$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e382e302f32312d3231203d3e203539303337.roa File: 34332e3232382e382e302f32312d3231203d3e203539303337.roa (raw, json) Hash identifier: PHN/5/xP2k7xFIXMNFI3gkfrjNxg+7yOL+A3kfav0kw= Subject key identifier: 5B:AF:03:E4:88:B2:0F:F9:B5:93:E3:5B:F4:3A:66:73:EC:98:A3:DB Certificate issuer: /CN=5ACF72DA32919503D15480832BA57EB063AE113B Certificate serial: 27AA3057C5D8A25B5289D800E775849024078521 Authority key identifier: 5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e382e302f32312d3231203d3e203539303337.roa Signing time: Wed 27 May 2026 06:39:06 +0000 ROA not before: Wed 27 May 2026 06:34:06 +0000 ROA not after: Wed 26 May 2027 06:39:06 +0000 asID: 59037 IP address blocks: 43.228.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:aa:30:57:c5:d8:a2:5b:52:89:d8:00:e7:75:84:90:24:07:85:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ACF72DA32919503D15480832BA57EB063AE113B Validity Not Before: May 27 06:34:06 2026 GMT Not After : May 26 06:39:06 2027 GMT Subject: CN=5BAF03E488B20FF9B593E35BF43A6673EC98A3DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e0:4d:34:6b:78:88:2a:cb:0a:11:4c:fb:c9: 7b:84:76:7d:8d:d5:26:aa:26:ad:8f:18:be:47:20: b5:df:41:22:53:2e:0b:da:96:6c:74:f3:6e:88:ce: 50:4b:17:bd:12:3d:a9:8a:b8:98:ce:e8:cf:cd:29: 03:aa:91:a9:06:a1:7e:f9:b1:12:4e:40:6f:41:c9: 2f:ad:77:3e:ad:e7:cf:24:b7:2c:1f:21:f8:9a:35: d1:48:3f:a0:58:61:17:c7:c8:dc:40:80:15:72:9b: 57:f7:43:bd:6c:a0:35:13:ae:2c:9b:36:98:18:65: f9:1c:6c:22:6c:28:40:6c:83:ab:d6:11:be:e3:f9: 43:fe:33:32:7c:89:ce:32:8c:a7:7c:02:1a:a3:56: 34:1d:c5:c6:4a:b2:c6:fb:5b:2a:65:22:a0:63:6f: b7:fc:b3:a7:68:1a:e5:87:dd:80:5c:91:f1:05:27: 64:8c:02:86:7b:c1:60:34:88:2c:02:a8:4b:eb:17: 71:c4:b7:e3:66:e3:6f:04:e5:b8:c3:1f:37:fc:1b: 5a:3c:4a:18:40:66:96:09:97:c0:b6:2c:55:3a:fc: 24:bb:92:09:21:92:45:32:18:c0:4d:a5:b9:7b:b7: ee:8a:30:7c:33:cd:c0:2d:58:27:90:90:34:2b:e3: 8b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:AF:03:E4:88:B2:0F:F9:B5:93:E3:5B:F4:3A:66:73:EC:98:A3:DB X509v3 Authority Key Identifier: keyid:5A:CF:72:DA:32:91:95:03:D1:54:80:83:2B:A5:7E:B0:63:AE:11:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/5ACF72DA32919503D15480832BA57EB063AE113B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5ACF72DA32919503D15480832BA57EB063AE113B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096301149373399041/1/34332e3232382e382e302f32312d3231203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.8.