$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111918323395788817/0/34332e3232372e3135372e302f32342d3234203d3e203539303337.roa File: 34332e3232372e3135372e302f32342d3234203d3e203539303337.roa (raw, json) Hash identifier: DK7b69cgtGlRNAnfRkB8+C11iqz8pGB/jvOkal3hpYI= Subject key identifier: C1:28:51:7F:28:50:E7:E3:F8:56:33:EF:B5:E9:C0:E2:4B:77:5F:D3 Certificate issuer: /CN=B8CCD8B571FEC8C5EA125D5B35C22CC1FC6F770D Certificate serial: 5618E29062CBC68B766C63B6946A873D3B9020B5 Authority key identifier: B8:CC:D8:B5:71:FE:C8:C5:EA:12:5D:5B:35:C2:2C:C1:FC:6F:77:0D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8CCD8B571FEC8C5EA125D5B35C22CC1FC6F770D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111918323395788817/0/34332e3232372e3135372e302f32342d3234203d3e203539303337.roa Signing time: Wed 27 May 2026 07:43:48 +0000 ROA not before: Wed 27 May 2026 07:38:48 +0000 ROA not after: Wed 26 May 2027 07:43:48 +0000 asID: 59037 IP address blocks: 43.227.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111918323395788817/0/B8CCD8B571FEC8C5EA125D5B35C22CC1FC6F770D.crl rsync://rpki-rps.cnnic.cn/repo/A1111918323395788817/0/B8CCD8B571FEC8C5EA125D5B35C22CC1FC6F770D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8CCD8B571FEC8C5EA125D5B35C22CC1FC6F770D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:18:e2:90:62:cb:c6:8b:76:6c:63:b6:94:6a:87:3d:3b:90:20:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8CCD8B571FEC8C5EA125D5B35C22CC1FC6F770D Validity Not Before: May 27 07:38:48 2026 GMT Not After : May 26 07:43:48 2027 GMT Subject: CN=C128517F2850E7E3F85633EFB5E9C0E24B775FD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:14:80:3c:5a:a0:23:30:a6:27:88:b4:4e:c8: 44:05:cc:e8:f3:66:a7:de:20:c9:0c:b5:30:d5:c1: 40:0b:3a:06:92:ed:2b:6f:24:d0:6d:9a:e1:51:36: 38:92:36:f8:a8:5f:2e:a0:d8:af:0c:ce:9d:e7:ee: c5:7d:db:21:04:e3:14:ef:cf:8b:28:a5:3e:c4:f4: 50:20:fd:d4:c6:ee:75:8d:1f:d0:72:a5:80:0d:e9: 7b:fb:82:c0:71:7a:e3:32:60:bb:35:0e:c9:51:ff: 62:35:82:7d:04:e1:39:c8:f0:5d:1c:3d:ae:21:67: fc:bd:9f:a8:b2:42:fd:1d:de:e0:99:74:90:b1:f2: 11:03:53:db:04:68:0d:cd:1e:01:cb:b5:0b:ba:4d: e1:94:7f:1b:b7:a5:ba:51:74:dd:8e:26:78:78:22: ff:99:ff:c1:f6:99:ea:d3:ec:a2:16:5f:ff:4b:fb: dc:9f:69:92:09:e7:70:ed:f8:56:a0:cb:8f:aa:8e: 0f:5b:27:d3:d0:46:1e:05:46:46:18:57:05:a9:10: 61:4e:b3:11:ce:53:ea:6f:7c:7e:df:7d:e7:2d:62: cd:d9:77:64:2b:23:4e:af:c3:9e:ec:e0:fc:44:a1: d5:b6:1e:e9:2a:41:51:50:2d:1a:be:33:1a:f8:d9: f0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:28:51:7F:28:50:E7:E3:F8:56:33:EF:B5:E9:C0:E2:4B:77:5F:D3 X509v3 Authority Key Identifier: keyid:B8:CC:D8:B5:71:FE:C8:C5:EA:12:5D:5B:35:C2:2C:C1:FC:6F:77:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111918323395788817/0/B8CCD8B571FEC8C5EA125D5B35C22CC1FC6F770D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8CCD8B571FEC8C5EA125D5B35C22CC1FC6F770D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111918323395788817/0/34332e3232372e3135372e302f32342d3234203d3e203539303337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.157.