$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1111933397845934097/0/34332e3234332e3132382e302f32322d3232203d3e20313333373735.roa File: 34332e3234332e3132382e302f32322d3232203d3e20313333373735.roa (raw, json) Hash identifier: IssFDXeAZhUFk8PPGD6XLGYSMMoS1XPU/W0A0CTtqO8= Subject key identifier: AA:7E:3F:74:2D:5D:C9:50:95:F8:10:6E:F1:5F:B4:30:B7:78:24:1B Certificate issuer: /CN=E75349FBEA39CFED65BB280A32055EB716679089 Certificate serial: 4A6711BA05AA1DC9128F064D4572EA16FF0F74A6 Authority key identifier: E7:53:49:FB:EA:39:CF:ED:65:BB:28:0A:32:05:5E:B7:16:67:90:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/34332e3234332e3132382e302f32322d3232203d3e20313333373735.roa Signing time: Wed 27 May 2026 08:28:47 +0000 ROA not before: Wed 27 May 2026 08:23:47 +0000 ROA not after: Wed 26 May 2027 08:28:47 +0000 asID: 133775 IP address blocks: 43.243.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.crl rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:67:11:ba:05:aa:1d:c9:12:8f:06:4d:45:72:ea:16:ff:0f:74:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E75349FBEA39CFED65BB280A32055EB716679089 Validity Not Before: May 27 08:23:47 2026 GMT Not After : May 26 08:28:47 2027 GMT Subject: CN=AA7E3F742D5DC95095F8106EF15FB430B778241B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c5:50:b2:fa:0d:cb:3f:17:55:0b:cd:94:29: ff:1b:63:7b:6e:c1:15:94:82:d4:d5:26:f0:d2:7e: e1:08:4a:ad:c5:70:0c:71:18:43:e8:45:ed:20:e7: 15:df:64:50:1c:6e:aa:4a:cf:af:15:7d:5c:d9:9c: 96:b6:4e:8d:e2:de:df:31:e2:7c:42:83:3b:ea:7a: 67:f1:a1:db:9d:8c:e4:a9:cc:24:da:81:88:6e:08: 5c:bc:a3:ad:ef:ad:1b:ba:2f:85:69:8c:9f:90:e6: 5f:ba:b7:6d:58:0b:59:f6:60:29:3f:47:ac:bb:2d: ba:25:fa:ed:1e:c7:91:ff:5e:5a:3f:27:17:4a:75: 73:e0:c6:26:d5:05:f8:1b:f0:1a:fd:25:45:7d:2b: 93:9c:07:be:4c:c2:30:21:87:86:00:8a:fc:64:bc: 53:06:33:94:8f:ad:10:dc:cc:12:51:a3:38:8f:d2: 7e:37:3d:ac:20:96:d0:08:37:b8:aa:58:24:8e:06: 71:1e:eb:e8:98:9f:28:7e:2f:3d:51:64:3c:89:04: 1a:c9:14:a5:0a:35:7b:7a:92:da:cc:e5:8a:10:8f: 66:2e:b8:ac:3e:c9:cd:ab:2e:a3:cd:e2:d8:22:be: dc:a4:d8:a9:14:98:6a:a5:18:1a:f4:34:06:8b:52: 24:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7E:3F:74:2D:5D:C9:50:95:F8:10:6E:F1:5F:B4:30:B7:78:24:1B X509v3 Authority Key Identifier: keyid:E7:53:49:FB:EA:39:CF:ED:65:BB:28:0A:32:05:5E:B7:16:67:90:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/E75349FBEA39CFED65BB280A32055EB716679089.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E75349FBEA39CFED65BB280A32055EB716679089.