$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130322e302f32342d3234203d3e20313334353432.roa File: 34332e3235342e3130322e302f32342d3234203d3e20313334353432.roa (raw, json) Hash identifier: 2AO+bwSgV8KO3eOkO83jIs4PZBA9yajQUT+ru0dolkU= Subject key identifier: 7F:AD:1B:33:F8:01:13:E6:CF:75:49:B8:88:08:2F:D8:51:AD:B4:AE Certificate issuer: /CN=9256C7E8713211251A9F619DBC38D99394ABAA9D Certificate serial: 25FA92D90FBE421164701D0FE447AAD2F04BCD3E Authority key identifier: 92:56:C7:E8:71:32:11:25:1A:9F:61:9D:BC:38:D9:93:94:AB:AA:9D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130322e302f32342d3234203d3e20313334353432.roa Signing time: Fri 15 May 2026 09:31:41 +0000 ROA not before: Fri 15 May 2026 09:26:41 +0000 ROA not after: Fri 14 May 2027 09:31:41 +0000 asID: 134542 IP address blocks: 43.254.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.crl rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:fa:92:d9:0f:be:42:11:64:70:1d:0f:e4:47:aa:d2:f0:4b:cd:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9256C7E8713211251A9F619DBC38D99394ABAA9D Validity Not Before: May 15 09:26:41 2026 GMT Not After : May 14 09:31:41 2027 GMT Subject: CN=7FAD1B33F80113E6CF7549B888082FD851ADB4AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:90:54:75:f3:9c:08:77:4c:68:4a:ba:3c:0c: 9a:e9:32:df:b4:90:d3:db:81:bf:fb:83:64:0d:62: 0a:d8:3f:cf:57:fc:fb:3b:5d:ef:7c:84:86:2b:ca: 74:a7:f3:83:36:4c:7c:5e:18:b9:87:c9:96:df:a0: cb:53:60:f4:81:71:0f:2d:aa:32:55:b1:a6:68:00: 45:5f:03:76:b0:36:1c:df:0b:a0:19:e6:1e:93:43: 8f:bf:95:36:5f:ca:1e:56:0f:cc:d7:54:11:d8:d1: fd:c1:4c:9d:ed:c1:00:c1:ff:0b:64:4c:1d:dc:6f: ad:31:e3:50:5a:e6:b8:ba:8c:34:c8:42:11:98:ae: ec:c9:24:de:bd:8c:9b:70:c3:cf:75:d9:c6:83:f0: 67:2b:ea:de:0c:b4:49:61:ec:17:c4:62:05:e6:e3: d9:3c:e6:0f:b6:05:82:65:21:63:4f:f6:69:13:d9: 21:59:8d:13:b9:8d:04:ea:97:0c:1a:17:2f:b1:0d: 8e:40:a4:02:d7:95:58:19:26:05:97:f9:92:85:90: 07:29:81:64:bd:9e:24:ac:ed:d6:d4:a1:9a:cb:3b: f7:0e:4d:f6:3e:32:16:a7:18:ca:e5:76:f3:18:d9: 08:bf:df:58:fe:cc:48:77:6f:ea:03:4b:92:66:82: cb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AD:1B:33:F8:01:13:E6:CF:75:49:B8:88:08:2F:D8:51:AD:B4:AE X509v3 Authority Key Identifier: keyid:92:56:C7:E8:71:32:11:25:1A:9F:61:9D:BC:38:D9:93:94:AB:AA:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130322e302f32342d3234203d3e20313334353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.102.