$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3139382e302f32342d3234203d3e20313334373633.roa File: 34322e3135372e3139382e302f32342d3234203d3e20313334373633.roa (raw, json) Hash identifier: Ve48GrY3Wv8G2G+gsrHOBlkaF8THgv997I/EYwJ44Vc= Subject key identifier: FA:C9:EF:45:9A:20:EF:17:57:77:A8:C4:59:3F:FF:99:28:19:9B:44 Certificate issuer: /CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Certificate serial: 40A4C1445A4389D60FC450560B8D1A373378729C Authority key identifier: 53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3139382e302f32342d3234203d3e20313334373633.roa Signing time: Wed 27 May 2026 08:10:24 +0000 ROA not before: Wed 27 May 2026 08:05:24 +0000 ROA not after: Wed 26 May 2027 08:10:24 +0000 asID: 134763 IP address blocks: 42.157.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:a4:c1:44:5a:43:89:d6:0f:c4:50:56:0b:8d:1a:37:33:78:72:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53814E2CDF95CC9747D91E3B5A01478695BE00AA Validity Not Before: May 27 08:05:24 2026 GMT Not After : May 26 08:10:24 2027 GMT Subject: CN=FAC9EF459A20EF175777A8C4593FFF9928199B44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:70:90:ab:fd:c2:21:2d:44:d7:a1:a5:3c:bd: 55:9e:30:8b:80:6f:fc:47:56:97:a4:2d:96:84:3e: 63:61:8f:8b:8a:20:77:2b:fa:a0:b1:f3:cb:c5:0d: 4f:b3:67:44:f6:cf:5f:51:b8:d9:6b:f1:c9:1d:8c: 79:e2:d3:26:39:bc:99:ce:d9:e1:64:75:ef:2e:69: e2:f0:76:d3:e4:f5:b9:2c:c5:17:61:da:82:c4:89: ca:32:6e:d0:1f:32:f0:65:c7:72:48:9f:42:1c:87: da:56:61:69:18:fc:8a:0e:58:09:1f:7f:12:e5:7a: 10:0a:fb:f2:56:cd:83:cc:cf:b7:5e:6e:e9:b5:8c: 60:9c:51:7c:fb:7d:67:4e:35:af:e8:cb:a2:08:34: b5:8d:a4:54:9e:8d:a0:97:a7:0a:5b:0d:1b:19:bc: 5b:7e:11:ce:60:c2:3c:c1:af:70:d9:bb:2b:59:4c: 3d:e3:83:2c:0e:bb:0f:3b:bf:7b:2e:ec:ff:4e:d9: 4a:32:a5:3b:af:eb:4a:f3:7e:b3:13:9c:78:c7:bb: 65:8e:57:a3:88:fb:2c:f5:29:ec:e4:35:f5:24:22: 26:2c:1a:37:20:2a:a0:20:49:bf:46:79:d2:ba:6d: 1c:18:62:7a:73:2f:9c:5e:29:0f:e5:1b:a5:18:7a: 5c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C9:EF:45:9A:20:EF:17:57:77:A8:C4:59:3F:FF:99:28:19:9B:44 X509v3 Authority Key Identifier: keyid:53:81:4E:2C:DF:95:CC:97:47:D9:1E:3B:5A:01:47:86:95:BE:00:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/53814E2CDF95CC9747D91E3B5A01478695BE00AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/53814E2CDF95CC9747D91E3B5A01478695BE00AA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111909334314385427/0/34322e3135372e3139382e302f32342d3234203d3e20313334373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.157.198.0/24 