$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095890985226862595/0/34322e35312e302e302f31372d3137203d3e203536303035.roa File: 34322e35312e302e302f31372d3137203d3e203536303035.roa (raw, json) Hash identifier: aJRD2z2yzm2Gfxj85mZHRvbNEwGRXhLvIMxZT2fPJGA= Subject key identifier: CB:62:A1:98:24:D8:90:7C:08:DE:E1:A1:FE:94:75:F1:D2:1B:D8:5E Certificate issuer: /CN=91C6B644DD6D84839ED120FBC00984D60495C8C4 Certificate serial: 5121BA1976611C2A6F016AC90839147AED38D6F9 Authority key identifier: 91:C6:B6:44:DD:6D:84:83:9E:D1:20:FB:C0:09:84:D6:04:95:C8:C4 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/34322e35312e302e302f31372d3137203d3e203536303035.roa Signing time: Sat 09 May 2026 09:24:36 +0000 ROA not before: Sat 09 May 2026 09:19:36 +0000 ROA not after: Sat 08 May 2027 09:24:36 +0000 asID: 56005 IP address blocks: 42.51.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.crl rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:21:ba:19:76:61:1c:2a:6f:01:6a:c9:08:39:14:7a:ed:38:d6:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91C6B644DD6D84839ED120FBC00984D60495C8C4 Validity Not Before: May 9 09:19:36 2026 GMT Not After : May 8 09:24:36 2027 GMT Subject: CN=CB62A19824D8907C08DEE1A1FE9475F1D21BD85E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:48:0b:33:bb:ab:35:93:51:4c:33:17:e7:83: 71:1d:eb:a5:7b:48:63:d9:a1:aa:af:70:a5:25:8e: e0:98:f5:d7:c9:00:e4:cf:38:f3:30:bc:ca:f1:33: b4:2a:15:f4:de:8f:d1:ae:65:b3:8c:06:99:d6:dd: 25:a6:9d:1a:33:f7:f5:64:64:5e:06:36:d2:fe:eb: e2:40:aa:ac:a5:6a:85:9b:72:c8:18:18:67:38:96: 24:c8:b7:c7:2e:cd:0c:ea:15:b7:e7:5d:e0:a8:87: 56:91:2e:6d:ab:f4:11:45:3f:b4:6f:8d:e6:98:85: 33:3b:00:e0:b6:cd:ea:4f:e6:32:82:be:d8:40:ad: 8e:fa:37:61:0c:2b:93:87:53:5a:af:d6:4e:c4:2c: 48:e5:dc:6d:00:f6:fc:e5:ea:b0:73:96:ea:d4:81: 28:7b:4b:fb:14:8e:b7:30:86:9f:1e:04:66:e9:6e: c0:3f:95:57:01:ab:09:19:80:4d:a0:46:fc:56:29: 57:c4:d8:9c:7b:36:38:13:b9:9f:fb:15:0f:9a:f5: e7:46:a5:ed:3c:5d:26:d8:39:9e:fa:46:2f:7c:ae: b0:20:77:c0:fe:63:cf:77:2a:22:43:da:af:16:1b: b6:fa:a5:d3:fe:6f:be:2a:cc:93:d7:5d:a3:18:f6: d7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:62:A1:98:24:D8:90:7C:08:DE:E1:A1:FE:94:75:F1:D2:1B:D8:5E X509v3 Authority Key Identifier: keyid:91:C6:B6:44:DD:6D:84:83:9E:D1:20:FB:C0:09:84:D6:04:95:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/34322e35312e302e302f31372d3137203d3e203536303035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.51.0.0/17 Signature Algorithm: sha256WithRSAEncryption 