$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136362e302f32342d3234203d3e203539303435.roa File: 34332e3233312e3136362e302f32342d3234203d3e203539303435.roa (raw, json) Hash identifier: 7js4KyKImpomSg+LF70j2/SfmbowekJ3CaRqBA+USmU= Subject key identifier: 30:DF:62:44:CD:74:46:1C:D4:77:BC:C5:F0:F1:F5:E9:E1:F6:54:1E Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 0BB407A1A0A9E52F303B239647E20B20FCD74CE5 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136362e302f32342d3234203d3e203539303435.roa Signing time: Wed 20 May 2026 03:00:58 +0000 ROA not before: Wed 20 May 2026 02:55:58 +0000 ROA not after: Wed 19 May 2027 03:00:58 +0000 asID: 59045 IP address blocks: 43.231.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 20:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b4:07:a1:a0:a9:e5:2f:30:3b:23:96:47:e2:0b:20:fc:d7:4c:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:55:58 2026 GMT Not After : May 19 03:00:58 2027 GMT Subject: CN=30DF6244CD74461CD477BCC5F0F1F5E9E1F6541E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:86:c5:ba:95:be:60:8d:47:29:f3:56:79:36: be:00:7c:7f:9a:87:21:2b:fa:eb:51:ad:57:26:f4: c1:96:84:aa:7a:6d:be:f6:8b:b4:3f:a9:cd:40:cf: e2:a0:32:fb:99:09:e6:af:32:2c:13:43:f8:b3:23: af:59:4f:2d:0d:a8:f1:19:94:bd:23:4b:2d:ff:b2: 96:77:df:b2:9a:78:c3:06:7f:4d:45:36:df:98:67: eb:c8:23:d0:f9:fb:51:a6:f0:a8:9a:6c:18:4d:96: 0e:a9:ae:d0:12:68:d4:eb:4a:38:5e:a8:25:dd:bb: d9:1e:57:63:1b:3e:86:a4:7e:f5:d3:6d:3b:0d:fd: 2a:a6:76:9a:31:1f:fb:83:48:d9:49:22:1d:4b:ec: 02:c1:e0:24:40:e1:7e:d5:94:03:8f:70:cc:8d:62: 8b:3d:71:a5:37:c8:c0:f2:d1:71:3e:e8:96:f9:84: e9:bd:e8:56:c5:b7:bc:58:99:f2:53:15:ff:7b:7e: 07:6d:0d:d5:1c:9a:48:19:2f:19:42:47:b8:d6:df: fd:34:6f:47:d0:c2:63:bf:b6:dd:a3:d5:d3:c4:e3: 13:ed:5e:42:39:79:ca:f8:b1:53:57:af:4a:f8:5e: c3:bd:c8:b6:ed:a9:6b:f2:6c:87:13:e0:13:3b:b4: b1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DF:62:44:CD:74:46:1C:D4:77:BC:C5:F0:F1:F5:E9:E1:F6:54:1E X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136362e302f32342d3234203d3e203539303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.166.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:ed:61:0a:8f:b8:38:5b:a1:77:86:7d:24:a7:cf:d9:64:ec: 41:d6:80:69:8b:6b:1a:79:5a:a1:e1:1b:6e:36:23:d4:3e:77: 14:72:f1:82:be:7e:c9:33:f9:50:06:bb:7d:88:27:66:d2:7a: 42:67:cf:ef:92:bb:22:9b:8e:89:f5:37:8b:4d:1a:cf:17:e6: ef:d7:40:f9:e6:12:49:38:34:37:db:d3:62:ee:95:aa:75:09: a5:6c:e9:cb:5a:cf:aa:31:ef:12:73:25:46:76:11:7a:98:77: e8:a3:e9:76:d0:ee:78:a2:ab:92:a3:46:01:81:ea:b9:8e:e6: 4b:ed:f8:69:38:8a:db:d1:31:7c:2e:b7:55:b4:b6:93:42:f5: d9:05:d2:98:c9:9c:7a:fb:72:12:63:5f:df:d8:d5:6e:58:68: 2b:43:e4:de:af:38:4b:56:bd:42:d1:fb:54:b1:d6:31:f3:ff: af:bd:ae:62:24:ac:68:27:6d:8b:da:96:d9:06:31:0f:94:9e: 01:73:57:8f:33:af:b7:a0:9d:18:4f:9d:35:4c:b5:fe:36:22: 7f:3d:03:a9:05:b7:51:97:2d:86:07:ab:be:db:cf:11:4e:34: 20:81:36:e7:15:68:b3:e7:13:6a:59:9f:e7:e6:32:27:c8:29: 33:c9:ab:ca -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUC7QHoaCp5S8wOyOWR+ILIPzXTOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU1NThaFw0yNzA1MTkwMzAwNThaMDMxMTAvBgNV BAMTKDMwREY2MjQ0Q0Q3NDQ2MUNENDc3QkNDNUYwRjFGNUU5RTFGNjU0MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3hsW6lb5gjUcp81Z5Nr4AfH+a hyEr+utRrVcm9MGWhKp6bb72i7Q/qc1Az+KgMvuZCeavMiwTQ/izI69ZTy0NqPEZ lL0jSy3/spZ337KaeMMGf01FNt+YZ+vII9D5+1Gm8KiabBhNlg6prtASaNTrSjhe qCXdu9keV2MbPoakfvXTbTsN/SqmdpoxH/uDSNlJIh1L7ALB4CRA4X7VlAOPcMyN Yos9caU3yMDy0XE+6Jb5hOm96FbFt7xYmfJTFf97fgdtDdUcmkgZLxlCR7jW3/00 b0fQwmO/tt2j1dPE4xPtXkI5ecr4sVNXr0r4XsO9yLbtqWvybIcT4BM7tLH1AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUMN9iRM10RhzUd7zF8PH16eH2VB4wHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnpjANBgkqhkiG9w0BAQsFAAOCAQEAGu1hCo+4OFuhd4Z9JKfP2WTs QdaAaYtrGnlaoeEbbjYj1D53FHLxgr5+yTP5UAa7fYgnZtJ6QmfP75K7IpuOifU3 i00azxfm79dA+eYSSTg0N9vTYu6VqnUJpWzpy1rPqjHvEnMlRnYReph36KPpdtDu eKKrkqNGAYHquY7mS+34aTiK29ExfC63VbS2k0L12QXSmMmcevtyEmNf39jVblho K0Pk3q84S1a9QtH7VLHWMfP/r72uYiSsaCdti9qW2QYxD5SeAXNXjzOvt6CdGE+d NUy1/jYifz0DqQW3UZcthgervtvPEU40IIE25xVos+cTalmf5+YyJ8gpM8mryg== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:59 2026 by rpki-client