$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136312e302f32342d3234203d3e203233373234.roa File: 34332e3233312e3136312e302f32342d3234203d3e203233373234.roa (raw, json) Hash identifier: rjzSBfM4QFloW2G0lnm7U5heJ8Y10odYzplLbPiFyvw= Subject key identifier: 3D:0A:31:BA:6B:B8:3F:86:91:48:5B:3E:9E:86:F1:62:8D:65:2D:FB Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 10B3F4B6AD66A625777D23A88AC4BB06F55761B9 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136312e302f32342d3234203d3e203233373234.roa Signing time: Wed 20 May 2026 02:59:51 +0000 ROA not before: Wed 20 May 2026 02:54:51 +0000 ROA not after: Wed 19 May 2027 02:59:51 +0000 asID: 23724 IP address blocks: 43.231.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 07:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:b3:f4:b6:ad:66:a6:25:77:7d:23:a8:8a:c4:bb:06:f5:57:61:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:51 2026 GMT Not After : May 19 02:59:51 2027 GMT Subject: CN=3D0A31BA6BB83F8691485B3E9E86F1628D652DFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:14:a8:ac:d7:41:93:52:b7:8d:bc:54:03:39: bd:26:4e:6d:37:d1:fa:3e:eb:74:eb:00:1a:d2:97: dd:f1:fd:7e:16:f4:1a:ab:f4:5d:28:32:e0:38:e2: cf:c7:5d:05:df:15:e9:7c:c4:f5:60:ab:d4:6f:94: 5f:de:5a:64:12:58:63:f6:4e:df:e9:db:1b:d0:ed: 61:e8:ef:b8:05:24:4f:7b:1d:ed:91:6a:fa:3c:28: 41:99:fc:a4:18:ae:93:99:e8:56:f9:3d:e5:26:c2: 01:8f:ca:de:39:90:98:52:35:09:57:2f:76:6a:7e: fb:4f:ea:4f:99:bd:a9:3a:a6:d3:9c:6c:c0:62:83: dc:51:37:5f:61:9a:0e:7d:f8:c8:0a:5c:15:66:77: e6:3b:8b:8c:7c:ba:7c:bf:94:97:17:6f:5d:46:4c: 7d:a0:1d:f5:28:d2:0c:78:40:27:33:72:78:58:6f: 63:7f:cc:3a:93:c0:81:c8:59:a8:71:e4:9c:d5:68: 09:46:0b:bf:6b:b0:bb:81:3e:b9:24:f6:fb:95:0d: b8:0f:d5:ae:76:e4:ee:79:8d:6e:81:87:50:81:50: 01:47:50:d8:16:91:21:b1:84:4f:4b:28:a5:1c:b6: a9:1c:b5:7c:3e:e8:2c:9d:43:f1:2b:a6:55:1d:d4: ad:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:0A:31:BA:6B:B8:3F:86:91:48:5B:3E:9E:86:F1:62:8D:65:2D:FB X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136312e302f32342d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.161.0/24 Signature Algorithm: sha256WithRSAEncryption 54:4c:e7:18:4a:29:b0:ed:05:7b:b0:41:91:b6:6e:01:95:e6: ef:a3:ea:bd:f1:89:8c:fd:d8:00:eb:17:40:ee:fe:df:3a:ea: e8:68:1a:47:30:27:93:ec:e4:63:87:7b:11:19:cb:14:98:a1: d4:12:a1:40:5f:7a:eb:42:d4:60:df:82:00:f3:f6:59:cc:ea: 23:0f:70:97:96:64:c6:d3:58:2a:f0:f8:8c:77:46:7d:2b:7b: e4:8d:26:61:e1:ee:23:44:e5:43:f6:33:9c:d2:eb:15:95:60: 97:77:f4:95:80:ec:19:9c:8b:66:ed:52:3c:55:17:79:2b:2e: 0f:d1:28:28:24:6e:a6:e7:73:77:3d:b8:ea:20:2e:cc:a0:69: 70:87:34:b4:8c:7b:44:21:25:d3:0e:bf:cc:db:dd:0a:b7:35: 5c:ae:7c:04:ec:2e:e9:87:2b:dd:76:98:de:92:45:fc:46:a1: 2f:b8:83:ef:4e:ab:e5:ef:73:73:92:0d:11:08:8a:39:71:88: aa:ac:5c:d5:ea:4f:3d:5d:41:a4:35:b1:64:42:5c:c5:2c:e2: ed:22:75:98:b9:24:94:8c:3b:00:ad:47:fd:71:e7:fa:53:88: 73:8b:90:c2:e2:10:83:e4:50:11:03:1e:d9:6d:9a:ce:69:b1: f6:72:4b:d1 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUELP0tq1mpiV3fSOoisS7BvVXYbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTFaFw0yNzA1MTkwMjU5NTFaMDMxMTAvBgNV BAMTKDNEMEEzMUJBNkJCODNGODY5MTQ4NUIzRTlFODZGMTYyOEQ2NTJERkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfFKis10GTUreNvFQDOb0mTm03 0fo+63TrABrSl93x/X4W9Bqr9F0oMuA44s/HXQXfFel8xPVgq9RvlF/eWmQSWGP2 Tt/p2xvQ7WHo77gFJE97He2Ravo8KEGZ/KQYrpOZ6Fb5PeUmwgGPyt45kJhSNQlX L3ZqfvtP6k+Zvak6ptOcbMBig9xRN19hmg59+MgKXBVmd+Y7i4x8uny/lJcXb11G TH2gHfUo0gx4QCczcnhYb2N/zDqTwIHIWahx5JzVaAlGC79rsLuBPrkk9vuVDbgP 1a525O55jW6Bh1CBUAFHUNgWkSGxhE9LKKUctqkctXw+6CydQ/ErplUd1K31AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUPQoxumu4P4aRSFs+nobxYo1lLfswHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnoTANBgkqhkiG9w0BAQsFAAOCAQEAVEznGEopsO0Fe7BBkbZuAZXm 76PqvfGJjP3YAOsXQO7+3zrq6GgaRzAnk+zkY4d7ERnLFJih1BKhQF9660LUYN+C APP2WczqIw9wl5ZkxtNYKvD4jHdGfSt75I0mYeHuI0TlQ/YznNLrFZVgl3f0lYDs GZyLZu1SPFUXeSsuD9EoKCRupudzdz246iAuzKBpcIc0tIx7RCEl0w6/zNvdCrc1 XK58BOwu6Ycr3XaY3pJF/EahL7iD706r5e9zc5INEQiKOXGIqqxc1epPPV1BpDWx ZEJcxSzi7SJ1mLkklIw7AK1H/XHn+lOIc4uQwuIQg+RQEQMe2W2azmmx9nJL0Q== -----END CERTIFICATE-----Generated at Sat May 30 00:42:46 2026 by rpki-client