$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130332e302f32342d3234203d3e20313334353432.roa File: 34332e3235342e3130332e302f32342d3234203d3e20313334353432.roa (raw, json) Hash identifier: +bQoVoXNAMnaUDLdmbOGnt0TEMFsOC9sJtn24v5u7GU= Subject key identifier: E3:E5:C5:EB:84:8B:F1:DF:24:78:64:86:6F:A4:40:27:16:45:4C:6F Certificate issuer: /CN=9256C7E8713211251A9F619DBC38D99394ABAA9D Certificate serial: 42F3A1ADD62C650B3C8B67AD8ADD5D3161F478C7 Authority key identifier: 92:56:C7:E8:71:32:11:25:1A:9F:61:9D:BC:38:D9:93:94:AB:AA:9D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130332e302f32342d3234203d3e20313334353432.roa Signing time: Fri 15 May 2026 09:31:50 +0000 ROA not before: Fri 15 May 2026 09:26:50 +0000 ROA not after: Fri 14 May 2027 09:31:50 +0000 asID: 134542 IP address blocks: 43.254.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.crl rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:f3:a1:ad:d6:2c:65:0b:3c:8b:67:ad:8a:dd:5d:31:61:f4:78:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9256C7E8713211251A9F619DBC38D99394ABAA9D Validity Not Before: May 15 09:26:50 2026 GMT Not After : May 14 09:31:50 2027 GMT Subject: CN=E3E5C5EB848BF1DF247864866FA4402716454C6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7d:59:02:dd:de:27:54:57:5e:f6:59:2a:c2: 8b:ae:f3:5d:42:6b:68:61:a4:fe:6e:99:eb:33:c8: 29:09:08:3c:ca:bb:4e:2d:41:7f:fc:16:ea:1d:f5: 0d:11:a0:c9:1d:61:a2:17:3f:f5:fc:2a:52:16:18: 67:b0:b5:24:75:3e:24:0b:26:97:3a:15:c6:03:e9: 28:60:30:df:f6:5b:6c:9a:15:12:ff:1e:8a:8c:f7: 85:c0:26:19:e9:d7:9b:b2:c6:3a:4b:24:ad:de:a9: 78:74:bf:0e:fb:f2:22:6d:74:6b:b1:2d:e6:b4:06: 23:02:b1:71:c8:8c:89:6d:12:1f:6f:25:71:f0:b0: 70:55:42:04:ae:a6:b3:6c:c1:79:28:3b:5c:4b:3b: 04:c4:f2:08:5e:9f:eb:2a:b0:3a:c0:c2:e5:fd:28: a7:60:4a:1d:6f:98:37:0f:b1:a3:08:b9:02:aa:87: 7c:ca:51:76:fb:1b:81:05:b5:09:f0:01:c8:59:e6: 53:a9:0a:eb:55:45:5f:e8:32:0e:f6:67:4a:0f:f3: b9:a6:99:af:15:34:c4:aa:00:1b:9f:3d:3d:91:ed: 84:3c:92:9e:d1:43:f5:0a:88:a8:21:cd:66:a6:17: 2b:00:e6:f1:3a:5f:e3:60:80:ca:5c:f6:75:45:8a: 3d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E5:C5:EB:84:8B:F1:DF:24:78:64:86:6F:A4:40:27:16:45:4C:6F X509v3 Authority Key Identifier: keyid:92:56:C7:E8:71:32:11:25:1A:9F:61:9D:BC:38:D9:93:94:AB:AA:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/9256C7E8713211251A9F619DBC38D99394ABAA9D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9256C7E8713211251A9F619DBC38D99394ABAA9D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096708749504020482/0/34332e3235342e3130332e302f32342d3234203d3e20313334353432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.103.0/24 