$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136302e302f32342d3234203d3e203539303435.roa File: 34332e3233312e3136302e302f32342d3234203d3e203539303435.roa (raw, json) Hash identifier: k8nCn4GHRCXa4bAadqGp/HXrDu2HbCC1RzZ2PjlcArw= Subject key identifier: 73:3B:1D:1C:2B:7E:0A:D3:3C:68:10:21:15:50:F0:63:1E:3F:CE:05 Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 6FEBD40DB5B2D6765F0CBD9AF44517AD0FABB0F6 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136302e302f32342d3234203d3e203539303435.roa Signing time: Wed 20 May 2026 02:59:51 +0000 ROA not before: Wed 20 May 2026 02:54:51 +0000 ROA not after: Wed 19 May 2027 02:59:51 +0000 asID: 59045 IP address blocks: 43.231.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 20:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:eb:d4:0d:b5:b2:d6:76:5f:0c:bd:9a:f4:45:17:ad:0f:ab:b0:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:51 2026 GMT Not After : May 19 02:59:51 2027 GMT Subject: CN=733B1D1C2B7E0AD33C6810211550F0631E3FCE05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:d7:47:e7:86:4f:08:17:b8:e3:2a:66:54:7c: 28:6d:7e:e3:24:f1:1e:bc:4e:39:f5:48:ec:ec:10: 4a:4d:01:3a:0c:39:d7:68:6a:b5:fb:78:e1:10:f0: f4:a4:2f:f1:5b:b6:e5:69:d1:89:6b:e2:fc:53:e8: 47:e7:df:50:58:43:af:e5:a6:09:51:4b:ed:8d:69: 94:bc:ef:a1:01:73:25:be:bf:a2:0c:63:a6:87:37: d7:3a:dd:5d:19:29:c7:ae:25:c6:e5:b3:a7:58:ad: 97:f2:e7:01:5d:f0:be:38:17:5a:b8:e8:b8:ab:3b: b9:af:28:43:ab:cc:bb:58:b7:66:ea:f8:83:10:fc: 0a:77:b6:0a:bf:79:f3:9d:f8:8f:3f:ca:9e:b6:7e: 26:d0:c6:b4:d0:48:05:d0:ab:91:8c:9b:ae:16:b8: 26:d7:6d:e2:03:d8:6a:77:35:03:23:cc:f8:06:df: 11:36:4c:17:29:10:03:2b:7b:e6:9d:e8:61:c8:bd: ff:1a:4d:46:08:c6:d4:59:5a:87:ba:0b:8b:41:38: 4d:58:b0:36:34:2b:de:b0:e1:aa:57:ee:c3:96:29: 6f:55:29:0e:87:84:0b:94:60:fd:02:9a:c4:2f:db: d8:4f:83:0e:da:85:f3:17:79:aa:c6:db:8e:15:9b: a9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3B:1D:1C:2B:7E:0A:D3:3C:68:10:21:15:50:F0:63:1E:3F:CE:05 X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136302e302f32342d3234203d3e203539303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.160.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:8e:cc:8b:65:09:0d:4b:be:04:9a:4f:0d:83:9b:4f:85:32: bb:ee:12:14:1d:62:77:73:b6:11:02:2f:f8:93:fd:a5:59:df: 94:d5:7e:d7:69:9c:63:13:71:54:d3:7e:73:9c:f3:a3:97:4e: f0:3b:9c:f2:57:a8:3e:6f:58:61:01:40:7d:ea:8d:33:be:1c: 2c:04:61:1b:7a:20:79:20:82:d5:a4:14:62:2b:df:57:1a:1b: d2:3b:96:27:3f:b9:6a:0c:e2:3d:12:6c:f2:8d:3f:c5:fe:d4: 65:45:ef:1a:f2:74:e0:4c:bd:e9:38:0e:63:01:cd:4b:94:34: 1e:5a:9a:94:d0:a3:35:3f:e5:e8:28:af:1c:48:52:b1:ed:70: 81:59:0e:87:74:bf:e3:db:bc:59:44:d5:48:4e:f0:c0:4d:fc: 4a:2d:fa:e9:31:02:23:4e:c0:3c:d1:d7:d4:7e:01:12:ec:59: 6f:6a:84:d4:22:4f:c9:6f:fe:93:13:2b:80:3e:03:d2:af:94: c9:48:b3:52:a8:d4:ef:c4:e0:00:5e:52:08:72:61:f2:58:43: 1e:7d:9f:4e:fa:9c:f2:27:e7:19:fb:ea:0a:0d:7b:9c:97:aa: 0e:c4:58:9d:24:61:c3:1d:6f:b5:46:8b:5d:24:d1:bb:a9:67: 3f:f9:73:e9 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUb+vUDbWy1nZfDL2a9EUXrQ+rsPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTFaFw0yNzA1MTkwMjU5NTFaMDMxMTAvBgNV BAMTKDczM0IxRDFDMkI3RTBBRDMzQzY4MTAyMTE1NTBGMDYzMUUzRkNFMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQ10fnhk8IF7jjKmZUfChtfuMk 8R68Tjn1SOzsEEpNAToMOddoarX7eOEQ8PSkL/FbtuVp0Ylr4vxT6Efn31BYQ6/l pglRS+2NaZS876EBcyW+v6IMY6aHN9c63V0ZKceuJcbls6dYrZfy5wFd8L44F1q4 6LirO7mvKEOrzLtYt2bq+IMQ/Ap3tgq/efOd+I8/yp62fibQxrTQSAXQq5GMm64W uCbXbeID2Gp3NQMjzPgG3xE2TBcpEAMre+ad6GHIvf8aTUYIxtRZWoe6C4tBOE1Y sDY0K96w4apX7sOWKW9VKQ6HhAuUYP0CmsQv29hPgw7ahfMXearG244Vm6kDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUczsdHCt+CtM8aBAhFVDwYx4/zgUwHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnoDANBgkqhkiG9w0BAQsFAAOCAQEAX47Mi2UJDUu+BJpPDYObT4Uy u+4SFB1id3O2EQIv+JP9pVnflNV+12mcYxNxVNN+c5zzo5dO8Duc8leoPm9YYQFA feqNM74cLARhG3ogeSCC1aQUYivfVxob0juWJz+5agziPRJs8o0/xf7UZUXvGvJ0 4Ey96TgOYwHNS5Q0HlqalNCjNT/l6CivHEhSse1wgVkOh3S/49u8WUTVSE7wwE38 Si366TECI07APNHX1H4BEuxZb2qE1CJPyW/+kxMrgD4D0q+UyUizUqjU78TgAF5S CHJh8lhDHn2fTvqc8ifnGfvqCg17nJeqDsRYnSRhwx1vtUaLXSTRu6lnP/lz6Q== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:34 2026 by rpki-client