$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234322e3230342e302f32332d3233203d3e20313334373731.roa File: 34332e3234322e3230342e302f32332d3233203d3e20313334373731.roa (raw, json) Hash identifier: yhwBa/Ii2uCOPdvqoD3W94WdahALVCDmozhE3EQxqtc= Subject key identifier: 10:44:CB:39:5C:1A:CB:7E:70:D4:8E:46:6E:47:79:23:0F:9A:B6:F8 Certificate issuer: /CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Certificate serial: 28138892EDD83A4C7E4590C582449C334EA6176E Authority key identifier: 69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234322e3230342e302f32332d3233203d3e20313334373731.roa Signing time: Wed 20 May 2026 06:48:57 +0000 ROA not before: Wed 20 May 2026 06:43:57 +0000 ROA not after: Wed 19 May 2027 06:48:57 +0000 asID: 134771 IP address blocks: 43.242.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:13:88:92:ed:d8:3a:4c:7e:45:90:c5:82:44:9c:33:4e:a6:17:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69D8917902AD24A5AC6751655C29BB7E9171C796 Validity Not Before: May 20 06:43:57 2026 GMT Not After : May 19 06:48:57 2027 GMT Subject: CN=1044CB395C1ACB7E70D48E466E4779230F9AB6F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:eb:f3:09:ea:da:65:6c:a1:28:1c:88:06:68: 80:69:59:9f:8c:97:1e:d6:b8:1f:18:94:b7:7f:54: 48:f5:e7:b4:57:44:46:8e:43:ae:ac:b3:a4:73:08: 99:e6:fa:c6:04:a9:c5:6e:bf:04:49:34:98:eb:87: ec:4a:ff:bf:0c:1e:64:eb:72:7e:6b:53:06:c5:54: 93:c1:55:33:b4:f1:6c:d0:fe:98:54:b9:77:87:cd: 25:50:f7:51:6d:9d:9d:90:0c:e7:ae:ec:d0:2a:e8: 7c:ef:f7:75:29:5d:25:a2:dc:d2:3d:34:8b:72:52: da:41:d9:5b:31:c7:79:d3:17:8e:d3:66:a3:38:ce: 2f:bc:cd:f6:f0:70:17:cf:f5:15:6d:c1:a8:47:c0: d2:75:6b:13:a9:b2:9c:64:67:21:93:02:0a:ae:4c: 1c:d2:75:93:84:20:18:6a:11:81:6f:28:6e:92:89: 09:ae:3b:d4:ff:dc:fe:ac:10:7f:82:85:08:04:65: 21:2b:c9:4b:89:23:2f:f3:32:d4:9f:c3:9a:e0:7d: d9:e7:31:81:44:83:98:71:1a:6f:23:e3:ee:3c:6e: cd:bd:36:08:b1:17:83:29:30:03:02:c7:d2:34:84: c1:13:a2:d1:42:f7:74:e2:83:4b:28:96:71:32:2f: d1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:44:CB:39:5C:1A:CB:7E:70:D4:8E:46:6E:47:79:23:0F:9A:B6:F8 X509v3 Authority Key Identifier: keyid:69:D8:91:79:02:AD:24:A5:AC:67:51:65:5C:29:BB:7E:91:71:C7:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/69D8917902AD24A5AC6751655C29BB7E9171C796.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/69D8917902AD24A5AC6751655C29BB7E9171C796.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096686730825760771/0/34332e3234322e3230342e302f32332d3233203d3e20313334373731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.204.