$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132322e302f32342d3234203d3e20313339313732.roa File: 34332e3232352e3132322e302f32342d3234203d3e20313339313732.roa (raw, json) Hash identifier: U9C4jKTx7rRXR9rYzERv1KO7f0bJoM01OYbqq7lhR7k= Subject key identifier: BA:D2:D4:DD:75:07:CC:16:D3:09:BA:85:4A:6D:54:22:3C:BD:A4:93 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 0FC2D662B925EC81664D4FBAB4A45CD652987CD0 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132322e302f32342d3234203d3e20313339313732.roa Signing time: Mon 01 Jun 2026 07:26:08 +0000 ROA not before: Mon 01 Jun 2026 07:21:08 +0000 ROA not after: Mon 31 May 2027 07:26:08 +0000 asID: 139172 IP address blocks: 43.225.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 23:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c2:d6:62:b9:25:ec:81:66:4d:4f:ba:b4:a4:5c:d6:52:98:7c:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Jun 1 07:21:08 2026 GMT Not After : May 31 07:26:08 2027 GMT Subject: CN=BAD2D4DD7507CC16D309BA854A6D54223CBDA493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:83:11:28:51:be:55:a2:c6:42:bb:ac:9f:fd: 73:43:c2:ff:07:0f:da:de:83:ee:28:47:6c:4e:9e: fc:a5:04:1d:5f:67:0c:7d:4f:f6:3f:90:86:f9:11: 83:64:6a:b2:11:22:f5:ba:27:36:14:12:fa:18:32: 6b:b1:51:7e:27:04:aa:5e:3f:d2:94:f5:29:ed:d8: a2:ec:8e:25:33:ed:6e:18:c7:84:54:2b:e5:aa:58: db:53:22:e6:c0:35:74:78:f9:2a:46:20:7b:43:60: 69:cb:eb:e4:a1:d0:40:95:c8:0d:14:16:2a:66:d7: 66:13:2f:fc:5c:5b:e5:85:27:f1:26:07:fd:7f:f7: e9:a9:10:81:30:76:a5:71:97:ec:25:02:05:5c:f2: b8:da:81:52:dd:b4:31:ff:2f:14:af:14:8e:e2:4d: 5c:f2:ba:d8:6a:ca:bf:02:04:7d:2c:5c:9d:e7:6d: 8c:14:e9:30:e4:16:c2:bc:5e:6e:0a:b0:ec:87:f5: 0f:45:72:85:59:b8:27:79:bb:7e:41:dd:4d:c4:f9: 3e:b7:50:92:3a:15:03:ef:01:27:dc:26:a7:50:1e: 2a:b6:88:2d:dc:38:33:c9:4f:88:d3:e1:a7:fb:85: 43:66:8b:a8:75:cf:ae:29:6d:5d:7a:60:cb:de:91: e6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D2:D4:DD:75:07:CC:16:D3:09:BA:85:4A:6D:54:22:3C:BD:A4:93 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132322e302f32342d3234203d3e20313339313732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.122.0/24 Signature Algorithm: sha256WithRSAEncryption b2:89:5b:03:5d:36:68:91:ab:0a:81:2f:e8:94:0e:87:1d:16: 77:96:c2:0e:ab:6b:21:9c:e4:5f:25:44:29:6c:ed:5c:d3:34: 38:bc:f1:e0:33:60:42:fa:e8:98:98:0e:88:c5:f1:e6:3d:79: 54:dc:e1:b4:6b:ca:31:1f:80:f1:cb:bc:32:7e:e1:4c:3d:10: 3e:85:71:14:b5:8e:f7:39:42:28:17:82:20:b3:ca:7d:7f:4b: 52:43:78:2c:1b:eb:d1:71:a2:80:9d:27:1f:57:25:6d:96:06: 14:4e:13:e0:dc:71:55:1b:22:72:81:94:91:56:58:63:d5:75: 40:b8:d6:ed:c5:15:5b:36:4a:60:7b:81:3e:43:fe:e4:2a:a1: 07:fc:ed:41:98:b2:0b:44:04:fc:c3:2a:20:da:72:1e:ef:d1: 6c:82:69:1b:d4:98:b6:d9:7b:d9:17:3f:c2:7e:c3:cf:0d:09: 32:99:f6:1b:42:a1:b1:a8:68:43:b1:e2:55:66:91:16:09:2a: 8b:f0:1c:fb:1c:3c:6c:90:2a:1c:fa:b7:9c:f3:8e:8b:6c:2e: 12:4b:1c:82:13:ad:51:2f:38:a5:4f:76:8e:ec:b0:c5:4b:39: 6c:11:48:82:12:cb:08:a7:93:d4:4c:d5:ea:cb:93:cd:54:eb: 89:de:d9:41 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUD8LWYrkl7IFmTU+6tKRc1lKYfNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA2MDEwNzIxMDhaFw0yNzA1MzEwNzI2MDhaMDMxMTAvBgNV BAMTKEJBRDJENERENzUwN0NDMTZEMzA5QkE4NTRBNkQ1NDIyM0NCREE0OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/gxEoUb5VosZCu6yf/XNDwv8H D9reg+4oR2xOnvylBB1fZwx9T/Y/kIb5EYNkarIRIvW6JzYUEvoYMmuxUX4nBKpe P9KU9Snt2KLsjiUz7W4Yx4RUK+WqWNtTIubANXR4+SpGIHtDYGnL6+Sh0ECVyA0U Fipm12YTL/xcW+WFJ/EmB/1/9+mpEIEwdqVxl+wlAgVc8rjagVLdtDH/LxSvFI7i TVzyuthqyr8CBH0sXJ3nbYwU6TDkFsK8Xm4KsOyH9Q9FcoVZuCd5u35B3U3E+T63 UJI6FQPvASfcJqdQHiq2iC3cODPJT4jT4af7hUNmi6h1z64pbV16YMvekeYDAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUutLU3XUHzBbTCbqFSm1UIjy9pJMwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3Mjc3NTIzNTE5NDA2MDkvMC8zNDMzMmUzMjMy MzUyZTMxMzIzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzOTMxMzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACvhejANBgkqhkiG9w0BAQsFAAOCAQEAsolbA102aJGrCoEv6JQO hx0Wd5bCDqtrIZzkXyVEKWztXNM0OLzx4DNgQvromJgOiMXx5j15VNzhtGvKMR+A 8cu8Mn7hTD0QPoVxFLWO9zlCKBeCILPKfX9LUkN4LBvr0XGigJ0nH1clbZYGFE4T 4NxxVRsicoGUkVZYY9V1QLjW7cUVWzZKYHuBPkP+5CqhB/ztQZiyC0QE/MMqINpy Hu/RbIJpG9SYttl72Rc/wn7Dzw0JMpn2G0KhsahoQ7HiVWaRFgkqi/Ac+xw8bJAq HPq3nPOOi2wuEkscghOtUS84pU92juywxUs5bBFIghLLCKeT1EzV6suTzVTrid7Z QQ== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:58 2026 by rpki-client