$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e20313336393538.roa File: 34332e3235352e3232382e302f32322d3232203d3e20313336393538.roa (raw, json) Hash identifier: +T5xf1BGFyVvMXATo1m45lxYNNY8ZAPf1IGPv5Jvnj4= Subject key identifier: 65:E8:6B:A3:9B:BE:BF:41:38:57:AE:EE:0F:21:71:09:D6:D4:23:9D Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 04187F8EFB98C7FF2C488124E90FA997D68060F2 Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e20313336393538.roa Signing time: Sat 09 May 2026 01:49:12 +0000 ROA not before: Sat 09 May 2026 01:44:12 +0000 ROA not after: Sat 08 May 2027 01:49:12 +0000 asID: 136958 IP address blocks: 43.255.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:18:7f:8e:fb:98:c7:ff:2c:48:81:24:e9:0f:a9:97:d6:80:60:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: May 9 01:44:12 2026 GMT Not After : May 8 01:49:12 2027 GMT Subject: CN=65E86BA39BBEBF413857AEEE0F217109D6D4239D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:12:8d:44:d3:ea:79:97:55:73:28:d9:ce:47: 7f:4f:ae:19:0b:5e:a0:1f:7b:8f:8a:30:fd:57:ce: e7:63:dc:22:6f:36:de:91:e3:56:db:01:6e:d1:09: 50:25:c4:79:52:20:41:4e:c1:52:e9:e0:2d:95:b5: e1:a8:32:db:5d:68:8b:79:de:9f:83:6c:15:fd:7a: 11:1b:91:f4:48:d4:e2:9d:a5:9f:3f:69:43:82:c5: 80:a1:21:d3:22:ba:ae:de:22:34:2c:5a:29:83:af: d3:0a:33:85:e5:46:6d:5d:6b:cd:48:69:15:cd:13: 44:3d:75:69:26:35:75:e9:fc:3c:fe:2e:8f:01:46: 9c:97:ed:fe:38:6f:5f:ef:61:26:ca:f8:cd:46:26: 9a:c3:83:d6:79:89:3f:bb:a7:4c:3b:3e:e1:b3:d6: 1a:b9:08:7b:77:07:d1:60:8c:bc:2f:ad:04:7e:7f: 78:e5:a0:5c:ab:92:14:8a:32:40:60:c1:ae:51:64: 16:28:d1:8c:0c:e2:1e:f2:81:a3:a8:f2:fc:8f:4b: 66:b9:d2:9c:f0:fe:89:87:a1:cb:26:3f:ec:92:73: e0:42:7a:bc:ca:9b:41:d8:18:bd:25:39:95:ce:f8: 6b:f9:ee:22:6a:a0:97:3c:04:0f:2d:1d:fb:bc:d4: d6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E8:6B:A3:9B:BE:BF:41:38:57:AE:EE:0F:21:71:09:D6:D4:23:9D X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e20313336393538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.228.0/22 Signature Algorithm: sha256WithRSAEncryption af:41:47:72:71:a7:99:67:31:55:fb:d9:7a:8f:9f:39:54:4b: 89:c9:b5:60:29:8b:9d:0e:8c:76:d8:ae:8d:36:6f:0f:30:fa: 79:86:66:b1:42:c5:49:4d:e8:1f:7f:36:f0:13:e3:87:c8:a8: 33:0f:49:e0:50:73:24:6b:6d:d1:47:99:37:fc:00:ce:55:8e: 4b:97:ce:b2:e2:61:7c:29:1b:cd:d4:ea:66:dd:5a:d5:a9:ef: 67:aa:9f:be:b9:95:7c:20:79:a1:d6:3d:ec:c6:bb:98:f7:31: 1d:e2:5e:85:41:9e:7f:ff:6a:db:e5:e1:d0:00:c3:c1:e2:ea: 93:29:7b:86:c9:7c:4b:8e:b8:5a:9f:ec:13:e3:72:fd:a9:fa: 23:84:71:ee:b5:8b:1d:eb:c8:49:9e:41:18:06:4b:1f:aa:c9: 64:68:f3:a1:d0:c3:fe:c5:58:c3:3a:26:44:42:0d:8b:f4:72: e2:b9:6f:8d:ce:64:4f:ed:17:2c:99:ee:59:26:01:5d:e1:93: 7d:ac:69:d4:3f:b9:a7:7f:98:0e:7d:6a:f6:17:8c:15:5d:dd: aa:a2:b9:17:5a:7c:e3:91:27:f7:46:6f:b8:54:28:46:39:82: c9:5f:90:2a:ba:d7:85:a1:53:55:23:9c:78:4a:41:7d:22:e1: 61:79:11:91 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUBBh/jvuYx/8sSIEk6Q+pl9aAYPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA1MDkwMTQ0MTJaFw0yNzA1MDgwMTQ5MTJaMDMxMTAvBgNV BAMTKDY1RTg2QkEzOUJCRUJGNDEzODU3QUVFRTBGMjE3MTA5RDZENDIzOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Eo1E0+p5l1VzKNnOR39PrhkL XqAfe4+KMP1Xzudj3CJvNt6R41bbAW7RCVAlxHlSIEFOwVLp4C2VteGoMttdaIt5 3p+DbBX9ehEbkfRI1OKdpZ8/aUOCxYChIdMiuq7eIjQsWimDr9MKM4XlRm1da81I aRXNE0Q9dWkmNXXp/Dz+Lo8BRpyX7f44b1/vYSbK+M1GJprDg9Z5iT+7p0w7PuGz 1hq5CHt3B9FgjLwvrQR+f3jloFyrkhSKMkBgwa5RZBYo0YwM4h7ygaOo8vyPS2a5 0pzw/omHocsmP+ySc+BCerzKm0HYGL0lOZXO+Gv57iJqoJc8BA8tHfu81NalAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUZehro5u+v0E4V67uDyFxCdbUI50wHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ3MjAyNTkvMC8zNDMzMmUzMjM1 MzUyZTMyMzIzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzNjM5MzUzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAiv/5DANBgkqhkiG9w0BAQsFAAOCAQEAr0FHcnGnmWcxVfvZeo+f OVRLicm1YCmLnQ6MdtiujTZvDzD6eYZmsULFSU3oH3828BPjh8ioMw9J4FBzJGtt 0UeZN/wAzlWOS5fOsuJhfCkbzdTqZt1a1anvZ6qfvrmVfCB5odY97Ma7mPcxHeJe hUGef/9q2+Xh0ADDweLqkyl7hsl8S464Wp/sE+Ny/an6I4Rx7rWLHevISZ5BGAZL H6rJZGjzodDD/sVYwzomREINi/Ry4rlvjc5kT+0XLJnuWSYBXeGTfaxp1D+5p3+Y Dn1q9heMFV3dqqK5F1p845En90ZvuFQoRjmCyV+QKrrXhaFTVSOceEpBfSLhYXkR kQ== -----END CERTIFICATE-----Generated at Wed May 13 15:58:22 2026 by rpki-client