$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235312e322e302f32342d3234203d3e203137383136.roa File: 34352e3235312e322e302f32342d3234203d3e203137383136.roa (raw, json) Hash identifier: xQaZ3HVuIKpAcOlBiyMNnx2dM6eLd2p2ALqBAqxjTnM= Subject key identifier: 25:F0:27:CB:C2:F6:A4:7E:68:68:00:F9:0C:B8:FF:F8:EC:67:A7:0C Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 34F24CE6C34C39509407778AD5A27C21BF2E03 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235312e322e302f32342d3234203d3e203137383136.roa Signing time: Sat 09 May 2026 01:20:08 +0000 ROA not before: Sat 09 May 2026 01:15:08 +0000 ROA not after: Sat 08 May 2027 01:20:08 +0000 asID: 17816 IP address blocks: 45.251.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:f2:4c:e6:c3:4c:39:50:94:07:77:8a:d5:a2:7c:21:bf:2e:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: May 9 01:15:08 2026 GMT Not After : May 8 01:20:08 2027 GMT Subject: CN=25F027CBC2F6A47E686800F90CB8FFF8EC67A70C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f6:bb:d1:b3:c8:53:c9:00:45:28:c6:eb:79: 29:ed:49:18:f5:f4:d6:de:85:81:69:28:e8:7a:57: 98:ba:03:f1:ce:3f:ff:65:23:80:18:52:8b:e6:61: ae:bb:19:11:6c:f7:a7:7b:cb:24:88:60:f4:0b:cd: 91:33:18:83:f0:9d:95:ea:ee:3f:3b:c6:f0:71:2f: 90:42:ae:76:b7:a3:9e:53:36:ef:4c:70:12:f4:54: 80:34:e6:2c:da:60:e0:00:2a:00:7f:81:1f:74:aa: 3a:dd:a7:c3:6a:54:8a:82:ba:11:ab:5b:51:ee:9b: de:71:48:53:56:43:7a:5c:01:66:3d:05:58:27:6f: 2c:e3:09:3e:36:dd:fc:6c:18:ef:53:a2:25:d7:8b: a3:b8:3e:88:24:26:9b:d9:42:b3:c6:89:c1:4e:d3: 15:ad:6d:79:02:1d:97:74:a4:41:07:a1:2d:72:4a: f1:d5:33:82:ba:87:b4:37:58:f0:11:21:a9:39:32: 70:26:95:20:59:e5:48:40:d9:4d:3b:2d:1b:9b:ea: 5f:4d:91:c3:a1:61:8d:23:16:31:57:e3:76:cb:1c: 8d:ce:39:7b:ac:00:2d:b5:0c:f1:68:cd:e2:da:d9: 29:65:1b:76:dd:f3:66:7d:3d:bf:31:ec:41:ec:cd: aa:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F0:27:CB:C2:F6:A4:7E:68:68:00:F9:0C:B8:FF:F8:EC:67:A7:0C X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235312e322e302f32342d3234203d3e203137383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.251.2.