$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32312e302f32342d3234203d3e2034383437.roa File: 34352e3132342e32312e302f32342d3234203d3e2034383437.roa (raw, json) Hash identifier: lcuJsk7NCmVi9uUbxn2YCJE3t3e2O60UPcvuRv0ueSw= Subject key identifier: 97:BB:6B:04:8A:73:5E:B5:E5:E0:D1:A9:CF:1A:53:F8:14:7A:D5:FE Certificate issuer: /CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Certificate serial: 0FDACE6B6675D3854898E0C5F9D3B7FD363CFBBB Authority key identifier: B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32312e302f32342d3234203d3e2034383437.roa Signing time: Thu 04 Jun 2026 08:48:57 +0000 ROA not before: Thu 04 Jun 2026 08:43:57 +0000 ROA not after: Thu 03 Jun 2027 08:48:57 +0000 asID: 4847 IP address blocks: 45.124.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:da:ce:6b:66:75:d3:85:48:98:e0:c5:f9:d3:b7:fd:36:3c:fb:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Validity Not Before: Jun 4 08:43:57 2026 GMT Not After : Jun 3 08:48:57 2027 GMT Subject: CN=97BB6B048A735EB5E5E0D1A9CF1A53F8147AD5FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:75:ba:c9:52:6a:51:90:90:f5:3d:ec:d2:f1: 40:b4:31:85:1c:a4:0d:57:f8:b6:5f:b3:4d:79:81: 2c:c9:93:8e:6a:82:9d:e1:a0:7d:b1:1d:4b:61:a3: 9d:b5:1a:7a:fd:75:2f:b5:8a:cd:75:d8:07:71:1a: e3:bf:30:a3:ce:22:50:90:73:86:e2:4d:1a:12:4e: 45:54:b6:f3:b7:10:8e:a1:89:e7:10:12:68:4a:93: 7d:63:62:4a:05:68:f1:e9:02:5a:15:93:4e:d2:00: a7:af:52:c2:d5:24:c6:1d:d6:74:e7:9e:e7:02:71: 6b:a5:b4:f5:f1:ed:67:1c:e4:62:ab:53:aa:45:f1: a4:f5:d7:55:b0:1c:e7:1f:92:ff:f6:45:df:05:48: c5:6c:3e:ac:89:fe:20:70:e8:d3:32:72:3e:c8:03: 32:b5:c4:b1:10:8d:af:c2:bb:b3:84:28:bd:fa:69: 9c:af:c5:29:f6:ce:11:14:9f:48:c5:93:0b:61:6a: 08:9a:03:b4:bf:eb:a5:dd:30:e2:40:25:b7:80:67: 75:65:4c:35:d8:dc:57:fe:87:2a:d3:3e:3d:aa:b4: 9e:fe:2c:8d:52:73:f0:da:ab:cc:f7:dc:dd:3b:cb: b6:31:9d:e2:7a:02:a4:30:cf:18:90:ce:67:89:b1: 30:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:BB:6B:04:8A:73:5E:B5:E5:E0:D1:A9:CF:1A:53:F8:14:7A:D5:FE X509v3 Authority Key Identifier: keyid:B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32312e302f32342d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.124.21.0/24 Signature Algorithm: sha256WithRSAEncryption 33:73:31:07:b3:6f:84:a2:fb:68:76:75:69:7e:ea:c3:48:e3: 7d:8f:f5:48:2a:dc:a5:be:88:d5:2d:cb:c1:43:97:9f:e9:6a: d9:a4:04:7d:75:49:bc:16:2b:06:95:7f:96:60:91:87:b4:3f: a1:bd:2e:55:e4:ac:6b:10:1b:3c:c5:c7:70:0d:9b:d6:27:f2: e7:48:2c:21:4e:6c:29:e7:b6:7d:f8:8a:23:ff:96:f2:0e:db: e9:9e:f7:e1:b5:71:bf:37:2d:87:29:99:78:9b:f2:9c:cb:ed: 67:91:4c:6b:db:01:c7:f7:e5:76:87:b7:c8:58:89:d1:76:02: b8:67:a5:2c:89:7b:dd:8b:c9:91:8b:f1:ce:54:43:f6:26:78: 67:88:95:cd:8c:47:e5:37:c7:a9:94:c9:c8:71:9d:07:5b:2c: 5f:6e:ab:7d:f7:2b:e6:b7:4e:0e:2e:5b:15:28:e5:fa:23:2d: 88:af:fa:76:fc:1d:5d:d0:4f:5e:93:28:68:f7:f0:c5:77:a8: d8:fa:5e:5d:38:2a:a6:ff:85:9d:4d:9f:3c:2a:45:7a:1f:40: ef:c2:d7:c0:b6:35:39:f2:85:7f:cd:6f:92:5a:88:6b:38:a1: 4b:e4:6d:cf:ba:38:6e:03:9d:57:af:46:88:c4:51:bd:a4:3c: fb:ed:1d:f4 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUD9rOa2Z104VImODF+dO3/TY8+7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3 RDI3NzVDOTAeFw0yNjA2MDQwODQzNTdaFw0yNzA2MDMwODQ4NTdaMDMxMTAvBgNV BAMTKDk3QkI2QjA0OEE3MzVFQjVFNUUwRDFBOUNGMUE1M0Y4MTQ3QUQ1RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQdbrJUmpRkJD1PezS8UC0MYUc pA1X+LZfs015gSzJk45qgp3hoH2xHUtho521Gnr9dS+1is112AdxGuO/MKPOIlCQ c4biTRoSTkVUtvO3EI6hiecQEmhKk31jYkoFaPHpAloVk07SAKevUsLVJMYd1nTn nucCcWultPXx7Wcc5GKrU6pF8aT111WwHOcfkv/2Rd8FSMVsPqyJ/iBw6NMycj7I AzK1xLEQja/Cu7OEKL36aZyvxSn2zhEUn0jFkwthagiaA7S/66XdMOJAJbeAZ3Vl TDXY3Ff+hyrTPj2qtJ7+LI1Sc/Daq8z33N07y7YxneJ6AqQwzxiQzmeJsTD7AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUl7trBIpzXrXl4NGpzxpT+BR61f4wHwYDVR0j BBgwFoAUsoJ0pxih/pp0525HeweQYH0ndckwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MjcyNDMzMTczNTAyMzYzMy8wL0IyODI3NEE3MThBMUZFOUE3NEU3NkU0NzdCMDc5 MDYwN0QyNzc1QzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3RDI3NzVDOS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTEyNzI0MzMxNzM1MDIzNjMzLzAvMzQzNTJlMzEzMjM0 MmUzMjMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAtfBUwDQYJKoZIhvcNAQELBQADggEBADNzMQezb4Si+2h2dWl+6sNI432P9Ugq 3KW+iNUty8FDl5/patmkBH11SbwWKwaVf5ZgkYe0P6G9LlXkrGsQGzzFx3ANm9Yn 8udILCFObCnntn34iiP/lvIO2+me9+G1cb83LYcpmXib8pzL7WeRTGvbAcf35XaH t8hYidF2ArhnpSyJe92LyZGL8c5UQ/YmeGeIlc2MR+U3x6mUychxnQdbLF9uq333 K+a3Tg4uWxUo5fojLYiv+nb8HV3QT16TKGj38MV3qNj6Xl04Kqb/hZ1NnzwqRXof QO/C18C2NTnyhX/Nb5JaiGs4oUvkbc+6OG4DnVevRojEUb2kPPvtHfQ= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:53 2026 by rpki-client