$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130302e302f32342d3234203d3e20313334353432.roa File: 34332e3235342e3130302e302f32342d3234203d3e20313334353432.roa (raw, json) Hash identifier: 6kB+psCKITU3kpZ8FJzi3x2CuePjnWZsftVTsgYJ054= Subject key identifier: 5D:BD:EC:6A:FB:F2:84:1F:85:2F:11:D6:D4:C6:A8:09:A8:E3:9C:39 Certificate issuer: /CN=9256C7E8713211251A9F619DBC38D99394ABAA9D Certificate serial: 29669FE5202D22943CA08542F0E91014E45FF3C3 Authority key identifier: 92:56:C7:E8:71:32:11:25:1A:9F:61:9D:BC:38:D9:93:94:AB:AA:9D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130302e302f32342d3234203d3e20313334353432.roa Signing time: Fri 15 May 2026 09:30:55 +0000 ROA not before: Fri 15 May 2026 09:25:55 +0000 ROA not after: Fri 14 May 2027 09:30:55 +0000 asID: 134542 IP address blocks: 43.254.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.crl rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:66:9f:e5:20:2d:22:94:3c:a0:85:42:f0:e9:10:14:e4:5f:f3:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9256C7E8713211251A9F619DBC38D99394ABAA9D Validity Not Before: May 15 09:25:55 2026 GMT Not After : May 14 09:30:55 2027 GMT Subject: CN=5DBDEC6AFBF2841F852F11D6D4C6A809A8E39C39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6e:c1:3a:dc:09:76:70:f3:81:1b:4a:5f:52: 60:14:6b:40:9a:89:1a:1f:5d:de:91:8d:e0:90:3a: 1f:d5:79:f5:55:81:5d:23:ac:73:3a:18:20:10:ab: cb:b0:c0:88:88:c9:17:67:fb:47:d6:92:29:16:6f: 0d:cb:e4:09:38:ca:b9:90:d7:61:30:43:d3:7a:a5: f2:4b:9f:e9:02:fd:3e:69:be:14:de:b4:9a:5e:cb: 33:53:96:fe:4f:16:73:eb:fa:8e:a1:45:bc:2d:ae: cb:37:0d:fa:4f:66:39:ce:85:15:80:24:27:61:fc: f0:d5:2d:a7:ac:da:a9:7d:8b:57:2a:25:99:4a:52: c3:4b:90:09:5c:bf:70:dc:5f:dd:b4:2b:58:69:14: b3:3b:8f:ab:df:3f:07:65:80:c7:9d:ad:4f:99:02: 55:64:67:e9:e4:c3:83:d5:de:96:03:5e:49:4a:67: f8:5f:49:02:1a:c5:f1:5c:9f:ef:05:86:50:2a:e3: 84:76:90:5a:e5:84:69:42:b9:48:cc:d8:f0:50:48: d0:88:b9:e0:fd:96:10:9a:d5:cd:ce:2a:c4:41:f4: c2:70:1b:72:16:60:a3:74:81:6d:ae:ac:27:34:62: 67:40:42:14:2c:66:64:43:28:cf:b4:95:5c:35:8c: ce:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:BD:EC:6A:FB:F2:84:1F:85:2F:11:D6:D4:C6:A8:09:A8:E3:9C:39 X509v3 Authority Key Identifier: keyid:92:56:C7:E8:71:32:11:25:1A:9F:61:9D:BC:38:D9:93:94:AB:AA:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130302e302f32342d3234203d3e20313334353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.100.