$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e332e302f32342d3234203d3e20363533353637.roa File: 34332e3234302e332e302f32342d3234203d3e20363533353637.roa (raw, json) Hash identifier: loD3c6EAda1JJlPe5c8LtB96na3kFKbVUMs//Q6WKzQ= Subject key identifier: D1:BC:6A:70:35:F1:B3:25:E2:89:55:82:7A:CE:2A:28:7A:11:59:FD Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 3B6D8D4A07A5F9945D949D937F1F6ACFDDC2A194 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e332e302f32342d3234203d3e20363533353637.roa Signing time: Tue 28 Apr 2026 00:59:12 +0000 ROA not before: Tue 28 Apr 2026 00:54:12 +0000 ROA not after: Tue 27 Apr 2027 00:59:12 +0000 asID: 653567 IP address blocks: 43.240.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:6d:8d:4a:07:a5:f9:94:5d:94:9d:93:7f:1f:6a:cf:dd:c2:a1:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 28 00:54:12 2026 GMT Not After : Apr 27 00:59:12 2027 GMT Subject: CN=D1BC6A7035F1B325E28955827ACE2A287A1159FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:32:df:37:d8:bf:26:5f:c8:14:c7:8e:0b:18: c6:f2:1b:49:a1:3c:75:bc:3e:a4:3a:d1:46:8a:40: d0:5e:dc:7c:e1:06:d5:5f:36:c0:d6:0c:c5:94:ce: ff:07:ec:ea:b4:5a:3c:fb:06:f5:71:c9:e4:d1:c1: d5:e0:5f:5d:49:aa:ac:db:eb:5d:f6:8b:04:b9:fc: 25:fc:4f:fb:9f:2f:b5:6f:aa:a9:ac:80:f5:ba:08: 4a:5b:45:56:16:a3:8d:85:4f:08:92:2c:f9:14:27: fa:9d:63:41:8c:23:69:86:f4:0c:f2:0e:5e:5f:3c: d8:80:fd:ff:be:e4:13:4f:eb:47:a1:7c:fd:33:08: 99:56:d0:ce:2f:b8:d5:5f:23:0e:18:4d:80:59:32: fa:25:5f:34:42:62:16:2b:c0:26:73:43:3b:ea:6e: 0e:52:0f:5a:a0:77:d4:07:aa:e9:7e:7b:ca:a2:c9: 8a:45:b8:3e:9c:9a:6b:4e:80:c1:24:a8:40:e0:21: a3:95:ca:7e:5d:72:df:1b:26:18:9e:71:6f:a7:ca: 9f:e8:4c:03:5e:7a:72:ab:a2:9c:b7:7c:06:fb:d4: 29:dd:b1:4e:cb:a3:62:80:20:b7:a3:3e:a3:82:9d: 2f:19:72:73:b7:c5:66:a2:39:03:3e:3e:bd:e7:24: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:BC:6A:70:35:F1:B3:25:E2:89:55:82:7A:CE:2A:28:7A:11:59:FD X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e332e302f32342d3234203d3e20363533353637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.3.0/24 Signature Algorithm: sha256WithRSAEncryption 90:5c:02:68:43:b5:47:76:f9:e7:6e:c3:fb:d9:86:23:2d:3f: bb:a5:11:f1:24:01:29:b6:e6:73:0c:49:09:4a:ef:31:be:76: 57:50:59:45:2e:c9:50:1b:2b:52:90:ad:01:d0:40:5d:a4:81: 81:1e:06:14:85:05:ee:69:12:c0:bb:c9:06:36:d1:c2:49:97: 64:e4:0b:44:b9:ff:a5:df:0f:cb:39:5a:3d:e5:53:4f:9b:9c: 92:43:46:40:c3:63:f4:e0:57:61:18:52:83:41:da:e3:d8:9c: 0a:02:30:77:0a:d3:ce:d9:b0:18:e3:d5:b7:93:84:65:df:30: b2:78:8d:87:c8:aa:ac:3f:88:c4:8d:23:ed:1c:c3:1e:f1:13: ee:15:52:c3:c9:ab:bf:79:1a:54:93:94:7c:52:95:f7:68:d5: da:70:23:50:a4:05:8b:77:0c:ab:d1:4b:fa:03:3e:42:dc:04: 30:02:7b:64:b3:d4:c6:9b:a6:e2:57:4d:ab:3f:68:24:13:13: ee:55:c0:04:a7:c8:54:2d:03:73:73:ce:58:73:72:5d:ce:43: 18:ab:fe:83:ae:2f:96:11:aa:a0:37:e6:b2:81:2c:9c:cf:10: 41:dd:00:4e:dc:39:30:c7:d1:78:58:96:ba:30:44:18:d6:69: b4:45:df:3e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUO22NSgel+ZRdlJ2Tfx9qz93CoZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MjgwMDU0MTJaFw0yNzA0MjcwMDU5MTJaMDMxMTAvBgNV BAMTKEQxQkM2QTcwMzVGMUIzMjVFMjg5NTU4MjdBQ0UyQTI4N0ExMTU5RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Mt832L8mX8gUx44LGMbyG0mh PHW8PqQ60UaKQNBe3HzhBtVfNsDWDMWUzv8H7Oq0Wjz7BvVxyeTRwdXgX11Jqqzb 6132iwS5/CX8T/ufL7VvqqmsgPW6CEpbRVYWo42FTwiSLPkUJ/qdY0GMI2mG9Azy Dl5fPNiA/f++5BNP60ehfP0zCJlW0M4vuNVfIw4YTYBZMvolXzRCYhYrwCZzQzvq bg5SD1qgd9QHqul+e8qiyYpFuD6cmmtOgMEkqEDgIaOVyn5dct8bJhiecW+nyp/o TANeenKropy3fAb71CndsU7Lo2KAILejPqOCnS8ZcnO3xWaiOQM+Pr3nJIpBAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU0bxqcDXxsyXiiVWCes4qKHoRWf0wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMw MmUzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzUzMzM1MzYzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvwAzANBgkqhkiG9w0BAQsFAAOCAQEAkFwCaEO1R3b5527D+9mGIy0/u6UR 8SQBKbbmcwxJCUrvMb52V1BZRS7JUBsrUpCtAdBAXaSBgR4GFIUF7mkSwLvJBjbR wkmXZOQLRLn/pd8PyzlaPeVTT5uckkNGQMNj9OBXYRhSg0Ha49icCgIwdwrTztmw GOPVt5OEZd8wsniNh8iqrD+IxI0j7RzDHvET7hVSw8mrv3kaVJOUfFKV92jV2nAj UKQFi3cMq9FL+gM+QtwEMAJ7ZLPUxpum4ldNqz9oJBMT7lXABKfIVC0Dc3POWHNy Xc5DGKv+g64vlhGqoDfmsoEsnM8QQd0ATtw5MMfReFiWujBEGNZptEXfPg== -----END CERTIFICATE-----Generated at Wed May 13 14:17:03 2026 by rpki-client