17:4e:9d:76:0e:e1:86:24:1e:cc:b9:95:d6:ae:cd:ff:5f:0c: 35:95:6e:bc:0d:22:4a:4f:17:c7:4b:6e:94:9f:24:9e:63:16: d4:9f:43:f7:bb:5a:ac:10:56:92:f3:36:9f:7d:36:01:70:77: a6:69:fa:83:0c:0a:58:23:f2:bb:29:48:51:4a:e0:ec:93:32: 44:e2:9a:16:a8:19:35:a3:ed:21:eb:a8:dd:4a:1c:37:2e:c9: b4:c0:64:10:9b:5c:1e:0a:be:81:21:c9:99:82:00:bd:5d:ee: 6b:54:50:12:0f:81:6a:2e:1a:e7:38:87:46:ec:3a:6e:6e:41: 19:83:b9:74:de:f3:3e:80:f3:ad:56:59:e3:c1:70:b1:48:ef: 93:dd:5a:00:d3:87:7e:93:33:09:a2:0f:c9:11:bf:6b:08:e3: 7a:43:77:36:ce:bb:5a:4d:c6:ae:02:e3:27:c1:74:49:f4:44: f0:00:88:dc:b4:5b:f3:00:d3:6b:a5:48:8c:0f:5e:f6:5b:c6: b2:46:ab:86:b7:aa:bb:39:b7:4e:25:ac:f4:ed:fa:4d:8e:36: 5a:0d:71:c7:ff:b6:c0:bc:ac:cc:3f:7a:dd:ae:4c:09:02:5f: 89:c8:ab:b3:5c:6e:96:77:05:42:f9:45:4c:2b:d9:24:09:3e: 08:8a:3f:a8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUUSG6GXZhHCpvAWrJCDkUeu041vkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFDNkI2NDRERDZEODQ4MzlFRDEyMEZCQzAwOTg0RDYw NDk1QzhDNDAeFw0yNjA1MDkwOTE5MzZaFw0yNzA1MDgwOTI0MzZaMDMxMTAvBgNV BAMTKENCNjJBMTk4MjREODkwN0MwOERFRTFBMUZFOTQ3NUYxRDIxQkQ4NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxSAszu6s1k1FMMxfng3Ed66V7 SGPZoaqvcKUljuCY9dfJAOTPOPMwvMrxM7QqFfTej9GuZbOMBpnW3SWmnRoz9/Vk ZF4GNtL+6+JAqqylaoWbcsgYGGc4liTIt8cuzQzqFbfnXeCoh1aRLm2r9BFFP7Rv jeaYhTM7AOC2zepP5jKCvthArY76N2EMK5OHU1qv1k7ELEjl3G0A9vzl6rBzlurU gSh7S/sUjrcwhp8eBGbpbsA/lVcBqwkZgE2gRvxWKVfE2Jx7NjgTuZ/7FQ+a9edG pe08XSbYOZ76Ri98rrAgd8D+Y893KiJD2q8WG7b6pdP+b74qzJPXXaMY9tflAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUy2KhmCTYkHwI3uGh/pR18dIb2F4wHwYDVR0j BBgwFoAUkca2RN1thIOe0SD7wAmE1gSVyMQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg5MDk4NTIyNjg2MjU5NS8wLzkxQzZCNjQ0REQ2RDg0ODM5RUQxMjBGQkMwMDk4 NEQ2MDQ5NUM4QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTFDNkI2NDRERDZEODQ4MzlFRDEyMEZCQzAwOTg0RDYwNDk1QzhDNC5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1ODkwOTg1MjI2ODYyNTk1LzAvMzQzMjJlMzUzMTJl MzAyZTMwMmYzMTM3MmQzMTM3MjAzZDNlMjAzNTM2MzAzMDM1LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH KjMAMA0GCSqGSIb3DQEBCwUAA4IBAQAXTp12DuGGJB7MuZXWrs3/Xww1lW68DSJK TxfHS26UnySeYxbUn0P3u1qsEFaS8zaffTYBcHemafqDDApYI/K7KUhRSuDskzJE 4poWqBk1o+0h66jdShw3Lsm0wGQQm1weCr6BIcmZggC9Xe5rVFASD4FqLhrnOIdG 7DpubkEZg7l03vM+gPOtVlnjwXCxSO+T3VoA04d+kzMJog/JEb9rCON6Q3c2zrta TcauAuMnwXRJ9ETwAIjctFvzANNrpUiMD172W8ayRquGt6q7ObdOJaz07fpNjjZa DXHH/7bAvKzMP3rdrkwJAl+JyKuzXG6WdwVC+UVMK9kkCT4Iij+o -----END CERTIFICATE-----Generated at Wed May 13 13:31:08 2026 by rpki-client