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a0:8f:eb:6d:44:46:ba:30:5a:bf:03:70:b8:b5:12:de:9d: 6b:15:44:23:df:1b:85:da:fb:cb:58:26:48:88:d4:01:f0:2e: aa:93:3d:8a:6f:01:28:fc:42:01:82:05:6e:84:05:72:68:ec: 16:8e:0a:61:31:e4:1f:7f:ab:9d:81:ce:50:f7:93:f0:8a:5b: 07:0d:81:da:42:94:c3:76:55:09:73:84:0a:f8:3f:da:84:2d: 84:e4:38:93:60:7e:5e:39:16:2d:68:54:4e:07:0f:e4:e1:56: 78:f9:37:1e:a9:0e:ef:1a:7b:93:81:2e:d7:0f:92:6b:e2:c2: 67:f4:c4:9b:01:b1:b8:14:1e:cc:21:aa:de:16:6c:94:55:ca: 1f:6a:d9:d7:c7:82:a3:ac:ab:e0:19:1f:0c:71:e7:0e:b2:12: 0f:bc:02:0f:07:f5:60:4c:7d:8b:91:cf:db:d1:a8:04:dd:48: ed:f3:d7:2a:8c:4c:69:27:95:07:2f:37:35:60:1d:a0:ad:3c: 18:1f:65:50:29:4c:68:69:b0:97:2c:d1:c9:43:dd:ff:b5:a7: e3:1c:80:cb:5a:46:12:dc:95:c5:24:46:a5:44:73:33:61:29: 96:5f:f9:05:d1:d4:cc:a8:80:a5:cc:3e:76:d9:ab:11:da:59: 71:e1:0f:7b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKWaf5SAtIpQ8oIVC8OkQFORf88MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI1NkM3RTg3MTMyMTEyNTFBOUY2MTlEQkMzOEQ5OTM5 NEFCQUE5RDAeFw0yNjA1MTUwOTI1NTVaFw0yNzA1MTQwOTMwNTVaMDMxMTAvBgNV BAMTKDVEQkRFQzZBRkJGMjg0MUY4NTJGMTFENkQ0QzZBODA5QThFMzlDMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1bsE63Al2cPOBG0pfUmAUa0Ca iRofXd6RjeCQOh/VefVVgV0jrHM6GCAQq8uwwIiIyRdn+0fWkikWbw3L5Ak4yrmQ 12EwQ9N6pfJLn+kC/T5pvhTetJpeyzNTlv5PFnPr+o6hRbwtrss3DfpPZjnOhRWA JCdh/PDVLaes2ql9i1cqJZlKUsNLkAlcv3DcX920K1hpFLM7j6vfPwdlgMedrU+Z AlVkZ+nkw4PV3pYDXklKZ/hfSQIaxfFcn+8FhlAq44R2kFrlhGlCuUjM2PBQSNCI ueD9lhCa1c3OKsRB9MJwG3IWYKN0gW2urCc0YmdAQhQsZmRDKM+0lVw1jM5TAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUXb3savvyhB+FLxHW1MaoCajjnDkwHwYDVR0j BBgwFoAUklbH6HEyESUan2GdvDjZk5Srqp0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcwODc0OTUwNDAyMDQ4Mi8wLzkyNTZDN0U4NzEzMjExMjUxQTlGNjE5REJDMzhE OTkzOTRBQkFBOUQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTI1NkM3RTg3MTMyMTEyNTFBOUY2MTlEQkMzOEQ5OTM5NEFCQUE5RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3MDg3NDk1MDQwMjA0ODIvMC8zNDMzMmUzMjM1 MzQyZTMxMzAzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+ZDANBgkqhkiG9w0BAQsFAAOCAQEAB6CP621ERrowWr8DcLi1 Et6daxVEI98bhdr7y1gmSIjUAfAuqpM9im8BKPxCAYIFboQFcmjsFo4KYTHkH3+r nYHOUPeT8IpbBw2B2kKUw3ZVCXOECvg/2oQthOQ4k2B+XjkWLWhUTgcP5OFWePk3 HqkO7xp7k4Eu1w+Sa+LCZ/TEmwGxuBQezCGq3hZslFXKH2rZ18eCo6yr4BkfDHHn DrISD7wCDwf1YEx9i5HP29GoBN1I7fPXKoxMaSeVBy83NWAdoK08GB9lUClMaGmw lyzRyUPd/7Wn4xyAy1pGEtyVxSRGpURzM2Epll/5BdHUzKiApcw+dtmrEdpZceEP ew== -----END CERTIFICATE-----Generated at Fri May 29 23:54:32 2026 by rpki-client