$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32342d3234203d3e203233363530.roa File: 34332e3234302e302e302f32342d3234203d3e203233363530.roa (raw, json) Hash identifier: r8m+Vm/6NmHmns3JCrgSF5dH2g6HouFqDmKwvu7NVMI= Subject key identifier: 0F:C9:7E:67:16:D7:CA:05:00:07:76:FB:61:74:3A:26:41:A2:CE:2F Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 537D3632EB1A89A227BE97C7105250E884DEB8BC Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32342d3234203d3e203233363530.roa Signing time: Tue 28 Apr 2026 00:57:27 +0000 ROA not before: Tue 28 Apr 2026 00:52:27 +0000 ROA not after: Tue 27 Apr 2027 00:57:27 +0000 asID: 23650 IP address blocks: 43.240.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:7d:36:32:eb:1a:89:a2:27:be:97:c7:10:52:50:e8:84:de:b8:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 28 00:52:27 2026 GMT Not After : Apr 27 00:57:27 2027 GMT Subject: CN=0FC97E6716D7CA05000776FB61743A2641A2CE2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9f:ad:eb:03:16:5d:fd:1b:4a:5f:70:1a:39: c2:6a:67:47:82:8d:8c:94:62:89:f1:c0:86:5b:a2: c6:4c:95:43:db:3c:38:d4:f3:2a:1e:f4:21:c5:8b: 21:ae:c4:4a:fe:b3:e7:20:1e:ba:ed:3f:55:eb:21: 50:89:92:d9:87:83:8c:8a:57:0f:22:00:3a:30:15: 46:d4:49:ce:21:2c:d6:cf:e1:25:56:16:a7:9b:39: a4:f8:1d:48:d1:f6:50:75:fe:70:1e:63:4b:93:0b: ef:96:ea:4a:04:69:51:d2:08:6d:db:45:bf:0e:17: 42:47:c3:1a:1f:5a:52:26:e1:12:14:0d:95:33:3a: 7d:8f:e0:5a:04:7b:b4:9e:b3:52:88:9b:61:73:04: df:aa:5a:34:97:89:bd:19:4e:70:b1:4a:02:a2:bc: cd:15:6b:49:2d:1c:dc:f9:69:b8:de:47:c7:67:f0: 98:3f:4d:42:41:b3:49:ae:3c:62:7c:10:73:33:ce: c0:d5:8b:19:74:ed:ad:72:96:bd:c0:64:51:b6:90: d8:83:d9:fb:f9:c2:38:5e:bb:5c:73:57:a0:db:8c: c0:d2:dd:43:ec:2e:1a:9d:58:de:c4:83:23:cd:36: a9:a4:ea:28:8b:0f:7e:d9:32:94:75:66:50:de:1a: ff:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C9:7E:67:16:D7:CA:05:00:07:76:FB:61:74:3A:26:41:A2:CE:2F X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32342d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.0.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:a2:16:c8:81:b0:a3:95:67:f3:61:c3:db:f0:c7:17:25:9f: 5b:45:b4:ff:29:d7:39:f1:23:cb:11:2a:19:5e:34:71:14:9e: 16:64:ca:68:c8:de:48:98:25:39:f7:d9:af:05:e7:52:46:cd: 4f:6b:ee:8b:af:bd:8d:b0:fa:27:ec:05:5b:68:d8:30:58:fe: 6b:9d:d7:59:49:4e:06:03:71:3c:76:22:34:c0:57:f8:e6:17: 92:f1:09:ba:bc:1c:ce:d1:18:ab:5c:47:7b:3f:22:7d:c9:58: 8d:b9:a8:36:ab:9c:41:6a:25:46:47:09:bd:97:0e:de:60:10: 57:9f:fe:a1:c6:43:53:65:05:83:15:66:87:f2:7f:b3:ba:cd: 1b:a3:f5:6c:fa:8e:3f:a1:b1:40:f0:4c:9b:d7:94:8d:27:7b: d9:ff:0e:16:51:cf:c1:2c:e8:ab:f6:73:0c:22:64:c7:89:37: 9c:f5:99:ff:73:5b:0b:ca:de:0c:48:a6:c0:ed:fa:c5:f3:f8: af:68:c3:7d:6d:8a:56:0f:cf:28:8f:ca:2f:27:dc:3f:a9:e7: fb:e6:b9:e1:4c:51:00:93:19:dd:78:9a:d9:1f:a7:8e:24:d6: d7:e8:5c:53:72:fc:b2:5b:c6:bc:31:a3:1f:f6:bf:7d:78:80: 2a:c4:fc:b6 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUU302MusaiaInvpfHEFJQ6ITeuLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MjgwMDUyMjdaFw0yNzA0MjcwMDU3MjdaMDMxMTAvBgNV BAMTKDBGQzk3RTY3MTZEN0NBMDUwMDA3NzZGQjYxNzQzQTI2NDFBMkNFMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnn63rAxZd/RtKX3AaOcJqZ0eC jYyUYonxwIZbosZMlUPbPDjU8yoe9CHFiyGuxEr+s+cgHrrtP1XrIVCJktmHg4yK Vw8iADowFUbUSc4hLNbP4SVWFqebOaT4HUjR9lB1/nAeY0uTC++W6koEaVHSCG3b Rb8OF0JHwxofWlIm4RIUDZUzOn2P4FoEe7Ses1KIm2FzBN+qWjSXib0ZTnCxSgKi vM0Va0ktHNz5abjeR8dn8Jg/TUJBs0muPGJ8EHMzzsDVixl07a1ylr3AZFG2kNiD 2fv5wjheu1xzV6DbjMDS3UPsLhqdWN7EgyPNNqmk6iiLD37ZMpR1ZlDeGv9VAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUD8l+ZxbXygUAB3b7YXQ6JkGizi8wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMw MmUzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzMzNjM1MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAr8AAwDQYJKoZIhvcNAQELBQADggEBAFuiFsiBsKOVZ/Nhw9vwxxcln1tFtP8p 1znxI8sRKhleNHEUnhZkymjI3kiYJTn32a8F51JGzU9r7ouvvY2w+ifsBVto2DBY /mud11lJTgYDcTx2IjTAV/jmF5LxCbq8HM7RGKtcR3s/In3JWI25qDarnEFqJUZH Cb2XDt5gEFef/qHGQ1NlBYMVZofyf7O6zRuj9Wz6jj+hsUDwTJvXlI0ne9n/DhZR z8Es6Kv2cwwiZMeJN5z1mf9zWwvK3gxIpsDt+sXz+K9ow31tilYPzyiPyi8n3D+p 5/vmueFMUQCTGd14mtkfp44k1tfoXFNy/LJbxrwxox/2v314gCrE/LY= -----END CERTIFICATE-----Generated at Wed May 13 14:17:37 2026 by rpki-client