$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34332e3234322e36342e302f32322d3234203d3e203539303438.roa File: 34332e3234322e36342e302f32322d3234203d3e203539303438.roa (raw, json) Hash identifier: FRS3SyRLU8MayNNmzPdkMWrflN+pTiNRou6u/6mddws= Subject key identifier: 95:C2:41:79:3B:95:B4:2D:41:84:E7:44:AF:EB:CA:00:A1:86:24:F0 Certificate issuer: /CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Certificate serial: 4E253E3B02F9023AF0F01EFE7C32D279702ADE78 Authority key identifier: 0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34332e3234322e36342e302f32322d3234203d3e203539303438.roa Signing time: Mon 11 May 2026 07:00:47 +0000 ROA not before: Mon 11 May 2026 06:55:47 +0000 ROA not after: Mon 10 May 2027 07:00:47 +0000 asID: 59048 IP address blocks: 43.242.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:25:3e:3b:02:f9:02:3a:f0:f0:1e:fe:7c:32:d2:79:70:2a:de:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Validity Not Before: May 11 06:55:47 2026 GMT Not After : May 10 07:00:47 2027 GMT Subject: CN=95C241793B95B42D4184E744AFEBCA00A18624F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:29:c0:8d:3d:f8:18:a5:55:76:6a:9e:55:68: ae:60:63:fe:4b:0a:40:c9:66:3f:7c:18:87:ee:04: 1a:77:2f:9b:84:2b:a0:29:d8:57:55:ae:ba:63:54: 24:78:6a:36:0e:7b:58:0c:36:4b:2b:88:8a:9a:b3: e2:4d:fa:63:b7:e3:4b:d2:cb:d5:42:41:0a:ba:cd: 45:d4:75:f5:a6:7b:cc:55:56:e6:0a:24:64:77:e7: 1d:41:69:58:01:8c:5e:16:2e:d4:f5:71:3f:32:de: a3:b1:59:a0:a3:05:a0:65:da:ca:ff:51:8d:86:33: 72:7c:69:69:64:c0:86:14:06:b5:c3:2f:c6:3e:02: ed:37:fd:31:5d:fa:c8:a3:f3:7f:c5:cb:cd:64:c0: 8b:6c:8d:a6:3d:e5:b6:59:78:6a:c1:1c:bf:cc:d0: 5f:d5:c1:72:9d:ec:ef:b7:88:e9:31:ee:4c:7d:3f: 24:20:1d:4d:98:1e:5a:d0:d6:8f:46:2f:9d:ce:e5: f1:21:d2:7d:16:3a:4c:e0:6b:47:45:b0:56:98:1c: 4a:ca:ed:9d:ea:28:c6:02:7f:4e:f1:e6:dd:9e:cc: 0c:9e:47:37:4e:26:5b:af:a3:d0:34:98:b3:1d:6f: 4a:d5:c1:06:1b:bb:4e:5b:95:8f:9a:b6:23:82:e5: 95:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C2:41:79:3B:95:B4:2D:41:84:E7:44:AF:EB:CA:00:A1:86:24:F0 X509v3 Authority Key Identifier: keyid:0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34332e3234322e36342e302f32322d3234203d3e203539303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.64.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:66:94:7e:cd:ae:2a:71:86:64:60:3e:81:60:06:e7:2c:c2: 73:8e:aa:55:bc:0d:cc:d4:33:24:55:94:d2:e9:9a:e9:73:25: 29:21:75:22:dc:ab:d9:83:76:47:bf:a1:f0:a6:28:57:d0:59: 09:dd:89:a7:ea:f1:13:cd:1e:a6:7e:11:ee:f6:04:4c:ab:48: f8:ce:13:67:e2:72:ca:a1:95:a8:78:d5:8e:ff:a4:f2:a4:4a: 38:31:7e:3d:7c:d4:6f:27:05:c3:14:20:b6:59:24:43:e7:39: 90:d0:47:97:63:15:8d:6f:6a:9c:0b:9b:4a:b0:dc:f2:69:4b: 3e:02:f5:ee:d3:ec:4f:c7:3e:ca:14:2e:5d:f1:ae:38:86:19: 35:96:d0:4d:d4:7b:30:4e:4a:16:bf:d6:48:02:6e:51:6b:45: c9:4f:b6:0f:c8:b2:49:9b:c8:c5:e2:ec:92:88:f0:28:67:b0: bf:62:01:b7:05:1a:56:8b:b0:5a:7f:7b:49:b4:3a:5c:76:ec: 36:c6:f9:d4:69:d9:1a:67:88:99:d0:f1:28:d0:fb:eb:65:a5: 77:6d:a2:77:69:98:2b:8c:26:a7:51:9a:88:9f:d2:4f:d5:d4: 12:67:ba:5d:3e:40:cb:8b:d0:06:48:41:e7:ec:10:8b:01:27: ae:08:4f:ba -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUTiU+OwL5Ajrw8B7+fDLSeXAq3ngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3 NjlGREY4QjAeFw0yNjA1MTEwNjU1NDdaFw0yNzA1MTAwNzAwNDdaMDMxMTAvBgNV BAMTKDk1QzI0MTc5M0I5NUI0MkQ0MTg0RTc0NEFGRUJDQTAwQTE4NjI0RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrKcCNPfgYpVV2ap5VaK5gY/5L CkDJZj98GIfuBBp3L5uEK6Ap2FdVrrpjVCR4ajYOe1gMNksriIqas+JN+mO340vS y9VCQQq6zUXUdfWme8xVVuYKJGR35x1BaVgBjF4WLtT1cT8y3qOxWaCjBaBl2sr/ UY2GM3J8aWlkwIYUBrXDL8Y+Au03/TFd+sij83/Fy81kwItsjaY95bZZeGrBHL/M 0F/VwXKd7O+3iOkx7kx9PyQgHU2YHlrQ1o9GL53O5fEh0n0WOkzga0dFsFaYHErK 7Z3qKMYCf07x5t2ezAyeRzdOJluvo9A0mLMdb0rVwQYbu05blY+atiOC5ZW5AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUlcJBeTuVtC1BhOdEr+vKAKGGJPAwHwYDVR0j BBgwFoAUDkpkqQtIyO1KooboiD1ZW3af34swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkxMjQxMDg1OTk2MjM3MS8wLzBFNEE2NEE5MEI0OEM4RUQ0QUEyODZFODg4M0Q1 OTVCNzY5RkRGOEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3NjlGREY4Qi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTEyNDEwODU5OTYyMzcxLzAvMzQzMzJlMzIzNDMy MmUzNjM0MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzOTMwMzQzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAivyQDANBgkqhkiG9w0BAQsFAAOCAQEAjGaUfs2uKnGGZGA+gWAG5yzCc46q VbwNzNQzJFWU0uma6XMlKSF1Ityr2YN2R7+h8KYoV9BZCd2Jp+rxE80epn4R7vYE TKtI+M4TZ+JyyqGVqHjVjv+k8qRKODF+PXzUbycFwxQgtlkkQ+c5kNBHl2MVjW9q nAubSrDc8mlLPgL17tPsT8c+yhQuXfGuOIYZNZbQTdR7ME5KFr/WSAJuUWtFyU+2 D8iySZvIxeLskojwKGewv2IBtwUaVouwWn97SbQ6XHbsNsb51GnZGmeImdDxKND7 62Wld22id2mYK4wmp1GaiJ/ST9XUEme6XT5Ay4vQBkhB5+wQiwEnrghPug== -----END CERTIFICATE-----Generated at Wed May 13 12:42:35 2026 by rpki-client