$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e322e302f32342d3234203d3e2034313334.roa File: 34332e3234302e322e302f32342d3234203d3e2034313334.roa (raw, json) Hash identifier: zNHfWXxRsszTMkk0Wc9cYyxaVjFBAz2cMAHXBF3Gc/s= Subject key identifier: 05:C6:FE:C4:D3:A2:31:CC:8B:25:46:E9:51:47:DC:EB:F1:A0:01:26 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 44BDF31B7313694D590C8D85301655E2D140AE79 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e322e302f32342d3234203d3e2034313334.roa Signing time: Tue 28 Apr 2026 00:58:48 +0000 ROA not before: Tue 28 Apr 2026 00:53:48 +0000 ROA not after: Tue 27 Apr 2027 00:58:48 +0000 asID: 4134 IP address blocks: 43.240.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:bd:f3:1b:73:13:69:4d:59:0c:8d:85:30:16:55:e2:d1:40:ae:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 28 00:53:48 2026 GMT Not After : Apr 27 00:58:48 2027 GMT Subject: CN=05C6FEC4D3A231CC8B2546E95147DCEBF1A00126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:47:52:02:fe:d0:5f:6f:34:47:9a:0b:a5:08: ee:19:38:ce:1c:1d:d6:79:0a:ed:ff:21:72:ca:6f: d4:63:7e:4d:40:7d:68:75:be:1a:90:ef:04:d9:a4: 12:26:51:6f:e3:c5:ae:c2:9f:4c:8a:b6:5f:58:e1: b1:35:85:4b:8b:b9:0c:cb:29:c8:b4:3c:44:4b:60: 24:06:d5:28:85:85:ac:98:79:ed:00:25:fa:24:12: 19:db:8a:4b:93:3b:7e:89:45:7b:1b:e7:c2:2c:d6: ec:65:2a:21:56:d4:c7:4e:28:d2:1f:11:98:c0:df: b9:c3:74:6f:c0:11:bb:8f:74:11:10:ae:d0:2a:4e: 82:7a:45:82:70:81:88:6c:0b:a1:bc:49:21:64:d7: 2b:2a:9b:96:60:f8:11:99:c3:8e:e3:a5:df:ba:41: d2:2a:94:5a:d9:e1:d7:43:f1:90:4a:f6:98:b3:38: 93:5b:de:2a:5b:7d:a4:75:e7:af:42:37:82:1d:17: e2:9b:f6:c0:41:01:99:17:ff:4e:d6:dd:50:55:d5: 44:d2:8b:86:8a:55:06:21:5e:ef:03:13:e9:4a:71: 09:97:c6:60:87:a7:69:56:bf:64:de:c9:2c:97:9a: ad:a7:6b:1d:57:f3:44:ef:63:67:d8:8c:2d:ec:ee: d7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C6:FE:C4:D3:A2:31:CC:8B:25:46:E9:51:47:DC:EB:F1:A0:01:26 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e322e302f32342d3234203d3e2034313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.2.0/24 Signature Algorithm: sha256WithRSAEncryption 22:eb:c5:61:49:ab:d7:ba:dc:61:8c:44:f8:f4:96:18:d1:4b: 5a:94:ed:7c:65:46:ab:b3:23:98:41:dd:85:29:70:95:69:31: f1:3e:75:5b:02:9c:3d:b2:ba:21:dd:e0:73:ef:27:56:bd:1f: b9:54:4a:70:79:a3:11:8d:e7:6f:58:78:df:96:39:ed:99:58: 4a:c5:31:04:d4:46:0d:69:bd:cb:4e:45:55:ef:46:f4:f1:62: f5:12:44:1d:a6:e8:56:d5:ef:62:a9:30:7c:09:fc:32:89:63: b2:c7:0d:fa:fe:4e:83:2d:70:92:ed:73:5a:8c:5b:10:ae:1e: d7:82:1c:19:52:ea:4f:ad:4f:53:3a:2c:a0:28:7d:f1:62:87: e5:81:e2:de:76:11:4f:6a:7e:f0:e6:ca:93:06:96:8c:be:24: 36:2f:b1:98:f2:53:a9:1c:d4:d0:c4:41:a5:57:56:aa:47:e2: ad:5b:7b:70:3a:bc:64:20:02:7f:56:c6:7f:b6:6f:06:ab:ef: 1d:12:c4:07:4a:55:ac:c0:d6:e6:94:10:e8:b8:25:52:a6:eb: a5:3f:68:f8:54:c3:03:12:6d:1d:3a:0e:13:4a:1d:a3:2b:ef: 2d:ca:82:5a:a3:6e:d1:d4:e1:bd:39:87:d6:f7:57:36:d7:c3: 6f:6a:87:a5 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIURL3zG3MTaU1ZDI2FMBZV4tFArnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MjgwMDUzNDhaFw0yNzA0MjcwMDU4NDhaMDMxMTAvBgNV BAMTKDA1QzZGRUM0RDNBMjMxQ0M4QjI1NDZFOTUxNDdEQ0VCRjFBMDAxMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHR1IC/tBfbzRHmgulCO4ZOM4c HdZ5Cu3/IXLKb9Rjfk1AfWh1vhqQ7wTZpBImUW/jxa7Cn0yKtl9Y4bE1hUuLuQzL Kci0PERLYCQG1SiFhayYee0AJfokEhnbikuTO36JRXsb58Is1uxlKiFW1MdOKNIf EZjA37nDdG/AEbuPdBEQrtAqToJ6RYJwgYhsC6G8SSFk1ysqm5Zg+BGZw47jpd+6 QdIqlFrZ4ddD8ZBK9pizOJNb3ipbfaR1569CN4IdF+Kb9sBBAZkX/07W3VBV1UTS i4aKVQYhXu8DE+lKcQmXxmCHp2lWv2TeySyXmq2nax1X80TvY2fYjC3s7td3AgMB AAGjggINMIICCTAdBgNVHQ4EFgQUBcb+xNOiMcyLJUbpUUfc6/GgASYwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMw MmUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzEzMzM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA K/ACMA0GCSqGSIb3DQEBCwUAA4IBAQAi68VhSavXutxhjET49JYY0UtalO18ZUar syOYQd2FKXCVaTHxPnVbApw9sroh3eBz7ydWvR+5VEpweaMRjedvWHjfljntmVhK xTEE1EYNab3LTkVV70b08WL1EkQdpuhW1e9iqTB8CfwyiWOyxw36/k6DLXCS7XNa jFsQrh7XghwZUupPrU9TOiygKH3xYoflgeLedhFPan7w5sqTBpaMviQ2L7GY8lOp HNTQxEGlV1aqR+KtW3twOrxkIAJ/VsZ/tm8Gq+8dEsQHSlWswNbmlBDouCVSpuul P2j4VMMDEm0dOg4TSh2jK+8tyoJao27R1OG9OYfW91c218Nvaoel -----END CERTIFICATE-----Generated at Wed May 13 14:02:44 2026 by rpki-client