$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136322e302f32342d3234203d3e203233373234.roa File: 34332e3233312e3136322e302f32342d3234203d3e203233373234.roa (raw, json) Hash identifier: BdQR9FXri1FMEeb1fzW3vWWtY74O1uVL20hYCCh8JN8= Subject key identifier: F3:68:CA:19:3C:C4:E2:18:D7:97:D2:7F:94:0F:5F:F7:B8:D0:23:CA Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 5183194B1B2079AC9625A0B378C16644BFF63F18 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136322e302f32342d3234203d3e203233373234.roa Signing time: Wed 20 May 2026 02:59:51 +0000 ROA not before: Wed 20 May 2026 02:54:51 +0000 ROA not after: Wed 19 May 2027 02:59:51 +0000 asID: 23724 IP address blocks: 43.231.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 07:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:83:19:4b:1b:20:79:ac:96:25:a0:b3:78:c1:66:44:bf:f6:3f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:51 2026 GMT Not After : May 19 02:59:51 2027 GMT Subject: CN=F368CA193CC4E218D797D27F940F5FF7B8D023CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:cb:87:4a:a1:0f:ba:b4:90:7f:05:5d:60:7f: 04:69:c0:ba:06:42:a3:e3:31:f0:19:4c:2a:8b:3b: 64:49:8d:e6:af:2e:0b:1d:5f:8a:01:0c:c5:e2:e3: 7f:e5:e4:f4:6d:92:e8:8e:b4:a5:ec:87:7f:e4:5d: 15:0f:7e:2c:e9:3f:db:be:b5:43:f2:93:7c:07:0e: a1:2c:ee:b7:13:30:f5:8b:bc:a2:e2:7a:89:a5:dc: 14:f9:b9:63:5a:cb:35:ca:1e:2d:6f:90:b5:70:9f: 1c:41:32:2c:72:03:43:81:e3:51:95:48:1f:d0:48: 2d:47:62:de:40:f3:d3:ec:63:46:85:e1:3f:11:e6: 8c:2b:0d:fd:d0:8c:e7:9a:c5:3e:78:94:38:b5:86: 40:92:54:94:f1:5b:ff:99:1b:d0:3c:6c:55:ed:4a: 24:22:a4:5f:b5:5c:c9:be:4e:8e:a0:25:ca:42:49: ce:7f:be:bd:58:57:64:d7:02:92:54:d0:fb:96:c0: c2:32:03:7d:a0:b9:8a:d7:66:3d:a0:4e:e3:40:57: 88:76:f9:f8:2a:45:24:36:d6:9e:58:29:2f:a7:2b: b8:d4:be:71:f7:fe:f2:f8:69:bf:e0:59:8a:76:e1: 3f:50:a1:ce:f6:07:d7:0e:20:ca:96:5c:db:6a:90: 0a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:68:CA:19:3C:C4:E2:18:D7:97:D2:7F:94:0F:5F:F7:B8:D0:23:CA X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136322e302f32342d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.162.0/24 Signature Algorithm: sha256WithRSAEncryption 42:42:33:8f:94:3d:7c:fe:bd:1f:59:fe:cb:d9:b9:0a:58:5c: 4c:6d:ae:08:4d:c8:a0:b6:66:da:15:21:76:59:59:63:a7:31: c7:9c:b5:5b:ee:b2:61:57:dc:59:a8:0b:2b:d6:b4:7c:25:9e: 73:e6:3a:4b:fe:5a:c4:a0:f6:ed:bb:92:68:6d:7d:8d:da:99: 0c:10:9c:36:99:9c:34:3c:8f:f4:dc:41:91:06:a3:53:7f:18: 3b:9d:cc:67:ad:62:77:d5:f0:82:66:0c:e6:6a:e6:ed:54:17: 7d:4d:20:75:ad:27:7b:80:64:ad:5c:70:a4:e8:d5:44:c0:c9: 2f:de:28:2a:2d:34:34:31:2a:20:e9:83:1c:fd:08:e9:d3:5a: 1b:7e:37:18:74:22:a6:97:7a:da:54:d7:8b:dc:7e:bf:c9:86: 3b:ac:82:1f:cd:61:7b:30:94:e6:81:21:43:ed:fb:20:cc:b0: aa:99:dc:db:e3:68:3c:7d:1e:dd:58:2a:c6:74:aa:ab:f2:7d: 1e:54:2e:5f:0a:24:c3:86:83:ab:15:77:66:61:d6:7f:fb:68: ec:a1:92:97:f5:93:d6:a5:a5:5a:01:fa:0a:da:e5:05:1e:ba: 8b:11:a0:eb:30:f5:0d:56:e8:d7:f6:21:b4:87:03:4f:4b:09: 9e:58:8b:64 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUUYMZSxsgeayWJaCzeMFmRL/2PxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTFaFw0yNzA1MTkwMjU5NTFaMDMxMTAvBgNV BAMTKEYzNjhDQTE5M0NDNEUyMThENzk3RDI3Rjk0MEY1RkY3QjhEMDIzQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYy4dKoQ+6tJB/BV1gfwRpwLoG QqPjMfAZTCqLO2RJjeavLgsdX4oBDMXi43/l5PRtkuiOtKXsh3/kXRUPfizpP9u+ tUPyk3wHDqEs7rcTMPWLvKLieoml3BT5uWNayzXKHi1vkLVwnxxBMixyA0OB41GV SB/QSC1HYt5A89PsY0aF4T8R5owrDf3QjOeaxT54lDi1hkCSVJTxW/+ZG9A8bFXt SiQipF+1XMm+To6gJcpCSc5/vr1YV2TXApJU0PuWwMIyA32guYrXZj2gTuNAV4h2 +fgqRSQ21p5YKS+nK7jUvnH3/vL4ab/gWYp24T9Qoc72B9cOIMqWXNtqkAotAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU82jKGTzE4hjXl9J/lA9f97jQI8owHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnojANBgkqhkiG9w0BAQsFAAOCAQEAQkIzj5Q9fP69H1n+y9m5Clhc TG2uCE3IoLZm2hUhdllZY6cxx5y1W+6yYVfcWagLK9a0fCWec+Y6S/5axKD27buS aG19jdqZDBCcNpmcNDyP9NxBkQajU38YO53MZ61id9XwgmYM5mrm7VQXfU0gda0n e4BkrVxwpOjVRMDJL94oKi00NDEqIOmDHP0I6dNaG343GHQippd62lTXi9x+v8mG O6yCH81hezCU5oEhQ+37IMywqpnc2+NoPH0e3VgqxnSqq/J9HlQuXwokw4aDqxV3 ZmHWf/to7KGSl/WT1qWlWgH6CtrlBR66ixGg6zD1DVbo1/YhtIcDT0sJnliLZA== -----END CERTIFICATE-----Generated at Sat May 30 00:42:54 2026 by rpki-client