$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3137312e302f32342d3234203d3e203539303435.roa File: 34332e3233312e3137312e302f32342d3234203d3e203539303435.roa (raw, json) Hash identifier: EUbA6Gg+pJUPRNOqrh6PFcQ/lcvsOyFkVpMhKtDxR5Y= Subject key identifier: 6A:EC:4A:81:B5:9C:6E:60:3E:7D:E4:45:F5:E4:F7:45:B6:6F:D3:DC Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 307DB6FF69EB365EFD3F62AAD6833D4EBDA38536 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3137312e302f32342d3234203d3e203539303435.roa Signing time: Wed 20 May 2026 03:00:57 +0000 ROA not before: Wed 20 May 2026 02:55:57 +0000 ROA not after: Wed 19 May 2027 03:00:57 +0000 asID: 59045 IP address blocks: 43.231.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 20:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7d:b6:ff:69:eb:36:5e:fd:3f:62:aa:d6:83:3d:4e:bd:a3:85:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:55:57 2026 GMT Not After : May 19 03:00:57 2027 GMT Subject: CN=6AEC4A81B59C6E603E7DE445F5E4F745B66FD3DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:52:92:3e:3e:b0:41:a4:2f:a6:4f:d1:c7:7e: 9c:28:02:44:c9:88:62:37:f7:0c:e7:26:95:1d:8f: 2a:17:2a:06:b2:fc:e6:d6:bd:e0:7b:b9:24:b2:b0: 55:2e:df:78:bc:0f:cd:d4:12:0b:76:2a:3d:99:cd: 2d:97:c1:f9:1a:7b:da:5e:0f:d8:13:50:01:0a:27: 44:c6:0b:ba:0a:54:90:02:33:02:32:3e:4b:c9:1b: cb:fc:82:38:5d:ec:a3:96:69:b7:84:98:9f:57:2f: 2c:6e:6f:ff:b4:4b:06:0f:68:5e:76:4a:c9:3f:cd: 82:f7:3a:db:69:e7:70:5e:02:45:28:0e:df:cb:4e: 4f:be:2c:b9:55:b9:bd:9d:e7:d0:21:b4:35:65:13: aa:46:6a:d8:01:e2:e7:21:3e:57:aa:3f:69:22:70: ce:07:ba:f7:48:b6:e4:6d:26:f8:09:66:6b:3f:50: b9:ea:7b:28:6b:c4:3d:28:70:0a:2b:e8:56:d3:c0: 23:de:ff:74:71:77:68:ac:90:a5:40:e3:33:05:86: 8f:3d:b6:34:79:01:cb:c8:6e:c1:4a:e8:55:2e:90: f6:e2:b3:c6:1d:27:fa:a0:a3:e5:f2:64:a2:07:ed: ee:71:17:74:d5:c7:d5:53:ba:7d:1a:96:ee:f9:01: 22:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EC:4A:81:B5:9C:6E:60:3E:7D:E4:45:F5:E4:F7:45:B6:6F:D3:DC X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/34332e3233312e3137312e302f32342d3234203d3e203539303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.231.171.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:08:c1:02:bc:14:c0:92:e6:00:da:91:da:07:58:13:5a:53: bf:48:38:8e:92:5b:be:98:ee:b0:7e:bf:35:8a:08:5b:b9:51: 39:e9:55:89:d4:22:44:1b:40:a1:e5:9b:f7:41:88:f1:b4:10: 25:89:56:2a:df:39:25:cf:08:45:58:d9:0b:2c:6c:3f:78:75: f5:33:33:18:1b:3b:fc:b0:a8:76:21:a4:f2:f9:bd:d7:08:f7: c3:9c:0b:ff:a1:85:88:6e:21:4f:f5:4a:fe:65:91:d9:fb:59: 0b:69:0d:af:c8:69:eb:0b:af:e3:b2:ef:21:14:84:ea:bf:6c: 79:e4:77:71:86:ac:ae:91:c9:6d:c1:c9:9e:a2:97:a7:31:fb: 1d:72:c9:a7:08:dc:41:6a:97:07:e2:5d:c9:50:78:e2:7e:13: 23:00:35:6e:c4:c4:78:ac:d0:24:6c:8e:82:88:7b:9c:41:88: 79:64:e7:86:fc:6e:16:cf:b9:24:7b:de:95:e0:ef:39:32:67: a7:3d:04:05:b0:f1:f1:fd:47:06:24:bb:5d:a0:dd:8e:38:c2: 9e:45:55:6a:26:54:a7:15:61:c0:ca:5f:9d:e8:d5:70:e9:31: 80:94:90:c8:43:13:e3:14:6a:02:6f:e4:29:78:a5:bf:9c:55: 7a:74:7f:ae -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUMH22/2nrNl79P2Kq1oM9Tr2jhTYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjU1NTdaFw0yNzA1MTkwMzAwNTdaMDMxMTAvBgNV BAMTKDZBRUM0QTgxQjU5QzZFNjAzRTdERTQ0NUY1RTRGNzQ1QjY2RkQzREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuUpI+PrBBpC+mT9HHfpwoAkTJ iGI39wznJpUdjyoXKgay/ObWveB7uSSysFUu33i8D83UEgt2Kj2ZzS2Xwfkae9pe D9gTUAEKJ0TGC7oKVJACMwIyPkvJG8v8gjhd7KOWabeEmJ9XLyxub/+0SwYPaF52 Ssk/zYL3Ottp53BeAkUoDt/LTk++LLlVub2d59AhtDVlE6pGatgB4uchPleqP2ki cM4HuvdItuRtJvgJZms/ULnqeyhrxD0ocAor6FbTwCPe/3Rxd2iskKVA4zMFho89 tjR5AcvIbsFK6FUukPbis8YdJ/qgo+XyZKIH7e5xF3TVx9VTun0alu75ASLnAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUauxKgbWcbmA+feRF9eT3RbZv09wwHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA0NzQzMDc0ODE3NjM4Ny8wLzM0MzMyZTMyMzMz MTJlMzEzNzMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvnqzANBgkqhkiG9w0BAQsFAAOCAQEAOwjBArwUwJLmANqR2gdYE1pT v0g4jpJbvpjusH6/NYoIW7lROelVidQiRBtAoeWb90GI8bQQJYlWKt85Jc8IRVjZ CyxsP3h19TMzGBs7/LCodiGk8vm91wj3w5wL/6GFiG4hT/VK/mWR2ftZC2kNr8hp 6wuv47LvIRSE6r9seeR3cYasrpHJbcHJnqKXpzH7HXLJpwjcQWqXB+JdyVB44n4T IwA1bsTEeKzQJGyOgoh7nEGIeWTnhvxuFs+5JHveleDvOTJnpz0EBbDx8f1HBiS7 XaDdjjjCnkVVaiZUpxVhwMpfnejVcOkxgJSQyEMT4xRqAm/kKXilv5xVenR/rg== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:35 2026 by rpki-client