$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235312e332e302f32342d3234203d3e203137383136.roa File: 34352e3235312e332e302f32342d3234203d3e203137383136.roa (raw, json) Hash identifier: uSuFlHn4k3bVuC52zHUSyzhTBc5Fm6FctXux3T7DbQ4= Subject key identifier: 7C:EB:18:F1:46:BA:B9:95:CA:70:D1:D8:34:CD:69:2E:54:25:49:57 Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 7A5F77F3E8BFC828384E3A97B2602C7218AE6D8B Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235312e332e302f32342d3234203d3e203137383136.roa Signing time: Sat 09 May 2026 01:20:09 +0000 ROA not before: Sat 09 May 2026 01:15:09 +0000 ROA not after: Sat 08 May 2027 01:20:09 +0000 asID: 17816 IP address blocks: 45.251.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:5f:77:f3:e8:bf:c8:28:38:4e:3a:97:b2:60:2c:72:18:ae:6d:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: May 9 01:15:09 2026 GMT Not After : May 8 01:20:09 2027 GMT Subject: CN=7CEB18F146BAB995CA70D1D834CD692E54254957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:df:56:de:7d:45:7b:70:59:0f:79:42:af:6c: 4d:c3:e0:35:70:08:63:16:03:37:fc:6d:ef:ab:99: 9e:f7:7d:84:0d:64:c0:94:82:a7:00:15:67:d9:34: 37:7a:5a:e6:84:73:ca:9c:4c:b4:00:8f:89:f8:92: 8c:fc:b9:21:3f:f1:f9:0b:3c:ea:a1:fb:e7:68:1c: 08:eb:5c:7a:b9:5a:10:c2:69:7f:27:ac:91:2d:c8: 3a:7b:81:ee:42:27:9b:bf:16:c6:9b:49:57:2d:05: d0:3b:a4:48:2b:91:3f:73:32:63:db:82:1f:3d:50: e8:38:74:4b:86:3d:4b:bf:0b:ab:22:04:a2:02:f1: 17:5e:5e:0a:fa:41:fb:7f:ba:8c:08:74:c8:75:f7: 03:1f:a9:9e:65:ed:48:bb:43:db:ce:4f:c7:5f:ff: d4:5a:d5:f7:7e:45:cd:21:73:eb:9d:b7:85:74:02: 94:3a:2e:7d:56:66:13:85:ce:c5:ff:4e:53:50:f2: fc:66:d9:8b:60:7c:59:0a:51:0e:43:50:13:87:82: 8b:b7:97:07:65:ff:43:b1:cd:ff:61:9a:45:ba:53: 34:b1:b1:27:db:44:56:a3:1c:83:bf:7b:e2:d9:1c: a3:63:62:80:03:40:b0:11:ea:1d:17:de:40:b4:cb: e5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:EB:18:F1:46:BA:B9:95:CA:70:D1:D8:34:CD:69:2E:54:25:49:57 X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235312e332e302f32342d3234203d3e203137383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.251.3.0/24 Signature Algorithm: sha256WithRSAEncryption 44:7f:3c:b3:56:10:a2:e8:13:f8:d5:38:1d:14:d4:47:62:e9: a7:d9:ee:1a:1e:34:15:c3:6f:58:ab:6b:e1:df:7b:09:fc:8b: 44:b7:4c:2c:46:98:f4:14:84:ec:8a:b3:c6:50:93:b4:f6:71: a2:80:16:12:db:aa:c7:61:ce:cd:b0:f1:11:65:2e:dd:93:22: 3b:c5:7b:53:3e:e7:cd:c0:e1:91:cd:1e:10:f8:6d:9f:3e:ae: 0d:63:03:c3:b0:a4:cc:06:15:ab:47:35:67:07:10:f7:30:82: 74:41:9e:b2:df:43:80:04:92:9b:64:88:55:23:b0:05:6c:96: 22:00:26:b7:17:65:0f:c8:36:68:40:ed:07:5d:f5:44:98:a2: c4:a2:40:88:8e:a4:57:f7:94:48:77:e8:12:ed:b7:9b:5f:dc: 7a:1b:1f:b9:eb:ab:2c:0d:ae:81:33:8c:6a:78:6f:98:5e:33: 41:a2:69:6f:62:12:63:78:b4:21:5f:b0:d4:98:4d:bd:2b:d9: ed:c8:34:c2:ff:62:ac:0e:c5:98:4b:60:7d:08:1a:32:cd:9a: 33:ce:54:69:79:95:cf:f3:c2:33:d6:b4:a1:2f:cb:ed:9d:ac: bc:00:98:63:00:ae:e6:cf:b1:de:ce:98:3e:08:21:2e:62:01: a2:e1:3b:aa -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUel938+i/yCg4TjqXsmAschiubYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA1MDkwMTE1MDlaFw0yNzA1MDgwMTIwMDlaMDMxMTAvBgNV BAMTKDdDRUIxOEYxNDZCQUI5OTVDQTcwRDFEODM0Q0Q2OTJFNTQyNTQ5NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq31befUV7cFkPeUKvbE3D4DVw CGMWAzf8be+rmZ73fYQNZMCUgqcAFWfZNDd6WuaEc8qcTLQAj4n4koz8uSE/8fkL POqh++doHAjrXHq5WhDCaX8nrJEtyDp7ge5CJ5u/FsabSVctBdA7pEgrkT9zMmPb gh89UOg4dEuGPUu/C6siBKIC8RdeXgr6Qft/uowIdMh19wMfqZ5l7Ui7Q9vOT8df /9Ra1fd+Rc0hc+udt4V0ApQ6Ln1WZhOFzsX/TlNQ8vxm2YtgfFkKUQ5DUBOHgou3 lwdl/0Oxzf9hmkW6UzSxsSfbRFajHIO/e+LZHKNjYoADQLAR6h0X3kC0y+U/AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUfOsY8Ua6uZXKcNHYNM1pLlQlSVcwHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDIwMjg5LzAvMzQzNTJlMzIzNTMx MmUzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzczODMxMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAt+wMwDQYJKoZIhvcNAQELBQADggEBAER/PLNWEKLoE/jVOB0U1Edi6afZ7hoe NBXDb1ira+Hfewn8i0S3TCxGmPQUhOyKs8ZQk7T2caKAFhLbqsdhzs2w8RFlLt2T IjvFe1M+583A4ZHNHhD4bZ8+rg1jA8OwpMwGFatHNWcHEPcwgnRBnrLfQ4AEkptk iFUjsAVsliIAJrcXZQ/INmhA7Qdd9USYosSiQIiOpFf3lEh36BLtt5tf3HobH7nr qywNroEzjGp4b5heM0GiaW9iEmN4tCFfsNSYTb0r2e3INML/YqwOxZhLYH0IGjLN mjPOVGl5lc/zwjPWtKEvy+2drLwAmGMArubPsd7OmD4IIS5iAaLhO6o= -----END CERTIFICATE-----Generated at Wed May 13 14:34:31 2026 by rpki-client