$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3234382e3131312e302f32342d3234203d3e20313436373732.roa File: 34352e3234382e3131312e302f32342d3234203d3e20313436373732.roa (raw, json) Hash identifier: VbxRPo9naVUIyurSkLBtg7k/srQp6uo7BW4532v3aR8= Subject key identifier: 66:14:E6:5C:50:CB:CA:98:D9:54:0C:92:1B:44:4D:B5:76:31:7D:09 Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 5B913FB02EA4F41C0E1EC936AAE642419F296501 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3234382e3131312e302f32342d3234203d3e20313436373732.roa Signing time: Fri 24 Apr 2026 07:34:54 +0000 ROA not before: Fri 24 Apr 2026 07:29:54 +0000 ROA not after: Fri 23 Apr 2027 07:34:54 +0000 asID: 146772 IP address blocks: 45.248.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:91:3f:b0:2e:a4:f4:1c:0e:1e:c9:36:aa:e6:42:41:9f:29:65:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 24 07:29:54 2026 GMT Not After : Apr 23 07:34:54 2027 GMT Subject: CN=6614E65C50CBCA98D9540C921B444DB576317D09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:5c:df:e4:0a:1c:97:0d:03:97:79:bb:20: 44:2e:9b:7a:75:d2:a4:01:96:15:ec:76:cb:d5:9e: c5:0f:94:e7:47:e2:52:7d:ad:71:83:2e:b0:35:b2: 47:4c:18:8c:2f:f6:05:a8:52:13:b3:8d:83:1a:d1: bf:a8:95:e0:2b:5e:71:6a:b0:9a:ff:ee:fa:3b:a5: 8e:24:c0:29:7c:75:9f:8c:cc:46:63:06:02:7f:61: 27:1f:37:a7:ee:b0:0d:cc:46:f8:64:c2:58:6b:91: a8:ff:e3:ad:27:23:56:c8:03:3f:ce:0c:df:87:1f: 9e:4d:ff:11:20:20:02:a1:e1:c4:95:04:40:76:23: a3:a4:3b:6b:95:62:30:f1:8b:47:f7:9c:5d:65:7f: fa:ee:b9:02:d1:9d:e9:a5:49:db:97:3e:0e:ac:e1: 0f:bc:d8:d9:f1:9f:a7:3b:95:74:4b:7c:f9:3b:92: 00:26:ec:68:2b:00:31:a8:57:95:30:5f:86:62:27: 68:04:9e:31:05:ef:17:e2:2e:dc:fa:cf:ca:01:72: 1a:a4:c4:a1:15:86:68:c3:54:12:d4:10:d7:f8:b1: a9:cd:f5:1c:6e:09:40:e5:24:85:0d:44:57:da:45: 29:cb:57:ac:c2:2a:e5:03:df:7a:5e:9f:fd:d4:cf: fb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:14:E6:5C:50:CB:CA:98:D9:54:0C:92:1B:44:4D:B5:76:31:7D:09 X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3234382e3131312e302f32342d3234203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.248.111.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:bf:50:45:10:3d:86:3b:9a:ab:f6:45:29:ad:fb:73:dd:e3: dc:a3:c1:22:63:71:cf:2f:96:fa:52:a1:f2:10:80:c3:5f:3b: 00:b2:55:32:26:e0:34:a5:9a:80:47:d3:cf:d6:1f:e1:1c:1c: f2:0e:f1:d2:7c:8d:45:f2:8b:a4:a0:a1:54:38:36:55:28:b3: a0:89:7b:64:a3:19:ad:12:fe:0b:65:51:ff:ce:e5:a0:a0:24: 6e:63:1d:31:30:3e:0d:82:72:1f:55:99:20:d5:33:dd:6b:7d: ae:80:3b:f0:6a:49:43:11:6c:18:ef:49:c3:3b:81:09:c5:d4: 11:33:14:ac:49:27:30:4f:83:02:63:64:f4:c5:fb:71:ef:26: f9:f7:9d:f0:a0:b6:4a:6e:e3:88:40:3a:ae:8d:22:be:8e:c1: 80:a9:49:7c:b8:fb:03:10:a6:09:50:f4:a3:9e:28:ff:8f:ef: c8:c0:64:5d:ab:18:14:d5:f6:61:a8:c5:f5:df:83:bb:7d:52: b2:99:ce:1f:e2:e8:61:a5:e6:67:23:83:12:41:8c:e6:7e:7e: 1f:e4:dc:00:06:74:92:51:67:3a:f4:3f:09:77:5b:47:f4:e6: d6:47:3d:b5:53:99:68:57:5c:2c:b4:41:0f:e6:ba:ca:84:f4: 11:2a:74:f8 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUW5E/sC6k9BwOHsk2quZCQZ8pZQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjQwNzI5NTRaFw0yNzA0MjMwNzM0NTRaMDMxMTAvBgNV BAMTKDY2MTRFNjVDNTBDQkNBOThEOTU0MEM5MjFCNDQ0REI1NzYzMTdEMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4x1zf5Aoclw0Dl3m7IEQum3p1 0qQBlhXsdsvVnsUPlOdH4lJ9rXGDLrA1skdMGIwv9gWoUhOzjYMa0b+oleArXnFq sJr/7vo7pY4kwCl8dZ+MzEZjBgJ/YScfN6fusA3MRvhkwlhrkaj/460nI1bIAz/O DN+HH55N/xEgIAKh4cSVBEB2I6OkO2uVYjDxi0f3nF1lf/ruuQLRnemlSduXPg6s 4Q+82Nnxn6c7lXRLfPk7kgAm7GgrADGoV5UwX4ZiJ2gEnjEF7xfiLtz6z8oBchqk xKEVhmjDVBLUENf4sanN9RxuCUDlJIUNRFfaRSnLV6zCKuUD33pen/3Uz/vBAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUZhTmXFDLypjZVAySG0RNtXYxfQkwHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU0MjAyODkvMC8zNDM1MmUzMjM0 MzgyZTMxMzEzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNjM3MzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAC34bzANBgkqhkiG9w0BAQsFAAOCAQEAC79QRRA9hjuaq/ZFKa37 c93j3KPBImNxzy+W+lKh8hCAw187ALJVMibgNKWagEfTz9Yf4Rwc8g7x0nyNRfKL pKChVDg2VSizoIl7ZKMZrRL+C2VR/87loKAkbmMdMTA+DYJyH1WZINUz3Wt9roA7 8GpJQxFsGO9JwzuBCcXUETMUrEknME+DAmNk9MX7ce8m+fed8KC2Sm7jiEA6ro0i vo7BgKlJfLj7AxCmCVD0o54o/4/vyMBkXasYFNX2YajF9d+Du31SspnOH+LoYaXm ZyODEkGM5n5+H+TcAAZ0klFnOvQ/CXdbR/Tm1kc9tVOZaFdcLLRBD+a6yoT0ESp0 +A== -----END CERTIFICATE-----Generated at Wed May 13 15:12:20 2026 by rpki-client