$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3234203d3e203536303430.roa File: 34332e3235352e3232382e302f32322d3234203d3e203536303430.roa (raw, json) Hash identifier: DyPq6iY2esBXmtVnDNMr9tfsUnFFsvHVFStrbIMS+e4= Subject key identifier: 85:8D:51:50:81:93:15:D5:EA:EF:C2:38:27:6E:93:29:87:4D:BA:42 Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 7707F7363D173993389CA9B8B5FB5FEB94D7DF41 Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3234203d3e203536303430.roa Signing time: Sat 09 May 2026 01:49:12 +0000 ROA not before: Sat 09 May 2026 01:44:12 +0000 ROA not after: Sat 08 May 2027 01:49:12 +0000 asID: 56040 IP address blocks: 43.255.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:07:f7:36:3d:17:39:93:38:9c:a9:b8:b5:fb:5f:eb:94:d7:df:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: May 9 01:44:12 2026 GMT Not After : May 8 01:49:12 2027 GMT Subject: CN=858D5150819315D5EAEFC238276E9329874DBA42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ed:37:64:85:45:88:20:4d:43:77:c2:f6:b2: f0:ad:a3:d4:04:ae:9f:7e:82:9f:01:3f:48:80:1c: 79:f1:ff:2f:e0:d6:9f:89:05:69:93:f9:ca:34:66: e0:35:00:83:70:85:3d:85:d2:bb:e4:55:9e:a3:b1: bc:b8:96:3f:53:d9:28:7f:e1:48:b5:01:e4:63:20: a0:e1:b5:0f:1f:49:89:37:ca:4c:e6:b8:c5:b5:ae: 00:7d:82:5f:22:a8:92:a3:ee:45:0f:15:22:57:98: 66:9d:d4:f5:dd:ad:c2:77:e6:8f:ca:a0:76:87:27: 45:50:78:4c:0a:a4:a8:c7:52:09:89:67:36:c6:89: 63:d1:90:aa:5f:8c:39:cd:bd:f0:3c:fc:48:ff:40: e4:b2:36:dc:2c:82:d9:83:4a:4e:e1:3f:4f:55:11: 7b:a5:f9:86:5f:45:e5:6d:0b:8f:20:fb:37:cf:26: 0a:77:59:95:6b:7d:66:fd:26:1f:51:00:f5:85:8e: 1d:de:0b:f6:da:0e:a6:c3:d1:36:d0:42:f2:31:81: cd:a3:95:cb:0d:5c:dd:24:dd:cd:e4:4a:48:66:e7: 4c:7a:fc:b4:f7:bc:b0:ca:49:fd:7a:ff:11:fe:e1: b0:28:52:c8:d5:bd:f9:67:c6:78:a0:b6:d9:7e:4d: a2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8D:51:50:81:93:15:D5:EA:EF:C2:38:27:6E:93:29:87:4D:BA:42 X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.228.0/22 Signature Algorithm: sha256WithRSAEncryption a1:e5:5a:73:df:33:2e:b4:4d:bf:51:2c:96:e2:69:99:af:12: 4d:92:fd:56:7e:c3:e6:57:e3:fb:3a:d5:35:c5:9f:3f:02:08: 76:d5:bf:92:ae:8e:8d:a5:e4:46:76:5b:c5:60:f7:51:b3:69: 63:92:87:53:cd:fc:d9:37:92:a3:ca:ba:e3:ca:c0:32:1e:74: 80:be:04:68:12:b5:30:8f:0c:d5:3e:f3:c8:3c:b3:49:97:a4: 38:83:64:81:56:d5:25:67:06:65:6e:04:d9:04:e4:b5:4e:6a: 5a:2c:14:38:54:3f:9d:ba:26:78:bd:09:33:cf:1c:3f:cf:ed: dd:69:ae:77:04:e5:e1:32:33:55:aa:94:87:a1:31:1a:11:63: 6b:eb:cd:de:ac:dc:61:3f:13:56:06:64:81:f5:b7:ab:b4:52: 2e:14:eb:3c:3a:de:9b:9f:78:ec:5c:5c:4a:81:98:04:6b:f5: d3:e4:dd:b1:df:0f:b3:bc:0d:00:81:fe:8f:a9:de:d3:96:50: 7b:d4:ca:52:b7:8e:58:74:e6:3f:db:96:c8:0e:b3:fd:2a:d3: de:a0:95:df:f7:b4:27:8b:23:27:a7:c4:84:a7:38:af:74:86: bc:3a:35:ae:17:23:2c:1f:dc:dd:98:c7:92:17:f4:eb:92:4a: 76:20:22:6d -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUdwf3Nj0XOZM4nKm4tftf65TX30EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA1MDkwMTQ0MTJaFw0yNzA1MDgwMTQ5MTJaMDMxMTAvBgNV BAMTKDg1OEQ1MTUwODE5MzE1RDVFQUVGQzIzODI3NkU5MzI5ODc0REJBNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU7TdkhUWIIE1Dd8L2svCto9QE rp9+gp8BP0iAHHnx/y/g1p+JBWmT+co0ZuA1AINwhT2F0rvkVZ6jsby4lj9T2Sh/ 4Ui1AeRjIKDhtQ8fSYk3ykzmuMW1rgB9gl8iqJKj7kUPFSJXmGad1PXdrcJ35o/K oHaHJ0VQeEwKpKjHUgmJZzbGiWPRkKpfjDnNvfA8/Ej/QOSyNtwsgtmDSk7hP09V EXul+YZfReVtC48g+zfPJgp3WZVrfWb9Jh9RAPWFjh3eC/baDqbD0TbQQvIxgc2j lcsNXN0k3c3kSkhm50x6/LT3vLDKSf16/xH+4bAoUsjVvflnxnigttl+TaKVAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUhY1RUIGTFdXq78I4J26TKYdNukIwHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDcyMDI1OS8wLzM0MzMyZTMyMzUz NTJlMzIzMjM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv/5DANBgkqhkiG9w0BAQsFAAOCAQEAoeVac98zLrRNv1EsluJpma8S TZL9Vn7D5lfj+zrVNcWfPwIIdtW/kq6OjaXkRnZbxWD3UbNpY5KHU8382TeSo8q6 48rAMh50gL4EaBK1MI8M1T7zyDyzSZekOINkgVbVJWcGZW4E2QTktU5qWiwUOFQ/ nbomeL0JM88cP8/t3WmudwTl4TIzVaqUh6ExGhFja+vN3qzcYT8TVgZkgfW3q7RS LhTrPDrem5947FxcSoGYBGv10+Tdsd8Ps7wNAIH+j6ne05ZQe9TKUreOWHTmP9uW yA6z/SrT3qCV3/e0J4sjJ6fEhKc4r3SGvDo1rhcjLB/c3ZjHkhf065JKdiAibQ== -----END CERTIFICATE-----Generated at Wed May 13 15:03:05 2026 by rpki-client