$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136352e302f32342d3234203d3e203539303435.roa File: 34332e3233312e3136352e302f32342d3234203d3e203539303435.roa (raw, json) Hash identifier: P2w3Cn8q6VBjPyjAE+aGySX201BOvmk4osx5NsrSLsM= Subject key identifier: 88:32:9B:33:7B:A2:9F:37:B8:0C:A0:50:97:F4:83:04:17:A5:67:1E Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 54E45A22AE3CAC8B8634852A29D48E6D34946204 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136352e302f32342d3234203d3e203539303435.roa Signing time: Wed 20 May 2026 03:00:57 +0000 ROA not before: Wed 20 May 2026 02:55:57 +0000 ROA not after: Wed 19 May 2027 03:00:57 +0000 asID: 59045 IP address blocks: 43.231.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 20:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e4:5a:22:ae:3c:ac:8b:86:34:85:2a:29:d4:8e:6d:34:94:62:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:55:57 2026 GMT Not After : May 19 03:00:57 2027 GMT Subject: CN=88329B337BA29F37B80CA05097F4830417A5671E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:52:01:df:38:0b:73:96:1a:82:ae:f3:13:49: fe:35:85:52:13:ea:38:f9:d6:dc:e2:cc:42:8c:df: 10:b6:7f:c9:4c:56:e7:d6:bf:1e:d6:8e:d9:fb:0f: 3f:a9:5d:cd:01:4f:b4:5e:3b:32:b9:51:eb:21:86: cc:06:ff:e9:a2:88:82:ab:94:8d:4d:59:25:a2:17: b2:dd:3d:25:41:e9:e6:41:b2:18:ca:01:86:17:a7: 67:90:31:7c:74:fd:29:24:4e:5a:9d:7e:0b:6a:71: 37:f9:63:28:73:dc:9b:1f:14:55:dd:76:da:1e:57: ac:78:a3:87:9e:d7:05:15:64:72:60:3d:0f:8f:25: 4b:0e:7f:60:69:db:01:18:c4:e6:38:a6:d0:4f:46: 02:63:a3:d2:f0:7d:ee:e3:47:a7:c6:82:66:b8:61: c8:19:b3:28:4d:36:f9:75:b8:12:1a:a8:98:c6:67: 01:da:7e:80:ed:75:ed:38:c9:8a:4e:1f:24:85:db: 5c:0b:d8:00:06:b2:4f:76:3b:7b:44:26:61:31:a1: 1b:63:38:cd:2c:10:8e:58:01:65:2d:fe:d4:28:6b: 67:ad:3b:f5:6e:00:f7:c0:bb:e2:3b:67:fb:e7:40: d4:2e:c8:e4:6a:85:30:dd:d2:0d:65:16:91:5d:fb: 13:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:32:9B:33:7B:A2:9F:37:B8:0C:A0:50:97:F4:83:04:17:A5:67:1E X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136352e302f32342d3234203d3e203539303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.165.0/24 Signature Algorithm: sha256WithRSAEncryption 81:62:eb:9e:23:c0:de:a3:53:2b:ea:ac:38:92:89:65:88:6f: 57:3f:c1:fb:60:5d:66:ca:57:f5:3c:2b:2e:ed:52:e4:a8:32: 1f:d5:e5:c6:74:01:dd:b2:f8:71:c8:22:5b:d9:d0:20:b9:c9: 25:90:79:fd:ae:de:f0:ff:ad:42:df:ec:df:cc:f4:73:9a:33: b4:a9:78:00:99:86:4a:df:58:04:fb:51:39:9d:ee:61:76:f7: d9:2f:30:ce:ca:82:a2:25:64:d3:4b:64:17:70:09:00:a0:10: 29:35:a1:8f:5b:1a:da:d2:65:4a:0e:0f:85:18:61:37:54:88: 9c:6e:d0:7a:6e:1c:be:60:a2:a0:bc:55:fc:51:a4:25:70:2c: fc:e1:92:83:89:e2:69:cf:9b:43:04:20:5e:3b:57:23:51:a1: 99:cb:47:a1:c6:04:7b:b9:21:87:5e:8f:37:98:f8:91:29:c9: 25:6f:ca:c6:2f:21:9d:46:e2:fb:5a:d2:86:8f:24:55:92:26: f0:f6:9b:48:a4:9a:80:b8:68:59:54:54:34:98:e1:ab:35:ff: df:12:f1:12:d0:80:75:2e:f0:59:23:bf:72:b5:b7:3a:3a:20: 92:39:87:fc:8a:a5:0e:eb:f9:59:f3:c4:29:d5:4e:8b:5d:a6: 73:d3:f1:a7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUVORaIq48rIuGNIUqKdSObTSUYgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU1NTdaFw0yNzA1MTkwMzAwNTdaMDMxMTAvBgNV BAMTKDg4MzI5QjMzN0JBMjlGMzdCODBDQTA1MDk3RjQ4MzA0MTdBNTY3MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCAUgHfOAtzlhqCrvMTSf41hVIT 6jj51tzizEKM3xC2f8lMVufWvx7Wjtn7Dz+pXc0BT7ReOzK5UeshhswG/+miiIKr lI1NWSWiF7LdPSVB6eZBshjKAYYXp2eQMXx0/SkkTlqdfgtqcTf5Yyhz3JsfFFXd dtoeV6x4o4ee1wUVZHJgPQ+PJUsOf2Bp2wEYxOY4ptBPRgJjo9Lwfe7jR6fGgma4 YcgZsyhNNvl1uBIaqJjGZwHafoDtde04yYpOHySF21wL2AAGsk92O3tEJmExoRtj OM0sEI5YAWUt/tQoa2etO/VuAPfAu+I7Z/vnQNQuyORqhTDd0g1lFpFd+xMlAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUiDKbM3uinze4DKBQl/SDBBelZx4wHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnpTANBgkqhkiG9w0BAQsFAAOCAQEAgWLrniPA3qNTK+qsOJKJZYhv Vz/B+2BdZspX9TwrLu1S5KgyH9XlxnQB3bL4ccgiW9nQILnJJZB5/a7e8P+tQt/s 38z0c5oztKl4AJmGSt9YBPtROZ3uYXb32S8wzsqCoiVk00tkF3AJAKAQKTWhj1sa 2tJlSg4PhRhhN1SInG7Qem4cvmCioLxV/FGkJXAs/OGSg4niac+bQwQgXjtXI1Gh mctHocYEe7khh16PN5j4kSnJJW/Kxi8hnUbi+1rSho8kVZIm8PabSKSagLhoWVRU NJjhqzX/3xLxEtCAdS7wWSO/crW3OjogkjmH/IqlDuv5WfPEKdVOi12mc9Pxpw== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:34 2026 by rpki-client