$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136392e302f32342d3234203d3e203233373234.roa File: 34332e3233312e3136392e302f32342d3234203d3e203233373234.roa (raw, json) Hash identifier: vohP9zABgWu50ks5+/FiNfLsUoOf43m8skFJ6SSVAxs= Subject key identifier: AE:63:E9:03:81:90:8B:F1:DA:6D:38:61:64:90:0E:D5:A0:88:16:32 Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 52925570302BECCC7C5D69801F8BD9D08F942AEE Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136392e302f32342d3234203d3e203233373234.roa Signing time: Wed 20 May 2026 02:59:52 +0000 ROA not before: Wed 20 May 2026 02:54:52 +0000 ROA not after: Wed 19 May 2027 02:59:52 +0000 asID: 23724 IP address blocks: 43.231.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 07:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:92:55:70:30:2b:ec:cc:7c:5d:69:80:1f:8b:d9:d0:8f:94:2a:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:54:52 2026 GMT Not After : May 19 02:59:52 2027 GMT Subject: CN=AE63E90381908BF1DA6D386164900ED5A0881632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a9:8f:8d:e5:65:2e:ee:72:c7:09:06:c4:53: da:11:ce:05:8c:8d:b9:54:1a:ba:b1:70:f9:41:31: fc:a2:8d:d6:9c:d0:e3:09:28:d0:ed:7d:af:d1:5c: 22:07:f1:b1:7e:61:8d:d4:c7:ce:cf:a6:b7:d0:2f: 74:d2:0a:72:6d:a3:2a:09:b8:7e:50:ed:15:73:93: 71:e0:59:1b:5a:5f:b5:8a:53:04:fc:1d:f3:88:1f: 6c:7e:e9:9b:44:c4:27:3a:0d:c0:a7:c0:b4:4c:39: 13:6e:19:b6:4a:1a:6a:07:ab:ed:83:d5:0c:ae:17: 6e:75:4c:a1:7e:8c:e1:a3:c4:27:b3:b2:da:f8:92: 80:41:14:52:ea:3d:78:66:ad:f3:a7:47:a9:8c:49: c5:e7:44:5d:4e:b0:62:be:db:f9:63:90:94:5a:d9: 15:fc:49:5e:11:d8:b1:fd:38:b5:e1:02:89:1a:08: d4:45:7f:11:56:12:0d:d0:3d:ab:52:42:0c:d1:0e: 26:8e:e7:bf:9d:bc:74:38:2f:8c:bf:90:e3:d6:d1: 07:aa:b2:41:a9:20:52:1d:1f:5d:ec:39:30:15:05: 31:db:97:be:0c:56:6e:c8:f3:75:12:8c:66:3e:57: 32:01:30:3e:76:90:c5:b4:ce:a5:13:e7:67:f1:39: c0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:63:E9:03:81:90:8B:F1:DA:6D:38:61:64:90:0E:D5:A0:88:16:32 X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3136392e302f32342d3234203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.169.0/24 Signature Algorithm: sha256WithRSAEncryption 09:b4:9c:68:19:e5:94:a2:f8:b5:ba:ad:a8:77:aa:8d:4b:c1: 84:76:f2:b9:87:01:e6:53:21:f1:73:cc:66:f5:d2:e8:1a:11: a0:d0:d2:db:a0:5d:3b:24:6a:07:c0:cd:cc:64:a7:84:46:a5: 5c:92:54:16:28:9c:5f:8c:43:94:48:1d:7d:90:3c:78:a7:fa: 45:01:09:b4:0b:e7:af:29:24:fd:da:48:1c:28:da:b8:85:5d: 5e:b9:c3:90:73:90:c1:86:ac:82:a0:11:13:fa:a9:cf:7b:40: e0:01:b2:3a:56:c6:7f:84:f0:b3:c5:53:d0:56:66:8b:ef:5d: b1:ce:8e:89:e1:3b:04:80:98:9d:41:7d:bf:4a:6f:5a:d7:0d: a5:1b:c8:4c:50:e7:e7:ad:6f:e5:c1:48:e0:db:a3:f1:f0:7d: 65:f0:78:13:6b:66:43:43:c4:28:9c:de:db:ea:15:aa:61:f7: ba:7d:71:b0:84:09:74:48:17:d9:0d:b7:1d:3e:51:28:8c:c4: 85:18:b4:b8:0c:c3:61:42:87:5e:e2:87:e9:07:e6:36:a9:73: 1e:ca:7f:a3:f8:c6:44:60:97:14:ad:3f:70:c7:ea:a0:44:6d: 1c:66:d0:2a:3f:1a:53:a7:07:9d:dd:ae:34:4c:49:97:6b:22: 13:29:4c:75 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUUpJVcDAr7Mx8XWmAH4vZ0I+UKu4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU0NTJaFw0yNzA1MTkwMjU5NTJaMDMxMTAvBgNV BAMTKEFFNjNFOTAzODE5MDhCRjFEQTZEMzg2MTY0OTAwRUQ1QTA4ODE2MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChqY+N5WUu7nLHCQbEU9oRzgWM jblUGrqxcPlBMfyijdac0OMJKNDtfa/RXCIH8bF+YY3Ux87PprfQL3TSCnJtoyoJ uH5Q7RVzk3HgWRtaX7WKUwT8HfOIH2x+6ZtExCc6DcCnwLRMORNuGbZKGmoHq+2D 1QyuF251TKF+jOGjxCezstr4koBBFFLqPXhmrfOnR6mMScXnRF1OsGK+2/ljkJRa 2RX8SV4R2LH9OLXhAokaCNRFfxFWEg3QPatSQgzRDiaO57+dvHQ4L4y/kOPW0Qeq skGpIFIdH13sOTAVBTHbl74MVm7I83USjGY+VzIBMD52kMW0zqUT52fxOcALAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUrmPpA4GQi/HabThhZJAO1aCIFjIwHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNjM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM3MzIzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnqTANBgkqhkiG9w0BAQsFAAOCAQEACbScaBnllKL4tbqtqHeqjUvB hHbyuYcB5lMh8XPMZvXS6BoRoNDS26BdOyRqB8DNzGSnhEalXJJUFiicX4xDlEgd fZA8eKf6RQEJtAvnrykk/dpIHCjauIVdXrnDkHOQwYasgqARE/qpz3tA4AGyOlbG f4Tws8VT0FZmi+9dsc6OieE7BICYnUF9v0pvWtcNpRvITFDn561v5cFI4Nuj8fB9 ZfB4E2tmQ0PEKJze2+oVqmH3un1xsIQJdEgX2Q23HT5RKIzEhRi0uAzDYUKHXuKH 6QfmNqlzHsp/o/jGRGCXFK0/cMfqoERtHGbQKj8aU6cHnd2uNExJl2siEylMdQ== -----END CERTIFICATE-----Generated at Sat May 30 00:43:15 2026 by rpki-client