$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234312e31362e302f32322d3232203d3e2034383337.roa File: 34332e3234312e31362e302f32322d3232203d3e2034383337.roa (raw, json) Hash identifier: Pq8g0RIum0w1LbuK/n8kNmv62uItjiHCar3Kuskg4Ko= Subject key identifier: 64:3F:F1:D5:12:03:3E:50:5B:6E:41:FB:7C:04:91:1D:1F:BC:02:0C Certificate issuer: /CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Certificate serial: 6E4661F0493520093AF82356F0D8EA73D8DF7969 Authority key identifier: 69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234312e31362e302f32322d3232203d3e2034383337.roa Signing time: Wed 20 May 2026 07:05:14 +0000 ROA not before: Wed 20 May 2026 07:00:14 +0000 ROA not after: Wed 19 May 2027 07:05:14 +0000 asID: 4837 IP address blocks: 43.241.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:46:61:f0:49:35:20:09:3a:f8:23:56:f0:d8:ea:73:d8:df:79:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Validity Not Before: May 20 07:00:14 2026 GMT Not After : May 19 07:05:14 2027 GMT Subject: CN=643FF1D512033E505B6E41FB7C04911D1FBC020C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b1:49:a2:5c:ab:f7:0b:d6:4a:c5:8b:2c:94: 30:e1:65:93:5d:45:97:ac:94:d5:72:53:d4:02:61: eb:1a:cf:35:47:bf:51:07:7e:52:47:2b:0e:39:8d: e1:41:38:cc:63:27:2e:22:06:fc:25:7d:2e:be:35: f3:fc:de:68:b8:37:be:54:dd:41:bc:b7:30:99:99: 05:c2:28:17:1d:f3:f6:e9:fd:84:02:d0:d2:a4:70: 15:1b:a0:89:97:c5:29:e8:f1:a5:17:f4:e8:e2:4c: 25:3e:c7:13:84:2f:b4:31:88:c8:c5:ba:55:11:8c: dc:f7:42:13:b9:44:34:55:5c:4d:8b:a9:7a:31:4c: 71:96:6e:3a:97:8e:b3:4e:f4:25:3a:8e:08:bd:30: 55:0a:24:72:82:a3:d2:60:c3:1e:53:79:d6:97:8c: 68:dd:f7:54:55:9e:0f:d0:02:bd:e7:26:96:80:ed: 9e:cc:4a:e0:fc:8a:36:9c:7f:2a:37:19:89:82:e0: 29:6b:20:8e:23:d2:d4:3a:37:23:4b:a3:d8:5b:15: b0:ee:eb:58:4b:83:ee:3d:fb:9c:36:0d:e1:db:e4: 71:83:07:9f:3d:81:16:de:de:3b:a2:a2:15:50:ce: b1:80:8e:77:08:bb:34:93:73:dc:68:c9:1b:55:8c: d7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3F:F1:D5:12:03:3E:50:5B:6E:41:FB:7C:04:91:1D:1F:BC:02:0C X509v3 Authority Key Identifier: keyid:69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234312e31362e302f32322d3232203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.16.0/22 Signature Algorithm: sha256WithRSAEncryption c4:dc:6e:63:59:bc:4c:fc:18:cf:b9:e8:1a:66:10:d8:02:36: b3:8e:03:a7:4b:6a:d5:55:8e:a6:26:25:57:63:2e:d5:37:3e: 4c:05:6c:73:8c:70:62:34:19:34:17:eb:12:da:34:52:a8:3e: 7e:4c:73:b7:e1:6a:ea:d6:7a:24:cc:47:18:e2:33:8b:07:25: 6f:8b:e3:f2:5f:3e:9e:1d:44:b7:be:cd:ff:bf:d6:e0:ce:35: b4:c3:9a:db:36:52:3b:88:f9:32:ce:6c:68:a3:09:5f:87:f9: 74:18:50:a4:25:e9:15:2b:b6:61:78:21:9d:77:6c:0c:e6:ef: db:3c:f4:75:97:af:4d:bc:df:29:47:ef:2a:3a:a5:9f:1f:7f: 9f:28:d4:45:b1:29:1b:7f:14:57:49:6a:a8:d0:13:9f:6e:c1: 49:f0:5e:5b:ef:9a:88:95:1c:19:22:f6:d1:1d:1d:2c:b3:02: 66:d1:fe:2e:ef:e4:69:86:f3:c4:03:8a:c4:e7:b9:38:85:c1: ba:8b:95:38:2c:99:16:82:72:18:6e:f6:a8:97:ca:75:60:85: ca:8f:88:76:ab:15:46:f3:3e:72:53:66:a7:1e:20:6d:ab:0b: 4b:97:65:09:f2:5d:d5:2e:f0:e3:43:fd:a5:4d:07:58:50:5e: e3:a8:46:ed -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUbkZh8Ek1IAk6+CNW8Njqc9jfeWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5 MTcxQzc5NjAeFw0yNjA1MjAwNzAwMTRaFw0yNzA1MTkwNzA1MTRaMDMxMTAvBgNV BAMTKDY0M0ZGMUQ1MTIwMzNFNTA1QjZFNDFGQjdDMDQ5MTFEMUZCQzAyMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZsUmiXKv3C9ZKxYsslDDhZZNd RZeslNVyU9QCYesazzVHv1EHflJHKw45jeFBOMxjJy4iBvwlfS6+NfP83mi4N75U 3UG8tzCZmQXCKBcd8/bp/YQC0NKkcBUboImXxSno8aUX9OjiTCU+xxOEL7QxiMjF ulURjNz3QhO5RDRVXE2LqXoxTHGWbjqXjrNO9CU6jgi9MFUKJHKCo9Jgwx5TedaX jGjd91RVng/QAr3nJpaA7Z7MSuD8ijacfyo3GYmC4ClrII4j0tQ6NyNLo9hbFbDu 61hLg+49+5w2DeHb5HGDB589gRbe3juiohVQzrGAjncIuzSTc9xoyRtVjNelAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUZD/x1RIDPlBbbkH7fASRHR+8AgwwHwYDVR0j BBgwFoAUadiReQKtJKWsZ1FlXCm7fpFxx5YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY4NjczMDgyNTc2MDc3MS8wLzY5RDg5MTc5MDJBRDI0QTVBQzY3NTE2NTVDMjlC QjdFOTE3MUM3OTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5MTcxQzc5Ni5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2Njg2NzMwODI1NzYwNzcxLzAvMzQzMzJlMzIzNDMx MmUzMTM2MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr8RAwDQYJKoZIhvcNAQELBQADggEBAMTcbmNZvEz8GM+56BpmENgCNrOOA6dL atVVjqYmJVdjLtU3PkwFbHOMcGI0GTQX6xLaNFKoPn5Mc7fhaurWeiTMRxjiM4sH JW+L4/JfPp4dRLe+zf+/1uDONbTDmts2UjuI+TLObGijCV+H+XQYUKQl6RUrtmF4 IZ13bAzm79s89HWXr0283ylH7yo6pZ8ff58o1EWxKRt/FFdJaqjQE59uwUnwXlvv moiVHBki9tEdHSyzAmbR/i7v5GmG88QDisTnuTiFwbqLlTgsmRaCchhu9qiXynVg hcqPiHarFUbzPnJTZqceIG2rC0uXZQnyXdUu8OND/aVNB1hQXuOoRu0= -----END CERTIFICATE-----Generated at Fri May 29 23:52:15 2026 by rpki-client