$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3132382e302f32342d3234203d3e20313334373633.roa File: 34322e3135372e3132382e302f32342d3234203d3e20313334373633.roa (raw, json) Hash identifier: 8FRvlGkAltOgiF+DcClCWEsvhW3kRLyIKnWJXyMSHwg= Subject key identifier: A0:93:93:A3:37:06:CD:64:D7:C4:74:50:8B:46:ED:7D:D5:18:40:FD Certificate issuer: /CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Certificate serial: 16C495BC997169430F63216D3095A77E73C8248A Authority key identifier: 53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3132382e302f32342d3234203d3e20313334373633.roa Signing time: Wed 27 May 2026 08:12:14 +0000 ROA not before: Wed 27 May 2026 08:07:14 +0000 ROA not after: Wed 26 May 2027 08:12:14 +0000 asID: 134763 IP address blocks: 42.157.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:c4:95:bc:99:71:69:43:0f:63:21:6d:30:95:a7:7e:73:c8:24:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Validity Not Before: May 27 08:07:14 2026 GMT Not After : May 26 08:12:14 2027 GMT Subject: CN=A09393A33706CD64D7C474508B46ED7DD51840FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c0:9e:34:18:f4:65:40:e3:39:df:1e:c5:3e: be:15:ee:82:d6:fd:e4:97:2a:fa:05:01:10:82:ce: fb:1b:04:f8:e7:2c:dd:d3:4b:e8:dd:44:86:d0:1c: 20:62:81:77:01:53:7e:01:7a:49:ea:28:82:58:08: a7:2b:b1:c2:7c:fa:68:23:cf:4e:b2:d1:bc:bd:29: 73:0a:2e:4e:8f:ac:05:e5:83:37:9d:eb:a1:b0:cd: 05:92:6b:32:cc:7f:d5:c7:c3:c4:70:e1:48:6c:d7: 8b:c7:2f:85:d1:b8:43:3e:4b:22:29:3e:05:a0:3d: 67:25:51:b5:52:bb:bf:a5:b2:46:a9:14:8c:3d:13: fc:31:1d:72:25:ba:4d:00:96:a0:2f:ec:78:bc:f5: e7:08:f4:ca:48:f9:bd:e1:c4:d9:5b:a6:ab:25:77: 0f:c8:d4:47:aa:a2:ef:67:19:3d:70:5d:a5:87:dd: 13:16:e3:14:0e:28:4e:f0:0f:b1:ae:5e:ae:99:aa: 54:d1:c5:98:2d:f1:4f:06:a9:75:01:95:59:2b:48: 80:5c:da:a5:2b:b2:19:89:09:d2:a4:4d:7c:7e:6f: 4c:2f:22:77:07:6c:b4:5b:fa:eb:d4:9e:92:1b:39: f9:38:9e:85:b7:ac:81:06:20:d3:fa:35:a9:34:ce: 6f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:93:93:A3:37:06:CD:64:D7:C4:74:50:8B:46:ED:7D:D5:18:40:FD X509v3 Authority Key Identifier: keyid:53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3132382e302f32342d3234203d3e20313334373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.157.128.0/24 Signature Algorithm: sha256WithRSAEncryption ae:63:d8:4b:28:9e:19:8c:e3:7a:7d:1c:11:85:68:8b:98:4d: d5:5b:c5:4a:f6:1d:06:41:05:70:74:28:37:f4:70:91:0e:b1: 63:b7:09:01:27:30:c0:75:82:61:b5:cf:f4:53:bd:a6:89:f3: 07:60:40:ab:ef:c6:20:fc:31:95:13:91:0d:84:5a:32:0f:c1: 25:05:b1:b7:89:90:83:57:75:46:53:cf:29:46:d5:d7:4c:a3: ce:2c:f2:bc:6c:c9:29:55:b9:94:2d:42:bb:73:fc:05:14:01: b4:e8:8b:68:25:7f:04:80:60:91:f8:d8:a6:a5:a9:16:cd:f5: 4e:8e:9d:ff:bc:aa:e5:ea:28:67:72:f8:a5:9f:34:3a:51:52: 18:33:2c:78:31:7a:06:e9:3f:cf:70:c4:3c:e5:17:c0:b4:30: 5e:24:68:e6:45:c0:f5:f5:8f:b8:43:56:f3:3d:57:af:0e:7f: 8e:87:25:8a:d0:e6:a7:55:cd:f5:64:f4:07:15:b3:1d:a6:41: 2e:aa:90:b3:64:ca:28:fe:99:9a:ec:12:f2:98:75:56:7c:af: cc:c8:ad:8f:93:30:dc:21:b2:26:ce:10:8c:ad:f9:bc:13:13: 65:71:5c:ad:85:84:b5:ff:8d:cb:d5:41:77:74:e6:2d:11:e6: 92:f5:3d:da -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFsSVvJlxaUMPYyFtMJWnfnPIJIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5 NUJFMDBBQTAeFw0yNjA1MjcwODA3MTRaFw0yNzA1MjYwODEyMTRaMDMxMTAvBgNV BAMTKEEwOTM5M0EzMzcwNkNENjREN0M0NzQ1MDhCNDZFRDdERDUxODQwRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7wJ40GPRlQOM53x7FPr4V7oLW /eSXKvoFARCCzvsbBPjnLN3TS+jdRIbQHCBigXcBU34BeknqKIJYCKcrscJ8+mgj z06y0by9KXMKLk6PrAXlgzed66GwzQWSazLMf9XHw8Rw4Uhs14vHL4XRuEM+SyIp PgWgPWclUbVSu7+lskapFIw9E/wxHXIluk0AlqAv7Hi89ecI9MpI+b3hxNlbpqsl dw/I1Eeqou9nGT1wXaWH3RMW4xQOKE7wD7GuXq6ZqlTRxZgt8U8GqXUBlVkrSIBc 2qUrshmJCdKkTXx+b0wvIncHbLRb+uvUnpIbOfk4noW3rIEGINP6Nak0zm/7AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUoJOTozcGzWTXxHRQi0btfdUYQP0wHwYDVR0j BBgwFoAUU4FOLN+VzJdH2R47WgFHhpW+AKowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkwOTMzNDMxNDM4NTQyNy8wLzUzODE0RTJDREY5NUNDOTc0N0Q5MUUzQjVBMDE0 Nzg2OTVCRTAwQUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5NUJFMDBBQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTE5MDkzMzQzMTQzODU0MjcvMC8zNDMyMmUzMTM1 MzcyZTMxMzIzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3MzYzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACqdgDANBgkqhkiG9w0BAQsFAAOCAQEArmPYSyieGYzjen0cEYVo i5hN1VvFSvYdBkEFcHQoN/RwkQ6xY7cJAScwwHWCYbXP9FO9ponzB2BAq+/GIPwx lRORDYRaMg/BJQWxt4mQg1d1RlPPKUbV10yjzizyvGzJKVW5lC1Cu3P8BRQBtOiL aCV/BIBgkfjYpqWpFs31To6d/7yq5eooZ3L4pZ80OlFSGDMseDF6Buk/z3DEPOUX wLQwXiRo5kXA9fWPuENW8z1Xrw5/joclitDmp1XN9WT0BxWzHaZBLqqQs2TKKP6Z muwS8ph1VnyvzMitj5Mw3CGyJs4QjK35vBMTZXFcrYWEtf+Ny9VBd3TmLRHmkvU9 2g== -----END CERTIFICATE-----Generated at Fri May 29 23:53:49 2026 by rpki-client