$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3235312e32302e302f32332d3234203d3e2034383437.roa File: 34352e3235312e32302e302f32332d3234203d3e2034383437.roa (raw, json) Hash identifier: b8BZFkGB9XGgMM8CARewayDLawI/Jmq5/kCfqBD2vsQ= Subject key identifier: 3C:75:DE:72:7E:88:0B:5E:2F:ED:17:69:07:67:57:D5:9D:55:D1:10 Certificate issuer: /CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Certificate serial: 68A0C860EA892107BD43BE2B1DF38B2995B68C3E Authority key identifier: B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3235312e32302e302f32332d3234203d3e2034383437.roa Signing time: Thu 04 Jun 2026 09:04:04 +0000 ROA not before: Thu 04 Jun 2026 08:59:04 +0000 ROA not after: Thu 03 Jun 2027 09:04:04 +0000 asID: 4847 IP address blocks: 45.251.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a0:c8:60:ea:89:21:07:bd:43:be:2b:1d:f3:8b:29:95:b6:8c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Validity Not Before: Jun 4 08:59:04 2026 GMT Not After : Jun 3 09:04:04 2027 GMT Subject: CN=3C75DE727E880B5E2FED1769076757D59D55D110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0e:6b:95:4c:80:f0:b8:6c:46:be:6a:3d:2d: 34:31:c6:e8:1a:62:a8:96:d0:12:df:ce:53:8c:48: 83:d6:85:01:d5:2d:03:4a:e8:bf:5b:68:0c:24:bc: 5d:32:ce:bf:37:6e:6f:18:e0:71:34:a7:6a:f1:f4: 5c:db:94:f8:7a:f5:41:79:9a:2d:3a:78:c7:34:46: 34:2f:8c:29:5f:a1:15:a8:36:ff:25:a3:e3:f0:f1: 29:52:2f:c2:98:3b:7b:da:95:ba:03:52:3a:a7:ef: 44:bd:00:94:f0:49:28:15:56:bb:d3:1a:06:ed:e5: d4:cf:20:3e:68:4e:d2:c6:27:32:e8:de:98:de:12: c0:0c:8a:44:c7:7a:db:ac:5e:7c:45:cd:80:fd:33: a4:f8:9e:f8:3e:80:13:3a:7f:a8:e5:91:e7:ec:6c: 3a:97:ee:ab:d0:73:0f:63:99:81:ab:94:66:e2:76: 99:7d:75:85:62:d3:66:a8:cc:35:ef:ab:4e:6f:a4: 4d:a2:0f:5f:98:40:53:19:4f:35:e0:57:42:80:90: 66:ac:d9:5c:08:6f:5b:24:9d:80:68:12:88:93:00: 8b:8b:d5:d0:a9:1a:47:6d:ea:e2:c3:ae:33:f4:3d: c5:59:a0:af:cb:a9:b7:54:10:31:af:90:21:68:ad: e1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:75:DE:72:7E:88:0B:5E:2F:ED:17:69:07:67:57:D5:9D:55:D1:10 X509v3 Authority Key Identifier: keyid:B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3235312e32302e302f32332d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.251.20.0/23 Signature Algorithm: sha256WithRSAEncryption 82:a2:9a:a3:b5:61:85:9c:8d:03:9f:54:b4:61:ff:42:19:a6: ab:51:35:67:99:07:31:69:13:14:36:b1:c0:f9:07:a3:87:bf: 6b:3b:cc:21:44:87:4f:9c:b6:6e:46:fd:ff:ac:61:46:6c:3b: 9d:b9:e9:b0:39:0a:f0:18:df:1f:30:88:44:a7:ff:72:1c:ac: 37:72:6d:2d:61:60:08:b7:4f:82:95:5f:b8:c6:e8:97:bc:56: f9:f7:48:a2:e3:a1:0c:8d:b7:a4:3f:cf:d1:a4:51:b0:c3:f2: dd:82:b2:aa:71:91:e2:69:46:b1:33:d8:54:92:97:5e:c4:52: 4a:4e:0a:d7:39:46:96:0c:46:cb:16:14:fd:54:05:ed:3d:d5: 33:e0:7b:73:fa:64:cc:13:50:1d:9b:d2:08:eb:0c:63:b6:17: a0:58:96:8b:79:df:0e:5a:a9:d8:f6:86:35:2b:3b:85:32:95: b8:dc:a4:f6:e3:cf:ab:89:3d:7e:28:54:75:eb:67:fa:f3:0a: 6d:b3:e4:6d:05:04:13:83:f2:a1:26:c4:8e:d3:8f:d9:d8:ee: 45:61:16:aa:9a:4f:ab:15:6a:9a:a7:d2:58:8c:9b:5e:de:26: 37:11:e2:68:9e:16:60:62:6e:4d:9e:8e:b8:e5:38:a1:bc:39: 79:9a:e2:ac -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUaKDIYOqJIQe9Q74rHfOLKZW2jD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3 RDI3NzVDOTAeFw0yNjA2MDQwODU5MDRaFw0yNzA2MDMwOTA0MDRaMDMxMTAvBgNV BAMTKDNDNzVERTcyN0U4ODBCNUUyRkVEMTc2OTA3Njc1N0Q1OUQ1NUQxMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzDmuVTIDwuGxGvmo9LTQxxuga YqiW0BLfzlOMSIPWhQHVLQNK6L9baAwkvF0yzr83bm8Y4HE0p2rx9FzblPh69UF5 mi06eMc0RjQvjClfoRWoNv8lo+Pw8SlSL8KYO3valboDUjqn70S9AJTwSSgVVrvT Ggbt5dTPID5oTtLGJzLo3pjeEsAMikTHetusXnxFzYD9M6T4nvg+gBM6f6jlkefs bDqX7qvQcw9jmYGrlGbidpl9dYVi02aozDXvq05vpE2iD1+YQFMZTzXgV0KAkGas 2VwIb1sknYBoEoiTAIuL1dCpGkdt6uLDrjP0PcVZoK/LqbdUEDGvkCForeETAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUPHXecn6IC14v7RdpB2dX1Z1V0RAwHwYDVR0j BBgwFoAUsoJ0pxih/pp0525HeweQYH0ndckwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MjcyNDMzMTczNTAyMzYzMy8wL0IyODI3NEE3MThBMUZFOUE3NEU3NkU0NzdCMDc5 MDYwN0QyNzc1QzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3RDI3NzVDOS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTEyNzI0MzMxNzM1MDIzNjMzLzAvMzQzNTJlMzIzNTMx MmUzMjMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEt+xQwDQYJKoZIhvcNAQELBQADggEBAIKimqO1YYWcjQOfVLRh/0IZpqtRNWeZ BzFpExQ2scD5B6OHv2s7zCFEh0+ctm5G/f+sYUZsO5256bA5CvAY3x8wiESn/3Ic rDdybS1hYAi3T4KVX7jG6Je8Vvn3SKLjoQyNt6Q/z9GkUbDD8t2CsqpxkeJpRrEz 2FSSl17EUkpOCtc5RpYMRssWFP1UBe091TPge3P6ZMwTUB2b0gjrDGO2F6BYlot5 3w5aqdj2hjUrO4UylbjcpPbjz6uJPX4oVHXrZ/rzCm2z5G0FBBOD8qEmxI7Tj9nY 7kVhFqqaT6sVapqn0liMm17eJjcR4mieFmBibk2ejrjlOKG8OXma4qw= -----END CERTIFICATE-----Generated at Fri Jun 12 02:24:11 2026 by rpki-client