$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114469232214540311/0/34332e3234372e3235302e302f32342d3332203d3e2034383038.roa File: 34332e3234372e3235302e302f32342d3332203d3e2034383038.roa (raw, json) Hash identifier: dbkJ61oOM0Rfve/1tZTBWmW8TTCphUCAJa42P6BHjZA= Subject key identifier: 3C:AC:03:FE:3F:35:6B:07:53:F0:1F:E0:52:E7:11:68:A5:49:B3:66 Certificate issuer: /CN=3789349FBAB7B9C74B292EDF5849BA368344B348 Certificate serial: 567B13F880539BD10D12958CD9A8231C2CAA434F Authority key identifier: 37:89:34:9F:BA:B7:B9:C7:4B:29:2E:DF:58:49:BA:36:83:44:B3:48 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3789349FBAB7B9C74B292EDF5849BA368344B348.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/34332e3234372e3235302e302f32342d3332203d3e2034383038.roa Signing time: Wed 03 Jun 2026 08:27:57 +0000 ROA not before: Wed 03 Jun 2026 08:22:57 +0000 ROA not after: Wed 02 Jun 2027 08:27:57 +0000 asID: 4808 IP address blocks: 43.247.250.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/3789349FBAB7B9C74B292EDF5849BA368344B348.crl rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/3789349FBAB7B9C74B292EDF5849BA368344B348.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3789349FBAB7B9C74B292EDF5849BA368344B348.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:7b:13:f8:80:53:9b:d1:0d:12:95:8c:d9:a8:23:1c:2c:aa:43:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3789349FBAB7B9C74B292EDF5849BA368344B348 Validity Not Before: Jun 3 08:22:57 2026 GMT Not After : Jun 2 08:27:57 2027 GMT Subject: CN=3CAC03FE3F356B0753F01FE052E71168A549B366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:63:3a:6f:ba:4b:eb:f4:d3:77:f4:8c:a4:c4: 88:16:92:64:9f:a3:99:04:9d:3f:ba:81:01:db:0e: 8b:8b:74:ec:07:55:e4:8e:52:ec:da:f5:71:da:a4: c9:cf:5f:ff:95:46:04:c2:2a:01:ca:23:3e:a0:be: fc:93:10:1c:de:07:12:1f:1c:52:e0:d0:8b:ba:c3: 93:af:f9:c2:ce:bf:f5:3c:81:06:14:ff:e4:b4:ba: b5:34:09:f6:b3:88:10:d3:9c:f1:a6:5b:b3:5d:49: 93:a5:85:1d:11:ad:9c:70:d5:31:d6:02:5d:ff:fe: 8a:aa:5d:76:d2:ef:20:b3:7d:8a:5c:d9:ee:fd:cb: 76:20:47:a5:67:a0:16:c0:0e:98:26:22:6f:1c:b1: 1b:ea:a2:3f:11:0f:91:3f:ef:d6:06:b4:e9:8f:d4: b2:34:63:3f:a0:15:86:47:d6:e7:17:66:13:bc:13: af:5c:ea:75:3b:a7:08:93:7f:fe:e2:de:9b:53:31: 01:a2:09:3f:55:5b:45:c3:05:26:4c:49:49:5e:ae: 16:a0:f4:22:be:68:3b:d4:d3:08:5a:02:be:7d:5b: 05:20:b4:1d:c3:9b:eb:8e:f7:c8:1f:6d:78:1f:e6: a8:8e:86:c6:0c:90:b2:e6:40:94:52:d6:3a:e1:18: 99:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AC:03:FE:3F:35:6B:07:53:F0:1F:E0:52:E7:11:68:A5:49:B3:66 X509v3 Authority Key Identifier: keyid:37:89:34:9F:BA:B7:B9:C7:4B:29:2E:DF:58:49:BA:36:83:44:B3:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/3789349FBAB7B9C74B292EDF5849BA368344B348.