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:c0:51:c4:8f:04:84:87:15:bc:34:66:ae:ea:5b:af:13:95: 51:84:4a:0a:36:97:32:3c:34:0e:82:48:14:92:cf:ac:b1:2d: 68:89:26:54:65:0c:fd:a3:1e:2d:c0:7b:aa:38:d5:42:6b:11: 5d:15:ee:81:31:d5:cd:30:fd:bf:9c:9e:a9:57:a7:25:22:b1: f3:47:2f:8b:25:a7:2a:b3:f2:9d:f1:22:24:f6:72:ba:3a:1b: 7f:a5:c7:8e:b2:5b:30:3e:ab:58:90:e4:16:94:6b:09:a5:41: 6d:c0:34:f9:6b:c8:a6:6c:0a:a0:97:9a:e0:d3:7d:65:6a:84: 02:b3:9d:5e:c8:c9:f7:3a:48:b6:5e:03:1b:a9:ef:62:8a:01: a7:04:18:dc:87:92:aa:ba:29:61:0a:0d:68:7f:e4:2b:ad:e6: 5a:16:f5:fe:5e:54:b3:ed:08:1b:4c:cd:7e:e6:39:de:f1:3b: 0a:30:3e:c5:04:06:9a:e0:2b:4f:5e:a3:bf:a3:a7:6e:bb:7f: 3d:a5:a7:11:19:e9:b0:b0:84:57:3a:ee:85:04:20:a0:1d:9d: 32:03:3b:cc:5b:f0:1e:5f:cf:e7:48:77:96:71:35:c5:d7:ac: 50:56:4c:4f:70:66:eb:83:4c:2b:73:24:36:8d:3d:9d:ad:54: 25:d1:57:fc -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUVhjikGLLxot2bGO2lGqHPTuQILUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDQ0Q4QjU3MUZFQzhDNUVBMTI1RDVCMzVDMjJDQzFG QzZGNzcwRDAeFw0yNjA1MjcwNzM4NDhaFw0yNzA1MjYwNzQzNDhaMDMxMTAvBgNV BAMTKEMxMjg1MTdGMjg1MEU3RTNGODU2MzNFRkI1RTlDMEUyNEI3NzVGRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFFIA8WqAjMKYniLROyEQFzOjz ZqfeIMkMtTDVwUALOgaS7StvJNBtmuFRNjiSNvioXy6g2K8Mzp3n7sV92yEE4xTv z4sopT7E9FAg/dTG7nWNH9BypYAN6Xv7gsBxeuMyYLs1DslR/2I1gn0E4TnI8F0c Pa4hZ/y9n6iyQv0d3uCZdJCx8hEDU9sEaA3NHgHLtQu6TeGUfxu3pbpRdN2OJnh4 Iv+Z/8H2merT7KIWX/9L+9yfaZIJ53Dt+Fagy4+qjg9bJ9PQRh4FRkYYVwWpEGFO sxHOU+pvfH7ffectYs3Zd2QrI06vw57s4PxEodW2HukqQVFQLRq+Mxr42fC1AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUwShRfyhQ5+P4VjPvtenA4kt3X9MwHwYDVR0j BBgwFoAUuMzYtXH+yMXqEl1bNcIswfxvdw0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkxODMyMzM5NTc4ODgxNy8wL0I4Q0NEOEI1NzFGRUM4QzVFQTEyNUQ1QjM1QzIy Q0MxRkM2Rjc3MEQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjhDQ0Q4QjU3MUZFQzhDNUVBMTI1RDVCMzVDMjJDQzFGQzZGNzcwRC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExMTkxODMyMzM5NTc4ODgxNy8wLzM0MzMyZTMyMzIz NzJlMzEzNTM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTMwMzMzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvjnTANBgkqhkiG9w0BAQsFAAOCAQEAHsBRxI8EhIcVvDRmrupbrxOV UYRKCjaXMjw0DoJIFJLPrLEtaIkmVGUM/aMeLcB7qjjVQmsRXRXugTHVzTD9v5ye qVenJSKx80cviyWnKrPynfEiJPZyujobf6XHjrJbMD6rWJDkFpRrCaVBbcA0+WvI pmwKoJea4NN9ZWqEArOdXsjJ9zpItl4DG6nvYooBpwQY3IeSqropYQoNaH/kK63m Whb1/l5Us+0IG0zNfuY53vE7CjA+xQQGmuArT16jv6Onbrt/PaWnERnpsLCEVzru hQQgoB2dMgM7zFvwHl/P50h3lnE1xdesUFZMT3Bm64NMK3MkNo09na1UJdFX/A== -----END CERTIFICATE-----Generated at Fri May 29 23:53:49 2026 by rpki-client