$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e342e302f32332d3233203d3e203539303337.roa File: 34332e3232382e342e302f32332d3233203d3e203539303337.roa (raw, json) Hash identifier: kzKiIsvxw3cDPYwwGMRS7ndjvujNgDjAr1FO8WGOxg0= Subject key identifier: AC:8A:88:AD:BF:8E:F9:4C:86:F9:72:7C:2B:44:7D:9D:C2:07:2B:7A Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 7F30E75C16CA900785D499249D88FB1FC4464F95 Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e342e302f32332d3233203d3e203539303337.roa Signing time: Wed 27 May 2026 06:56:11 +0000 ROA not before: Wed 27 May 2026 06:51:11 +0000 ROA not after: Wed 26 May 2027 06:56:11 +0000 asID: 59037 IP address blocks: 43.228.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:30:e7:5c:16:ca:90:07:85:d4:99:24:9d:88:fb:1f:c4:46:4f:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:51:11 2026 GMT Not After : May 26 06:56:11 2027 GMT Subject: CN=AC8A88ADBF8EF94C86F9727C2B447D9DC2072B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:13:e7:22:37:28:6c:f8:57:fc:e0:71:6c:6c: 18:f3:cd:e8:90:db:6f:65:20:cb:b2:bf:db:71:90: 8b:4c:7c:7f:cd:93:f7:0b:38:4b:ba:21:72:20:aa: 66:87:1d:bb:2b:c4:17:bb:f5:30:69:2f:dd:89:24: de:ce:e0:8a:94:40:eb:4c:65:fa:b1:1e:31:cd:5b: 77:94:db:4a:ac:e7:e6:5e:66:53:aa:5b:3b:d3:4d: fe:fb:b4:b2:60:55:d0:30:b2:71:f2:ee:9d:93:15: f7:e9:4b:95:fa:0d:76:c3:97:27:6c:42:5a:37:4f: d6:24:7b:3d:ba:26:86:b8:ab:90:66:57:4e:04:78: a3:8c:14:c1:a7:75:6d:86:55:10:77:49:82:bd:a0: 52:f6:3d:30:27:6c:ea:6e:22:57:85:be:51:d8:41: b9:d4:18:44:52:80:7d:be:82:3a:05:00:05:87:a5: 9f:8a:41:81:f2:d5:90:52:f7:fd:d2:55:d2:28:1f: a8:91:7f:84:3a:8b:33:59:f6:76:57:bb:f0:2b:f6: 74:55:65:be:3c:ce:db:d5:99:17:77:a7:39:77:69: 5b:79:2b:c2:21:05:e3:50:50:96:de:5d:18:4b:73: ce:56:26:42:84:13:7a:3a:3b:2f:30:d0:73:f6:b9: 00:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:8A:88:AD:BF:8E:F9:4C:86:F9:72:7C:2B:44:7D:9D:C2:07:2B:7A X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e342e302f32332d3233203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.4.0/23 Signature Algorithm: sha256WithRSAEncryption 40:aa:3c:3a:49:af:37:e2:0a:f0:8d:d9:65:e4:f7:99:13:ee: e4:0b:d5:9c:3a:32:bb:16:a7:2b:23:41:30:78:b8:f8:59:5a: ae:6c:03:65:7b:55:bf:49:d8:3c:ea:15:a8:81:3e:3b:67:ab: ef:52:f3:a8:0f:0d:6f:7e:9b:03:60:e7:d7:1d:82:db:81:e2: a0:8a:66:3c:56:6d:9d:e0:a0:18:63:e7:ed:14:72:dc:8b:d6: 26:8b:69:97:5b:c1:5a:c2:c7:1a:ec:e2:56:79:eb:50:d7:43: 32:49:d2:56:0d:99:3a:f7:cb:4e:cb:1f:4f:3a:2e:d0:a1:d7: 08:33:1a:c1:3d:14:9e:00:09:5c:a8:e6:98:b7:0f:1b:57:1f: d2:d2:ae:3d:9e:b2:76:05:27:70:82:53:db:3d:d7:b4:6c:e8: 52:12:1a:14:70:a7:81:8a:60:79:0d:08:ee:6b:67:49:d2:19: 7a:09:12:fb:29:fd:37:96:9f:73:28:01:e1:0c:a8:71:9d:c8: 34:ad:3b:c1:28:c8:5a:34:d4:0b:85:d2:bd:70:14:4b:29:e6: d5:f9:08:b8:90:2c:a4:79:96:30:3a:64:d0:a5:8c:d0:e4:7e: 0b:d3:fc:eb:0b:5f:cb:84:95:4f:52:72:00:60:38:b7:3f:63: bd:fd:01:39 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUfzDnXBbKkAeF1JkknYj7H8RGT5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjUxMTFaFw0yNzA1MjYwNjU2MTFaMDMxMTAvBgNV BAMTKEFDOEE4OEFEQkY4RUY5NEM4NkY5NzI3QzJCNDQ3RDlEQzIwNzJCN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4E+ciNyhs+Ff84HFsbBjzzeiQ 229lIMuyv9txkItMfH/Nk/cLOEu6IXIgqmaHHbsrxBe79TBpL92JJN7O4IqUQOtM ZfqxHjHNW3eU20qs5+ZeZlOqWzvTTf77tLJgVdAwsnHy7p2TFffpS5X6DXbDlyds Qlo3T9Ykez26Joa4q5BmV04EeKOMFMGndW2GVRB3SYK9oFL2PTAnbOpuIleFvlHY QbnUGERSgH2+gjoFAAWHpZ+KQYHy1ZBS9/3SVdIoH6iRf4Q6izNZ9nZXu/Ar9nRV Zb48ztvVmRd3pzl3aVt5K8IhBeNQUJbeXRhLc85WJkKEE3o6Oy8w0HP2uQDPAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUrIqIrb+O+UyG+XJ8K0R9ncIHK3owHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MzAxMTQ5MzczMzk5MDQxLzEvMzQzMzJlMzIzMjM4 MmUzNDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDM1MzkzMDMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEr5AQwDQYJKoZIhvcNAQELBQADggEBAECqPDpJrzfiCvCN2WXk95kT7uQL1Zw6 MrsWpysjQTB4uPhZWq5sA2V7Vb9J2DzqFaiBPjtnq+9S86gPDW9+mwNg59cdgtuB 4qCKZjxWbZ3goBhj5+0UctyL1iaLaZdbwVrCxxrs4lZ561DXQzJJ0lYNmTr3y07L H086LtCh1wgzGsE9FJ4ACVyo5pi3DxtXH9LSrj2esnYFJ3CCU9s917Rs6FISGhRw p4GKYHkNCO5rZ0nSGXoJEvsp/TeWn3MoAeEMqHGdyDStO8EoyFo01AuF0r1wFEsp 5tX5CLiQLKR5ljA6ZNCljNDkfgvT/OsLX8uElU9ScgBgOLc/Y739ATk= -----END CERTIFICATE-----Generated at Fri May 29 22:55:55 2026 by rpki-client