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3789349FBAB7B9C74B292EDF5849BA368344B348.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/34332e3234372e3235302e302f32342d3332203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.250.0/24 Signature Algorithm: sha256WithRSAEncryption 22:e8:6a:91:7d:a0:7b:d1:a2:85:a8:9d:37:20:d1:df:16:19: 5a:2d:2a:21:9c:86:a4:f1:77:93:59:ba:f3:b1:b5:05:a8:d8: 87:f9:9c:c8:8a:27:1d:1b:88:3b:54:7c:5d:00:4d:c8:5f:22: 2a:04:d7:7d:64:c1:65:38:1e:8e:3d:6d:05:29:54:44:70:ae: 77:bf:ae:d5:1e:11:6b:3f:c5:0d:fe:bf:9e:7f:bf:73:26:53: e4:8c:c5:dd:6f:f0:88:39:52:ca:df:94:9f:04:92:8a:47:cc: c5:b9:ee:84:9f:cf:36:07:79:0a:0e:88:15:d9:a7:75:3d:0c: 50:ea:bf:dc:e0:81:f9:77:d2:d2:8b:20:3d:6d:28:21:ac:2f: 97:e9:23:87:f7:65:15:b2:29:a2:c7:47:38:24:29:80:a6:d2: f4:a8:81:8f:b9:18:cb:bd:75:95:d8:a4:9e:fe:95:06:ad:05: d4:c6:22:31:70:3c:70:7b:c7:9f:bb:eb:0e:e5:c4:21:28:00: f9:e5:ca:2f:f5:f7:6d:dc:8d:9d:9a:db:11:8b:3c:c3:78:1e: 03:7e:b9:0a:76:75:5a:1a:d9:93:0c:b0:eb:1d:09:b2:a4:85: 94:dd:cf:26:31:2b:70:4b:75:40:f8:9c:6e:28:f4:95:cc:de: 49:04:de:21 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUVnsT+IBTm9ENEpWM2agjHCyqQ08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzc4OTM0OUZCQUI3QjlDNzRCMjkyRURGNTg0OUJBMzY4 MzQ0QjM0ODAeFw0yNjA2MDMwODIyNTdaFw0yNzA2MDIwODI3NTdaMDMxMTAvBgNV BAMTKDNDQUMwM0ZFM0YzNTZCMDc1M0YwMUZFMDUyRTcxMTY4QTU0OUIzNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIYzpvukvr9NN39IykxIgWkmSf o5kEnT+6gQHbDouLdOwHVeSOUuza9XHapMnPX/+VRgTCKgHKIz6gvvyTEBzeBxIf HFLg0Iu6w5Ov+cLOv/U8gQYU/+S0urU0CfaziBDTnPGmW7NdSZOlhR0RrZxw1THW Al3//oqqXXbS7yCzfYpc2e79y3YgR6VnoBbADpgmIm8csRvqoj8RD5E/79YGtOmP 1LI0Yz+gFYZH1ucXZhO8E69c6nU7pwiTf/7i3ptTMQGiCT9VW0XDBSZMSUlerhag 9CK+aDvU0whaAr59WwUgtB3Dm+uO98gfbXgf5qiOhsYMkLLmQJRS1jrhGJkDAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUPKwD/j81awdT8B/gUucRaKVJs2YwHwYDVR0j BBgwFoAUN4k0n7q3ucdLKS7fWEm6NoNEs0gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDQ2OTIzMjIxNDU0MDMxMS8wLzM3ODkzNDlGQkFCN0I5Qzc0QjI5MkVERjU4NDlC QTM2ODM0NEIzNDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzc4OTM0OUZCQUI3QjlDNzRCMjkyRURGNTg0OUJBMzY4MzQ0QjM0OC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0NDY5MjMyMjE0NTQwMzExLzAvMzQzMzJlMzIzNDM3 MmUzMjM1MzAyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACv3+jANBgkqhkiG9w0BAQsFAAOCAQEAIuhqkX2ge9GihaidNyDR3xYZWi0q IZyGpPF3k1m687G1BajYh/mcyIonHRuIO1R8XQBNyF8iKgTXfWTBZTgejj1tBSlU RHCud7+u1R4Raz/FDf6/nn+/cyZT5IzF3W/wiDlSyt+UnwSSikfMxbnuhJ/PNgd5 Cg6IFdmndT0MUOq/3OCB+XfS0osgPW0oIawvl+kjh/dlFbIposdHOCQpgKbS9KiB j7kYy711ldiknv6VBq0F1MYiMXA8cHvHn7vrDuXEISgA+eXKL/X3bdyNnZrbEYs8 w3geA365CnZ1WhrZkwyw6x0JsqSFlN3PJjErcEt1QPicbij0lczeSQTeIQ== -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:20 2026 by rpki-client