$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132332e302f32342d3234203d3e203538343631.roa File: 34332e3232352e3132332e302f32342d3234203d3e203538343631.roa (raw, json) Hash identifier: m3FTLANLS8cypI2W4KzENWvRInvHTwXyyVRGuhc+wRM= Subject key identifier: 44:E0:EC:A3:7F:6D:ED:C1:9D:09:CB:DA:28:B6:A9:56:86:49:91:8F Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 42FE2A5459379E8B1665E33F2223CEA6A6AF1BF0 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132332e302f32342d3234203d3e203538343631.roa Signing time: Thu 04 Jun 2026 06:28:42 +0000 ROA not before: Thu 04 Jun 2026 06:23:42 +0000 ROA not after: Thu 03 Jun 2027 06:28:42 +0000 asID: 58461 IP address blocks: 43.225.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:fe:2a:54:59:37:9e:8b:16:65:e3:3f:22:23:ce:a6:a6:af:1b:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Jun 4 06:23:42 2026 GMT Not After : Jun 3 06:28:42 2027 GMT Subject: CN=44E0ECA37F6DEDC19D09CBDA28B6A9568649918F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fd:1d:62:1d:3f:bf:22:fd:ee:76:61:1d:e9: 9b:16:61:a6:c2:35:68:c0:64:03:94:30:fe:0b:05: 55:cb:0d:90:9c:ba:1f:cf:75:47:d3:23:ba:2f:17: d2:1e:a9:b9:19:fb:db:00:47:71:ba:7c:4a:ac:67: 37:c8:32:ee:ed:29:4f:f5:44:7e:3c:81:7d:91:90: e4:73:66:e5:d6:2e:4c:70:4f:b4:f2:4e:ca:a1:50: 34:d7:31:98:7d:ef:4c:f8:0c:50:4e:cc:b9:93:42: d9:c2:77:29:39:2b:72:c1:40:f0:80:8f:d1:94:73: 2c:f6:1b:77:dc:c9:60:ae:9a:7f:36:fe:a9:dc:ed: c7:34:30:ae:bd:22:13:b0:e2:f7:c0:e1:0b:6d:a2: eb:80:c6:e5:bb:7b:28:15:b8:9e:59:d4:86:fa:db: 61:78:d9:5a:35:c5:eb:64:6e:b3:01:c9:d0:95:b4: 77:15:c7:fa:f7:9d:d3:b4:bb:47:2e:80:2a:f1:4e: 40:2a:4f:8a:58:ad:c5:07:a6:d0:c2:16:71:e6:76: 17:bd:55:44:a1:2f:c9:53:1e:28:7b:65:f4:9f:68: 70:e8:ab:d4:49:7d:f8:2c:73:ed:71:60:95:8f:ce: fc:ad:25:f4:e8:75:62:02:de:f9:18:19:44:c5:7d: ef:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E0:EC:A3:7F:6D:ED:C1:9D:09:CB:DA:28:B6:A9:56:86:49:91:8F X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132332e302f32342d3234203d3e203538343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.123.0/24 Signature Algorithm: sha256WithRSAEncryption 13:ee:dc:d6:e3:8f:8f:95:45:24:6d:01:cf:bc:2a:26:4a:b6: 01:dc:5e:15:a4:56:44:ef:ac:e6:7d:ec:e7:af:f2:3a:8a:42: bf:31:92:bf:6e:72:e9:c1:ff:d7:41:a2:95:2f:41:99:9e:6b: 8d:8b:56:d7:33:28:2b:42:74:a0:0c:21:98:99:0b:ed:e3:d4: 96:d6:cd:30:b0:9b:5a:d9:b5:41:fa:0c:a1:a4:1e:33:1c:34: f2:40:c8:f7:dc:ca:cd:74:34:40:2a:7a:3c:c4:a5:6a:70:89: b4:f6:42:ee:26:63:ad:7d:ae:43:c9:6b:04:c9:f6:76:a4:ae: f0:ac:24:1e:67:a0:fb:89:c5:0e:c9:86:19:0e:72:89:2d:a4: d8:0a:e4:97:f7:a0:95:a3:ca:3b:ec:b4:33:a1:08:7c:8f:f0: e2:01:68:e7:7a:46:9a:7d:90:ce:cd:04:2f:8c:a0:07:3b:d0: e7:97:51:4e:ad:4e:94:4c:2b:ed:13:2d:2a:7c:e3:c4:5f:e5: a4:dc:9f:7e:3f:c4:b9:c5:41:c1:34:80:7f:83:b4:cf:e3:d2: 70:36:8a:e9:58:66:9c:f4:d6:6f:f4:fe:cb:b4:0e:72:41:ce: d1:6c:4b:cc:5c:35:81:48:89:8b:5c:90:74:68:67:41:ff:64: b2:21:23:e4 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQv4qVFk3nosWZeM/IiPOpqavG/AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA2MDQwNjIzNDJaFw0yNzA2MDMwNjI4NDJaMDMxMTAvBgNV BAMTKDQ0RTBFQ0EzN0Y2REVEQzE5RDA5Q0JEQTI4QjZBOTU2ODY0OTkxOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF/R1iHT+/Iv3udmEd6ZsWYabC NWjAZAOUMP4LBVXLDZCcuh/PdUfTI7ovF9IeqbkZ+9sAR3G6fEqsZzfIMu7tKU/1 RH48gX2RkORzZuXWLkxwT7TyTsqhUDTXMZh970z4DFBOzLmTQtnCdyk5K3LBQPCA j9GUcyz2G3fcyWCumn82/qnc7cc0MK69IhOw4vfA4QttouuAxuW7eygVuJ5Z1Ib6 22F42Vo1xetkbrMBydCVtHcVx/r3ndO0u0cugCrxTkAqT4pYrcUHptDCFnHmdhe9 VUShL8lTHih7ZfSfaHDoq9RJffgsc+1xYJWPzvytJfTodWIC3vkYGUTFfe+FAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQURODso39t7cGdCcvaKLapVoZJkY8wHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjcyNzc1MjM1MTk0MDYwOS8wLzM0MzMyZTMyMzIz NTJlMzEzMjMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODM0MzYzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvhezANBgkqhkiG9w0BAQsFAAOCAQEAE+7c1uOPj5VFJG0Bz7wqJkq2 AdxeFaRWRO+s5n3s56/yOopCvzGSv25y6cH/10GilS9BmZ5rjYtW1zMoK0J0oAwh mJkL7ePUltbNMLCbWtm1QfoMoaQeMxw08kDI99zKzXQ0QCp6PMSlanCJtPZC7iZj rX2uQ8lrBMn2dqSu8KwkHmeg+4nFDsmGGQ5yiS2k2Arkl/eglaPKO+y0M6EIfI/w 4gFo53pGmn2Qzs0EL4ygBzvQ55dRTq1OlEwr7RMtKnzjxF/lpNyffj/EucVBwTSA f4O0z+PScDaK6VhmnPTWb/T+y7QOckHO0WxLzFw1gUiJi1yQdGhnQf9ksiEj5A== -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:09 2026 by rpki-client