$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/AS23724.roa File: AS23724.roa (raw, json) Hash identifier: CQwubKmfLykOjSxoDWhA0d5uBDLTWUR9Ssr5fYI/K9k= Subject key identifier: 43:E7:7C:3D:56:C1:DB:D8:D9:BD:E5:8F:BA:41:C4:D1:69:DF:48:98 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 432A46FCE8525B7D943CFD3204CA7D521D7BC232 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/AS23724.roa Signing time: Wed 20 May 2026 07:07:52 +0000 ROA not before: Wed 20 May 2026 07:02:52 +0000 ROA not after: Wed 19 May 2027 07:07:52 +0000 asID: 23724 IP address blocks: 117.51.160.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 May 2026 14:34:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:2a:46:fc:e8:52:5b:7d:94:3c:fd:32:04:ca:7d:52:1d:7b:c2:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: May 20 07:02:52 2026 GMT Not After : May 19 07:07:52 2027 GMT Subject: CN=43E77C3D56C1DBD8D9BDE58FBA41C4D169DF4898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:09:79:03:02:b0:b3:0a:ed:42:10:4f:6a:14: 04:95:ee:5d:43:f7:30:b6:1e:73:72:1f:bf:28:ee: 3a:f2:8e:b4:93:ab:36:08:c2:f4:07:d1:9c:54:c1: 51:71:41:e6:63:91:81:6f:6b:8f:25:5f:7f:b0:b7: 8d:43:e5:6a:a2:81:02:c9:9b:0d:32:bc:9d:bc:86: e0:9f:bc:ff:a0:90:ab:1f:44:bd:13:77:91:fa:18: 2f:6b:bd:19:a1:05:75:19:f1:4a:77:a1:df:19:3f: 33:5f:bd:d3:e9:96:35:79:4d:35:da:cb:6c:59:c6: 2c:43:ec:19:a9:69:a6:32:f9:6d:cd:04:0f:82:3c: 45:0f:4e:0f:0f:af:8a:4f:65:fd:f6:28:15:85:b7: 05:46:83:0f:e9:76:00:3e:a8:1b:26:ad:18:7d:33: 95:48:dd:3b:bb:af:48:cd:83:b7:92:5a:5f:00:3b: e9:17:ec:62:24:6b:b9:83:a9:b6:67:9d:bc:de:4d: 36:00:26:d4:ef:84:e6:d4:9f:e3:63:b1:99:bb:00: e1:77:65:76:81:85:12:68:72:b0:9f:2b:1f:72:cb: 72:44:74:c1:ac:a8:c5:f2:90:59:c3:7b:bf:04:9a: 7c:5c:7e:2b:e5:0c:75:03:f2:94:68:dc:6b:bd:07: 80:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E7:7C:3D:56:C1:DB:D8:D9:BD:E5:8F:BA:41:C4:D1:69:DF:48:98 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/AS23724.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.51.160.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:2b:63:7d:2d:27:2a:f3:e2:80:97:af:3b:8d:dc:f9:ed:7c: c5:d9:88:d5:4b:06:9b:2f:3c:45:41:3f:43:a4:e6:65:e4:28: 71:2b:5c:6f:c8:e8:41:5e:80:d1:d0:b8:9e:d5:fe:c5:99:5b: 00:a0:f3:d8:71:e9:de:5f:59:db:61:f6:0c:7c:78:d8:fe:11: a9:6b:4b:ce:5f:2f:97:70:72:61:93:3a:d1:be:c6:dd:67:61: 5a:de:89:03:a0:6f:8d:d9:39:2c:43:58:ae:3b:53:b3:5d:02: a5:64:42:f3:9e:54:3c:c4:6f:ec:a2:33:86:d3:3a:33:ee:66: 31:c2:2c:8c:d8:3b:a8:b3:c3:3c:91:ef:42:f2:68:6e:25:fe: c9:04:2e:13:c7:f6:92:4c:18:68:24:a8:4d:00:ec:f3:4e:ca: 0f:e9:db:d6:69:d0:cf:3e:c6:23:75:38:35:60:a8:d5:cf:4c: f6:ce:66:4a:ab:6e:9a:47:eb:22:32:8c:e1:6c:df:f8:5d:3a: 25:63:2f:59:0d:30:f6:d7:80:60:44:88:36:ef:a0:68:de:4e: 4c:91:3f:63:08:42:7a:7f:bc:60:54:c7:0c:e4:08:3f:b2:9b: 3a:d0:74:16:ef:21:f4:09:66:45:35:aa:6b:7c:cb:f9:ba:57: bd:6b:b8:d6 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIUQypG/OhSW32UPP0yBMp9Uh17wjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA1MjAwNzAyNTJaFw0yNzA1MTkwNzA3NTJaMDMxMTAvBgNV BAMTKDQzRTc3QzNENTZDMURCRDhEOUJERTU4RkJBNDFDNEQxNjlERjQ4OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeCXkDArCzCu1CEE9qFASV7l1D 9zC2HnNyH78o7jryjrSTqzYIwvQH0ZxUwVFxQeZjkYFva48lX3+wt41D5WqigQLJ mw0yvJ28huCfvP+gkKsfRL0Td5H6GC9rvRmhBXUZ8Up3od8ZPzNfvdPpljV5TTXa y2xZxixD7BmpaaYy+W3NBA+CPEUPTg8Pr4pPZf32KBWFtwVGgw/pdgA+qBsmrRh9 M5VI3Tu7r0jNg7eSWl8AO+kX7GIka7mDqbZnnbzeTTYAJtTvhObUn+NjsZm7AOF3 ZXaBhRJocrCfKx9yy3JEdMGsqMXykFnDe78EmnxcfivlDHUD8pRo3Gu9B4CtAgMB AAGjggHjMIIB3zAdBgNVHQ4EFgQUQ+d8PVbB29jZveWPukHE0WnfSJgwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwOTk2MDI2MzYzNjcyMDAyNTkvMC9BUzIzNzI0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBdTOgMA0GCSqGSIb3DQEBCwUAA4IBAQBOK2N9LScq8+KAl687jdz57XzF 2YjVSwabLzxFQT9DpOZl5ChxK1xvyOhBXoDR0Lie1f7FmVsAoPPYceneX1nbYfYM fHjY/hGpa0vOXy+XcHJhkzrRvsbdZ2Fa3okDoG+N2TksQ1iuO1OzXQKlZELznlQ8 xG/sojOG0zoz7mYxwiyM2Duos8M8ke9C8mhuJf7JBC4Tx/aSTBhoJKhNAOzzTsoP 6dvWadDPPsYjdTg1YKjVz0z2zmZKq26aR+siMozhbN/4XTolYy9ZDTD214BgRIg2 76Bo3k5MkT9jCEJ6f7xgVMcM5Ag/sps60HQW7yH0CWZFNaprfMv5ule9a7jW -----END CERTIFICATE-----Generated at Sat May 23 05:07:17 2026 by rpki-client