$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114469232214540311/0/34332e3234372e3235312e302f32342d3332203d3e2034383038.roa File: 34332e3234372e3235312e302f32342d3332203d3e2034383038.roa (raw, json) Hash identifier: OglP+KJHhJaGG5Ew3u3tGdJgz+6Si+I6bEEZC+T6yFg= Subject key identifier: 91:F1:8D:FD:F9:CF:8E:F0:42:F3:25:96:D9:13:72:0D:A5:B2:3A:B6 Certificate issuer: /CN=3789349FBAB7B9C74B292EDF5849BA368344B348 Certificate serial: 4FC52008E8C04E9CC76D4F67EA29FB700CF20F1A Authority key identifier: 37:89:34:9F:BA:B7:B9:C7:4B:29:2E:DF:58:49:BA:36:83:44:B3:48 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3789349FBAB7B9C74B292EDF5849BA368344B348.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/34332e3234372e3235312e302f32342d3332203d3e2034383038.roa Signing time: Wed 03 Jun 2026 08:27:58 +0000 ROA not before: Wed 03 Jun 2026 08:22:58 +0000 ROA not after: Wed 02 Jun 2027 08:27:58 +0000 asID: 4808 IP address blocks: 43.247.251.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/3789349FBAB7B9C74B292EDF5849BA368344B348.crl rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/3789349FBAB7B9C74B292EDF5849BA368344B348.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3789349FBAB7B9C74B292EDF5849BA368344B348.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c5:20:08:e8:c0:4e:9c:c7:6d:4f:67:ea:29:fb:70:0c:f2:0f:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3789349FBAB7B9C74B292EDF5849BA368344B348 Validity Not Before: Jun 3 08:22:58 2026 GMT Not After : Jun 2 08:27:58 2027 GMT Subject: CN=91F18DFDF9CF8EF042F32596D913720DA5B23AB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:57:a9:a6:a1:bb:d8:43:f5:29:16:52:aa:39: d4:56:cd:cc:61:18:e2:4f:3a:37:fa:3f:78:8f:4d: e7:72:c0:a1:89:b4:1e:21:72:b5:6e:d6:81:5c:4e: 6a:b4:9d:4e:db:f2:19:40:7b:69:77:0b:26:93:c7: fe:31:dd:43:3e:9f:4b:7a:44:8c:24:d8:29:d1:0e: da:ab:1e:ba:41:59:28:e6:60:ed:45:a6:4d:25:73: 53:1c:09:03:9d:0c:45:21:c9:98:8e:57:46:ef:95: a4:fd:e1:de:9c:c0:bc:2f:a0:f6:78:b4:74:5f:ee: 50:3e:d7:c2:c6:1b:56:3c:8d:44:f4:82:d0:01:96: e8:89:a3:38:35:06:3c:2a:36:3c:45:12:2c:77:5f: 85:6c:aa:a6:f4:8f:ef:46:87:ef:76:49:6b:f9:e9: f7:95:6f:9d:78:6b:29:b3:eb:d3:9c:05:76:1b:53: 67:50:0d:1c:61:5c:85:c6:f8:45:cb:20:cd:50:d9: 1b:16:55:b9:16:05:a5:55:ba:5f:4b:52:ba:3d:eb: 4e:bc:d5:5d:46:c1:a0:2a:31:72:49:75:d2:25:cd: c6:df:2f:06:72:60:d9:0a:a9:51:98:33:e5:f6:5b: 80:82:3f:db:c1:1e:f1:3d:bb:f6:e5:31:c7:28:5d: 1c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F1:8D:FD:F9:CF:8E:F0:42:F3:25:96:D9:13:72:0D:A5:B2:3A:B6 X509v3 Authority Key Identifier: keyid:37:89:34:9F:BA:B7:B9:C7:4B:29:2E:DF:58:49:BA:36:83:44:B3:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/3789349FBAB7B9C74B292EDF5849BA368344B348.