$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136372e302f32342d3234203d3e203233373234.roa File: 34332e3233312e3136372e302f32342d3234203d3e203233373234.roa (raw, json) Hash identifier: A2ZcgYufZNsYqIVGV/dEfam7F/PbIk4Us5BfawUJzrQ= Subject key identifier: 92:C0:C5:ED:3E:5F:44:2B:BE:84:CC:D3:77:63:BB:3F:72:EA:DE:BA Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 5A9D4ED9EAA9683C5C92FDFE7DAE000DFACB0E5A Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136372e302f32342d3234203d3e203233373234.roa Signing time: Wed 20 May 2026 02:59:51 +0000 ROA not before: Wed 20 May 2026 02:54:51 +0000 ROA not after: Wed 19 May 2027 02:59:51 +0000 asID: 23724 IP address blocks: 43.231.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 07:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:9d:4e:d9:ea:a9:68:3c:5c:92:fd:fe:7d:ae:00:0d:fa:cb:0e:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:51 2026 GMT Not After : May 19 02:59:51 2027 GMT Subject: CN=92C0C5ED3E5F442BBE84CCD37763BB3F72EADEBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:65:6c:18:11:90:8e:7e:db:57:9c:83:e1:8f: ce:65:ce:8e:3a:ad:e5:ce:4d:77:33:5a:f8:6b:50: a9:1f:60:c6:60:33:e3:36:97:da:be:fd:91:38:41: 86:92:87:94:f5:37:e5:ad:6c:86:cc:af:94:77:72: 15:88:d8:41:11:27:4d:97:90:f7:66:90:c8:42:be: cf:8c:99:81:ef:6e:67:70:b0:fd:01:b7:ce:c9:4c: 5a:84:ba:86:20:9d:e6:b2:7c:93:35:15:ab:45:ce: b8:a8:0a:4e:89:55:47:fd:4c:09:04:b0:68:6a:26: 70:91:d4:d2:44:c3:f6:98:37:ef:68:26:57:e5:e4: 6e:76:a1:cf:f2:df:e7:66:a1:ee:31:a6:4c:00:81: 52:b3:d6:70:1f:a2:6e:da:5c:8f:52:93:a5:73:13: 7f:fb:46:97:30:34:c2:28:5f:47:0e:f2:9d:34:dc: 42:08:d7:ce:2f:6d:77:60:1e:88:2a:72:9e:ea:a3: bc:b5:53:60:2e:ba:f9:a7:ca:65:74:53:97:ba:af: 05:f3:23:2b:db:33:66:2c:8c:97:cd:b1:8b:5b:d9: bb:ab:89:83:08:a9:3b:1b:02:43:a8:20:f2:51:cb: 6f:82:2e:cd:e5:19:35:e4:4d:d6:ca:7b:52:db:4d: 66:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C0:C5:ED:3E:5F:44:2B:BE:84:CC:D3:77:63:BB:3F:72:EA:DE:BA X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136372e302f32342d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.167.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:ae:45:1e:03:b9:cc:77:e5:7b:be:d0:49:fa:15:fc:6e:96: 49:45:a4:14:97:21:8d:64:46:4c:d8:5d:20:7a:53:00:2c:1c: c8:c6:d9:f1:cf:4e:c0:5a:55:dc:fd:aa:b9:24:76:72:09:25: aa:38:77:25:4c:77:91:98:af:b7:c7:a3:0b:ac:6c:b1:19:e2: 0a:1a:1a:96:ba:58:f1:9d:26:86:61:77:a7:77:b8:e4:21:c6: 3c:f8:78:d9:7f:1a:db:2f:e7:bf:5b:3e:2f:82:eb:13:07:ba: bc:7d:5f:a2:ea:0c:43:92:a5:f4:db:09:95:9d:74:ee:c6:e2: 59:81:99:3a:46:02:08:3b:03:bc:30:1d:b6:de:6d:a8:7b:68: 04:ff:41:e7:1d:84:ee:56:8f:33:26:61:fd:06:e5:f2:2c:3b: 94:f7:9f:79:5d:d3:fe:5f:08:89:39:bd:26:9c:86:26:27:c3: 0f:23:6d:23:86:88:9d:06:e7:cb:f0:04:82:97:18:04:cc:86: b6:77:a9:25:81:e4:57:1c:6b:5a:ea:04:36:f9:0b:ed:93:39: 53:44:ca:db:c9:91:5f:b5:f4:69:34:d0:0b:7a:88:ca:ee:42: 73:ed:b4:46:53:78:46:f2:9f:08:e7:ba:50:e6:4b:5b:ef:a8: fd:7a:81:80 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUWp1O2eqpaDxckv3+fa4ADfrLDlowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTFaFw0yNzA1MTkwMjU5NTFaMDMxMTAvBgNV BAMTKDkyQzBDNUVEM0U1RjQ0MkJCRTg0Q0NEMzc3NjNCQjNGNzJFQURFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAZWwYEZCOfttXnIPhj85lzo46 reXOTXczWvhrUKkfYMZgM+M2l9q+/ZE4QYaSh5T1N+WtbIbMr5R3chWI2EERJ02X kPdmkMhCvs+MmYHvbmdwsP0Bt87JTFqEuoYgneayfJM1FatFzrioCk6JVUf9TAkE sGhqJnCR1NJEw/aYN+9oJlfl5G52oc/y3+dmoe4xpkwAgVKz1nAfom7aXI9Sk6Vz E3/7RpcwNMIoX0cO8p003EII184vbXdgHogqcp7qo7y1U2AuuvmnymV0U5e6rwXz IyvbM2YsjJfNsYtb2buriYMIqTsbAkOoIPJRy2+CLs3lGTXkTdbKe1LbTWbLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUksDF7T5fRCu+hMzTd2O7P3Lq3rowHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnpzANBgkqhkiG9w0BAQsFAAOCAQEAPK5FHgO5zHfle77QSfoV/G6W SUWkFJchjWRGTNhdIHpTACwcyMbZ8c9OwFpV3P2quSR2cgklqjh3JUx3kZivt8ej C6xssRniChoalrpY8Z0mhmF3p3e45CHGPPh42X8a2y/nv1s+L4LrEwe6vH1fouoM Q5Kl9NsJlZ107sbiWYGZOkYCCDsDvDAdtt5tqHtoBP9B5x2E7laPMyZh/Qbl8iw7 lPefeV3T/l8IiTm9JpyGJifDDyNtI4aInQbny/AEgpcYBMyGtnepJYHkVxxrWuoE NvkL7ZM5U0TK28mRX7X0aTTQC3qIyu5Cc+20RlN4RvKfCOe6UOZLW++o/XqBgA== -----END CERTIFICATE-----Generated at Sat May 30 00:42:54 2026 by rpki-client