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:5a:50:08:46:5b:e2:67:2a:22:d5:22:82:29:01:b0:00:78: 08:14:0a:96:72:51:17:59:3e:59:00:cf:f1:82:fa:c7:04:4c: 9b:d8:d5:a9:ca:78:36:99:c1:6f:88:69:b8:00:30:ce:b0:d7: 0a:49:38:58:89:d0:03:6b:02:c2:3b:da:92:15:8c:17:da:5d: c1:b3:76:56:9e:7a:6a:78:7f:c8:5a:da:80:82:cf:eb:89:d4: e4:53:62:ed:80:01:c6:c6:be:ec:65:e1:6b:33:c9:d0:da:43: 56:56:2f:c1:39:3a:66:24:ff:e4:9a:0f:ee:3a:6d:60:ee:dd: 25:66:13:69:e7:52:24:6a:1a:5b:5c:01:e8:41:4f:a0:e1:a1: f8:ec:46:3b:6c:33:b4:c5:9f:20:19:19:be:94:6c:06:55:53: 3b:c9:58:ec:89:b3:6d:41:84:d3:8b:46:2a:06:9e:e5:09:fe: 12:d6:03:15:6c:c6:5a:f0:8c:33:83:7b:b0:bc:28:ab:d8:c8: a8:01:bb:22:33:cf:79:fc:81:8c:66:31:e9:4b:5a:f2:e7:9f: d9:46:e4:91:a7:bb:c3:e9:4f:16:df:da:9e:d3:68:12:8f:3c: 05:d5:04:c4:9d:e0:18:2a:6f:59:58:13:ee:7b:54:95:25:de: 75:7f:0e:ed -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKBOIku3YOkx+RZDFgkScM06mF24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5 MTcxQzc5NjAeFw0yNjA1MjAwNjQzNTdaFw0yNzA1MTkwNjQ4NTdaMDMxMTAvBgNV BAMTKDEwNDRDQjM5NUMxQUNCN0U3MEQ0OEU0NjZFNDc3OTIzMEY5QUI2RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA6/MJ6tplbKEoHIgGaIBpWZ+M lx7WuB8YlLd/VEj157RXREaOQ66ss6RzCJnm+sYEqcVuvwRJNJjrh+xK/78MHmTr cn5rUwbFVJPBVTO08WzQ/phUuXeHzSVQ91FtnZ2QDOeu7NAq6Hzv93UpXSWi3NI9 NItyUtpB2Vsxx3nTF47TZqM4zi+8zfbwcBfP9RVtwahHwNJ1axOpspxkZyGTAgqu TBzSdZOEIBhqEYFvKG6SiQmuO9T/3P6sEH+ChQgEZSEryUuJIy/zMtSfw5rgfdnn MYFEg5hxGm8j4+48bs29NgixF4MpMAMCx9I0hMETotFC93Tig0solnEyL9GxAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUEETLOVway35w1I5Gbkd5Iw+atvgwHwYDVR0j BBgwFoAUadiReQKtJKWsZ1FlXCm7fpFxx5YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY4NjczMDgyNTc2MDc3MS8wLzY5RDg5MTc5MDJBRDI0QTVBQzY3NTE2NTVDMjlC QjdFOTE3MUM3OTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjlEODkxNzkwMkFEMjRBNUFDNjc1MTY1NUMyOUJCN0U5MTcxQzc5Ni5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2ODY3MzA4MjU3NjA3NzEvMC8zNDMzMmUzMjM0 MzIyZTMyMzAzNDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzMzNDM3MzczMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEASvyzDANBgkqhkiG9w0BAQsFAAOCAQEAT1pQCEZb4mcqItUigikB sAB4CBQKlnJRF1k+WQDP8YL6xwRMm9jVqcp4NpnBb4hpuAAwzrDXCkk4WInQA2sC wjvakhWMF9pdwbN2Vp56anh/yFragILP64nU5FNi7YABxsa+7GXhazPJ0NpDVlYv wTk6ZiT/5JoP7jptYO7dJWYTaedSJGoaW1wB6EFPoOGh+OxGO2wztMWfIBkZvpRs BlVTO8lY7ImzbUGE04tGKgae5Qn+EtYDFWzGWvCMM4N7sLwoq9jIqAG7IjPPefyB jGYx6Uta8uef2Ubkkae7w+lPFt/antNoEo88BdUExJ3gGCpvWVgT7ntUlSXedX8O 7Q== -----END CERTIFICATE-----Generated at Fri May 29 22:56:25 2026 by rpki-client