$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111857844975566867/0/34332e3232342e38312e302f32342d3234203d3e2034383337.roa File: 34332e3232342e38312e302f32342d3234203d3e2034383337.roa (raw, json) Hash identifier: pQe03r/gh6IE/0fmJBQ3yi0lYCayIje0KE/YHarwW2I= Subject key identifier: 1F:20:BC:42:A7:85:F9:C9:34:64:30:1E:0A:CC:A1:72:4B:95:DB:F5 Certificate issuer: /CN=305CF9A41DCC6E06CE9CA73352325EFC4D34331C Certificate serial: 0C61AA3DFCB5C29F9AF0A2700AEBC5EEA34A6C45 Authority key identifier: 30:5C:F9:A4:1D:CC:6E:06:CE:9C:A7:33:52:32:5E:FC:4D:34:33:1C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/305CF9A41DCC6E06CE9CA73352325EFC4D34331C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111857844975566867/0/34332e3232342e38312e302f32342d3234203d3e2034383337.roa Signing time: Wed 27 May 2026 03:29:46 +0000 ROA not before: Wed 27 May 2026 03:24:46 +0000 ROA not after: Wed 26 May 2027 03:29:46 +0000 asID: 4837 IP address blocks: 43.224.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111857844975566867/0/305CF9A41DCC6E06CE9CA73352325EFC4D34331C.crl rsync://rpki-rps.cnnic.cn/repo/A1111857844975566867/0/305CF9A41DCC6E06CE9CA73352325EFC4D34331C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/305CF9A41DCC6E06CE9CA73352325EFC4D34331C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 09:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:61:aa:3d:fc:b5:c2:9f:9a:f0:a2:70:0a:eb:c5:ee:a3:4a:6c:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=305CF9A41DCC6E06CE9CA73352325EFC4D34331C Validity Not Before: May 27 03:24:46 2026 GMT Not After : May 26 03:29:46 2027 GMT Subject: CN=1F20BC42A785F9C93464301E0ACCA1724B95DBF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:a6:d9:7e:66:e5:98:ae:58:72:44:e2:ad:2a: 47:72:a5:99:98:c9:2e:e0:d7:dd:b0:db:20:fa:18: e4:5e:c7:de:52:eb:c4:69:f8:1f:cc:e2:ef:c8:b7: fb:14:fa:dc:c8:91:06:b7:93:5a:e8:c4:2a:50:c3: f9:38:04:96:2d:ee:91:46:5d:3d:3d:47:54:e3:a0: 70:f5:d6:02:51:83:d6:44:87:83:aa:08:3f:0b:76: 00:5d:d8:ba:68:66:1a:5a:16:e3:c7:f4:71:eb:e3: ff:42:8d:5f:5d:8b:1a:7b:6e:9b:fa:f8:6d:42:38: 48:a9:c2:93:f5:19:dd:07:b0:6d:e5:a9:80:ca:22: d4:de:88:48:09:92:b2:46:a2:2b:30:84:82:31:ea: e1:73:4a:dd:d5:01:8e:6f:18:12:eb:ce:1a:2e:a9: 0d:6a:15:f7:20:1e:7f:82:25:6f:f4:73:fc:d2:47: 20:75:c8:72:d3:0c:eb:e1:7e:64:0c:39:b5:99:d5: e9:55:38:06:1c:87:cc:2e:4d:01:83:e3:c2:71:bc: bb:d1:39:8d:7f:a8:8e:32:5e:56:57:45:39:6f:4b: 5b:75:45:f0:4f:1a:61:9a:5e:7c:d9:1f:c8:02:3a: ce:5b:fa:7f:1b:af:5a:a5:56:07:ee:34:51:6f:98: 66:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:20:BC:42:A7:85:F9:C9:34:64:30:1E:0A:CC:A1:72:4B:95:DB:F5 X509v3 Authority Key Identifier: