$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e322e302f32342d3234203d3e2034383337.roa File: 34332e3234302e322e302f32342d3234203d3e2034383337.roa (raw, json) Hash identifier: Ra3kNOK0o4D+9LUJusPoBTNESUxct8DLiJkUJoFdVaY= Subject key identifier: 50:B2:3B:EF:A9:97:4B:0E:49:30:64:B2:EA:0E:EE:19:84:03:63:76 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 5B0209C92D5D822EC916350BF088BFC0D9C4B656 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e322e302f32342d3234203d3e2034383337.roa Signing time: Tue 28 Apr 2026 00:58:48 +0000 ROA not before: Tue 28 Apr 2026 00:53:48 +0000 ROA not after: Tue 27 Apr 2027 00:58:48 +0000 asID: 4837 IP address blocks: 43.240.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:02:09:c9:2d:5d:82:2e:c9:16:35:0b:f0:88:bf:c0:d9:c4:b6:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 28 00:53:48 2026 GMT Not After : Apr 27 00:58:48 2027 GMT Subject: CN=50B23BEFA9974B0E493064B2EA0EEE1984036376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f7:6d:ad:5f:c2:fd:fd:7c:62:7b:10:19:1f: 83:98:a1:12:1a:a7:47:17:f8:a8:4f:8b:31:b4:b7: d3:67:09:46:f5:e4:56:c7:72:77:8a:c7:41:42:1e: eb:e2:69:5c:5a:47:31:f1:61:81:ce:54:cf:66:cb: ef:02:64:4e:19:75:ca:78:58:ee:74:e2:c4:c4:b4: a2:ee:c6:ea:13:e4:71:ee:86:90:b3:be:ee:5a:80: f0:e0:4b:da:9f:e4:b3:13:9c:8a:50:89:04:5b:72: 86:6a:e2:30:ad:cd:16:0a:73:da:0a:26:87:b1:88: 60:bb:b5:97:df:4f:e4:da:65:25:ee:1a:ae:5f:0b: d2:6f:9a:48:ac:a6:06:6d:1c:11:87:5a:81:19:a0: f3:e4:99:fe:5f:46:15:ee:7b:c5:b2:e6:db:36:ab: 59:e1:e3:1e:17:43:dc:aa:44:1d:e7:13:5e:53:9d: 74:f2:e6:99:e0:91:f7:93:91:5a:d9:ae:f1:1e:cb: fb:5e:7d:9f:ff:b9:6f:33:3a:a9:3e:ed:0b:5d:9b: 04:ee:f1:25:d7:42:ea:02:1a:88:b1:15:25:1a:57: bc:1b:b4:5b:0f:2b:29:dd:0e:42:5f:7d:fb:7c:ed: e4:c9:6d:9b:64:29:f9:63:ae:91:2d:ac:dd:e1:82: 96:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B2:3B:EF:A9:97:4B:0E:49:30:64:B2:EA:0E:EE:19:84:03:63:76 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e322e302f32342d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.2.0/24 Signature Algorithm: sha256WithRSAEncryption 88:90:92:ab:e5:a0:b5:1b:3c:52:40:13:f2:55:13:ea:d9:92: 98:05:3a:01:5b:f8:97:c9:ab:ec:56:4a:5a:e0:da:bf:31:9d: b0:b9:26:d4:96:8a:c3:a4:47:70:d0:25:fd:d4:22:0c:36:2f: 16:e4:f8:75:0e:2e:af:94:7c:82:59:8d:62:55:51:19:b2:ff: 20:bc:b9:fa:a3:3d:c7:45:32:d9:80:bb:fb:6f:21:dc:d5:f3: d0:f3:db:da:51:39:ae:2f:83:19:6c:de:c8:90:12:9f:6f:eb: 4a:ca:54:73:04:24:b6:a5:20:b7:89:fc:94:8e:78:07:7e:7d: 35:39:b0:b6:76:f4:0a:4c:8c:e2:86:db:f7:6e:93:8e:04:de: 46:e7:97:6f:fd:8f:02:f0:5a:e7:bb:37:4e:82:4f:8d:9b:b5: c2:20:4a:82:67:f0:19:76:ff:d8:be:34:e4:ed:b9:f5:55:87: 7b:af:86:17:54:de:01:7b:9b:e3:05:60:eb:1f:d6:87:62:0b: d7:48:f7:4a:01:c9:61:4b:d1:02:ee:42:21:10:24:84:58:bd: 2c:07:e9:e6:3a:0f:ee:c7:f2:ce:4f:8d:8b:d6:84:5f:7c:cb: 1e:3f:4e:14:53:c6:ad:e8:cd:22:1c:df:02:70:48:b3:9c:10: 7a:bb:80:91 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUWwIJyS1dgi7JFjUL8Ii/wNnEtlYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MjgwMDUzNDhaFw0yNzA0MjcwMDU4NDhaMDMxMTAvBgNV BAMTKDUwQjIzQkVGQTk5NzRCMEU0OTMwNjRCMkVBMEVFRTE5ODQwMzYzNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe922tX8L9/XxiexAZH4OYoRIa p0cX+KhPizG0t9NnCUb15FbHcneKx0FCHuviaVxaRzHxYYHOVM9my+8CZE4Zdcp4 WO504sTEtKLuxuoT5HHuhpCzvu5agPDgS9qf5LMTnIpQiQRbcoZq4jCtzRYKc9oK JoexiGC7tZffT+TaZSXuGq5fC9JvmkispgZtHBGHWoEZoPPkmf5fRhXue8Wy5ts2 q1nh4x4XQ9yqRB3nE15TnXTy5pngkfeTkVrZrvEey/tefZ//uW8zOqk+7QtdmwTu 8SXXQuoCGoixFSUaV7wbtFsPKyndDkJffft87eTJbZtkKfljrpEtrN3hgpYFAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUULI776mXSw5JMGSy6g7uGYQDY3YwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMw MmUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzgzMzM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA K/ACMA0GCSqGSIb3DQEBCwUAA4IBAQCIkJKr5aC1GzxSQBPyVRPq2ZKYBToBW/iX yavsVkpa4Nq/MZ2wuSbUlorDpEdw0CX91CIMNi8W5Ph1Di6vlHyCWY1iVVEZsv8g vLn6oz3HRTLZgLv7byHc1fPQ89vaUTmuL4MZbN7IkBKfb+tKylRzBCS2pSC3ifyU jngHfn01ObC2dvQKTIzihtv3bpOOBN5G55dv/Y8C8FrnuzdOgk+Nm7XCIEqCZ/AZ dv/YvjTk7bn1VYd7r4YXVN4Be5vjBWDrH9aHYgvXSPdKAclhS9EC7kIhECSEWL0s B+nmOg/ux/LOT42L1oRffMseP04UU8at6M0iHN8CcEiznBB6u4CR -----END CERTIFICATE-----Generated at Wed May 13 13:30:35 2026 by rpki-client