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:33:b9:ce:90:a0:69:ca:d1:e0:9b:ca:f7:8f:7a:c0:40:13: 1f:34:ce:4c:6f:ae:a1:a8:97:73:b2:14:85:e6:cc:88:ee:c5: 0c:a4:31:56:06:b7:be:21:98:02:17:e8:e0:ae:ed:14:ae:cf: 6c:39:b9:c5:ca:59:22:93:62:27:54:9d:d4:f5:0d:8f:6e:14: 72:1a:85:21:3d:19:c7:88:6c:ef:47:8f:27:a3:0a:71:3e:95: a9:7f:b9:34:0e:22:ff:6c:86:14:33:f6:ba:5a:10:7c:f8:85: 85:2e:c3:ca:b1:5a:07:74:d0:dd:a8:9b:3d:56:86:48:c4:f1: f4:6f:76:97:65:ea:9c:ca:7d:9f:05:e5:9c:cc:d5:a0:d6:c6: ef:ff:0a:fa:e2:37:79:43:3c:51:7a:d5:80:bf:0e:cd:56:fb: d7:0b:84:4e:8a:e5:61:75:6b:c4:ca:1b:63:ee:e9:69:49:a6: 92:d7:97:b4:ed:9e:dc:af:ce:63:c2:92:3b:fb:dc:3e:00:c9: e1:8a:41:0e:d3:18:98:a3:4b:31:e6:96:c8:42:26:2c:ab:02: 16:9e:c2:82:71:28:46:7d:c8:0e:6f:ad:88:84:f4:77:8b:bd: 4b:6e:1a:a9:30:93:a2:39:3c:21:b0:e3:83:6e:63:3a:25:9a: c0:ec:9c:5d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJfqS2Q++QhFkcB0P5Eeq0vBLzT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI1NkM3RTg3MTMyMTEyNTFBOUY2MTlEQkMzOEQ5OTM5 NEFCQUE5RDAeFw0yNjA1MTUwOTI2NDFaFw0yNzA1MTQwOTMxNDFaMDMxMTAvBgNV BAMTKDdGQUQxQjMzRjgwMTEzRTZDRjc1NDlCODg4MDgyRkQ4NTFBREI0QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCukFR185wId0xoSro8DJrpMt+0 kNPbgb/7g2QNYgrYP89X/Ps7Xe98hIYrynSn84M2THxeGLmHyZbfoMtTYPSBcQ8t qjJVsaZoAEVfA3awNhzfC6AZ5h6TQ4+/lTZfyh5WD8zXVBHY0f3BTJ3twQDB/wtk TB3cb60x41Ba5ri6jDTIQhGYruzJJN69jJtww8912caD8Gcr6t4MtElh7BfEYgXm 49k85g+2BYJlIWNP9mkT2SFZjRO5jQTqlwwaFy+xDY5ApALXlVgZJgWX+ZKFkAcp gWS9niSs7dbUoZrLO/cOTfY+MhanGMrldvMY2Qi/31j+zEh3b+oDS5JmgsufAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUf60bM/gBE+bPdUm4iAgv2FGttK4wHwYDVR0j BBgwFoAUklbH6HEyESUan2GdvDjZk5Srqp0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcwODc0OTUwNDAyMDQ4Mi8wLzkyNTZDN0U4NzEzMjExMjUxQTlGNjE5REJDMzhE OTkzOTRBQkFBOUQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTI1NkM3RTg3MTMyMTEyNTFBOUY2MTlEQkMzOEQ5OTM5NEFCQUE5RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3MDg3NDk1MDQwMjA0ODIvMC8zNDMzMmUzMjM1 MzQyZTMxMzAzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+ZjANBgkqhkiG9w0BAQsFAAOCAQEAXjO5zpCgacrR4JvK9496 wEATHzTOTG+uoaiXc7IUhebMiO7FDKQxVga3viGYAhfo4K7tFK7PbDm5xcpZIpNi J1Sd1PUNj24UchqFIT0Zx4hs70ePJ6MKcT6VqX+5NA4i/2yGFDP2uloQfPiFhS7D yrFaB3TQ3aibPVaGSMTx9G92l2XqnMp9nwXlnMzVoNbG7/8K+uI3eUM8UXrVgL8O zVb71wuETorlYXVrxMobY+7paUmmkteXtO2e3K/OY8KSO/vcPgDJ4YpBDtMYmKNL MeaWyEImLKsCFp7CgnEoRn3IDm+tiIT0d4u9S24aqTCTojk8IbDjg25jOiWawOyc XQ== -----END CERTIFICATE-----Generated at Fri May 29 22:58:16 2026 by rpki-client