$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e34382e302f32302d3230203d3e203539303337.roa File: 34332e3232382e34382e302f32302d3230203d3e203539303337.roa (raw, json) Hash identifier: CzpiszzKgANc2Lot7VkDYrpJHE4Ux4uH0np9rBUcL3c= Subject key identifier: 93:71:1B:59:E6:76:13:A3:D2:66:5E:22:59:16:49:17:BE:13:F6:28 Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 0B0F399AF14A4D035E87DD0AA1CF75D1849BE99D Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e34382e302f32302d3230203d3e203539303337.roa Signing time: Wed 27 May 2026 06:39:06 +0000 ROA not before: Wed 27 May 2026 06:34:06 +0000 ROA not after: Wed 26 May 2027 06:39:06 +0000 asID: 59037 IP address blocks: 43.228.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:0f:39:9a:f1:4a:4d:03:5e:87:dd:0a:a1:cf:75:d1:84:9b:e9:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:34:06 2026 GMT Not After : May 26 06:39:06 2027 GMT Subject: CN=93711B59E67613A3D2665E2259164917BE13F628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:81:e8:59:30:14:18:5f:8f:b9:ec:ee:6a:62: 8c:35:0b:ff:74:56:78:e5:49:91:19:f2:00:67:eb: af:4d:a2:5b:a3:51:8c:3e:9c:fd:6b:64:04:86:b4: db:01:18:99:37:84:d2:8c:06:cc:6c:49:bb:b1:45: fd:f4:0f:0f:10:5e:68:03:ce:ed:5d:bf:a2:e5:39: bc:0e:8d:6a:36:a6:39:10:d5:16:10:81:3c:70:0c: fa:40:e5:55:db:4a:aa:5f:33:2c:97:43:14:4e:0e: 2d:89:cb:6d:41:9b:ba:4d:14:bd:e9:88:56:37:f0: ce:05:eb:16:93:ca:83:17:8a:ed:95:a7:26:b3:3c: ff:f8:ff:1b:d1:68:a7:7c:0f:65:4d:ad:38:40:9a: 7e:c4:d8:61:3f:11:e5:b4:b6:05:5a:1a:6f:72:3e: 8e:eb:aa:d3:45:3d:49:e5:37:a0:f1:df:50:67:9c: b1:53:92:e3:60:f6:ec:68:75:97:cf:05:58:1d:71: 1a:9f:24:86:81:2f:29:d6:0a:15:ef:a8:ac:98:07: 11:84:8a:59:b1:9d:21:0a:e9:c5:1d:cb:7a:8a:c2: 5b:c1:59:3b:c4:27:37:48:f7:2f:af:17:97:4e:f4: 1b:9d:67:67:11:47:40:85:40:25:3b:9a:6d:be:1a: 09:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:71:1B:59:E6:76:13:A3:D2:66:5E:22:59:16:49:17:BE:13:F6:28 X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e34382e302f32302d3230203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.48.0/20 Signature Algorithm: sha256WithRSAEncryption 46:b3:24:2a:f7:ca:07:0a:99:c8:2c:33:72:dc:b9:9a:fd:22: b3:53:5d:9b:64:3d:69:6e:8e:8d:85:88:f1:47:e3:7d:d8:d4: 95:24:6e:09:a1:07:64:45:29:fe:7a:6b:6a:de:32:0d:32:11: 45:f2:bc:be:92:3c:0f:2c:32:fd:95:13:8b:db:03:5e:e8:cf: 47:59:3b:e9:7f:29:e4:b3:49:28:c2:bc:2e:8e:4c:03:2c:8b: 1b:59:89:aa:7a:86:f6:56:7c:24:65:4f:2c:6e:48:4d:13:81: 83:14:cd:72:2f:5b:4d:82:36:d9:17:2e:da:15:34:17:90:c1: 0f:a6:b4:aa:e7:e4:2c:0d:e3:78:94:2a:08:87:22:16:e7:d8: 6e:9d:42:f3:60:2e:86:9e:2d:04:93:3b:fe:0b:bc:3d:fa:2d: 8f:6d:ed:fe:82:c4:5e:70:f5:b3:da:d7:df:b0:58:3e:7e:b1: de:ee:7c:d6:f9:f3:71:05:dc:2c:24:e3:05:02:17:6c:b2:3a: 5d:0a:45:92:e9:68:d3:f3:b3:7a:97:0a:41:cb:d5:48:30:41: 07:d9:51:fd:4b:03:47:fc:5a:2d:80:bf:bc:11:cf:d0:cf:20: 52:d6:e6:d3:b5:d3:fa:5d:53:30:21:45:64:1e:a9:90:7a:d3: 2d:fa:47:ba -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUCw85mvFKTQNeh90Koc910YSb6Z0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjM0MDZaFw0yNzA1MjYwNjM5MDZaMDMxMTAvBgNV BAMTKDkzNzExQjU5RTY3NjEzQTNEMjY2NUUyMjU5MTY0OTE3QkUxM0Y2MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWgehZMBQYX4+57O5qYow1C/90 VnjlSZEZ8gBn669NolujUYw+nP1rZASGtNsBGJk3hNKMBsxsSbuxRf30Dw8QXmgD zu1dv6LlObwOjWo2pjkQ1RYQgTxwDPpA5VXbSqpfMyyXQxRODi2Jy21Bm7pNFL3p iFY38M4F6xaTyoMXiu2VpyazPP/4/xvRaKd8D2VNrThAmn7E2GE/EeW0tgVaGm9y Po7rqtNFPUnlN6Dx31BnnLFTkuNg9uxodZfPBVgdcRqfJIaBLynWChXvqKyYBxGE ilmxnSEK6cUdy3qKwlvBWTvEJzdI9y+vF5dO9BudZ2cRR0CFQCU7mm2+GgmdAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUk3EbWeZ2E6PSZl4iWRZJF74T9igwHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MzAxMTQ5MzczMzk5MDQxLzEvMzQzMzJlMzIzMjM4 MmUzNDM4MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzUzOTMwMzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBCvkMDANBgkqhkiG9w0BAQsFAAOCAQEARrMkKvfKBwqZyCwzcty5mv0is1Nd m2Q9aW6OjYWI8UfjfdjUlSRuCaEHZEUp/nprat4yDTIRRfK8vpI8Dywy/ZUTi9sD XujPR1k76X8p5LNJKMK8Lo5MAyyLG1mJqnqG9lZ8JGVPLG5ITROBgxTNci9bTYI2 2Rcu2hU0F5DBD6a0qufkLA3jeJQqCIciFufYbp1C82Auhp4tBJM7/gu8Pfotj23t /oLEXnD1s9rX37BYPn6x3u581vnzcQXcLCTjBQIXbLI6XQpFkulo0/OzepcKQcvV SDBBB9lR/UsDR/xaLYC/vBHP0M8gUtbm07XT+l1TMCFFZB6pkHrTLfpHug== -----END CERTIFICATE-----Generated at Fri May 29 23:49:19 2026 by rpki-client