$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136342e302f32342d3234203d3e2034383038.roa File: 34332e3233312e3136342e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: uyXBkHjNtSnoZeCj7/Cxh8i8AfdLFlQpCwN7RMB6PU8= Subject key identifier: 4F:6F:B9:29:AA:E9:38:94:7A:39:B5:9D:B2:EB:57:F9:82:A9:4E:6F Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 107011A8E1DA2C9F931ECA6965CF2DBF20288FF1 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136342e302f32342d3234203d3e2034383038.roa Signing time: Wed 20 May 2026 02:59:50 +0000 ROA not before: Wed 20 May 2026 02:54:50 +0000 ROA not after: Wed 19 May 2027 02:59:50 +0000 asID: 4808 IP address blocks: 43.231.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:70:11:a8:e1:da:2c:9f:93:1e:ca:69:65:cf:2d:bf:20:28:8f:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:50 2026 GMT Not After : May 19 02:59:50 2027 GMT Subject: CN=4F6FB929AAE938947A39B59DB2EB57F982A94E6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:96:6b:9c:66:0c:02:39:7f:15:9e:8f:f5:6c: 46:9b:2b:5c:54:20:c7:c1:2e:a4:b6:2a:29:de:44: 41:0b:00:89:08:52:09:16:5a:9f:d4:d9:24:94:df: ed:cb:7e:73:0e:18:08:ee:02:05:b0:69:99:6e:19: 54:7e:18:fe:66:19:c7:e5:05:ba:39:a7:67:c3:4e: 21:eb:1a:5e:8c:3f:d0:ff:32:63:8b:f5:09:31:c1: 89:eb:a8:cf:f3:12:db:1c:4d:80:e3:3c:ab:bd:6e: 18:20:d8:f4:0a:2b:05:06:7b:78:29:65:10:2f:18: 15:c4:09:d7:78:7a:5f:df:16:eb:b1:48:f9:69:07: ec:9b:13:58:b9:6b:de:9b:f1:00:cf:fe:46:54:a5: 80:19:44:71:3e:f9:48:54:7c:47:ae:42:c2:1e:e0: fe:f9:0d:a3:49:06:2e:69:e4:c5:a6:59:5f:80:b6: 2b:14:dc:2b:12:b8:40:0f:8a:9d:96:da:8d:f2:31: ca:c0:2c:a4:8b:4e:65:53:f9:df:63:79:01:09:d1: f7:7b:05:3e:fb:a7:c2:3b:a2:27:9d:35:ab:80:fa: b4:f8:91:bb:2a:d7:2c:fa:eb:e9:2b:df:22:66:1f: 2a:f7:79:03:1b:72:34:d9:ca:c3:c4:2a:64:f1:0d: 31:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6F:B9:29:AA:E9:38:94:7A:39:B5:9D:B2:EB:57:F9:82:A9:4E:6F X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136342e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.164.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:d5:61:51:f7:85:76:3f:16:a7:fd:14:f4:1c:10:3e:16:09: b6:3b:0e:bb:e9:ed:78:64:09:cc:7f:c5:aa:ad:1a:83:70:2d: 04:be:c6:80:bd:64:89:11:d3:5e:a6:cb:6e:6e:e9:b6:08:1f: f5:b7:21:90:6d:f8:8f:f9:52:22:b6:eb:34:67:42:d2:bc:23: 45:ff:17:5d:37:5a:ff:06:da:75:dc:43:3f:b9:59:a2:a6:6d: a5:54:f4:3d:b0:01:3d:b0:e6:31:27:6e:1b:1c:03:f8:2a:00: e7:be:a7:f2:80:fa:25:3e:d3:ea:c2:36:67:db:5c:79:62:fd: e8:46:ec:9e:63:7f:2e:4e:e5:fe:9b:16:2e:18:fe:bb:78:db: 24:f5:0d:ba:d5:bc:50:5d:84:69:26:fe:b5:14:12:2f:5f:7c: 42:88:99:e1:69:fc:17:0f:07:a1:1c:6d:1d:7e:98:3b:de:59: 0d:0e:31:a0:fe:bd:34:8a:96:ae:e0:f9:e3:d6:2c:47:d0:f2: f8:88:1c:22:5e:08:87:3d:ec:49:ec:fd:7e:42:7a:65:06:99: 82:26:e4:b0:d5:b3:81:78:30:64:72:31:4d:a2:31:82:9c:a1: 61:08:a5:da:4c:a3:58:69:aa:69:2e:19:e1:4a:05:fa:c4:7e: c8:7b:ba:bf -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUEHARqOHaLJ+THsppZc8tvyAoj/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTBaFw0yNzA1MTkwMjU5NTBaMDMxMTAvBgNV BAMTKDRGNkZCOTI5QUFFOTM4OTQ3QTM5QjU5REIyRUI1N0Y5ODJBOTRFNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwlmucZgwCOX8Vno/1bEabK1xU IMfBLqS2KineREELAIkIUgkWWp/U2SSU3+3LfnMOGAjuAgWwaZluGVR+GP5mGcfl Bbo5p2fDTiHrGl6MP9D/MmOL9QkxwYnrqM/zEtscTYDjPKu9bhgg2PQKKwUGe3gp ZRAvGBXECdd4el/fFuuxSPlpB+ybE1i5a96b8QDP/kZUpYAZRHE++UhUfEeuQsIe 4P75DaNJBi5p5MWmWV+AtisU3CsSuEAPip2W2o3yMcrALKSLTmVT+d9jeQEJ0fd7 BT77p8I7oiedNauA+rT4kbsq1yz66+kr3yJmHyr3eQMbcjTZysPEKmTxDTFfAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUT2+5KarpOJR6ObWdsutX+YKpTm8wHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDQ3NDMwNzQ4MTc2Mzg3LzAvMzQzMzJlMzIzMzMx MmUzMTM2MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvnpDANBgkqhkiG9w0BAQsFAAOCAQEAC9VhUfeFdj8Wp/0U9BwQPhYJtjsO u+nteGQJzH/Fqq0ag3AtBL7GgL1kiRHTXqbLbm7ptggf9bchkG34j/lSIrbrNGdC 0rwjRf8XXTda/wbaddxDP7lZoqZtpVT0PbABPbDmMSduGxwD+CoA576n8oD6JT7T 6sI2Z9tceWL96EbsnmN/Lk7l/psWLhj+u3jbJPUNutW8UF2EaSb+tRQSL198QoiZ 4Wn8Fw8HoRxtHX6YO95ZDQ4xoP69NIqWruD549YsR9Dy+IgcIl4Ihz3sSez9fkJ6 ZQaZgibksNWzgXgwZHIxTaIxgpyhYQil2kyjWGmqaS4Z4UoF+sR+yHu6vw== -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:15 2026 by rpki-client