$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092508673/0/34332e3232382e33382e302f32332d3233203d3e2034383038.roa File: 34332e3232382e33382e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: mpbAsvFDLG/ZIcdpHFPiePOhuggrNP073Yxd6/YcbSE= Subject key identifier: 4E:41:D5:0F:68:28:52:E1:DC:74:60:1F:71:1C:23:8A:7F:94:F3:F5 Certificate issuer: /CN=D569CE49ED940955318F718AEACD6D410BFF66B3 Certificate serial: 517AAA8C4D77BB57737F492D72D530FB02DFC793 Authority key identifier: D5:69:CE:49:ED:94:09:55:31:8F:71:8A:EA:CD:6D:41:0B:FF:66:B3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D569CE49ED940955318F718AEACD6D410BFF66B3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/34332e3232382e33382e302f32332d3233203d3e2034383038.roa Signing time: Tue 26 May 2026 09:24:01 +0000 ROA not before: Tue 26 May 2026 09:19:01 +0000 ROA not after: Tue 25 May 2027 09:24:01 +0000 asID: 4808 IP address blocks: 43.228.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/D569CE49ED940955318F718AEACD6D410BFF66B3.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/D569CE49ED940955318F718AEACD6D410BFF66B3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D569CE49ED940955318F718AEACD6D410BFF66B3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 06:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:7a:aa:8c:4d:77:bb:57:73:7f:49:2d:72:d5:30:fb:02:df:c7:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D569CE49ED940955318F718AEACD6D410BFF66B3 Validity Not Before: May 26 09:19:01 2026 GMT Not After : May 25 09:24:01 2027 GMT Subject: CN=4E41D50F682852E1DC74601F711C238A7F94F3F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:25:fb:6d:dd:3a:25:f9:72:7a:7d:85:d0:3d: cc:64:15:2c:4b:9a:22:17:47:52:96:54:ed:2c:2e: 5c:7b:fb:e4:06:4a:15:8f:46:56:f7:06:91:e7:7a: fa:a4:01:65:e9:aa:1e:be:49:a8:2a:4c:86:be:4c: 5c:b0:3b:7e:4a:b2:ca:99:35:75:0a:73:73:64:ec: eb:1f:5f:40:c0:11:7a:35:3c:a6:70:0f:a4:44:24: b2:e1:86:a5:2a:ff:d3:82:8b:b7:c2:7e:97:e6:94: ce:d0:37:cd:5e:41:d4:0c:e7:70:6a:0f:ad:e6:c4: 82:53:72:f5:fb:b2:20:15:5e:a8:a0:7d:b9:e7:ec: 0a:de:b0:cd:8b:bf:c7:fc:e9:d6:63:93:eb:72:f6: 90:d7:da:05:69:b0:fd:f3:5a:9a:43:fc:a2:79:36: ca:d0:7a:18:ef:64:5c:3f:25:7e:ec:71:f6:86:c2: 3b:3e:42:3c:01:4c:7d:f9:0d:68:8e:99:56:16:c3: cc:e8:91:19:63:82:b2:b2:5c:e8:cf:e4:67:ec:77: 01:fa:1e:c0:0e:7d:3b:11:c2:34:bd:da:1d:fb:53: 85:d2:49:81:f2:9b:cd:c0:53:00:d7:1f:5e:41:91: f3:1e:ab:4a:af:ff:2f:f8:49:80:6e:8b:65:0e:fd: 80:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:41:D5:0F:68:28:52:E1:DC:74:60:1F:71:1C:23:8A:7F:94:F3:F5 X509v3 Authority Key Identifier: keyid:D5:69:CE:49:ED:94:09:55:31:8F:71:8A:EA:CD:6D:41:0B:FF:66:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/D569CE49ED940955318F718AEACD6D410BFF66B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D569CE49ED940955318F718AEACD6D410BFF66B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/34332e3232382e33382e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.38.0/23 Signature Algorithm: sha256WithRSAEncryption 29:c6:eb:b9:c8:d3:ac:b9:18:25:dc:b2:36:51:d2:95:d0:a1: 33:46:0c:88:8e:da:25:29:c3:42:dc:6f:bb:20:34:b5:90:57: 5f:df:7c:39:37:d4:db:b2:5d:cc:15:cc:f3:c4:de:5e:23:3e: 97:f5:da:3c:40:68:b8:44:39:f8:4d:a3:3a:4c:59:73:63:f0: 1d:45:02:9f:33:3e:22:46:a1:1b:e3:28:07:c3:a0:c7:63:11: 83:7b:62:c6:b6:84:33:e2:ef:24:1e:51:df:15:f3:47:22:da: 8a:13:39:10:69:0e:97:6b:b8:55:03:c6:05:d0:e6:0b:b2:8c: a9:03:8b:34:6c:d5:9c:67:08:72:73:fa:0c:24:7a:3f:1f:a8: 50:bc:13:53:f1:fb:6a:46:54:f3:39:6d:5a:cf:51:f5:bb:9c: 80:17:a4:a0:ef:0f:6e:35:3e:ff:3a:01:68:46:31:95:61:c6: 81:4b:c7:cb:a3:58:0d:65:78:dd:64:56:8a:13:87:25:26:8b: cc:54:05:10:ae:dc:8d:1d:99:c6:40:4d:83:85:d0:1f:eb:c9: da:27:74:a7:de:a4:ef:11:bf:cc:47:87:a6:fd:2a:dd:e2:84: 21:26:d0:79:c5:7c:7b:f0:cd:f9:1e:17:41:82:ae:dd:4c:cb: 4d:6f:9f:7a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUUXqqjE13u1dzf0ktctUw+wLfx5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU2OUNFNDlFRDk0MDk1NTMxOEY3MThBRUFDRDZENDEw QkZGNjZCMzAeFw0yNjA1MjYwOTE5MDFaFw0yNzA1MjUwOTI0MDFaMDMxMTAvBgNV BAMTKDRFNDFENTBGNjgyODUyRTFEQzc0NjAxRjcxMUMyMzhBN0Y5NEYzRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqJftt3Tol+XJ6fYXQPcxkFSxL miIXR1KWVO0sLlx7++QGShWPRlb3BpHnevqkAWXpqh6+SagqTIa+TFywO35KssqZ NXUKc3Nk7OsfX0DAEXo1PKZwD6REJLLhhqUq/9OCi7fCfpfmlM7QN81eQdQM53Bq D63mxIJTcvX7siAVXqigfbnn7AresM2Lv8f86dZjk+ty9pDX2gVpsP3zWppD/KJ5 NsrQehjvZFw/JX7scfaGwjs+QjwBTH35DWiOmVYWw8zokRljgrKyXOjP5GfsdwH6 HsAOfTsRwjS92h37U4XSSYHym83AUwDXH15BkfMeq0qv/y/4SYBui2UO/YBZAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUTkHVD2goUuHcdGAfcRwjin+U8/UwHwYDVR0j BBgwFoAU1WnOSe2UCVUxj3GK6s1tQQv/ZrMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjUwODY3My8wL0Q1NjlDRTQ5RUQ5NDA5NTUzMThGNzE4QUVBQ0Q2 RDQxMEJGRjY2QjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDU2OUNFNDlFRDk0MDk1NTMxOEY3MThBRUFDRDZENDEwQkZGNjZCMy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MzMwODU5MDkyNTA4NjczLzAvMzQzMzJlMzIzMjM4 MmUzMzM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEr5CYwDQYJKoZIhvcNAQELBQADggEBACnG67nI06y5GCXcsjZR0pXQoTNGDIiO 2iUpw0Lcb7sgNLWQV1/ffDk31NuyXcwVzPPE3l4jPpf12jxAaLhEOfhNozpMWXNj 8B1FAp8zPiJGoRvjKAfDoMdjEYN7Ysa2hDPi7yQeUd8V80ci2ooTORBpDpdruFUD xgXQ5guyjKkDizRs1ZxnCHJz+gwkej8fqFC8E1Px+2pGVPM5bVrPUfW7nIAXpKDv D241Pv86AWhGMZVhxoFLx8ujWA1leN1kVooThyUmi8xUBRCu3I0dmcZATYOF0B/r ydondKfepO8Rv8xHh6b9Kt3ihCEm0HnFfHvwzfkeF0GCrt1My01vn3o= -----END CERTIFICATE-----Generated at Fri May 29 23:50:33 2026 by rpki-client