keyid:30:5C:F9:A4:1D:CC:6E:06:CE:9C:A7:33:52:32:5E:FC:4D:34:33:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111857844975566867/0/305CF9A41DCC6E06CE9CA73352325EFC4D34331C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/305CF9A41DCC6E06CE9CA73352325EFC4D34331C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111857844975566867/0/34332e3232342e38312e302f32342d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.81.0/24 Signature Algorithm: sha256WithRSAEncryption cd:1d:70:65:a4:d1:a6:80:55:7d:ce:a7:57:33:1d:73:16:94: 9d:bf:09:92:93:ef:ea:e6:a7:e5:51:fa:d8:cf:12:cc:ee:f6: 81:f3:6a:90:5b:d5:03:59:bd:a4:7b:d4:c5:7a:7e:66:09:44: 51:b1:5e:f3:96:98:cf:1d:d7:b3:b6:76:23:ed:7c:ec:2a:b3: e8:e4:ae:82:5d:a6:7b:e7:c3:6a:c4:50:73:4a:b1:16:a8:cc: 87:6a:20:14:09:8c:5d:2b:75:09:9d:34:ce:f7:42:6e:55:ca: 14:08:f1:3a:e3:eb:cb:a5:6c:46:d3:e0:b9:87:39:28:a6:68: fa:c4:64:f2:f1:79:ff:37:82:27:e4:3b:83:66:39:5c:82:ad: 96:dc:e2:0c:91:07:0c:ff:1b:e2:0d:e6:a0:8f:98:ad:f8:48: 35:d1:72:59:12:f4:29:d3:a2:2a:2c:73:42:80:ef:dd:25:f7: 35:11:fa:52:1c:31:65:92:93:da:05:a0:fe:4a:c9:42:df:a5: a5:f9:a3:e7:6d:f2:83:26:8e:12:1e:8d:1e:7a:32:51:f9:0c: 67:2b:14:f7:81:82:25:e9:9a:40:dd:d6:bc:75:f5:92:8d:fd: 17:98:6f:c3:8b:2a:37:bd:5c:a9:ac:07:c4:d4:80:46:b3:de: 4c:cd:af:d3 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUDGGqPfy1wp+a8KJwCuvF7qNKbEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA1Q0Y5QTQxRENDNkUwNkNFOUNBNzMzNTIzMjVFRkM0 RDM0MzMxQzAeFw0yNjA1MjcwMzI0NDZaFw0yNzA1MjYwMzI5NDZaMDMxMTAvBgNV BAMTKDFGMjBCQzQyQTc4NUY5QzkzNDY0MzAxRTBBQ0NBMTcyNEI5NURCRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRptl+ZuWYrlhyROKtKkdypZmY yS7g192w2yD6GORex95S68Rp+B/M4u/It/sU+tzIkQa3k1roxCpQw/k4BJYt7pFG XT09R1TjoHD11gJRg9ZEh4OqCD8LdgBd2LpoZhpaFuPH9HHr4/9CjV9dixp7bpv6 +G1COEipwpP1Gd0HsG3lqYDKItTeiEgJkrJGoiswhIIx6uFzSt3VAY5vGBLrzhou qQ1qFfcgHn+CJW/0c/zSRyB1yHLTDOvhfmQMObWZ1elVOAYch8wuTQGD48JxvLvR OY1/qI4yXlZXRTlvS1t1RfBPGmGaXnzZH8gCOs5b+n8br1qlVgfuNFFvmGbRAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUHyC8QqeF+ck0ZDAeCsyhckuV2/UwHwYDVR0j BBgwFoAUMFz5pB3MbgbOnKczUjJe/E00MxwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTg1Nzg0NDk3NTU2Njg2Ny8wLzMwNUNGOUE0MURDQzZFMDZDRTlDQTczMzUyMzI1 RUZDNEQzNDMzMUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzA1Q0Y5QTQxRENDNkUwNkNFOUNBNzMzNTIzMjVFRkM0RDM0MzMxQy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTExODU3ODQ0OTc1NTY2ODY3LzAvMzQzMzJlMzIzMjM0 MmUzODMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAr4FEwDQYJKoZIhvcNAQELBQADggEBAM0dcGWk0aaAVX3Op1czHXMWlJ2/CZKT 7+rmp+VR+tjPEszu9oHzapBb1QNZvaR71MV6fmYJRFGxXvOWmM8d17O2diPtfOwq s+jkroJdpnvnw2rEUHNKsRaozIdqIBQJjF0rdQmdNM73Qm5VyhQI8Trj68ulbEbT 4LmHOSimaPrEZPLxef83gifkO4NmOVyCrZbc4gyRBwz/G+IN5qCPmK34SDXRclkS 9CnToiosc0KA790l9zUR+lIcMWWSk9oFoP5KyULfpaX5o+dt8oMmjhIejR56MlH5 DGcrFPeBgiXpmkDd1rx19ZKN/ReYb8OLKje9XKmsB8TUgEaz3kzNr9M= -----END CERTIFICATE-----Generated at Fri May 29 23:50:32 2026 by rpki-client