$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136372e302f32342d3234203d3e2034383038.roa File: 34332e3233312e3136372e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: MQCBmxAJSDHPnHo1i75aRqt3aiM6O3RFbLkUM1Vtt/Q= Subject key identifier: 7D:E3:2F:97:82:D7:9E:03:54:87:CB:25:C5:EC:A9:61:63:9A:C2:0B Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 78E783D6355B860452FDAFC040F2A2BA2960020E Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136372e302f32342d3234203d3e2034383038.roa Signing time: Wed 20 May 2026 02:59:51 +0000 ROA not before: Wed 20 May 2026 02:54:51 +0000 ROA not after: Wed 19 May 2027 02:59:51 +0000 asID: 4808 IP address blocks: 43.231.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e7:83:d6:35:5b:86:04:52:fd:af:c0:40:f2:a2:ba:29:60:02:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:51 2026 GMT Not After : May 19 02:59:51 2027 GMT Subject: CN=7DE32F9782D79E035487CB25C5ECA961639AC20B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a6:8e:83:e2:aa:bc:60:0c:e4:00:e7:cf:9d: 9e:ad:25:11:7e:2b:1d:6c:46:8f:e2:25:5e:d1:0f: cc:e3:15:dc:63:aa:92:e9:89:73:7f:ec:49:14:29: 56:9d:7b:24:25:e3:17:19:a3:b4:2f:13:ff:51:16: f7:1b:c7:00:5d:24:76:0d:b7:17:7e:93:29:86:57: c6:51:76:b3:f9:22:5c:14:c0:38:6a:b8:88:1d:b6: 05:e6:48:51:64:ff:98:3c:f5:2c:1d:67:d1:a1:16: f4:37:46:d9:0a:8e:66:0f:fd:f6:4d:b6:d3:2f:62: 31:63:6a:8f:1b:aa:2f:5a:09:d2:97:d9:16:9e:e4: b9:af:a0:65:ee:78:22:d4:37:b5:de:4f:ad:f0:1c: ea:4e:01:76:9d:d9:fa:7f:83:47:9b:0d:28:2b:6a: e6:cd:fb:16:d2:57:29:8f:aa:a5:01:e1:ca:ee:a8: 44:f9:75:67:d4:f6:3b:34:f1:f6:7e:e6:38:00:a1: 64:6d:bf:27:dd:27:ac:83:e5:da:f4:67:c2:50:2a: ac:19:bb:02:46:fc:82:9c:e8:bc:86:97:eb:67:5e: 1a:ec:ff:0b:83:a4:11:55:81:44:8b:1d:5b:21:ee: 88:50:e9:fd:cc:b9:1a:f9:15:99:ae:6c:66:b2:38: 30:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E3:2F:97:82:D7:9E:03:54:87:CB:25:C5:EC:A9:61:63:9A:C2:0B X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136372e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.167.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:bf:f0:97:b2:01:47:83:f9:ed:ca:5c:3e:fa:19:b8:52:2f: 06:1a:c9:f2:b3:64:34:b2:3b:e0:7d:17:80:f3:03:b9:96:53: d3:a0:0a:a1:a7:e2:bc:b5:bd:69:96:85:18:6f:1b:92:10:3b: 29:4e:9e:38:f5:a9:6d:ca:9f:58:73:a0:58:05:c5:70:3d:a8: 4d:2a:21:65:01:da:e2:10:ea:b0:72:32:35:57:1a:5e:3d:4c: e5:3a:96:39:cd:ff:4d:a3:49:9d:a0:57:d0:9a:fd:13:06:6f: 2d:42:d3:f7:2a:7f:20:13:3d:78:4b:c6:eb:6b:bd:55:f5:7f: 1a:8a:7d:ca:07:6d:15:0e:fb:73:db:fa:6e:92:95:19:03:37: b7:64:a5:a6:ef:19:86:9e:05:1a:97:bf:34:1c:d6:c8:25:1d: 69:ec:eb:13:91:fa:9d:33:52:78:5a:4f:aa:2b:51:39:ba:4e: bd:39:25:08:ad:87:69:25:de:b8:9b:68:16:e5:ac:8b:0f:4b: cf:2a:84:be:60:b9:af:45:37:58:9b:a0:fc:38:aa:9e:45:99: 0d:d1:a0:d2:21:15:32:e6:5f:91:ba:5c:1e:c4:a2:0b:69:d4: 79:69:e6:03:8e:b7:dc:81:f8:6f:54:00:bf:09:a6:49:56:1b: 78:27:da:3d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUeOeD1jVbhgRS/a/AQPKiuilgAg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTFaFw0yNzA1MTkwMjU5NTFaMDMxMTAvBgNV BAMTKDdERTMyRjk3ODJENzlFMDM1NDg3Q0IyNUM1RUNBOTYxNjM5QUMyMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzpo6D4qq8YAzkAOfPnZ6tJRF+ Kx1sRo/iJV7RD8zjFdxjqpLpiXN/7EkUKVadeyQl4xcZo7QvE/9RFvcbxwBdJHYN txd+kymGV8ZRdrP5IlwUwDhquIgdtgXmSFFk/5g89SwdZ9GhFvQ3RtkKjmYP/fZN ttMvYjFjao8bqi9aCdKX2Rae5LmvoGXueCLUN7XeT63wHOpOAXad2fp/g0ebDSgr aubN+xbSVymPqqUB4cruqET5dWfU9js08fZ+5jgAoWRtvyfdJ6yD5dr0Z8JQKqwZ uwJG/IKc6LyGl+tnXhrs/wuDpBFVgUSLHVsh7ohQ6f3MuRr5FZmubGayODD9AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUfeMvl4LXngNUh8slxeypYWOawgswHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDQ3NDMwNzQ4MTc2Mzg3LzAvMzQzMzJlMzIzMzMx MmUzMTM2MzcyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvnpzANBgkqhkiG9w0BAQsFAAOCAQEALr/wl7IBR4P57cpcPvoZuFIvBhrJ 8rNkNLI74H0XgPMDuZZT06AKoafivLW9aZaFGG8bkhA7KU6eOPWpbcqfWHOgWAXF cD2oTSohZQHa4hDqsHIyNVcaXj1M5TqWOc3/TaNJnaBX0Jr9EwZvLULT9yp/IBM9 eEvG62u9VfV/Gop9ygdtFQ77c9v6bpKVGQM3t2Slpu8Zhp4FGpe/NBzWyCUdaezr E5H6nTNSeFpPqitRObpOvTklCK2HaSXeuJtoFuWsiw9LzyqEvmC5r0U3WJug/Diq nkWZDdGg0iEVMuZfkbpcHsSiC2nUeWnmA4633IH4b1QAvwmmSVYbeCfaPQ== -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:46 2026 by rpki-client