Signature Algorithm: sha256WithRSAEncryption a5:4a:1d:12:0b:4e:01:e0:6f:8f:59:bd:9b:f4:28:9e:44:17: 1f:e2:de:1a:39:85:c7:b3:3a:d0:f1:3d:56:c7:ae:33:1f:8a: 7e:89:de:9f:18:99:7c:41:eb:4b:e0:de:a4:81:c7:d2:27:5e: b5:c6:c2:66:2f:2c:3d:e7:df:b2:b2:5b:17:69:36:cc:1b:6f: 3c:08:58:9d:6c:d8:87:d9:a4:9e:42:ff:29:a4:2e:60:fb:65: a6:95:41:45:25:d7:a2:d2:01:45:ef:d3:6e:ba:f5:e8:6b:f5: c5:18:e8:a5:3d:c5:c9:c5:05:a1:af:b4:cd:74:31:30:83:85: 1a:e6:e3:21:e9:c2:98:63:10:1d:1d:86:2f:f9:6f:bc:dd:66: 61:fe:6c:a8:4f:e5:5e:f6:56:f1:71:bc:6d:52:f4:86:5c:1b: ed:7d:59:2f:4e:d2:95:9a:e9:2a:73:b8:d9:07:a6:13:91:8b: 4a:dc:80:38:49:e6:e5:01:08:fc:f4:23:a8:c8:18:2a:e9:63: ca:f7:e5:0f:a7:dd:f3:df:45:3c:a6:57:4e:63:3b:79:b8:ba: 5c:f8:73:09:6b:b4:c1:6e:c7:1c:36:b7:a8:f9:0e:4f:ef:c9: c0:e2:d0:04:45:3d:ef:c9:39:5f:c3:b0:63:2a:dd:a5:f6:c8: d7:dc:85:a1 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUQvOhrdYsZQs8i2etit1dMWH0eMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI1NkM3RTg3MTMyMTEyNTFBOUY2MTlEQkMzOEQ5OTM5 NEFCQUE5RDAeFw0yNjA1MTUwOTI2NTBaFw0yNzA1MTQwOTMxNTBaMDMxMTAvBgNV BAMTKEUzRTVDNUVCODQ4QkYxREYyNDc4NjQ4NjZGQTQ0MDI3MTY0NTRDNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWfVkC3d4nVFde9lkqwouu811C a2hhpP5umeszyCkJCDzKu04tQX/8Fuod9Q0RoMkdYaIXP/X8KlIWGGewtSR1PiQL Jpc6FcYD6ShgMN/2W2yaFRL/HoqM94XAJhnp15uyxjpLJK3eqXh0vw778iJtdGux Lea0BiMCsXHIjIltEh9vJXHwsHBVQgSuprNswXkoO1xLOwTE8ghen+sqsDrAwuX9 KKdgSh1vmDcPsaMIuQKqh3zKUXb7G4EFtQnwAchZ5lOpCutVRV/oMg72Z0oP87mm ma8VNMSqABufPT2R7YQ8kp7RQ/UKiKghzWamFysA5vE6X+NggMpc9nVFij2hAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU4+XF64SL8d8keGSGb6RAJxZFTG8wHwYDVR0j BBgwFoAUklbH6HEyESUan2GdvDjZk5Srqp0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcwODc0OTUwNDAyMDQ4Mi8wLzkyNTZDN0U4NzEzMjExMjUxQTlGNjE5REJDMzhE OTkzOTRBQkFBOUQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTI1NkM3RTg3MTMyMTEyNTFBOUY2MTlEQkMzOEQ5OTM5NEFCQUE5RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3MDg3NDk1MDQwMjA0ODIvMC8zNDMzMmUzMjM1 MzQyZTMxMzAzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+ZzANBgkqhkiG9w0BAQsFAAOCAQEApUodEgtOAeBvj1m9m/Qo nkQXH+LeGjmFx7M60PE9VseuMx+KfonenxiZfEHrS+DepIHH0idetcbCZi8sPeff srJbF2k2zBtvPAhYnWzYh9mknkL/KaQuYPtlppVBRSXXotIBRe/Tbrr16Gv1xRjo pT3FycUFoa+0zXQxMIOFGubjIenCmGMQHR2GL/lvvN1mYf5sqE/lXvZW8XG8bVL0 hlwb7X1ZL07SlZrpKnO42QemE5GLStyAOEnm5QEI/PQjqMgYKuljyvflD6fd899F PKZXTmM7ebi6XPhzCWu0wW7HHDa3qPkOT+/JwOLQBEU978k5X8OwYyrdpfbI19yF oQ== -----END CERTIFICATE-----Generated at Fri May 29 22:57:40 2026 by rpki-client