$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3137302e302f32342d3234203d3e203539303435.roa File: 34332e3233312e3137302e302f32342d3234203d3e203539303435.roa (raw, json) Hash identifier: ON/OMHXBvndmKDHTVNcxmsA4rCStsITi7ntUN0vX/M0= Subject key identifier: CB:09:5A:9F:EE:09:EA:B9:43:D3:2F:6F:D4:FC:83:0F:36:82:F5:27 Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 24BEEE940C44A9AFC37E3BB93E407506823835FE Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3137302e302f32342d3234203d3e203539303435.roa Signing time: Wed 20 May 2026 03:00:57 +0000 ROA not before: Wed 20 May 2026 02:55:57 +0000 ROA not after: Wed 19 May 2027 03:00:57 +0000 asID: 59045 IP address blocks: 43.231.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 20:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:be:ee:94:0c:44:a9:af:c3:7e:3b:b9:3e:40:75:06:82:38:35:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:55:57 2026 GMT Not After : May 19 03:00:57 2027 GMT Subject: CN=CB095A9FEE09EAB943D32F6FD4FC830F3682F527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4c:61:15:49:ad:88:ad:cb:bc:84:d3:82:6f: 49:c3:b7:85:7b:cd:08:09:76:37:a6:f3:cf:c3:82: 3a:f2:c3:63:37:4b:7e:95:f5:5c:02:0e:fa:ca:71: 47:ab:7a:67:cc:42:17:9f:05:8f:f1:2d:98:90:58: ac:78:21:fd:20:77:37:18:cd:e2:20:0d:ed:ec:ab: d4:a0:e0:9e:30:6f:52:d3:17:ed:0e:32:76:23:61: ee:c6:4b:eb:56:f1:18:31:d6:52:21:68:b5:0d:e1: b4:6a:8b:ba:33:a4:b1:df:6a:07:59:54:7f:33:c4: e5:b9:96:66:b9:5b:04:4a:eb:23:dd:75:7b:22:4d: 6a:6c:11:ed:5f:74:02:8e:6d:c7:04:74:21:26:ff: a3:5e:a2:6e:3a:76:cd:ec:ca:9a:3d:51:3b:6d:04: a2:64:04:2c:81:e5:b7:74:ea:1b:cb:6d:4f:03:ab: af:6c:14:46:fa:a2:bb:20:ee:1a:63:f9:6b:6c:8e: ad:52:fd:d1:ad:fc:9a:45:4c:da:c9:85:66:1c:5a: 36:01:9c:3b:26:af:b7:54:8c:31:69:9c:1b:b3:98: 28:01:df:40:2a:66:ff:cb:84:9e:fe:4d:b2:15:7e: ec:8d:47:8a:96:fa:80:fa:ef:09:8d:fd:c5:1c:13: 89:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:09:5A:9F:EE:09:EA:B9:43:D3:2F:6F:D4:FC:83:0F:36:82:F5:27 X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3137302e302f32342d3234203d3e203539303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.170.0/24 Signature Algorithm: sha256WithRSAEncryption 86:c7:40:51:61:1f:1a:77:38:dd:66:3d:0c:cd:94:b8:4a:fe: d8:20:33:00:11:99:10:c3:70:05:eb:de:13:43:4c:22:59:0f: 72:b6:4f:75:cf:15:7b:09:d3:79:f9:15:7b:93:b6:36:35:2e: 1d:3a:88:f8:92:fd:de:11:9a:e0:b3:a9:0a:97:17:1a:5c:b2: 97:36:f9:5a:4e:73:61:8f:de:e0:b1:7d:1f:7e:59:57:52:35: 34:9a:93:f4:4c:e2:ad:3a:b8:50:f6:8f:19:2e:a7:28:11:b4: eb:7d:ec:c0:f8:f7:9e:88:d9:0c:f2:6f:20:bf:8f:8d:32:ce: df:2c:99:42:b7:89:fd:a1:97:99:35:66:bd:65:31:bf:5a:b4: bc:cc:52:d2:7b:19:c3:31:5a:38:e4:33:7b:4a:c2:cf:cb:51: f3:eb:30:9a:dc:48:48:5b:ec:a2:30:0f:5f:a7:4e:0e:3d:7e: cb:a3:e1:6b:45:87:90:64:ed:dc:74:96:c6:36:22:41:38:a0: 9e:3b:a8:5e:a1:81:04:54:4b:b4:2a:80:36:fd:04:70:4b:05: 7d:7d:1e:3f:da:f7:e5:9f:33:ae:d5:e4:68:13:ff:a1:84:83: f1:70:f9:a4:3f:e0:5c:55:7b:26:44:d6:5e:58:d1:54:0b:5b: b4:b5:0e:f4 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJL7ulAxEqa/Dfju5PkB1BoI4Nf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU1NTdaFw0yNzA1MTkwMzAwNTdaMDMxMTAvBgNV BAMTKENCMDk1QTlGRUUwOUVBQjk0M0QzMkY2RkQ0RkM4MzBGMzY4MkY1MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5TGEVSa2Ircu8hNOCb0nDt4V7 zQgJdjem88/Dgjryw2M3S36V9VwCDvrKcUeremfMQhefBY/xLZiQWKx4If0gdzcY zeIgDe3sq9Sg4J4wb1LTF+0OMnYjYe7GS+tW8Rgx1lIhaLUN4bRqi7ozpLHfagdZ VH8zxOW5lma5WwRK6yPddXsiTWpsEe1fdAKObccEdCEm/6Neom46ds3sypo9UTtt BKJkBCyB5bd06hvLbU8Dq69sFEb6orsg7hpj+Wtsjq1S/dGt/JpFTNrJhWYcWjYB nDsmr7dUjDFpnBuzmCgB30AqZv/LhJ7+TbIVfuyNR4qW+oD67wmN/cUcE4mtAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUywlan+4J6rlD0y9v1PyDDzaC9ScwHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNzMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnqjANBgkqhkiG9w0BAQsFAAOCAQEAhsdAUWEfGnc43WY9DM2UuEr+ 2CAzABGZEMNwBeveE0NMIlkPcrZPdc8VewnTefkVe5O2NjUuHTqI+JL93hGa4LOp CpcXGlyylzb5Wk5zYY/e4LF9H35ZV1I1NJqT9EzirTq4UPaPGS6nKBG0633swPj3 nojZDPJvIL+PjTLO3yyZQreJ/aGXmTVmvWUxv1q0vMxS0nsZwzFaOOQze0rCz8tR 8+swmtxISFvsojAPX6dODj1+y6Pha0WHkGTt3HSWxjYiQTignjuoXqGBBFRLtCqA Nv0EcEsFfX0eP9r35Z8zrtXkaBP/oYSD8XD5pD/gXFV7JkTWXljRVAtbtLUO9A== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:58 2026 by rpki-client