$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203536303433.roa File: 34332e3235352e3232382e302f32322d3232203d3e203536303433.roa (raw, json) Hash identifier: ++SSbDnJNZgVaJHP1TET0AfSwUHodedN7FY0SZYDWu8= Subject key identifier: FF:AB:E0:AF:37:63:74:B1:7B:30:59:37:2E:BA:B4:35:0E:78:C2:4D Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 4FDB8E73EEE4E779B37513D8CE3BE2128698862A Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203536303433.roa Signing time: Sat 09 May 2026 01:49:12 +0000 ROA not before: Sat 09 May 2026 01:44:12 +0000 ROA not after: Sat 08 May 2027 01:49:12 +0000 asID: 56043 IP address blocks: 43.255.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:db:8e:73:ee:e4:e7:79:b3:75:13:d8:ce:3b:e2:12:86:98:86:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: May 9 01:44:12 2026 GMT Not After : May 8 01:49:12 2027 GMT Subject: CN=FFABE0AF376374B17B3059372EBAB4350E78C24D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:36:39:0f:0d:b1:ad:85:59:2c:ea:52:9d:4a: 6b:fa:d9:30:af:d5:36:02:0e:c1:88:e0:d2:f6:50: 7e:b1:c4:1a:bb:fb:04:9e:35:67:9d:7b:cd:00:c4: a0:69:50:ff:91:7c:30:21:d9:9f:b6:a7:14:2c:a3: 65:30:2b:d5:f7:dc:01:48:26:9e:cb:f6:b6:fb:9a: 63:85:73:3c:11:c6:29:9e:9f:d8:df:90:fb:37:cc: fd:5a:ed:b9:41:4c:0d:06:84:62:ee:36:ae:27:89: 6c:e2:da:71:94:e8:1d:e1:e5:0f:ab:40:20:e8:3c: a9:84:15:46:10:77:a2:2c:32:f3:40:a9:e5:96:34: dc:27:65:c6:49:5e:76:11:27:00:e2:54:59:bd:44: b9:d6:d0:a3:20:78:dd:f1:5f:d1:74:12:7b:f9:f9: 9d:e1:cb:86:93:7f:68:25:eb:b1:ed:99:65:23:6a: 8b:79:ea:7a:1b:a6:22:fa:57:ea:68:3d:8d:03:88: bc:81:0b:cd:1b:5a:bd:92:08:a3:20:43:41:a0:0d: 94:c7:47:b5:b9:ca:b1:f2:35:96:19:e7:b8:26:99: 47:d8:4f:80:a9:bc:0b:5d:6d:bf:d2:66:ca:4b:28: 18:67:b8:e4:87:a5:b4:14:50:22:70:fb:47:ea:0b: 7b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:AB:E0:AF:37:63:74:B1:7B:30:59:37:2E:BA:B4:35:0E:78:C2:4D X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203536303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.228.0/22 Signature Algorithm: sha256WithRSAEncryption 91:3f:f0:38:af:d3:ec:86:b6:26:e3:e9:09:77:c3:ef:b8:4a: 23:b3:ed:29:f3:de:b0:cd:be:80:b2:9b:5f:1a:fa:90:3c:b6: 60:a4:b3:eb:6d:6e:4a:72:07:f3:9b:95:e3:32:47:1a:12:0d: 5c:77:57:11:16:c9:0a:a9:cb:9d:af:89:3b:41:65:38:e3:d8: 43:8b:0a:92:5d:ef:72:db:09:9a:fc:c8:5e:74:1b:1c:55:44: c4:a8:e6:8e:ec:ea:fa:18:c4:f5:b4:3f:a0:01:b3:a9:4f:9d: 3c:81:c0:fd:72:f1:21:b4:c8:22:38:72:db:cb:99:51:87:de: 9c:b8:d9:97:b8:ef:ea:c4:c9:52:60:f9:39:26:bf:39:28:0f: ef:50:42:6a:67:bb:29:21:f7:49:50:8c:74:80:8d:1a:99:e6: c4:08:33:dc:0b:0d:13:90:d2:75:65:6f:d6:94:ce:19:43:43: 38:d1:18:47:b8:9f:8e:36:8e:6f:0b:02:98:2e:1c:b8:c2:24: 90:ad:28:2d:95:c7:bf:60:37:3a:b5:20:fd:7b:49:37:f9:92: c2:34:ae:0c:d3:71:2c:5d:a9:5a:fb:33:cb:3f:08:aa:34:5d: ef:5c:2c:ae:b6:19:67:85:a6:b7:01:1e:29:b7:48:23:79:eb: c1:28:17:62 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUT9uOc+7k53mzdRPYzjviEoaYhiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA1MDkwMTQ0MTJaFw0yNzA1MDgwMTQ5MTJaMDMxMTAvBgNV BAMTKEZGQUJFMEFGMzc2Mzc0QjE3QjMwNTkzNzJFQkFCNDM1MEU3OEMyNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuNjkPDbGthVks6lKdSmv62TCv 1TYCDsGI4NL2UH6xxBq7+wSeNWede80AxKBpUP+RfDAh2Z+2pxQso2UwK9X33AFI Jp7L9rb7mmOFczwRximen9jfkPs3zP1a7blBTA0GhGLuNq4niWzi2nGU6B3h5Q+r QCDoPKmEFUYQd6IsMvNAqeWWNNwnZcZJXnYRJwDiVFm9RLnW0KMgeN3xX9F0Env5 +Z3hy4aTf2gl67HtmWUjaot56nobpiL6V+poPY0DiLyBC80bWr2SCKMgQ0GgDZTH R7W5yrHyNZYZ57gmmUfYT4CpvAtdbb/SZspLKBhnuOSHpbQUUCJw+0fqC3uVAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU/6vgrzdjdLF7MFk3Lrq0NQ54wk0wHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDcyMDI1OS8wLzM0MzMyZTMyMzUz NTJlMzIzMjM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzNjMwMzQzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv/5DANBgkqhkiG9w0BAQsFAAOCAQEAkT/wOK/T7Ia2JuPpCXfD77hK I7PtKfPesM2+gLKbXxr6kDy2YKSz621uSnIH85uV4zJHGhINXHdXERbJCqnLna+J O0FlOOPYQ4sKkl3vctsJmvzIXnQbHFVExKjmjuzq+hjE9bQ/oAGzqU+dPIHA/XLx IbTIIjhy28uZUYfenLjZl7jv6sTJUmD5OSa/OSgP71BCame7KSH3SVCMdICNGpnm xAgz3AsNE5DSdWVv1pTOGUNDONEYR7ifjjaObwsCmC4cuMIkkK0oLZXHv2A3OrUg /XtJN/mSwjSuDNNxLF2pWvszyz8IqjRd71wsrrYZZ4WmtwEeKbdII3nrwSgXYg== -----END CERTIFICATE-----Generated at Wed May 13 15:56:58 2026 by rpki-client