$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130312e302f32342d3234203d3e20313334353432.roa File: 34332e3235342e3130312e302f32342d3234203d3e20313334353432.roa (raw, json) Hash identifier: DWeJPKWalQkeryv1QlJnTj3JYLfdde7/3liuYq0+fmM= Subject key identifier: 7F:0A:37:22:11:09:B8:64:E1:CC:F5:38:E5:FD:DE:7E:16:A9:10:C0 Certificate issuer: /CN=9256C7E8713211251A9F619DBC38D99394ABAA9D Certificate serial: 6B489CA5257003E56383F1458BCE98EBC93BC395 Authority key identifier: 92:56:C7:E8:71:32:11:25:1A:9F:61:9D:BC:38:D9:93:94:AB:AA:9D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130312e302f32342d3234203d3e20313334353432.roa Signing time: Fri 15 May 2026 09:31:04 +0000 ROA not before: Fri 15 May 2026 09:26:04 +0000 ROA not after: Fri 14 May 2027 09:31:04 +0000 asID: 134542 IP address blocks: 43.254.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.crl rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:48:9c:a5:25:70:03:e5:63:83:f1:45:8b:ce:98:eb:c9:3b:c3:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9256C7E8713211251A9F619DBC38D99394ABAA9D Validity Not Before: May 15 09:26:04 2026 GMT Not After : May 14 09:31:04 2027 GMT Subject: CN=7F0A37221109B864E1CCF538E5FDDE7E16A910C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a3:dd:08:7f:bd:69:2f:96:94:31:ab:21:d5: e2:86:3a:69:4a:5a:ca:ec:2c:a1:99:95:7a:27:09: 43:d1:43:79:d8:45:e5:15:aa:7f:cf:9b:6c:bf:f2: 05:16:9b:80:ee:88:47:74:26:3c:1c:f0:fd:a4:71: 2e:b7:bd:bb:74:77:34:14:fb:b5:d8:69:f4:5f:23: 84:8d:e2:e2:ec:50:08:00:da:ed:50:8e:e8:1d:e6: 83:b5:3a:8b:7a:84:ac:f1:c4:f0:3f:6c:c4:01:bc: fd:c3:da:f2:1b:0d:34:f9:49:8f:c4:b4:9d:1d:ea: d9:28:61:02:5c:9c:c7:b1:73:17:6a:95:bc:62:a4: e7:18:77:f8:48:43:cc:ff:29:56:75:f2:7c:38:9e: 03:2e:7d:dd:0b:be:6b:07:6f:ae:36:99:22:40:25: e3:dd:ff:dd:2a:59:5c:2f:bf:f0:d2:6b:50:1c:a7: 10:67:ab:a9:b9:7b:1f:25:a1:29:90:56:21:97:7b: 32:26:1b:b4:29:8a:95:95:dc:45:d0:f0:da:61:bb: 5f:09:e3:e2:27:df:58:4b:fa:b5:74:f8:74:8a:a0: 58:b2:4b:96:1c:7b:f2:22:e9:f4:27:cb:cf:3b:c2: e2:11:8a:8d:b6:d7:52:45:48:b0:5f:7e:5c:5d:e0: 6e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0A:37:22:11:09:B8:64:E1:CC:F5:38:E5:FD:DE:7E:16:A9:10:C0 X509v3 Authority Key Identifier: keyid:92:56:C7:E8:71:32:11:25:1A:9F:61:9D:BC:38:D9:93:94:AB:AA:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130312e302f32342d3234203d3e20313334353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.101.