$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234312e31382e302f32332d3233203d3e20313334373731.roa File: 34332e3234312e31382e302f32332d3233203d3e20313334373731.roa (raw, json) Hash identifier: g8ilk+sl+dDhM5BKyKcsd2KM49uNuMJTL8GjIoNzrMU= Subject key identifier: B5:4D:EB:15:47:37:21:BD:9F:C6:AC:80:29:B1:24:A4:08:82:6F:6E Certificate issuer: /CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Certificate serial: 12AE61B156CFC993D8BA12AE5EF34912AB161681 Authority key identifier: 69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234312e31382e302f32332d3233203d3e20313334373731.roa Signing time: Thu 28 May 2026 02:45:28 +0000 ROA not before: Thu 28 May 2026 02:40:28 +0000 ROA not after: Thu 27 May 2027 02:45:28 +0000 asID: 134771 IP address blocks: 43.241.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ae:61:b1:56:cf:c9:93:d8:ba:12:ae:5e:f3:49:12:ab:16:16:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Validity Not Before: May 28 02:40:28 2026 GMT Not After : May 27 02:45:28 2027 GMT Subject: CN=B54DEB15473721BD9FC6AC8029B124A408826F6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:97:38:01:40:45:0d:c1:4f:de:e0:28:b8:a3: 90:dd:84:3b:e5:e8:9e:26:f4:2a:cb:b8:22:20:a4: 99:af:c1:b1:ed:5d:2e:a4:f9:cf:36:7d:db:1c:bd: 76:2b:c6:1a:c5:e3:b6:bd:7d:e9:5c:c4:2a:53:79: 81:3b:72:ef:a5:4c:76:9a:ef:6c:56:89:6b:2f:0b: 52:28:32:ab:6c:4b:81:54:f7:8b:a5:cd:8b:eb:e1: b7:bc:fe:30:3b:32:fe:80:03:f9:be:d0:93:88:0a: f4:53:0e:d0:de:5f:d4:ca:db:ab:66:e1:60:1f:9b: 6b:df:31:6c:63:80:c9:5f:57:62:17:f1:aa:d5:93: 6a:19:20:45:84:91:d5:b2:54:45:05:a2:3e:f7:8d: e4:cc:fe:2c:09:01:6e:ba:d3:24:3f:84:e3:f5:b7: 6a:a0:cc:c8:b1:18:ff:f7:a0:27:4f:b0:97:9c:60: 1c:f2:22:0f:cc:bf:74:c1:de:8e:80:29:39:47:b1: 99:3a:0a:bc:8f:54:da:f4:f1:19:1f:ec:6d:b5:6d: 8d:94:84:54:69:cb:d7:a6:97:a0:0b:e7:8e:81:d6: dd:06:ea:8d:e6:b9:ae:e7:4e:45:47:b2:e2:5d:f3: 2b:b6:34:be:f3:18:6d:b0:05:2f:43:28:df:03:1d: 14:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:4D:EB:15:47:37:21:BD:9F:C6:AC:80:29:B1:24:A4:08:82:6F:6E X509v3 Authority Key Identifier: keyid:69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234312e31382e302f32332d3233203d3e20313334373731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.18.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:fb:ed:94:da:e7:a8:72:6e:d1:cf:51:0f:8f:4a:89:0d:a1: 4c:1a:19:c0:c6:7d:50:04:07:7d:e5:37:ac:23:27:41:f8:ed: 09:8e:0d:00:77:ba:e7:24:1c:db:f6:ef:64:06:cd:ff:23:75: 3c:c9:ac:13:a1:2f:7f:41:72:2d:8c:58:a9:6f:05:28:01:18: e3:4a:dc:45:55:01:18:14:c8:c7:77:5a:68:8e:bb:7c:6b:5a: 4c:aa:f9:60:93:ef:92:a9:14:27:6e:d5:66:58:91:2c:dc:3f: a9:d8:a0:f6:17:c3:2f:f6:da:d9:82:e7:ee:86:55:16:71:49: 98:35:1e:0a:31:5c:e8:84:78:9d:0e:d3:91:37:e6:08:b4:fd: d7:63:d8:63:57:ff:88:0d:d1:00:08:af:27:b3:a8:26:30:eb: 1e:f6:d7:4f:60:2f:46:c3:d3:ca:aa:3d:a0:20:5a:b0:be:2a: 57:03:f5:50:56:32:27:6c:34:15:a7:17:97:68:45:54:f9:d8: 49:ef:d4:15:96:43:19:78:2c:28:6a:f2:77:66:3f:62:3f:c6: 23:a4:bd:eb:f2:36:71:f7:cb:96:5d:8a:c1:22:13:15:19:42: 85:63:62:67:ef:da:a5:79:29:17:65:8f:37:02:cf:0f:7b:86: b0:84:d1:dd -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUEq5hsVbPyZPYuhKuXvNJEqsWFoEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5 MTcxQzc5NjAeFw0yNjA1MjgwMjQwMjhaFw0yNzA1MjcwMjQ1MjhaMDMxMTAvBgNV BAMTKEI1NERFQjE1NDczNzIxQkQ5RkM2QUM4MDI5QjEyNEE0MDg4MjZGNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmlzgBQEUNwU/e4Ci4o5DdhDvl 6J4m9CrLuCIgpJmvwbHtXS6k+c82fdscvXYrxhrF47a9felcxCpTeYE7cu+lTHaa 72xWiWsvC1IoMqtsS4FU94ulzYvr4be8/jA7Mv6AA/m+0JOICvRTDtDeX9TK26tm 4WAfm2vfMWxjgMlfV2IX8arVk2oZIEWEkdWyVEUFoj73jeTM/iwJAW660yQ/hOP1 t2qgzMixGP/3oCdPsJecYBzyIg/Mv3TB3o6AKTlHsZk6CryPVNr08Rkf7G21bY2U hFRpy9eml6AL546B1t0G6o3mua7nTkVHsuJd8yu2NL7zGG2wBS9DKN8DHRRLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUtU3rFUc3Ib2fxqyAKbEkpAiCb24wHwYDVR0j BBgwFoAUadiReQKtJKWsZ1FlXCm7fpFxx5YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY4NjczMDgyNTc2MDc3MS8wLzY5RDg5MTc5MDJBRDI0QTVBQzY3NTE2NTVDMjlC QjdFOTE3MUM3OTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5MTcxQzc5Ni5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY4NjczMDgyNTc2MDc3MS8wLzM0MzMyZTMyMzQz MTJlMzEzODJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzMzNDM3MzczMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASvxEjANBgkqhkiG9w0BAQsFAAOCAQEAb/vtlNrnqHJu0c9RD49KiQ2h TBoZwMZ9UAQHfeU3rCMnQfjtCY4NAHe65yQc2/bvZAbN/yN1PMmsE6Evf0FyLYxY qW8FKAEY40rcRVUBGBTIx3daaI67fGtaTKr5YJPvkqkUJ27VZliRLNw/qdig9hfD L/ba2YLn7oZVFnFJmDUeCjFc6IR4nQ7TkTfmCLT912PYY1f/iA3RAAivJ7OoJjDr HvbXT2AvRsPTyqo9oCBasL4qVwP1UFYyJ2w0FacXl2hFVPnYSe/UFZZDGXgsKGry d2Y/Yj/GI6S96/I2cffLll2KwSITFRlChWNiZ+/apXkpF2WPNwLPD3uGsITR3Q== -----END CERTIFICATE-----Generated at Fri May 29 22:56:38 2026 by rpki-client