$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32302e302f32322d3234203d3e2034383038.roa File: 34352e3132342e32302e302f32322d3234203d3e2034383038.roa (raw, json) Hash identifier: FE/ewkSorjMUfIZNmJ+5+2GZ98ni0SLvUKkjAx0egAE= Subject key identifier: 1F:4A:92:41:A4:2F:B6:F1:F4:68:79:33:FB:D2:96:42:3A:4E:66:D5 Certificate issuer: /CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Certificate serial: 7DE16436B05C6E2B395B093080E1AF63FB6FB6E2 Authority key identifier: B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32302e302f32322d3234203d3e2034383038.roa Signing time: Fri 29 May 2026 13:29:14 +0000 ROA not before: Fri 29 May 2026 13:24:14 +0000 ROA not after: Fri 28 May 2027 13:29:14 +0000 asID: 4808 IP address blocks: 45.124.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e1:64:36:b0:5c:6e:2b:39:5b:09:30:80:e1:af:63:fb:6f:b6:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Validity Not Before: May 29 13:24:14 2026 GMT Not After : May 28 13:29:14 2027 GMT Subject: CN=1F4A9241A42FB6F1F4687933FBD296423A4E66D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:db:6f:fb:ed:e8:c5:6b:28:33:4a:97:67:7f: db:85:9a:1f:28:88:99:0f:e7:9d:77:34:52:55:53: a7:0f:02:86:8b:1d:7b:30:5b:5a:84:23:96:cb:4f: 92:21:71:42:e9:1b:04:c3:48:be:6c:f6:af:02:c1: 14:a2:4c:6c:07:74:6e:99:a0:80:99:c3:81:f8:75: 7e:49:fa:af:69:04:06:23:6e:af:d7:83:ca:61:42: 7a:5e:11:74:dd:7e:e8:6e:bd:62:31:2c:d0:a1:01: 5d:9c:eb:a6:88:68:e7:52:ac:b7:16:29:b8:8e:44: 35:20:5d:4d:e2:72:d0:7c:7a:22:22:24:14:7f:33: 5d:1c:2a:4d:a6:16:ff:29:e5:26:d1:95:65:7d:d9: 8c:fe:35:6d:ec:89:cb:b8:cc:28:ee:43:4e:0b:4f: 84:a3:db:3a:8b:de:bb:e7:2e:40:13:a4:1b:8c:6d: 67:b8:9d:13:f9:e8:5b:74:f9:59:18:30:51:e3:36: 07:0c:d5:46:91:6a:24:eb:8c:54:56:39:99:2d:f0: 2b:15:68:34:ff:a4:d0:0e:0d:50:b6:38:ae:1c:85: c6:5b:c1:59:9b:80:49:49:34:c0:bb:3b:3d:7f:1c: 83:96:69:8c:69:21:d2:71:ad:b9:0f:4e:82:17:75: f4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:4A:92:41:A4:2F:B6:F1:F4:68:79:33:FB:D2:96:42:3A:4E:66:D5 X509v3 Authority Key Identifier: keyid:B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32302e302f32322d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.124.20.0/22 Signature Algorithm: sha256WithRSAEncryption 39:dc:68:07:a1:ea:c2:e3:5d:6d:e0:ee:55:26:2f:d9:5b:50: ee:a5:48:eb:26:e5:38:6a:49:4c:cd:bb:a1:6d:91:c7:b2:dd: 42:04:0a:b9:aa:d6:7c:83:a9:72:b1:1c:10:ae:a2:2e:9a:93: 68:e6:e4:d7:af:5f:94:ea:34:dc:99:e3:3f:87:50:f5:4c:6b: 6d:cb:9f:a8:31:96:97:20:d7:22:9f:02:92:31:e6:ff:48:8d: 24:9b:41:85:b0:ae:41:07:4b:0f:5b:26:1b:b5:bc:cc:a1:2f: 5d:7a:0e:3b:a0:d3:18:b0:66:87:61:55:53:c4:0e:e2:09:75: 0f:7e:23:46:64:cb:7f:74:61:49:2d:af:90:48:61:23:ff:6a: 5d:3e:8d:b2:f2:ed:4d:ec:c7:7d:af:02:35:4d:f0:38:3d:1b: 0c:1c:9d:1c:a5:15:87:e3:81:20:8f:ed:d5:0b:c3:a7:ac:a1: b7:23:73:89:47:96:9d:4d:4e:d4:4c:ca:0e:89:b3:88:39:f2: 95:54:51:de:00:46:c4:6f:a7:f8:98:b6:7b:2d:51:9a:05:23: 51:53:de:0a:c4:0f:17:3f:50:50:02:96:4c:99:ec:05:21:2b: cd:8d:e1:bb:8e:c7:19:c4:0a:ad:39:01:9b:f6:a9:42:27:27: 28:d4:00:cb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUfeFkNrBcbis5WwkwgOGvY/tvtuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3 RDI3NzVDOTAeFw0yNjA1MjkxMzI0MTRaFw0yNzA1MjgxMzI5MTRaMDMxMTAvBgNV BAMTKDFGNEE5MjQxQTQyRkI2RjFGNDY4NzkzM0ZCRDI5NjQyM0E0RTY2RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC222/77ejFaygzSpdnf9uFmh8o iJkP5513NFJVU6cPAoaLHXswW1qEI5bLT5IhcULpGwTDSL5s9q8CwRSiTGwHdG6Z oICZw4H4dX5J+q9pBAYjbq/Xg8phQnpeEXTdfuhuvWIxLNChAV2c66aIaOdSrLcW KbiORDUgXU3ictB8eiIiJBR/M10cKk2mFv8p5SbRlWV92Yz+NW3sicu4zCjuQ04L T4Sj2zqL3rvnLkATpBuMbWe4nRP56Ft0+VkYMFHjNgcM1UaRaiTrjFRWOZkt8CsV aDT/pNAODVC2OK4chcZbwVmbgElJNMC7Oz1/HIOWaYxpIdJxrbkPToIXdfS/AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUH0qSQaQvtvH0aHkz+9KWQjpOZtUwHwYDVR0j BBgwFoAUsoJ0pxih/pp0525HeweQYH0ndckwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MjcyNDMzMTczNTAyMzYzMy8wL0IyODI3NEE3MThBMUZFOUE3NEU3NkU0NzdCMDc5 MDYwN0QyNzc1QzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3RDI3NzVDOS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTEyNzI0MzMxNzM1MDIzNjMzLzAvMzQzNTJlMzEzMjM0 MmUzMjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAItfBQwDQYJKoZIhvcNAQELBQADggEBADncaAeh6sLjXW3g7lUmL9lbUO6lSOsm 5ThqSUzNu6Ftkcey3UIECrmq1nyDqXKxHBCuoi6ak2jm5NevX5TqNNyZ4z+HUPVM a23Ln6gxlpcg1yKfApIx5v9IjSSbQYWwrkEHSw9bJhu1vMyhL116Djug0xiwZodh VVPEDuIJdQ9+I0Zky390YUktr5BIYSP/al0+jbLy7U3sx32vAjVN8Dg9GwwcnRyl FYfjgSCP7dULw6esobcjc4lHlp1NTtRMyg6Js4g58pVUUd4ARsRvp/iYtnstUZoF I1FT3grEDxc/UFAClkyZ7AUhK82N4buOxxnECq05AZv2qUInJyjUAMs= -----END CERTIFICATE-----Generated at Fri May 29 22:55:52 2026 by rpki-client