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:17:32:4f:8f:07:f2:0c:70:72:14:0f:70:0e:da:4c:35:df: bb:59:22:f6:29:e4:40:e4:39:9d:69:dc:d6:d5:10:e9:6b:1e: 35:ce:ad:9b:bb:42:0d:d2:b9:56:11:ba:bc:19:65:39:aa:57: b5:be:6a:52:c6:2a:d9:33:a6:e8:72:fb:02:2a:18:95:d0:fc: 16:9e:79:96:be:31:79:a1:14:9e:0a:11:1e:9e:15:80:e2:8c: 0e:b6:2c:5a:00:f1:86:25:6f:ce:f0:60:4f:6a:18:36:b2:1e: f4:48:02:2d:c7:75:27:c7:6d:aa:0e:7a:3b:cf:39:29:62:b8: 62:48:13:bb:e8:77:c8:de:6d:4d:bd:44:cf:98:a2:83:66:0e: e5:d9:66:8a:e6:69:fe:cd:09:7b:ec:a1:1f:ae:77:3d:30:96: db:11:e2:12:88:29:25:10:44:f5:02:76:f0:1d:80:4b:40:63: c6:50:cb:b2:17:14:66:24:b5:5f:b1:8f:33:d2:f1:17:47:02: c1:f6:bd:74:df:f6:dd:73:83:57:0f:4f:e0:0b:7b:1f:2c:8e: 19:d6:91:e3:d1:06:6e:db:a9:99:a3:49:61:1d:1e:c7:76:bb: 08:32:4b:78:1a:c8:d0:fc:9b:ce:2c:f5:fc:61:3a:75:d3:4c: 90:cb:ca:25 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUa0icpSVwA+Vjg/FFi86Y68k7w5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI1NkM3RTg3MTMyMTEyNTFBOUY2MTlEQkMzOEQ5OTM5 NEFCQUE5RDAeFw0yNjA1MTUwOTI2MDRaFw0yNzA1MTQwOTMxMDRaMDMxMTAvBgNV BAMTKDdGMEEzNzIyMTEwOUI4NjRFMUNDRjUzOEU1RkRERTdFMTZBOTEwQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYo90If71pL5aUMash1eKGOmlK WsrsLKGZlXonCUPRQ3nYReUVqn/Pm2y/8gUWm4DuiEd0Jjwc8P2kcS63vbt0dzQU +7XYafRfI4SN4uLsUAgA2u1Qjugd5oO1Oot6hKzxxPA/bMQBvP3D2vIbDTT5SY/E tJ0d6tkoYQJcnMexcxdqlbxipOcYd/hIQ8z/KVZ18nw4ngMufd0LvmsHb642mSJA JePd/90qWVwvv/DSa1AcpxBnq6m5ex8loSmQViGXezImG7QpipWV3EXQ8Nphu18J 4+In31hL+rV0+HSKoFiyS5Yce/Ii6fQny887wuIRio2211JFSLBfflxd4G55AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUfwo3IhEJuGThzPU45f3efhapEMAwHwYDVR0j BBgwFoAUklbH6HEyESUan2GdvDjZk5Srqp0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcwODc0OTUwNDAyMDQ4Mi8wLzkyNTZDN0U4NzEzMjExMjUxQTlGNjE5REJDMzhE OTkzOTRBQkFBOUQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTI1NkM3RTg3MTMyMTEyNTFBOUY2MTlEQkMzOEQ5OTM5NEFCQUE5RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3MDg3NDk1MDQwMjA0ODIvMC8zNDMzMmUzMjM1 MzQyZTMxMzAzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+ZTANBgkqhkiG9w0BAQsFAAOCAQEAChcyT48H8gxwchQPcA7a TDXfu1ki9inkQOQ5nWnc1tUQ6WseNc6tm7tCDdK5VhG6vBllOapXtb5qUsYq2TOm 6HL7AioYldD8Fp55lr4xeaEUngoRHp4VgOKMDrYsWgDxhiVvzvBgT2oYNrIe9EgC Lcd1J8dtqg56O885KWK4YkgTu+h3yN5tTb1Ez5iig2YO5dlmiuZp/s0Je+yhH653 PTCW2xHiEogpJRBE9QJ28B2AS0BjxlDLshcUZiS1X7GPM9LxF0cCwfa9dN/23XOD Vw9P4At7HyyOGdaR49EGbtupmaNJYR0ex3a7CDJLeBrI0Pybziz1/GE6ddNMkMvK JQ== -----END CERTIFICATE-----Generated at Fri May 29 22:57:50 2026 by rpki-client