$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114852675259727895/0/34332e3234382e3233322e302f32322d3232203d3e203538383531.roa File: 34332e3234382e3233322e302f32322d3232203d3e203538383531.roa (raw, json) Hash identifier: AJLCIJLGsS5OOuU5jN56Qp6er6qsS4GHKNdr18oyEv4= Subject key identifier: CC:86:72:4E:6A:B5:22:5A:75:2D:6B:B7:11:6A:FF:CA:3E:BA:BF:79 Certificate issuer: /CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Certificate serial: 7E3E6109593EF5B1F0FC8C443CEC4673A3362522 Authority key identifier: D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/34332e3234382e3233322e302f32322d3232203d3e203538383531.roa Signing time: Thu 04 Jun 2026 09:53:22 +0000 ROA not before: Thu 04 Jun 2026 09:48:22 +0000 ROA not after: Thu 03 Jun 2027 09:53:22 +0000 asID: 58851 IP address blocks: 43.248.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 22:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:3e:61:09:59:3e:f5:b1:f0:fc:8c:44:3c:ec:46:73:a3:36:25:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D43DFC413BC84FA18BD1B8E07A23462C043ACB23 Validity Not Before: Jun 4 09:48:22 2026 GMT Not After : Jun 3 09:53:22 2027 GMT Subject: CN=CC86724E6AB5225A752D6BB7116AFFCA3EBABF79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:04:3e:aa:7b:64:19:48:d1:6b:4f:79:5a:79: 5b:b6:88:72:67:bb:ca:ca:87:05:31:27:49:23:01: 21:5c:39:b3:2f:a0:16:06:8e:1d:66:96:34:fc:90: b3:1f:bb:37:10:54:40:28:55:7e:46:a0:8d:d0:4c: d2:54:e3:9e:19:a0:c6:6b:55:b6:2a:ce:ba:68:b2: 2b:e7:85:27:d4:98:2b:97:01:89:3a:f8:b1:89:b7: 8b:bb:65:f2:94:4e:61:88:96:c8:dc:0e:07:71:66: da:c0:66:86:fa:6d:64:d8:dd:52:94:f4:29:64:de: 43:33:83:9c:c9:f3:d5:c4:b9:54:fc:b6:d7:90:55: 20:36:a5:da:f6:cb:d2:76:a0:ab:6a:c4:ff:f7:16: 3a:f5:d0:ae:4b:ef:82:fc:00:e6:bb:a5:49:41:2f: a0:ec:5f:d0:85:fc:d5:3f:06:18:da:ae:b0:15:54: 23:b9:60:9f:a4:4f:ed:6a:c8:d5:33:0e:22:92:d7: a6:f0:68:61:9f:3e:72:37:da:f2:15:a4:0e:2d:2a: b4:60:58:2a:6e:5b:17:7b:6a:22:a5:93:e0:e7:7c: b0:7c:29:08:72:c3:31:53:87:56:ef:29:9e:d0:0b: 98:ae:fd:8b:61:cc:a0:d8:d3:fc:3c:23:e0:06:25: f8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:86:72:4E:6A:B5:22:5A:75:2D:6B:B7:11:6A:FF:CA:3E:BA:BF:79 X509v3 Authority Key Identifier: keyid:D4:3D:FC:41:3B:C8:4F:A1:8B:D1:B8:E0:7A:23:46:2C:04:3A:CB:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D43DFC413BC84FA18BD1B8E07A23462C043ACB23.