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3789349FBAB7B9C74B292EDF5849BA368344B348.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114469232214540311/0/34332e3234372e3235312e302f32342d3332203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.251.0/24 Signature Algorithm: sha256WithRSAEncryption 70:ae:b3:fa:1f:ac:01:d7:52:06:71:72:bc:83:ba:29:dd:04: be:dd:82:5f:82:b7:59:58:ca:0b:c1:3f:2a:b9:cc:f6:20:89: 37:ef:34:6d:94:bc:91:c8:3f:41:09:ad:9a:12:12:90:36:fe: af:de:66:17:d6:0b:92:ad:a6:50:60:6c:bf:f1:4d:60:b8:aa: d9:e1:87:87:8d:6e:4d:d0:cb:19:b0:98:be:98:58:4d:c3:99: 79:f8:b2:08:b6:b1:8c:3b:2a:90:c6:52:91:8a:1c:95:6a:bc: 8c:80:59:66:87:e3:8d:bc:b3:57:48:24:3c:cc:be:95:d2:68: 74:4a:a7:45:a9:dd:d8:7a:22:6c:b2:0e:73:f1:c3:b4:df:5d: ac:2d:f7:65:4f:0d:7a:e6:8d:8b:ba:b1:dc:e4:a3:66:7c:9b: 80:3c:d2:e2:6f:3c:39:1c:8a:f1:6b:72:ca:19:8e:fc:69:84: 9f:99:95:14:0d:8e:d1:dc:de:3f:4a:65:61:9d:05:04:b0:60: 29:b5:81:61:dc:9c:ac:95:26:30:1c:f2:ab:3e:23:de:dd:30: 48:30:47:3e:48:e5:f2:19:1e:74:a8:89:9f:c3:a8:3d:f5:54: eb:49:49:e6:e5:2f:8a:3d:28:48:cc:4d:6d:b1:a9:23:e8:72: 03:7c:76:0d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUT8UgCOjATpzHbU9n6in7cAzyDxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzc4OTM0OUZCQUI3QjlDNzRCMjkyRURGNTg0OUJBMzY4 MzQ0QjM0ODAeFw0yNjA2MDMwODIyNThaFw0yNzA2MDIwODI3NThaMDMxMTAvBgNV BAMTKDkxRjE4REZERjlDRjhFRjA0MkYzMjU5NkQ5MTM3MjBEQTVCMjNBQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJV6mmobvYQ/UpFlKqOdRWzcxh GOJPOjf6P3iPTedywKGJtB4hcrVu1oFcTmq0nU7b8hlAe2l3CyaTx/4x3UM+n0t6 RIwk2CnRDtqrHrpBWSjmYO1Fpk0lc1McCQOdDEUhyZiOV0bvlaT94d6cwLwvoPZ4 tHRf7lA+18LGG1Y8jUT0gtABluiJozg1BjwqNjxFEix3X4Vsqqb0j+9Gh+92SWv5 6feVb514aymz69OcBXYbU2dQDRxhXIXG+EXLIM1Q2RsWVbkWBaVVul9LUro96068 1V1GwaAqMXJJddIlzcbfLwZyYNkKqVGYM+X2W4CCP9vBHvE9u/blMccoXRxlAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUkfGN/fnPjvBC8yWW2RNyDaWyOrYwHwYDVR0j BBgwFoAUN4k0n7q3ucdLKS7fWEm6NoNEs0gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDQ2OTIzMjIxNDU0MDMxMS8wLzM3ODkzNDlGQkFCN0I5Qzc0QjI5MkVERjU4NDlC QTM2ODM0NEIzNDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzc4OTM0OUZCQUI3QjlDNzRCMjkyRURGNTg0OUJBMzY4MzQ0QjM0OC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0NDY5MjMyMjE0NTQwMzExLzAvMzQzMzJlMzIzNDM3 MmUzMjM1MzEyZTMwMmYzMjM0MmQzMzMyMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACv3+zANBgkqhkiG9w0BAQsFAAOCAQEAcK6z+h+sAddSBnFyvIO6Kd0Evt2C X4K3WVjKC8E/KrnM9iCJN+80bZS8kcg/QQmtmhISkDb+r95mF9YLkq2mUGBsv/FN YLiq2eGHh41uTdDLGbCYvphYTcOZefiyCLaxjDsqkMZSkYoclWq8jIBZZofjjbyz V0gkPMy+ldJodEqnRand2HoibLIOc/HDtN9drC33ZU8NeuaNi7qx3OSjZnybgDzS 4m88ORyK8WtyyhmO/GmEn5mVFA2O0dzeP0plYZ0FBLBgKbWBYdycrJUmMBzyqz4j 3t0wSDBHPkjl8hkedKiJn8OoPfVU60lJ5uUvij0oSMxNbbGpI+hyA3x2DQ== -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:22 2026 by rpki-client