$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234302e3135382e302f32332d3233203d3e203536303431.roa File: 34332e3234302e3135382e302f32332d3233203d3e203536303431.roa (raw, json) Hash identifier: Z3SLiBfGQMcdXZ+SsJzrc/fyO0Ut1FVycNVgXVsIGPY= Subject key identifier: 45:0D:D2:78:81:F2:23:FD:89:82:F4:96:5C:CD:EE:CC:55:5B:21:D3 Certificate issuer: /CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Certificate serial: 2D88382CC5555352E4678C5741BA8842438B61BD Authority key identifier: 69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234302e3135382e302f32332d3233203d3e203536303431.roa Signing time: Thu 28 May 2026 02:37:37 +0000 ROA not before: Thu 28 May 2026 02:32:37 +0000 ROA not after: Thu 27 May 2027 02:37:37 +0000 asID: 56041 IP address blocks: 43.240.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:88:38:2c:c5:55:53:52:e4:67:8c:57:41:ba:88:42:43:8b:61:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Validity Not Before: May 28 02:32:37 2026 GMT Not After : May 27 02:37:37 2027 GMT Subject: CN=450DD27881F223FD8982F4965CCDEECC555B21D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7a:37:c9:98:0b:ce:3a:c1:69:f3:6d:84:f1: a3:8e:d5:57:f8:15:9d:75:75:df:bb:07:22:a3:a5: d0:8e:c6:58:2d:2b:c0:31:e9:d0:de:64:0c:c3:4d: e3:5a:cc:03:19:38:14:91:fc:79:98:f3:fc:a9:1f: 2c:48:57:f6:f2:c8:ed:24:26:91:1a:7a:9e:8b:0a: bd:31:43:e7:2c:38:28:05:fd:3b:89:65:67:c9:57: bb:05:c2:e6:41:a1:2b:ac:b4:b7:41:fc:71:95:98: 7b:23:4b:65:4e:15:c6:df:32:ed:3a:8f:23:c7:0d: a1:4a:83:26:c1:11:68:37:95:08:a5:c8:46:51:9f: 33:80:38:c6:05:ad:ed:99:c3:19:e5:0f:77:1e:d6: 4d:ca:13:79:41:19:89:17:1b:29:5e:98:20:eb:5e: 53:22:39:d6:59:df:a7:c1:cc:35:23:5c:a3:a1:b3: 30:88:bc:a3:61:09:b7:55:20:92:bf:4b:67:bd:74: 76:f9:4b:fd:b5:46:33:0a:01:a7:16:f7:e2:69:a9: e1:a6:25:8d:10:29:4a:70:b1:74:06:69:f2:0d:32: 64:b2:95:b1:f0:1f:86:98:b3:fd:8f:3b:31:35:8a: 50:f4:c7:a8:54:24:b8:e6:e9:61:30:74:f0:80:af: 04:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0D:D2:78:81:F2:23:FD:89:82:F4:96:5C:CD:EE:CC:55:5B:21:D3 X509v3 Authority Key Identifier: keyid:69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234302e3135382e302f32332d3233203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.158.0/23 Signature Algorithm: sha256WithRSAEncryption 80:37:10:89:5e:c6:b7:92:ef:fb:e2:9c:27:1c:7f:6d:61:03: 10:99:81:01:b8:d5:ac:98:95:bd:63:d3:24:75:cf:1a:52:09: 0e:28:f8:e2:5c:9d:a7:b0:49:b4:1f:61:73:fd:9f:d5:4e:bd: 1f:0d:18:f3:75:50:8b:f9:71:af:03:bc:eb:6b:57:1d:2d:90: ae:63:26:04:5e:ac:71:a7:b2:41:c5:bb:c7:13:5b:4d:67:87: 4e:f1:e0:4b:71:28:3e:38:9a:6c:78:64:84:63:37:74:95:a9: 7c:3f:4c:5e:df:5e:3f:d1:78:7d:aa:fe:9a:64:2d:71:a7:55: 09:8e:e3:e1:d3:0a:57:9d:6c:2a:1a:f1:ad:5f:a0:9d:93:f4: 13:37:fa:8a:02:67:3d:18:7b:0e:23:37:14:3a:43:33:1e:6d: 63:e5:65:4b:c6:fa:1a:95:7f:0e:1c:a0:4f:89:9f:6d:13:0a: 04:26:90:7e:89:dd:b8:91:33:b6:0f:97:f2:5b:09:6c:2b:4b: 61:16:54:1e:87:dd:0a:41:3f:52:ce:88:5b:e0:53:6e:a5:46: e3:49:07:75:a1:cf:07:e2:81:80:e7:2d:75:70:70:e5:9f:29: e6:e0:b9:8f:eb:26:68:dc:72:44:6c:fb:5d:94:ad:5a:91:df: b8:d0:b0:86 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIULYg4LMVVU1LkZ4xXQbqIQkOLYb0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5 MTcxQzc5NjAeFw0yNjA1MjgwMjMyMzdaFw0yNzA1MjcwMjM3MzdaMDMxMTAvBgNV BAMTKDQ1MEREMjc4ODFGMjIzRkQ4OTgyRjQ5NjVDQ0RFRUNDNTU1QjIxRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqejfJmAvOOsFp822E8aOO1Vf4 FZ11dd+7ByKjpdCOxlgtK8Ax6dDeZAzDTeNazAMZOBSR/HmY8/ypHyxIV/byyO0k JpEaep6LCr0xQ+csOCgF/TuJZWfJV7sFwuZBoSustLdB/HGVmHsjS2VOFcbfMu06 jyPHDaFKgybBEWg3lQilyEZRnzOAOMYFre2ZwxnlD3ce1k3KE3lBGYkXGylemCDr XlMiOdZZ36fBzDUjXKOhszCIvKNhCbdVIJK/S2e9dHb5S/21RjMKAacW9+JpqeGm JY0QKUpwsXQGafINMmSylbHwH4aYs/2POzE1ilD0x6hUJLjm6WEwdPCArwT9AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQURQ3SeIHyI/2JgvSWXM3uzFVbIdMwHwYDVR0j BBgwFoAUadiReQKtJKWsZ1FlXCm7fpFxx5YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY4NjczMDgyNTc2MDc3MS8wLzY5RDg5MTc5MDJBRDI0QTVBQzY3NTE2NTVDMjlC QjdFOTE3MUM3OTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5MTcxQzc5Ni5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY4NjczMDgyNTc2MDc3MS8wLzM0MzMyZTMyMzQz MDJlMzEzNTM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzUzNjMwMzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASvwnjANBgkqhkiG9w0BAQsFAAOCAQEAgDcQiV7Gt5Lv++KcJxx/bWED EJmBAbjVrJiVvWPTJHXPGlIJDij44lydp7BJtB9hc/2f1U69Hw0Y83VQi/lxrwO8 62tXHS2QrmMmBF6scaeyQcW7xxNbTWeHTvHgS3EoPjiabHhkhGM3dJWpfD9MXt9e P9F4far+mmQtcadVCY7j4dMKV51sKhrxrV+gnZP0Ezf6igJnPRh7DiM3FDpDMx5t Y+VlS8b6GpV/DhygT4mfbRMKBCaQfonduJEztg+X8lsJbCtLYRZUHofdCkE/Us6I W+BTbqVG40kHdaHPB+KBgOctdXBw5Z8p5uC5j+smaNxyRGz7XZStWpHfuNCwhg== -----END CERTIFICATE-----Generated at Fri May 29 22:57:01 2026 by rpki-client