$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3139342e302f32342d3234203d3e20313334353433.roa File: 34322e3135372e3139342e302f32342d3234203d3e20313334353433.roa (raw, json) Hash identifier: vvXDFWmXbdkDiFIJFybfVN4n5COk1eXskzgf0ZrHMqM= Subject key identifier: 36:81:F8:79:61:17:22:BA:BF:47:19:BB:43:38:35:88:38:01:3A:2F Certificate issuer: /CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Certificate serial: 13193403581C4F0B489129D80CA4673AF614DEA1 Authority key identifier: 53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3139342e302f32342d3234203d3e20313334353433.roa Signing time: Wed 27 May 2026 07:56:18 +0000 ROA not before: Wed 27 May 2026 07:51:18 +0000 ROA not after: Wed 26 May 2027 07:56:18 +0000 asID: 134543 IP address blocks: 42.157.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:19:34:03:58:1c:4f:0b:48:91:29:d8:0c:a4:67:3a:f6:14:de:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Validity Not Before: May 27 07:51:18 2026 GMT Not After : May 26 07:56:18 2027 GMT Subject: CN=3681F879611722BABF4719BB4338358838013A2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d7:46:14:86:de:b7:11:2d:8e:14:89:41:92: ce:88:c6:2e:e4:82:56:cb:c0:bb:f1:4f:c6:dc:6b: 44:9e:e1:3b:d9:f9:5b:c1:83:93:0c:45:2e:77:44: 3b:77:86:14:4e:b0:be:3c:76:35:86:bb:1b:fe:c6: 21:83:10:cd:02:b2:21:6c:ef:e5:2e:1f:49:a9:8b: 8e:a3:ed:59:95:50:62:34:33:29:82:cb:bd:8c:3a: 42:30:8e:b5:f5:46:d9:09:ba:d8:d7:59:20:63:37: d1:3e:40:49:b2:3f:25:96:d9:73:4e:de:5c:45:9b: a8:e0:ae:2d:71:51:7d:fe:3f:ae:2f:4f:8f:88:64: 8f:fc:82:34:07:fc:de:3b:46:fb:02:34:02:62:f2: 9b:34:4e:3e:5c:39:f8:3c:16:19:b5:12:7d:4a:3f: 4b:22:7f:9c:a3:f8:aa:6b:3e:73:4e:bf:22:2e:9e: e0:b9:c8:2c:a7:37:2a:41:be:5e:21:ce:d7:d1:0c: 6e:3f:4b:51:81:6d:e2:e4:15:bf:37:7a:e2:a0:7f: db:2e:3b:e4:02:c3:0c:e3:30:e7:01:57:95:4e:e6: a0:41:36:cf:ce:58:6c:da:b2:3d:e9:3b:2a:af:5b: b3:23:1d:62:a8:57:b8:91:31:45:07:70:5e:c0:fb: 44:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:81:F8:79:61:17:22:BA:BF:47:19:BB:43:38:35:88:38:01:3A:2F X509v3 Authority Key Identifier: keyid:53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3139342e302f32342d3234203d3e20313334353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.157.194.0/24 Signature Algorithm: sha256WithRSAEncryption 66:ad:59:d2:47:ba:6e:29:3a:2e:e1:0f:75:fe:f9:80:26:30: 70:e8:5d:35:b7:58:42:ca:5c:85:7c:42:91:f6:02:fd:c7:7e: 7d:fd:99:19:88:18:42:3f:29:05:eb:8f:27:f7:63:95:12:5e: 70:9e:12:aa:51:49:da:1e:13:ac:61:d0:21:26:25:0e:88:21: 7c:2c:ac:95:79:03:36:12:55:7d:50:d8:14:0b:1c:80:1d:fe: 1b:12:eb:66:fe:23:53:e8:44:7b:e8:c5:ba:c4:1e:20:f8:fd: 54:90:0b:7b:1c:15:e4:52:a7:6c:e6:71:9d:c1:56:51:3d:90: 59:08:02:74:d4:45:66:32:a5:a8:2c:9d:d6:4b:6b:9d:55:7b: d3:b6:58:9f:98:80:0d:d1:eb:95:4a:5c:e8:20:bf:4e:0e:77: 6c:39:a1:33:2a:eb:96:f7:8f:0c:f1:3a:f5:98:c8:19:62:f4: 1a:81:e5:1b:5a:a2:88:1e:7a:4e:60:cd:87:ae:0b:7b:8e:57: d0:9e:85:e3:16:dd:44:3b:96:cd:d6:07:ff:89:29:89:65:58: 59:ca:06:bd:08:31:32:c9:86:b9:09:04:93:d9:0d:11:44:09: 6f:b6:44:ab:b6:3a:fd:88:53:5e:0d:c3:af:a2:6a:b7:a6:d3: c3:13:5a:a0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUExk0A1gcTwtIkSnYDKRnOvYU3qEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5 NUJFMDBBQTAeFw0yNjA1MjcwNzUxMThaFw0yNzA1MjYwNzU2MThaMDMxMTAvBgNV BAMTKDM2ODFGODc5NjExNzIyQkFCRjQ3MTlCQjQzMzgzNTg4MzgwMTNBMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb10YUht63ES2OFIlBks6Ixi7k glbLwLvxT8bca0Se4TvZ+VvBg5MMRS53RDt3hhROsL48djWGuxv+xiGDEM0CsiFs 7+UuH0mpi46j7VmVUGI0MymCy72MOkIwjrX1RtkJutjXWSBjN9E+QEmyPyWW2XNO 3lxFm6jgri1xUX3+P64vT4+IZI/8gjQH/N47RvsCNAJi8ps0Tj5cOfg8Fhm1En1K P0sif5yj+KprPnNOvyIunuC5yCynNypBvl4hztfRDG4/S1GBbeLkFb83euKgf9su O+QCwwzjMOcBV5VO5qBBNs/OWGzasj3pOyqvW7MjHWKoV7iRMUUHcF7A+0TtAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUNoH4eWEXIrq/Rxm7Qzg1iDgBOi8wHwYDVR0j BBgwFoAUU4FOLN+VzJdH2R47WgFHhpW+AKowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkwOTMzNDMxNDM4NTQyNy8wLzUzODE0RTJDREY5NUNDOTc0N0Q5MUUzQjVBMDE0 Nzg2OTVCRTAwQUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5NUJFMDBBQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTE5MDkzMzQzMTQzODU0MjcvMC8zNDMyMmUzMTM1 MzcyZTMxMzkzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM1MzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACqdwjANBgkqhkiG9w0BAQsFAAOCAQEAZq1Z0ke6bik6LuEPdf75 gCYwcOhdNbdYQspchXxCkfYC/cd+ff2ZGYgYQj8pBeuPJ/djlRJecJ4SqlFJ2h4T rGHQISYlDoghfCyslXkDNhJVfVDYFAscgB3+GxLrZv4jU+hEe+jFusQeIPj9VJAL exwV5FKnbOZxncFWUT2QWQgCdNRFZjKlqCyd1ktrnVV707ZYn5iADdHrlUpc6CC/ Tg53bDmhMyrrlvePDPE69ZjIGWL0GoHlG1qiiB56TmDNh64Le45X0J6F4xbdRDuW zdYH/4kpiWVYWcoGvQgxMsmGuQkEk9kNEUQJb7ZEq7Y6/YhTXg3Dr6Jqt6bTwxNa oA== -----END CERTIFICATE-----Generated at Fri May 29 23:54:32 2026 by rpki-client