$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136382e302f32342d3234203d3e203233373234.roa File: 34332e3233312e3136382e302f32342d3234203d3e203233373234.roa (raw, json) Hash identifier: FERWDVlfu2BkKhCRK6RX8fqrYkNHGQ7nNw4fQbLjZLY= Subject key identifier: DA:2A:44:F8:55:6B:C8:AB:21:55:33:10:34:F6:6A:14:89:A6:8F:93 Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 01D44ED6DBA8F076189143075E7FCCE344A138F7 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136382e302f32342d3234203d3e203233373234.roa Signing time: Wed 20 May 2026 02:59:50 +0000 ROA not before: Wed 20 May 2026 02:54:50 +0000 ROA not after: Wed 19 May 2027 02:59:50 +0000 asID: 23724 IP address blocks: 43.231.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 07:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d4:4e:d6:db:a8:f0:76:18:91:43:07:5e:7f:cc:e3:44:a1:38:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:50 2026 GMT Not After : May 19 02:59:50 2027 GMT Subject: CN=DA2A44F8556BC8AB2155331034F66A1489A68F93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:54:73:43:02:a9:76:3e:e4:b2:48:ff:15: fa:01:2f:79:32:c3:a0:61:dc:ca:f0:e6:66:9c:ee: 48:60:94:5d:f9:42:6f:ba:e1:57:ed:7a:40:08:77: 40:c1:8c:a9:52:f4:0b:92:8e:f6:52:9f:bd:bf:b6: e7:1c:c2:a6:7c:ab:5c:1c:a7:01:3a:13:20:5d:e1: ab:f9:53:3a:1b:ad:37:40:fb:57:56:c0:e0:e4:83: fd:25:cc:8e:89:2a:3a:7e:c2:fa:75:df:50:68:0a: a3:5e:56:a4:fd:a8:83:58:c9:1f:93:f4:91:8d:58: 25:5d:13:8c:5e:3d:13:39:ea:5e:1e:95:5b:c0:71: 25:76:41:f5:ac:11:bc:df:7b:2b:0a:90:95:69:ef: 78:90:8f:be:77:f6:d1:9e:6e:e7:d7:55:3b:0f:b1: 14:3b:de:b5:e7:6a:06:09:97:79:9e:1a:fc:0a:cd: 40:78:c4:0b:ed:87:c6:18:3e:2e:2f:ae:6d:7e:f7: a4:0f:85:0f:75:11:4f:1c:84:5e:64:fc:1e:1b:3d: 8d:77:5a:0d:49:77:ca:cb:ef:2c:88:a1:c6:17:04: ac:a4:b7:00:50:f3:f3:ec:52:4b:bb:2b:d1:27:f6: 06:81:24:6d:7a:ec:8e:32:36:ce:54:ec:19:99:56: 01:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2A:44:F8:55:6B:C8:AB:21:55:33:10:34:F6:6A:14:89:A6:8F:93 X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136382e302f32342d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.168.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:ff:36:bd:e5:30:6a:96:e7:96:59:52:7f:be:44:41:0f:b4: 93:47:77:25:14:10:fb:bc:c0:02:fc:c9:f9:78:d0:a1:a1:31: 08:cd:cd:0b:81:dc:d8:18:70:32:f0:70:f8:1f:90:2c:ff:5f: 73:ba:72:c9:13:d7:08:9b:a9:44:f3:d0:9a:a8:f3:05:69:9f: 77:a2:b3:58:64:5c:b2:a1:ee:27:e9:02:9b:8d:55:16:22:7c: ef:26:ad:e0:3b:9a:cc:9e:b7:8e:fd:c6:c5:9d:c9:27:9c:58: 38:b2:f0:af:78:0e:e5:3c:d7:e4:eb:10:ac:54:8c:d2:c2:ce: 8a:52:a6:43:63:27:b4:3f:2f:ba:ee:89:09:d9:f4:d6:57:9a: eb:7b:f9:3d:c7:8c:91:3a:27:a2:d3:a5:65:c2:62:9e:b8:12: f1:3b:22:de:b8:b1:9f:f6:b0:3c:26:96:d1:24:9b:da:60:41: 4c:1d:bf:ab:c7:66:10:4e:c4:60:be:f2:3a:00:52:87:a7:65: 10:48:aa:ea:8f:5b:03:08:9a:20:2d:94:72:26:1c:29:0f:a0: d0:ac:ae:60:74:a9:f8:96:ef:b3:57:a5:42:b6:66:ee:fe:af: aa:db:6b:fa:18:69:80:b1:c2:55:77:4e:44:e9:93:14:f6:f9: c0:bb:43:8b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUAdRO1tuo8HYYkUMHXn/M40ShOPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTBaFw0yNzA1MTkwMjU5NTBaMDMxMTAvBgNV BAMTKERBMkE0NEY4NTU2QkM4QUIyMTU1MzMxMDM0RjY2QTE0ODlBNjhGOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDALVRzQwKpdj7kskj/FfoBL3ky w6Bh3Mrw5mac7khglF35Qm+64VftekAId0DBjKlS9AuSjvZSn72/tuccwqZ8q1wc pwE6EyBd4av5UzobrTdA+1dWwODkg/0lzI6JKjp+wvp131BoCqNeVqT9qINYyR+T 9JGNWCVdE4xePRM56l4elVvAcSV2QfWsEbzfeysKkJVp73iQj7539tGebufXVTsP sRQ73rXnagYJl3meGvwKzUB4xAvth8YYPi4vrm1+96QPhQ91EU8chF5k/B4bPY13 Wg1Jd8rL7yyIocYXBKyktwBQ8/PsUku7K9En9gaBJG167I4yNs5U7BmZVgGrAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU2ipE+FVryKshVTMQNPZqFImmj5MwHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnqDANBgkqhkiG9w0BAQsFAAOCAQEAjv82veUwapbnlllSf75EQQ+0 k0d3JRQQ+7zAAvzJ+XjQoaExCM3NC4Hc2BhwMvBw+B+QLP9fc7pyyRPXCJupRPPQ mqjzBWmfd6KzWGRcsqHuJ+kCm41VFiJ87yat4DuazJ63jv3GxZ3JJ5xYOLLwr3gO 5TzX5OsQrFSM0sLOilKmQ2MntD8vuu6JCdn01lea63v5PceMkTonotOlZcJinrgS 8Tsi3rixn/awPCaW0SSb2mBBTB2/q8dmEE7EYL7yOgBSh6dlEEiq6o9bAwiaIC2U ciYcKQ+g0KyuYHSp+Jbvs1elQrZm7v6vqttr+hhpgLHCVXdOROmTFPb5wLtDiw== -----END CERTIFICATE-----Generated at Sat May 30 00:42:52 2026 by rpki-client