$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136312e302f32342d3234203d3e2034383038.roa File: 34332e3233312e3136312e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: 8nIeiB251IaYlgVWGWgYRtlBq7njmt2I6qe1VI8ltrQ= Subject key identifier: 0F:C0:AF:A3:7B:81:6E:3D:DA:2F:0F:02:61:09:86:72:90:7D:86:DD Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 68FB6AACD176D891318BC50CD17993320098F260 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136312e302f32342d3234203d3e2034383038.roa Signing time: Wed 20 May 2026 02:59:51 +0000 ROA not before: Wed 20 May 2026 02:54:51 +0000 ROA not after: Wed 19 May 2027 02:59:51 +0000 asID: 4808 IP address blocks: 43.231.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:fb:6a:ac:d1:76:d8:91:31:8b:c5:0c:d1:79:93:32:00:98:f2:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:51 2026 GMT Not After : May 19 02:59:51 2027 GMT Subject: CN=0FC0AFA37B816E3DDA2F0F0261098672907D86DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d3:e9:65:5d:52:04:a4:8e:e8:74:20:e4:38: aa:95:c4:70:f5:48:bc:0f:61:8b:fb:b3:67:71:9a: 57:2a:f6:83:7a:1c:d6:48:55:6e:3a:ec:64:ed:45: c4:ce:b8:5f:fd:d7:62:0b:6f:37:12:7d:31:cc:ab: 69:b6:a5:97:6e:13:9a:eb:d0:ac:bc:00:0a:d1:04: b6:11:f1:21:18:37:85:73:a8:d6:8f:62:9c:40:d0: fe:08:52:a3:84:47:13:e9:76:cf:0f:9c:d0:2a:3a: 22:14:ca:8c:3d:e4:c7:ce:11:9b:0d:8d:9c:95:a9: bd:28:2b:b9:01:10:31:f9:06:e5:89:f9:7c:4b:fd: 59:a6:3d:78:28:0d:fa:4b:30:11:6b:9c:b7:36:f8: 2c:dd:4d:db:16:fa:29:09:4c:55:90:cb:fd:34:75: d5:58:77:0a:e9:c8:ee:a6:b1:f6:2e:6c:8a:2e:95: e0:7c:67:7f:c4:34:2d:a2:5b:ee:6c:02:17:16:46: 65:19:47:d7:07:47:fb:54:40:22:2d:bb:15:77:4b: df:a8:82:a2:6c:2d:46:27:3a:1e:49:51:f8:a2:4c: 2d:84:48:dd:31:5c:88:da:be:9f:85:d2:06:33:71: 40:ff:35:0b:ed:11:74:fa:73:ce:72:51:0e:78:ea: 06:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C0:AF:A3:7B:81:6E:3D:DA:2F:0F:02:61:09:86:72:90:7D:86:DD X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136312e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.161.0/24 Signature Algorithm: sha256WithRSAEncryption 28:7c:3b:e9:d0:ca:02:8a:c5:6d:4e:f1:09:77:46:81:f9:c7: 57:33:36:59:0f:0d:b5:ae:fb:1a:be:c3:8f:ab:dc:63:67:a3: fb:62:d5:25:72:81:fc:1c:a6:6d:cb:b5:34:32:30:cf:c2:7b: e6:36:9a:10:f7:45:dd:f1:4b:28:eb:07:d5:cf:d3:8f:2d:c8: fb:b5:23:5b:b7:1b:ec:7c:d6:2c:bc:aa:e1:d4:b8:80:56:d7: 0e:3e:76:ba:5d:a0:ec:a3:4c:63:d4:41:2c:98:5a:c4:96:cb: 5f:cb:b5:12:e8:56:74:2a:6f:ed:ac:d4:97:f4:d0:4d:08:35: 12:48:d5:ca:74:31:03:3b:02:cd:52:5d:5f:80:0c:12:3f:11: 3a:42:9e:02:55:9c:42:43:8a:23:bf:7a:93:e2:0c:dc:28:a2: 89:90:2f:ef:67:12:72:43:ba:79:d9:aa:df:30:f2:cc:3d:23: 80:6a:71:97:e4:cc:6d:fe:b0:e4:cf:18:7c:f2:89:4e:e1:ce: ca:cf:b3:25:e2:fc:29:0c:03:55:c4:bd:3d:2e:02:d0:db:f1: e6:b6:ef:14:39:07:35:6e:e2:f2:a5:c6:67:ea:89:00:20:0c: 87:75:eb:62:58:99:f4:26:12:4c:a6:cf:0a:7c:8d:61:b6:c0: ae:01:67:bb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUaPtqrNF22JExi8UM0XmTMgCY8mAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTFaFw0yNzA1MTkwMjU5NTFaMDMxMTAvBgNV BAMTKDBGQzBBRkEzN0I4MTZFM0REQTJGMEYwMjYxMDk4NjcyOTA3RDg2REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc0+llXVIEpI7odCDkOKqVxHD1 SLwPYYv7s2dxmlcq9oN6HNZIVW467GTtRcTOuF/912ILbzcSfTHMq2m2pZduE5rr 0Ky8AArRBLYR8SEYN4VzqNaPYpxA0P4IUqOERxPpds8PnNAqOiIUyow95MfOEZsN jZyVqb0oK7kBEDH5BuWJ+XxL/VmmPXgoDfpLMBFrnLc2+CzdTdsW+ikJTFWQy/00 ddVYdwrpyO6msfYubIouleB8Z3/ENC2iW+5sAhcWRmUZR9cHR/tUQCItuxV3S9+o gqJsLUYnOh5JUfiiTC2ESN0xXIjavp+F0gYzcUD/NQvtEXT6c85yUQ546gZVAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUD8Cvo3uBbj3aLw8CYQmGcpB9ht0wHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDQ3NDMwNzQ4MTc2Mzg3LzAvMzQzMzJlMzIzMzMx MmUzMTM2MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvnoTANBgkqhkiG9w0BAQsFAAOCAQEAKHw76dDKAorFbU7xCXdGgfnHVzM2 WQ8Nta77Gr7Dj6vcY2ej+2LVJXKB/Bymbcu1NDIwz8J75jaaEPdF3fFLKOsH1c/T jy3I+7UjW7cb7HzWLLyq4dS4gFbXDj52ul2g7KNMY9RBLJhaxJbLX8u1EuhWdCpv 7azUl/TQTQg1EkjVynQxAzsCzVJdX4AMEj8ROkKeAlWcQkOKI796k+IM3CiiiZAv 72cSckO6edmq3zDyzD0jgGpxl+TMbf6w5M8YfPKJTuHOys+zJeL8KQwDVcS9PS4C 0Nvx5rbvFDkHNW7i8qXGZ+qJACAMh3XrYliZ9CYSTKbPCnyNYbbArgFnuw== -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:51 2026 by rpki-client