$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e362e302f32342d3234203d3e203539303337.roa File: 34332e3232382e362e302f32342d3234203d3e203539303337.roa (raw, json) Hash identifier: nxwj9rXkme8ywNqPqilfOQRX08ia+zFuoJP/pXWEMu8= Subject key identifier: 06:4A:08:FC:88:2C:FD:6C:C1:7D:F0:1A:C6:17:CF:4E:28:5B:39:9B Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 32F319603FD66A33769ABEDA0AAB3003FEE9D272 Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e362e302f32342d3234203d3e203539303337.roa Signing time: Wed 27 May 2026 06:56:11 +0000 ROA not before: Wed 27 May 2026 06:51:11 +0000 ROA not after: Wed 26 May 2027 06:56:11 +0000 asID: 59037 IP address blocks: 43.228.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:f3:19:60:3f:d6:6a:33:76:9a:be:da:0a:ab:30:03:fe:e9:d2:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:51:11 2026 GMT Not After : May 26 06:56:11 2027 GMT Subject: CN=064A08FC882CFD6CC17DF01AC617CF4E285B399B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ac:68:19:6c:23:4d:81:76:48:01:5d:21:fb: 43:66:4b:26:89:28:27:b2:7f:4e:03:0f:d9:6d:d0: 4d:af:2a:59:cb:70:17:61:85:af:6d:51:7a:9b:15: ca:b0:1d:b6:c2:a1:29:1e:c8:d8:04:b2:98:5d:2b: a1:0a:8a:6d:01:96:14:82:6b:84:06:8c:0e:54:40: ae:e3:1e:08:cf:76:d9:5b:2d:30:44:8a:b4:21:19: 50:12:c5:b6:4d:bb:86:34:de:94:87:24:eb:67:49: c1:5c:fd:52:d0:ed:69:0c:40:9f:65:fb:dc:df:83: 9a:be:68:10:f0:36:ca:df:93:06:3b:0b:49:98:27: 62:ea:52:c6:41:7a:ad:63:7f:77:42:e0:27:c4:09: be:3c:76:05:eb:9f:b1:d0:27:58:9c:ab:4d:4e:55: 3d:e2:de:ea:83:6f:e7:ce:46:34:ef:a3:f5:51:72: ee:e5:46:9b:32:5e:e9:0a:bd:81:dd:03:ca:b1:16: a5:bc:ee:73:53:91:4f:c2:c2:17:7b:93:2c:e3:9d: 31:b8:43:1e:20:14:02:43:42:56:1f:dd:a7:8d:ec: 71:15:de:b8:7b:47:ef:95:18:ba:59:40:bd:0b:4e: 0a:52:fa:3b:db:e3:36:ee:10:ba:90:83:cc:61:37: 26:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:4A:08:FC:88:2C:FD:6C:C1:7D:F0:1A:C6:17:CF:4E:28:5B:39:9B X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e362e302f32342d3234203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.6.0/24 Signature Algorithm: sha256WithRSAEncryption 70:ed:52:3c:bc:b6:4c:16:e1:7d:db:dd:4a:82:62:b7:85:94: 1d:aa:1b:b4:f2:9b:1d:46:a3:6e:fd:02:0f:ac:50:2e:1a:37: e0:2b:06:de:70:90:81:65:0b:fc:6c:b2:da:1d:c8:e2:74:2b: 5b:81:3f:be:3c:b4:f1:46:26:36:7c:40:d4:f4:22:c3:c4:82: 78:be:3f:7c:97:13:f0:c5:5b:60:55:49:48:de:24:e7:a3:91: 91:23:c6:d3:d4:79:b2:3b:c3:0b:53:a5:14:77:cf:0d:77:a9: f3:dd:7b:73:8b:29:e8:b7:28:e4:ef:a4:7b:d2:9e:74:c7:2f: dd:87:86:cd:30:8d:2d:a1:df:2b:04:3c:da:ed:11:4d:5e:e4: 00:95:a1:ae:7c:23:80:61:1b:10:7e:ae:04:ee:50:b3:4a:89: 22:35:69:9f:91:a6:a3:9f:6c:a2:7b:7f:58:4a:ef:35:e0:7e: 90:03:2e:77:54:c0:1c:20:2b:a5:21:f6:d7:8a:78:70:e8:eb: c9:e3:6a:be:1c:61:c5:99:22:97:5d:37:63:4c:2c:73:a4:c3: 3f:33:42:c5:78:b9:23:eb:dd:e9:8a:87:00:db:2f:ca:12:2c: 60:b8:29:fc:aa:e1:b3:ae:48:54:db:5c:0e:d7:0c:d7:a1:0f: 92:96:11:c4 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUMvMZYD/WajN2mr7aCqswA/7p0nIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjUxMTFaFw0yNzA1MjYwNjU2MTFaMDMxMTAvBgNV BAMTKDA2NEEwOEZDODgyQ0ZENkNDMTdERjAxQUM2MTdDRjRFMjg1QjM5OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjrGgZbCNNgXZIAV0h+0NmSyaJ KCeyf04DD9lt0E2vKlnLcBdhha9tUXqbFcqwHbbCoSkeyNgEsphdK6EKim0BlhSC a4QGjA5UQK7jHgjPdtlbLTBEirQhGVASxbZNu4Y03pSHJOtnScFc/VLQ7WkMQJ9l +9zfg5q+aBDwNsrfkwY7C0mYJ2LqUsZBeq1jf3dC4CfECb48dgXrn7HQJ1icq01O VT3i3uqDb+fORjTvo/VRcu7lRpsyXukKvYHdA8qxFqW87nNTkU/Cwhd7kyzjnTG4 Qx4gFAJDQlYf3aeN7HEV3rh7R++VGLpZQL0LTgpS+jvb4zbuELqQg8xhNyZvAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUBkoI/Igs/WzBffAaxhfPTihbOZswHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MzAxMTQ5MzczMzk5MDQxLzEvMzQzMzJlMzIzMjM4 MmUzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzkzMDMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAr5AYwDQYJKoZIhvcNAQELBQADggEBAHDtUjy8tkwW4X3b3UqCYreFlB2qG7Ty mx1Go279Ag+sUC4aN+ArBt5wkIFlC/xsstodyOJ0K1uBP748tPFGJjZ8QNT0IsPE gni+P3yXE/DFW2BVSUjeJOejkZEjxtPUebI7wwtTpRR3zw13qfPde3OLKei3KOTv pHvSnnTHL92Hhs0wjS2h3ysEPNrtEU1e5ACVoa58I4BhGxB+rgTuULNKiSI1aZ+R pqOfbKJ7f1hK7zXgfpADLndUwBwgK6Uh9teKeHDo68njar4cYcWZIpddN2NMLHOk wz8zQsV4uSPr3emKhwDbL8oSLGC4Kfyq4bOuSFTbXA7XDNehD5KWEcQ= -----END CERTIFICATE-----Generated at Fri May 29 23:50:50 2026 by rpki-client