77:ea:f3:0a:03:be:f9:ad:79:5d:71:3b:15:f7:99:86: 08:10:8f:23:b3:89:01:d2:40:84:fb:fd:9f:2f:5b:e7:de:b6: 11:59:cc:69 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUIlxyUconnodoklzSMl/6cEgUBDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjM0MDVaFw0yNzA1MjYwNjM5MDVaMDMxMTAvBgNV BAMTKEQxNzAyOUJBMTJFMkVERDgwNUE2MDMyODlEMDgzOEU1RkQ3REUxMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX5wgyD7uLGiVIuc3fwUUzurih 0Yjy5pza2xChFPP0bv29d0kBtw/w9wiQ235Ri9oKnd0wGGn3KwySbNT7Qn8pwWs+ 4nmpukh3v00gmwuCr89f0PTL6TiIyLy6oRNkBS5/m9/+inNBRijzHyhmFg8+mC5C hnQNFuaWVcRRhprRT8ltGLry4PqtBMkQlpmi4C/9dc/EAYAqoQqd9RXCBt/ZulO5 tm3yJrza6O7W+Pap+nUAQ97gBf94ON2n/2DTQHWziRI9rQam715AAoGuXzaxXvx5 DMMSqMtla5VKv9DEnC5WFhCp3ZUWSKG4boWM/lj9/F4nJVmVFclGlLgijzLZAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU0XApuhLi7dgFpgMonQg45f194R8wHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MzAxMTQ5MzczMzk5MDQxLzEvMzQzMzJlMzIzMjM4 MmUzMTM2MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzOTMwMzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyvkEDANBgkqhkiG9w0BAQsFAAOCAQEAr2sRY5++WrLCjE/junJmsFin6ZZD Om6HRPTXESSvHXrgAhdA9wL1wwLy2Tnk//ueA34fQ3lzcc/STk5ORt1AEDqxn4Wk iNRJUnJaMUM5qGr7YxqAmECn97fUzHY4dsN5IIj6/yeSN/uUp+3gwo2br5W2l/TV oknAnCCe4sB6WUQt1gEGwahH+peL9aLyBAmqG4rfwL6huIS0r8bGv8GsIp0usPwV vbtnoTUCJoZsKmkRmxxF+vn/tKUmxJXg1DmDonEIitZYpWPsIbrhNjbLxw/7fss8 lqUhv7936vMKA775rXldcTsV95mGCBCPI7OJAdJAhPv9ny9b5962EVnMaQ== -----END CERTIFICATE-----Generated at Fri May 29 23:52:16 2026 by rpki-client