$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32332d3234203d3e203538343631.roa File: 34332e3232352e3132302e302f32332d3234203d3e203538343631.roa (raw, json) Hash identifier: x+HdUOCLnGemQRClYTHaCHG8G5fjQtk8nS3kElW5HnQ= Subject key identifier: 17:D8:A7:D8:C2:DB:49:15:A6:4B:B4:5E:AF:56:59:D1:7C:2C:3E:CA Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 24CBA459CE66367CC19BC0C06EBC156F35A6E113 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32332d3234203d3e203538343631.roa Signing time: Wed 10 Jun 2026 09:03:02 +0000 ROA not before: Wed 10 Jun 2026 08:58:02 +0000 ROA not after: Wed 09 Jun 2027 09:03:02 +0000 asID: 58461 IP address blocks: 43.225.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:cb:a4:59:ce:66:36:7c:c1:9b:c0:c0:6e:bc:15:6f:35:a6:e1:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Jun 10 08:58:02 2026 GMT Not After : Jun 9 09:03:02 2027 GMT Subject: CN=17D8A7D8C2DB4915A64BB45EAF5659D17C2C3ECA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:65:19:33:ef:5f:ef:8a:ca:85:69:78:37:e3: 0a:17:04:e2:de:88:dc:a2:f5:38:a0:da:f3:c3:53: 21:cc:c9:b9:8d:1c:a6:01:06:52:27:6d:a8:65:63: d2:f4:25:10:6a:19:35:81:ea:6d:23:39:f2:9a:a4: f4:f4:5a:9b:ea:53:e6:84:ef:7d:36:60:d9:33:00: 27:96:b1:3a:4e:70:2b:ba:5f:da:71:7a:77:53:95: 9c:fe:a4:d6:bb:84:61:27:d0:7d:59:69:44:9d:de: c7:cd:6d:77:d5:39:98:c8:29:20:83:85:2a:2d:d9: d8:93:dd:16:c8:37:ff:1a:57:6b:6b:c5:72:8f:12: a9:c1:ae:a9:04:1a:82:96:f6:96:05:f7:d3:5c:4b: b9:1f:5a:b8:6a:20:10:04:cd:39:74:5f:ff:e4:20: fa:f8:f9:c0:11:f9:3f:11:52:6c:d6:9d:00:22:57: 94:1c:3a:ff:b6:b3:b0:bc:95:11:44:64:38:15:2f: 51:a5:50:2e:11:94:cf:a8:3a:7e:5b:61:f1:e3:b6: 18:db:43:dd:7e:da:8e:93:b9:69:be:3c:73:cd:ea: 08:f0:f4:d5:7c:6f:46:6f:56:49:30:37:2f:36:e8: 6a:ce:91:2b:f0:51:21:5e:2d:8e:66:22:51:b0:21: 1d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D8:A7:D8:C2:DB:49:15:A6:4B:B4:5E:AF:56:59:D1:7C:2C:3E:CA X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32332d3234203d3e203538343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.120.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:a0:49:3e:7b:c5:c0:e2:b4:d0:0e:b7:ef:2b:f3:ab:4e:b4: 28:86:2a:f9:5a:57:b5:38:e1:77:2f:28:d7:1c:25:1b:89:d7: 3c:ea:45:88:1e:9c:61:9d:17:2f:a1:97:17:ec:fe:1a:07:c3: ce:c4:ba:ca:98:52:b7:0a:62:5d:a5:27:bb:bb:e4:fe:f2:11: fc:85:c8:60:d6:49:90:a7:a0:c5:96:12:11:a5:43:6c:d9:b7: 3d:b7:ce:52:4c:81:9a:c1:54:09:39:8f:ae:06:9c:d3:42:6d: 3c:05:67:b7:5e:dd:0e:a8:df:10:f5:d6:07:c0:2a:79:93:85: 53:2b:55:6c:f4:eb:2e:e3:af:ef:a3:3f:11:e4:20:f0:58:d1: 3e:3a:3f:1e:07:e3:15:ee:0e:a5:7a:30:5f:62:35:59:54:4a: 51:79:4b:12:7f:e2:f9:07:31:c6:d3:5a:3b:23:90:99:24:fe: 39:8f:4d:8b:6b:47:d0:27:42:12:05:1a:d6:3d:84:73:7d:96: a0:73:7e:36:3b:21:e0:9a:99:e7:29:04:e4:c2:3e:58:3a:85: 17:cf:46:47:cf:18:8d:f8:85:41:70:d6:24:f9:1c:08:27:d9: 44:a3:21:e0:9d:93:5d:6f:b4:bc:31:de:46:8f:0e:ec:74:95: 49:0a:96:5f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJMukWc5mNnzBm8DAbrwVbzWm4RMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA2MTAwODU4MDJaFw0yNzA2MDkwOTAzMDJaMDMxMTAvBgNV BAMTKDE3RDhBN0Q4QzJEQjQ5MTVBNjRCQjQ1RUFGNTY1OUQxN0MyQzNFQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTZRkz71/visqFaXg34woXBOLe iNyi9Tig2vPDUyHMybmNHKYBBlInbahlY9L0JRBqGTWB6m0jOfKapPT0WpvqU+aE 7302YNkzACeWsTpOcCu6X9pxendTlZz+pNa7hGEn0H1ZaUSd3sfNbXfVOZjIKSCD hSot2diT3RbIN/8aV2trxXKPEqnBrqkEGoKW9pYF99NcS7kfWrhqIBAEzTl0X//k IPr4+cAR+T8RUmzWnQAiV5QcOv+2s7C8lRFEZDgVL1GlUC4RlM+oOn5bYfHjthjb Q91+2o6TuWm+PHPN6gjw9NV8b0ZvVkkwNy826GrOkSvwUSFeLY5mIlGwIR2pAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUF9in2MLbSRWmS7Rer1ZZ0XwsPsowHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjcyNzc1MjM1MTk0MDYwOS8wLzM0MzMyZTMyMzIz NTJlMzEzMjMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzODM0MzYzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASvheDANBgkqhkiG9w0BAQsFAAOCAQEAnqBJPnvFwOK00A637yvzq060 KIYq+VpXtTjhdy8o1xwlG4nXPOpFiB6cYZ0XL6GXF+z+GgfDzsS6yphStwpiXaUn u7vk/vIR/IXIYNZJkKegxZYSEaVDbNm3PbfOUkyBmsFUCTmPrgac00JtPAVnt17d DqjfEPXWB8AqeZOFUytVbPTrLuOv76M/EeQg8FjRPjo/HgfjFe4OpXowX2I1WVRK UXlLEn/i+QcxxtNaOyOQmST+OY9Ni2tH0CdCEgUa1j2Ec32WoHN+Njsh4JqZ5ykE 5MI+WDqFF89GR88YjfiFQXDWJPkcCCfZRKMh4J2TXW+0vDHeRo8O7HSVSQqWXw== -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:14 2026 by rpki-client