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:66:89:42:1b:ab:63:16:18:5a:ac:1d:05:50:61:58:88:14: 10:ad:75:9e:2b:fa:8a:c8:7d:19:73:7c:61:b9:2f:3f:3e:70: 9f:69:83:1e:a7:04:38:39:b2:dd:7b:84:c4:38:65:98:01:a4: 84:93:e1:2b:df:24:e3:26:94:77:5f:c0:0f:1e:22:cd:88:8d: 7d:bd:b9:59:35:c4:c4:a2:11:e0:54:37:02:47:47:4a:b3:4e: 8e:35:9c:7f:4d:0e:92:90:8d:a7:85:6f:64:1b:c6:17:59:4f: e8:65:01:aa:5f:cd:c2:5e:56:96:75:48:94:df:30:5d:88:c3: 43:8a:d0:7c:56:d2:2d:91:49:ab:08:bc:cd:95:55:d5:38:63: 1c:e1:ff:2b:61:f9:1b:a7:91:77:a6:ee:8e:20:e0:13:55:60: 4f:e2:7f:17:78:de:1b:97:e8:39:83:68:97:b9:a5:d1:5f:30: 60:2f:eb:ba:11:45:8d:ce:c3:23:0f:cd:5e:eb:3f:f4:6c:43: d9:d5:90:e6:ae:95:6f:7e:b4:87:aa:4e:d0:6d:7d:f4:54:5f: 1e:17:6d:96:3c:8c:1f:c4:fc:ba:d9:22:78:f1:e2:f1:78:89: db:6b:a9:f5:aa:94:49:d4:22:7c:81:e5:1c:0b:fd:3c:67:ce: 5c:5f:ea:54 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUJ6owV8XYoltSidgA53WEkCQHhSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2 M0FFMTEzQjAeFw0yNjA1MjcwNjM0MDZaFw0yNzA1MjYwNjM5MDZaMDMxMTAvBgNV BAMTKDVCQUYwM0U0ODhCMjBGRjlCNTkzRTM1QkY0M0E2NjczRUM5OEEzREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ4E00a3iIKssKEUz7yXuEdn2N 1SaqJq2PGL5HILXfQSJTLgvalmx0826IzlBLF70SPamKuJjO6M/NKQOqkakGoX75 sRJOQG9ByS+tdz6t588ktywfIfiaNdFIP6BYYRfHyNxAgBVym1f3Q71soDUTriyb NpgYZfkcbCJsKEBsg6vWEb7j+UP+MzJ8ic4yjKd8AhqjVjQdxcZKssb7WyplIqBj b7f8s6doGuWH3YBckfEFJ2SMAoZ7wWA0iCwCqEvrF3HEt+Nm428E5bjDHzf8G1o8 ShhAZpYJl8C2LFU6/CS7kgkhkkUyGMBNpbl7t+6KMHwzzcAtWCeQkDQr44uzAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUW68D5IiyD/m1k+Nb9Dpmc+yYo9swHwYDVR0j BBgwFoAUWs9y2jKRlQPRVICDK6V+sGOuETswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMwMTE0OTM3MzM5OTA0MS8xLzVBQ0Y3MkRBMzI5MTk1MDNEMTU0ODA4MzJCQTU3 RUIwNjNBRTExM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUFDRjcyREEzMjkxOTUwM0QxNTQ4MDgzMkJBNTdFQjA2M0FFMTEzQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MzAxMTQ5MzczMzk5MDQxLzEvMzQzMzJlMzIzMjM4 MmUzODJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDM1MzkzMDMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAMr5AgwDQYJKoZIhvcNAQELBQADggEBAEtmiUIbq2MWGFqsHQVQYViIFBCtdZ4r +orIfRlzfGG5Lz8+cJ9pgx6nBDg5st17hMQ4ZZgBpIST4SvfJOMmlHdfwA8eIs2I jX29uVk1xMSiEeBUNwJHR0qzTo41nH9NDpKQjaeFb2QbxhdZT+hlAapfzcJeVpZ1 SJTfMF2Iw0OK0HxW0i2RSasIvM2VVdU4Yxzh/yth+RunkXem7o4g4BNVYE/ifxd4 3huX6DmDaJe5pdFfMGAv67oRRY3OwyMPzV7rP/RsQ9nVkOaulW9+tIeqTtBtffRU Xx4XbZY8jB/E/LrZInjx4vF4idtrqfWqlEnUInyB5RwL/Txnzlxf6lQ= -----END CERTIFICATE-----Generated at Fri May 29 23:49:59 2026 by rpki-client