$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136352e302f32342d3234203d3e2034383038.roa File: 34332e3233312e3136352e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: d/XWda+qAId3HrqJLJ/ELxQxJigM0ZDtn3cu5cPMToM= Subject key identifier: B5:B1:9A:F1:D8:AC:68:03:D3:09:FF:8E:D3:61:87:B4:FF:95:5D:A1 Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 6AB9F57EAAFC24B1C892A738DEB85CB7B11B2587 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136352e302f32342d3234203d3e2034383038.roa Signing time: Wed 20 May 2026 02:59:51 +0000 ROA not before: Wed 20 May 2026 02:54:51 +0000 ROA not after: Wed 19 May 2027 02:59:51 +0000 asID: 4808 IP address blocks: 43.231.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:b9:f5:7e:aa:fc:24:b1:c8:92:a7:38:de:b8:5c:b7:b1:1b:25:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:51 2026 GMT Not After : May 19 02:59:51 2027 GMT Subject: CN=B5B19AF1D8AC6803D309FF8ED36187B4FF955DA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ea:74:92:61:1e:a9:0c:a8:4f:68:94:67:eb: b2:53:05:4e:ee:96:28:8f:7b:80:97:d6:47:64:32: a5:84:44:3b:e4:f8:f3:ec:99:5c:d0:43:b6:cb:24: cd:ef:86:23:68:91:2c:de:be:e3:4c:d0:93:81:2e: 43:dc:8a:5c:99:8e:dd:91:ac:d7:61:70:d0:b9:78: c6:6e:be:44:41:19:44:33:9d:f7:82:81:5a:13:32: ab:57:4b:35:9a:43:f7:5b:03:14:bf:79:dc:ec:a6: 69:67:e0:f4:c6:e9:d3:14:65:6a:14:1e:ad:ae:f8: 9c:20:ef:72:90:bc:6f:8c:4f:72:5f:ad:e8:0c:4c: 23:b5:e4:0d:dc:d9:36:b6:95:9a:37:28:38:b1:6a: 35:63:31:f9:f5:bb:3d:8f:41:e2:b6:f2:de:d7:97: ec:4a:f5:fc:da:c1:75:f2:f9:2d:b9:66:d1:fb:7c: 0b:45:45:5e:d0:49:a1:e2:66:e5:46:b3:5c:13:c0: b3:ba:c5:26:8b:22:7e:a2:0c:3a:12:3b:bf:95:0e: a3:77:a3:1d:ad:1d:a7:9b:23:db:c5:3e:cd:94:b4: 12:9c:6a:d0:2d:a6:02:f2:68:c1:89:9f:ef:bb:90: 5f:8f:71:3a:b3:38:72:7d:1f:b9:2e:47:27:75:c3: 5a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B1:9A:F1:D8:AC:68:03:D3:09:FF:8E:D3:61:87:B4:FF:95:5D:A1 X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136352e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.165.0/24 Signature Algorithm: sha256WithRSAEncryption 55:a7:93:11:94:9f:24:2c:a3:6d:d8:ab:f9:92:03:42:7a:fe: 65:b3:3e:d2:e6:fe:50:31:8b:d9:b9:c1:3d:0a:98:d6:e9:05: 80:f6:a8:1e:8b:fc:a8:2e:aa:09:0d:07:95:23:a7:83:21:23: 7d:db:82:d0:f2:31:bd:0c:a8:a8:3f:84:5f:e7:a2:74:3d:8a: da:a3:63:b9:cc:47:cd:df:0b:3c:5d:c4:73:88:e3:67:04:3b: e2:b8:31:e6:7c:71:37:8a:b3:5a:1c:4b:19:2f:8b:a9:ac:74: 1c:dd:31:c4:48:59:55:0d:31:3a:aa:33:3e:27:ea:c7:3f:8d: d2:97:cf:72:aa:9b:99:77:17:31:6a:b5:34:20:0f:f8:32:b5: ec:19:6c:13:ea:d1:f9:2f:b8:3e:89:03:9f:e6:cd:d0:5e:52: 93:c5:fa:dc:d8:2a:df:e9:ea:a6:b8:c7:3d:db:6b:1d:d8:a0: 04:54:ee:9d:6e:cd:ef:52:3d:e8:f6:5a:7d:38:e6:61:2d:5a: 41:71:e7:ad:8a:25:0a:64:eb:fb:ba:49:96:31:7c:f3:ac:91: c6:d1:cb:2e:2c:f8:fe:e1:f2:5b:68:b6:9a:6d:d4:d6:40:8b: 88:1c:4a:f8:5b:a8:77:7d:e6:20:ff:75:c6:50:f8:5e:00:75: 4b:d1:d0:fd -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUarn1fqr8JLHIkqc43rhct7EbJYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTFaFw0yNzA1MTkwMjU5NTFaMDMxMTAvBgNV BAMTKEI1QjE5QUYxRDhBQzY4MDNEMzA5RkY4RUQzNjE4N0I0RkY5NTVEQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw6nSSYR6pDKhPaJRn67JTBU7u liiPe4CX1kdkMqWERDvk+PPsmVzQQ7bLJM3vhiNokSzevuNM0JOBLkPcilyZjt2R rNdhcNC5eMZuvkRBGUQznfeCgVoTMqtXSzWaQ/dbAxS/edzspmln4PTG6dMUZWoU Hq2u+Jwg73KQvG+MT3JfregMTCO15A3c2Ta2lZo3KDixajVjMfn1uz2PQeK28t7X l+xK9fzawXXy+S25ZtH7fAtFRV7QSaHiZuVGs1wTwLO6xSaLIn6iDDoSO7+VDqN3 ox2tHaebI9vFPs2UtBKcatAtpgLyaMGJn++7kF+PcTqzOHJ9H7kuRyd1w1prAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUtbGa8disaAPTCf+O02GHtP+VXaEwHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDQ3NDMwNzQ4MTc2Mzg3LzAvMzQzMzJlMzIzMzMx MmUzMTM2MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvnpTANBgkqhkiG9w0BAQsFAAOCAQEAVaeTEZSfJCyjbdir+ZIDQnr+ZbM+ 0ub+UDGL2bnBPQqY1ukFgPaoHov8qC6qCQ0HlSOngyEjfduC0PIxvQyoqD+EX+ei dD2K2qNjucxHzd8LPF3Ec4jjZwQ74rgx5nxxN4qzWhxLGS+Lqax0HN0xxEhZVQ0x OqozPifqxz+N0pfPcqqbmXcXMWq1NCAP+DK17BlsE+rR+S+4PokDn+bN0F5Sk8X6 3Ngq3+nqprjHPdtrHdigBFTunW7N71I96PZafTjmYS1aQXHnrYolCmTr+7pJljF8 86yRxtHLLiz4/uHyW2i2mm3U1kCLiBxK+Fuod33mIP91xlD4XgB1S9HQ/Q== -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:15 2026 by rpki-client