$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32342d3234203d3e203538343631.roa File: 34332e3232352e3132302e302f32342d3234203d3e203538343631.roa (raw, json) Hash identifier: kkGWrNGr770gfAIfukrVpKN+O40WQ/mpRCGiUuyCfL0= Subject key identifier: B9:65:87:71:28:2C:68:3F:9C:1F:89:73:85:AD:8E:0D:9C:41:26:F0 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 7A0C1150D560D0960B2BD82F3BE0A8A10DD3448A Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32342d3234203d3e203538343631.roa Signing time: Thu 04 Jun 2026 06:28:42 +0000 ROA not before: Thu 04 Jun 2026 06:23:42 +0000 ROA not after: Thu 03 Jun 2027 06:28:42 +0000 asID: 58461 IP address blocks: 43.225.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:0c:11:50:d5:60:d0:96:0b:2b:d8:2f:3b:e0:a8:a1:0d:d3:44:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Jun 4 06:23:42 2026 GMT Not After : Jun 3 06:28:42 2027 GMT Subject: CN=B9658771282C683F9C1F897385AD8E0D9C4126F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:27:20:4c:79:f4:74:c9:50:5b:4b:fa:0c:7d: c1:0e:3b:8d:5f:7f:7c:fc:03:77:d4:b7:71:ca:52: 08:24:e4:90:81:18:53:77:e7:24:87:4b:3a:72:c6: 65:b3:24:67:14:ea:32:f7:d4:33:3f:93:bc:4a:b3: 2b:63:ad:14:a9:15:21:c4:42:ea:14:f8:3f:16:4d: c6:66:f0:93:25:d3:57:3c:59:ff:b9:cc:09:27:1f: 0e:86:41:8c:ce:8d:2d:cc:f1:63:ed:a0:19:98:64: f2:ca:9c:90:e7:7c:5c:13:9a:40:ba:6f:9c:da:6d: 10:3a:d6:cd:1d:0a:74:5c:61:8f:34:a3:62:76:84: 77:8b:7f:8d:f3:2c:1c:80:3b:e2:10:e6:b4:6d:93: 4d:f9:dd:f7:a1:ed:17:ba:db:70:68:59:07:80:8a: f8:ef:b9:85:e4:19:de:08:23:48:84:fa:40:de:6e: fb:51:cf:8d:62:26:e8:f1:bc:12:16:15:bc:f7:e2: 30:5e:95:a3:db:34:e8:75:f7:b1:4c:c8:eb:4e:6a: 7e:3b:60:c4:ab:3c:4a:a5:04:0f:db:cb:00:ee:bd: 77:4d:df:55:64:c7:0f:fa:65:82:46:41:a9:04:29: 1b:f2:88:28:44:8a:c8:ce:b6:74:d2:83:bb:6b:bc: 65:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:65:87:71:28:2C:68:3F:9C:1F:89:73:85:AD:8E:0D:9C:41:26:F0 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32342d3234203d3e203538343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.120.0/24 Signature Algorithm: sha256WithRSAEncryption 54:64:53:e9:6e:fa:be:b1:e5:c3:9d:25:e0:3a:0a:0d:a8:03: 69:8a:de:b1:24:0e:c7:d3:34:dc:59:08:12:52:e8:90:f9:93: 36:bb:c2:ac:72:65:09:4c:31:2c:6b:d9:3a:02:64:06:df:db: f0:1a:90:75:00:80:bb:b7:11:bb:0c:93:fd:b7:e1:33:ea:8b: ad:6c:08:bc:82:30:46:8c:e7:1f:ba:63:72:6f:f3:2f:c5:75: c9:43:b9:e1:3a:4e:78:1c:80:e4:9a:4f:cf:b2:f7:91:71:f3: 34:ab:5c:2b:77:ed:69:27:e9:9f:25:1d:c4:ce:52:fd:b9:5a: 89:30:ae:af:f1:6e:cf:07:c3:82:b0:23:46:5a:dd:c3:eb:81: 96:c4:2a:12:8a:36:6c:3c:bd:a9:35:de:20:3b:c7:79:32:e2: 34:0b:2c:28:c8:3c:0d:97:87:c5:3d:8d:5f:71:d7:2f:f3:54: 02:fd:03:12:44:7d:79:0c:b4:45:14:3a:f2:8f:22:d2:85:0f: 07:81:f0:fa:f8:c4:3c:f4:5b:18:8f:47:21:ca:57:af:89:47: 93:c3:43:66:18:c4:88:82:bf:b5:44:e6:4a:5f:27:d2:42:3c: b8:a4:3f:58:f3:7f:d3:f1:cf:59:9e:66:3b:4b:b7:af:4a:7b: 86:8b:24:19 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUegwRUNVg0JYLK9gvO+CooQ3TRIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA2MDQwNjIzNDJaFw0yNzA2MDMwNjI4NDJaMDMxMTAvBgNV BAMTKEI5NjU4NzcxMjgyQzY4M0Y5QzFGODk3Mzg1QUQ4RTBEOUM0MTI2RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKJyBMefR0yVBbS/oMfcEOO41f f3z8A3fUt3HKUggk5JCBGFN35ySHSzpyxmWzJGcU6jL31DM/k7xKsytjrRSpFSHE QuoU+D8WTcZm8JMl01c8Wf+5zAknHw6GQYzOjS3M8WPtoBmYZPLKnJDnfFwTmkC6 b5zabRA61s0dCnRcYY80o2J2hHeLf43zLByAO+IQ5rRtk0353feh7Re623BoWQeA ivjvuYXkGd4II0iE+kDebvtRz41iJujxvBIWFbz34jBelaPbNOh197FMyOtOan47 YMSrPEqlBA/bywDuvXdN31Vkxw/6ZYJGQakEKRvyiChEisjOtnTSg7trvGWZAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUuWWHcSgsaD+cH4lzha2ODZxBJvAwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjcyNzc1MjM1MTk0MDYwOS8wLzM0MzMyZTMyMzIz NTJlMzEzMjMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODM0MzYzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvheDANBgkqhkiG9w0BAQsFAAOCAQEAVGRT6W76vrHlw50l4DoKDagD aYresSQOx9M03FkIElLokPmTNrvCrHJlCUwxLGvZOgJkBt/b8BqQdQCAu7cRuwyT /bfhM+qLrWwIvIIwRoznH7pjcm/zL8V1yUO54TpOeByA5JpPz7L3kXHzNKtcK3ft aSfpnyUdxM5S/blaiTCur/FuzwfDgrAjRlrdw+uBlsQqEoo2bDy9qTXeIDvHeTLi NAssKMg8DZeHxT2NX3HXL/NUAv0DEkR9eQy0RRQ68o8i0oUPB4Hw+vjEPPRbGI9H IcpXr4lHk8NDZhjEiIK/tUTmSl8n0kI8uKQ/WPN/0/HPWZ5mO0u3r0p7hoskGQ== -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:11 2026 by rpki-client