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1111933397845934097/0/34332e3234332e3132382e302f32322d3232203d3e20313333373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.128.0/22 Signature Algorithm: sha256WithRSAEncryption c2:ca:52:07:87:1a:6a:7b:f0:96:3a:dd:27:fe:6b:97:4e:89: 31:5a:b7:86:a6:5a:7a:dd:fd:bd:a6:53:9d:41:4a:2e:74:c9: f9:26:f0:f5:f0:92:1e:20:a9:1f:73:3a:3d:02:3d:4f:db:e9: 02:2e:3f:af:af:7f:d1:94:5b:ea:e6:82:32:a6:20:56:47:99: 02:dd:c7:89:cb:30:5f:c7:9a:26:53:ee:b1:33:83:ed:b0:e9: d0:06:18:c5:cc:79:03:9b:57:39:6c:1f:0b:6f:dd:95:98:4d: 60:95:2f:10:e6:ac:25:34:11:9d:6c:ae:df:97:84:ce:03:0e: 32:1e:c4:e9:a0:33:b0:f7:16:66:64:19:08:13:70:4d:10:96: e3:d1:7d:47:2d:ce:f4:c4:f7:a6:de:d9:9f:fc:10:b0:98:41: 52:a1:d9:25:35:26:47:47:dc:ed:4a:d0:4c:73:85:cb:04:41: 1b:e9:77:33:f3:72:3c:ee:41:58:84:46:03:ef:6a:e5:dc:8b: a8:94:b7:55:a0:77:b5:b7:5a:de:8e:cb:7c:ea:0e:92:0d:ef: 9f:66:07:e6:ae:9d:f7:53:0f:d6:90:24:1a:ec:4c:b9:bc:b6: 92:b6:93:4c:fa:84:84:c6:6b:29:f5:eb:46:cd:7b:65:64:cb: 71:86:bc:c9 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUSmcRugWqHckSjwZNRXLqFv8PdKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTc1MzQ5RkJFQTM5Q0ZFRDY1QkIyODBBMzIwNTVFQjcx NjY3OTA4OTAeFw0yNjA1MjcwODIzNDdaFw0yNzA1MjYwODI4NDdaMDMxMTAvBgNV BAMTKEFBN0UzRjc0MkQ1REM5NTA5NUY4MTA2RUYxNUZCNDMwQjc3ODI0MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChxVCy+g3LPxdVC82UKf8bY3tu wRWUgtTVJvDSfuEISq3FcAxxGEPoRe0g5xXfZFAcbqpKz68VfVzZnJa2To3i3t8x 4nxCgzvqemfxodudjOSpzCTagYhuCFy8o63vrRu6L4VpjJ+Q5l+6t21YC1n2YCk/ R6y7Lbol+u0ex5H/Xlo/JxdKdXPgxibVBfgb8Br9JUV9K5OcB75MwjAhh4YAivxk vFMGM5SPrRDczBJRoziP0n43PawgltAIN7iqWCSOBnEe6+iYnyh+Lz1RZDyJBBrJ FKUKNXt6ktrM5YoQj2YuuKw+yc2rLqPN4tgivtyk2KkUmGqlGBr0NAaLUiQFAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUqn4/dC1dyVCV+BBu8V+0MLd4JBswHwYDVR0j BBgwFoAU51NJ++o5z+1luygKMgVetxZnkIkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MTkzMzM5Nzg0NTkzNDA5Ny8wL0U3NTM0OUZCRUEzOUNGRUQ2NUJCMjgwQTMyMDU1 RUI3MTY2NzkwODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTc1MzQ5RkJFQTM5Q0ZFRDY1QkIyODBBMzIwNTVFQjcxNjY3OTA4OS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMTE5MzMzOTc4NDU5MzQwOTcvMC8zNDMzMmUzMjM0 MzMyZTMxMzIzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzMzM3MzczNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAivzgDANBgkqhkiG9w0BAQsFAAOCAQEAwspSB4caanvwljrdJ/5r l06JMVq3hqZaet39vaZTnUFKLnTJ+Sbw9fCSHiCpH3M6PQI9T9vpAi4/r69/0ZRb 6uaCMqYgVkeZAt3HicswX8eaJlPusTOD7bDp0AYYxcx5A5tXOWwfC2/dlZhNYJUv EOasJTQRnWyu35eEzgMOMh7E6aAzsPcWZmQZCBNwTRCW49F9Ry3O9MT3pt7Zn/wQ sJhBUqHZJTUmR0fc7UrQTHOFywRBG+l3M/NyPO5BWIRGA+9q5dyLqJS3VaB3tbda 3o7LfOoOkg3vn2YH5q6d91MP1pAkGuxMuby2kraTTPqEhMZrKfXrRs17ZWTLcYa8 yQ== -----END CERTIFICATE-----Generated at Fri May 29 23:53:49 2026 by rpki-client