Signature Algorithm: sha256WithRSAEncryption 65:0a:05:2d:99:c8:7a:46:aa:f3:a5:89:78:8d:ec:36:06:7c: 94:a6:79:fa:51:72:1c:dc:86:f8:34:bc:6c:0e:81:f3:40:a2: dc:ec:ff:d0:fd:7b:ba:06:86:90:bf:9b:4b:70:13:f0:c4:47: 24:e7:2f:a6:1e:ba:db:2b:95:bb:7a:b7:c6:d5:af:e9:fd:03: 2f:b6:f0:df:a3:a0:d8:a7:a2:e5:fc:f9:4e:f9:7b:02:9d:fe: 0d:67:49:1a:cb:98:e1:53:7c:59:65:74:37:ab:c5:41:20:38: f3:45:20:4a:0a:86:bb:72:27:15:45:c8:56:15:2c:be:4f:c0: ea:46:ef:d6:45:2d:fc:42:9d:c7:23:57:0a:11:60:a3:58:59: 95:31:0c:57:ac:6d:61:8b:8a:ae:35:57:b5:60:cf:41:25:11: 32:cf:1e:90:40:54:0e:84:07:3d:7a:59:c3:b1:4f:df:a7:2a: ad:85:d7:1f:2e:3f:37:53:96:84:89:41:a8:10:6e:b3:a9:de: dc:4c:65:6a:d3:e5:8f:3c:aa:b5:08:bb:10:35:72:e5:bb:e9: d1:ac:1b:89:ba:87:99:f7:61:7f:03:c5:21:64:01:bd:83:e8: c8:aa:0f:ef:cf:96:0c:31:8b:09:3e:9a:cf:6d:69:10:02:2c: 5f:e8:c6:6b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUQKTBRFpDidYPxFBWC40aNzN4cpwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5 NUJFMDBBQTAeFw0yNjA1MjcwODA1MjRaFw0yNzA1MjYwODEwMjRaMDMxMTAvBgNV BAMTKEZBQzlFRjQ1OUEyMEVGMTc1Nzc3QThDNDU5M0ZGRjk5MjgxOTlCNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXcJCr/cIhLUTXoaU8vVWeMIuA b/xHVpekLZaEPmNhj4uKIHcr+qCx88vFDU+zZ0T2z19RuNlr8ckdjHni0yY5vJnO 2eFkde8uaeLwdtPk9bksxRdh2oLEicoybtAfMvBlx3JIn0Ich9pWYWkY/IoOWAkf fxLlehAK+/JWzYPMz7debum1jGCcUXz7fWdONa/oy6IINLWNpFSejaCXpwpbDRsZ vFt+Ec5gwjzBr3DZuytZTD3jgywOuw87v3su7P9O2UoypTuv60rzfrMTnHjHu2WO V6OI+yz1KezkNfUkIiYsGjcgKqAgSb9GedK6bRwYYnpzL5xeKQ/lG6UYelxFAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU+snvRZog7xdXd6jEWT//mSgZm0QwHwYDVR0j BBgwFoAUU4FOLN+VzJdH2R47WgFHhpW+AKowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkwOTMzNDMxNDM4NTQyNy8wLzUzODE0RTJDREY5NUNDOTc0N0Q5MUUzQjVBMDE0 Nzg2OTVCRTAwQUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTM4MTRFMkNERjk1Q0M5NzQ3RDkxRTNCNUEwMTQ3ODY5NUJFMDBBQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTE5MDkzMzQzMTQzODU0MjcvMC8zNDMyMmUzMTM1 MzcyZTMxMzkzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzNDM3MzYzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACqdxjANBgkqhkiG9w0BAQsFAAOCAQEAZQoFLZnIekaq86WJeI3s NgZ8lKZ5+lFyHNyG+DS8bA6B80Ci3Oz/0P17ugaGkL+bS3AT8MRHJOcvph662yuV u3q3xtWv6f0DL7bw36Og2Kei5fz5Tvl7Ap3+DWdJGsuY4VN8WWV0N6vFQSA480Ug SgqGu3InFUXIVhUsvk/A6kbv1kUt/EKdxyNXChFgo1hZlTEMV6xtYYuKrjVXtWDP QSURMs8ekEBUDoQHPXpZw7FP36cqrYXXHy4/N1OWhIlBqBBus6ne3ExlatPljzyq tQi7EDVy5bvp0awbibqHmfdhfwPFIWQBvYPoyKoP78+WDDGLCT6az21pEAIsX+jG aw== -----END CERTIFICATE-----Generated at Fri May 29 23:53:57 2026 by rpki-client