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114852675259727895/0/34332e3234382e3233322e302f32322d3232203d3e203538383531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.232.0/22 Signature Algorithm: sha256WithRSAEncryption 01:c9:13:3c:5f:e9:3f:61:30:bd:7b:2e:2a:55:d0:ec:13:70: e9:fc:fc:d0:00:e0:d4:14:81:30:21:5a:74:7f:90:78:36:db: af:df:4d:71:3d:77:79:2d:56:37:12:84:ba:b7:7a:98:b0:f3: 95:16:d0:14:b2:c5:12:a7:de:74:71:7e:36:d4:60:21:e5:96: 7b:36:2e:94:f7:bc:6a:34:b2:3e:ca:c4:3c:3d:4e:43:d8:f1: 2c:cb:03:92:ac:cd:c0:25:d4:0b:f9:7c:8e:db:67:c5:e7:5f: 86:af:cf:dc:21:7d:be:ca:96:d5:4b:48:75:94:eb:e6:39:06: 58:92:55:6b:22:c6:22:7a:66:e8:84:16:dc:f2:fa:1b:03:a9: b7:ce:44:15:24:c8:2b:48:f7:c1:1b:39:9d:36:f5:7b:71:16: 45:fb:5f:ac:ab:a8:87:e4:53:1c:ea:d6:02:c4:b1:97:4d:34: 22:ae:4d:51:39:d6:5e:83:a0:86:86:b8:03:5d:f5:68:1b:22: cd:e9:35:58:2c:2d:16:38:b9:09:da:cc:93:92:ec:78:0a:70: 1a:91:f0:d5:e1:17:95:50:e3:6b:e8:48:9e:c1:f6:48:11:8a: fc:cf:49:9d:b9:19:b4:4e:8a:4c:d6:98:7c:1b:02:7e:7e:1f: 73:1e:e5:a7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUfj5hCVk+9bHw/IxEPOxGc6M2JSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMw NDNBQ0IyMzAeFw0yNjA2MDQwOTQ4MjJaFw0yNzA2MDMwOTUzMjJaMDMxMTAvBgNV BAMTKENDODY3MjRFNkFCNTIyNUE3NTJENkJCNzExNkFGRkNBM0VCQUJGNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfBD6qe2QZSNFrT3laeVu2iHJn u8rKhwUxJ0kjASFcObMvoBYGjh1mljT8kLMfuzcQVEAoVX5GoI3QTNJU454ZoMZr VbYqzrposivnhSfUmCuXAYk6+LGJt4u7ZfKUTmGIlsjcDgdxZtrAZob6bWTY3VKU 9Clk3kMzg5zJ89XEuVT8tteQVSA2pdr2y9J2oKtqxP/3Fjr10K5L74L8AOa7pUlB L6DsX9CF/NU/BhjarrAVVCO5YJ+kT+1qyNUzDiKS16bwaGGfPnI32vIVpA4tKrRg WCpuWxd7aiKlk+DnfLB8KQhywzFTh1bvKZ7QC5iu/YthzKDY0/w8I+AGJfh7AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUzIZyTmq1Ilp1LWu3EWr/yj66v3kwHwYDVR0j BBgwFoAU1D38QTvIT6GL0bjgeiNGLAQ6yyMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1MjY3NTI1OTcyNzg5NS8wL0Q0M0RGQzQxM0JDODRGQTE4QkQxQjhFMDdBMjM0 NjJDMDQzQUNCMjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDQzREZDNDEzQkM4NEZBMThCRDFCOEUwN0EyMzQ2MkMwNDNBQ0IyMy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExNDg1MjY3NTI1OTcyNzg5NS8wLzM0MzMyZTMyMzQz ODJlMzIzMzMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzODM4MzUzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv46DANBgkqhkiG9w0BAQsFAAOCAQEAAckTPF/pP2EwvXsuKlXQ7BNw 6fz80ADg1BSBMCFadH+QeDbbr99NcT13eS1WNxKEurd6mLDzlRbQFLLFEqfedHF+ NtRgIeWWezYulPe8ajSyPsrEPD1OQ9jxLMsDkqzNwCXUC/l8jttnxedfhq/P3CF9 vsqW1UtIdZTr5jkGWJJVayLGInpm6IQW3PL6GwOpt85EFSTIK0j3wRs5nTb1e3EW RftfrKuoh+RTHOrWAsSxl000Iq5NUTnWXoOghoa4A131aBsizek1WCwtFji5CdrM k5LseApwGpHw1eEXlVDja+hInsH2SBGK/M9JnbkZtE6KTNaYfBsCfn4fcx7lpw== -----END CERTIFICATE-----Generated at Fri Jun 12 04:32:59 2026 by rpki-client