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:c8:74:c0:50:10:e8:03:17:f4:d6:27:61:bc:59:85:94:1b: fa:be:70:de:2d:77:ae:ab:4b:2e:17:cc:4c:b5:ca:d5:61:d0: c5:05:92:0a:1a:06:14:e0:5b:86:e2:42:1c:10:e9:ba:2a:29: a6:2b:42:23:6b:19:49:b5:03:46:14:17:2d:0d:ff:38:58:0d: bb:62:f0:06:b3:20:ac:8b:fb:b9:4e:83:12:1b:fa:42:60:1d: 89:0a:dd:8f:e8:25:37:5b:1f:0c:73:c4:42:53:f2:87:72:5c: ef:2e:db:cc:e1:d7:65:8d:32:75:63:c3:f6:24:02:90:5f:ff: 57:ef:e1:33:ec:78:cf:00:39:d4:9a:e2:b8:06:e6:f9:ac:55: 90:68:ac:7d:b3:02:af:4e:c9:8d:eb:81:34:47:d2:bf:86:17: 65:07:4f:9c:7b:3a:60:ab:dd:48:56:75:8c:0e:a7:40:04:02: a1:fd:64:a4:4e:bb:a2:07:36:3b:1e:50:b5:4d:d1:57:e1:de: 1b:7c:3e:12:db:b7:f7:4a:80:b4:73:ae:84:c3:79:1f:b2:04: b9:05:30:6e:4f:d2:c9:0d:c3:2f:0e:11:9d:b4:23:db:61:50: 38:60:0a:32:d9:1b:c0:6a:8c:c0:02:07:f3:12:17:61:61:c7: 7d:9f:e2:8d -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgITNPJM5sNMOVCUB3eK1aJ8Ib8uAzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygzRDAxQ0Q2OTI4RERFOEQyNkFDOTYyNjVGMUY5MDRDNzJG MUExMkI4MB4XDTI2MDUwOTAxMTUwOFoXDTI3MDUwODAxMjAwOFowMzExMC8GA1UE AxMoMjVGMDI3Q0JDMkY2QTQ3RTY4NjgwMEY5MENCOEZGRjhFQzY3QTcwQzCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMv2u9GzyFPJAEUoxut5Ke1JGPX0 1t6FgWko6HpXmLoD8c4//2UjgBhSi+ZhrrsZEWz3p3vLJIhg9AvNkTMYg/Cdleru PzvG8HEvkEKudrejnlM270xwEvRUgDTmLNpg4AAqAH+BH3SqOt2nw2pUioK6Eatb Ue6b3nFIU1ZDelwBZj0FWCdvLOMJPjbd/GwY71OiJdeLo7g+iCQmm9lCs8aJwU7T Fa1teQIdl3SkQQehLXJK8dUzgrqHtDdY8BEhqTkycCaVIFnlSEDZTTstG5vqX02R w6FhjSMWMVfjdsscjc45e6wALbUM8WjN4trZKWUbdt3zZn09vzHsQezNqpsCAwEA AaOCAg8wggILMB0GA1UdDgQWBBQl8CfLwvakfmhoAPkMuP/47GenDDAfBgNVHSME GDAWgBQ9Ac1pKN3o0mrJYmXx+QTHLxoSuDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0f BGwwajBooGagZIZicnN5bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDY1 NTg1Mzg5MjY1NDIwMjg5LzAvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0 QzcyRjFBMTJCOC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3lu YzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwNTUzOTA3NzUwOTA2NzU3MTUv MS8zRDAxQ0Q2OTI4RERFOEQyNkFDOTYyNjVGMUY5MDRDNzJGMUExMkI4LmNlcjCB iAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU0MjAyODkvMC8zNDM1MmUzMjM1MzEy ZTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNzM4MzEzNi5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AC37AjANBgkqhkiG9w0BAQsFAAOCAQEAbch0wFAQ6AMX9NYnYbxZhZQb+r5w3i13 rqtLLhfMTLXK1WHQxQWSChoGFOBbhuJCHBDpuioppitCI2sZSbUDRhQXLQ3/OFgN u2LwBrMgrIv7uU6DEhv6QmAdiQrdj+glN1sfDHPEQlPyh3Jc7y7bzOHXZY0ydWPD 9iQCkF//V+/hM+x4zwA51JriuAbm+axVkGisfbMCr07JjeuBNEfSv4YXZQdPnHs6 YKvdSFZ1jA6nQAQCof1kpE67ogc2Ox5QtU3RV+HeG3w+Etu390qAtHOuhMN5H7IE uQUwbk/SyQ3DLw4RnbQj22FQOGAKMtkbwGqMwAIH8xIXYWHHfZ/ijQ== -----END CERTIFICATE-----Generated at Wed May 13 14:40:43 2026 by rpki-client