$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136342e302f32342d3234203d3e203539303435.roa File: 34332e3233312e3136342e302f32342d3234203d3e203539303435.roa (raw, json) Hash identifier: TRXaBDgn4/52ym6X+l5H4r05polWjFlZPvb9W1ytskA= Subject key identifier: 67:7D:C7:67:FF:FC:68:72:76:5B:68:FE:D5:7F:CA:0B:0C:64:D9:19 Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 8FAF565A3EDD17832583887BE8BBD3651B6CE6 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136342e302f32342d3234203d3e203539303435.roa Signing time: Wed 20 May 2026 03:00:57 +0000 ROA not before: Wed 20 May 2026 02:55:57 +0000 ROA not after: Wed 19 May 2027 03:00:57 +0000 asID: 59045 IP address blocks: 43.231.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 20:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8f:af:56:5a:3e:dd:17:83:25:83:88:7b:e8:bb:d3:65:1b:6c:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:55:57 2026 GMT Not After : May 19 03:00:57 2027 GMT Subject: CN=677DC767FFFC6872765B68FED57FCA0B0C64D919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:14:7b:ea:98:b8:e8:ae:d2:9c:b2:8f:7a:4e: 14:13:1b:73:88:4f:bc:97:0c:46:fb:1e:48:46:ae: 0e:44:97:bb:f6:a4:f6:bd:11:e9:f6:2b:ca:15:10: 5c:77:31:9a:41:b0:8e:9f:0b:4a:e7:f4:3c:b9:db: 45:eb:9d:14:40:3e:51:84:95:46:b2:6a:dd:f6:39: 50:a1:0f:ba:a0:67:11:f8:33:45:2b:18:8b:6c:7c: 92:06:1b:76:3a:40:ef:64:ae:00:24:ae:f4:fc:14: d1:e5:d5:5f:6e:80:65:1a:9e:51:52:a4:f0:72:8c: a6:a1:c3:13:4b:a9:bf:5a:fb:75:06:45:bb:96:e7: 2c:f8:0c:86:8c:00:5d:9c:fd:78:28:9b:f3:78:70: 18:12:2a:a1:12:ce:ee:b1:5d:ce:33:d4:0f:a2:17: d0:b4:e7:c3:90:cf:8c:3c:bc:55:0f:5a:75:12:a9: a0:31:54:77:50:3d:61:8c:9b:09:f1:9a:54:52:56: 28:07:ff:91:ee:65:84:95:83:00:42:8a:33:44:fd: 0a:16:f4:f2:8b:a6:b7:8f:e8:8a:d0:a8:03:13:a8: 7f:85:83:6c:a3:6e:96:7a:b3:7f:23:44:12:55:33: df:22:ff:3a:19:c5:51:47:0c:61:30:1b:01:ab:ab: 79:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:7D:C7:67:FF:FC:68:72:76:5B:68:FE:D5:7F:CA:0B:0C:64:D9:19 X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136342e302f32342d3234203d3e203539303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.164.0/24 Signature Algorithm: sha256WithRSAEncryption 93:ff:15:90:bc:69:1b:09:4e:7e:55:27:3c:53:6b:a0:53:eb: 5a:d0:e7:5f:8e:59:ad:b3:cb:eb:59:20:83:b6:53:e0:ce:8c: c6:d2:4e:b8:58:d5:56:dd:84:8b:6d:93:9c:8f:9d:5e:5b:c2: 85:af:d5:3e:65:90:65:09:8b:ef:ab:8c:d2:ea:c8:7e:9e:c8: e5:f6:42:c4:c1:e5:63:fd:f2:40:94:2c:5b:9b:39:60:15:6e: b4:31:85:5f:77:11:5c:d8:7a:1c:bd:c2:14:d5:42:de:10:2d: 2c:8d:e5:3a:b4:da:95:fd:aa:2b:43:3f:9e:41:8e:93:dc:80: c7:2a:8b:b2:c8:a3:6a:fe:bf:ce:79:dd:4c:95:3f:cc:97:b1: 91:fc:5a:6c:b2:92:e7:ff:eb:07:d4:77:85:3c:52:76:99:e5: cd:b2:2f:b1:17:77:70:ae:92:22:9d:4d:0d:c9:b7:7c:ac:7f: 7a:85:1f:38:c2:de:ac:71:9c:95:da:b9:db:d3:4c:18:a8:85: 9b:89:a1:c6:86:45:bf:f2:15:87:f3:fc:3d:c0:6a:f3:6d:a4: c5:3c:36:92:99:f9:93:c8:84:5b:62:cc:0e:fa:66:a0:ff:98: cd:6b:4b:59:33:de:4e:cb:06:f0:cd:a1:1f:a5:ec:93:45:46: 1b:5a:8b:28 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUAI+vVlo+3ReDJYOIe+i702UbbOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU1NTdaFw0yNzA1MTkwMzAwNTdaMDMxMTAvBgNV BAMTKDY3N0RDNzY3RkZGQzY4NzI3NjVCNjhGRUQ1N0ZDQTBCMEM2NEQ5MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5FHvqmLjortKcso96ThQTG3OI T7yXDEb7HkhGrg5El7v2pPa9Een2K8oVEFx3MZpBsI6fC0rn9Dy520XrnRRAPlGE lUayat32OVChD7qgZxH4M0UrGItsfJIGG3Y6QO9krgAkrvT8FNHl1V9ugGUanlFS pPByjKahwxNLqb9a+3UGRbuW5yz4DIaMAF2c/Xgom/N4cBgSKqESzu6xXc4z1A+i F9C058OQz4w8vFUPWnUSqaAxVHdQPWGMmwnxmlRSVigH/5HuZYSVgwBCijNE/QoW 9PKLpreP6IrQqAMTqH+Fg2yjbpZ6s38jRBJVM98i/zoZxVFHDGEwGwGrq3kNAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUZ33HZ//8aHJ2W2j+1X/KCwxk2RkwHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnpDANBgkqhkiG9w0BAQsFAAOCAQEAk/8VkLxpGwlOflUnPFNroFPr WtDnX45ZrbPL61kgg7ZT4M6MxtJOuFjVVt2Ei22TnI+dXlvCha/VPmWQZQmL76uM 0urIfp7I5fZCxMHlY/3yQJQsW5s5YBVutDGFX3cRXNh6HL3CFNVC3hAtLI3lOrTa lf2qK0M/nkGOk9yAxyqLssijav6/znndTJU/zJexkfxabLKS5//rB9R3hTxSdpnl zbIvsRd3cK6SIp1NDcm3fKx/eoUfOMLerHGcldq529NMGKiFm4mhxoZFv/IVh/P8 PcBq822kxTw2kpn5k8iEW2LMDvpmoP+YzWtLWTPeTssG8M2hH6Xsk0VGG1qLKA== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:33 2026 by rpki-client