$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34352e3235332e32362e302f32342d3234203d3e2034383131.roa File: 34352e3235332e32362e302f32342d3234203d3e2034383131.roa (raw, json) Hash identifier: HjuWYaZM2ThMTaLefmI86q1jB2dOKWwaPyU8/5oBEss= Subject key identifier: AE:68:69:80:D2:C5:C8:79:57:DD:DD:14:1C:D2:41:A8:0C:1B:7E:B7 Certificate issuer: /CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Certificate serial: 6EA8E66D7AAA33737CA4939BB9EA8D2BB057E8D0 Authority key identifier: 0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34352e3235332e32362e302f32342d3234203d3e2034383131.roa Signing time: Mon 11 May 2026 07:00:48 +0000 ROA not before: Mon 11 May 2026 06:55:48 +0000 ROA not after: Mon 10 May 2027 07:00:48 +0000 asID: 4811 IP address blocks: 45.253.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:a8:e6:6d:7a:aa:33:73:7c:a4:93:9b:b9:ea:8d:2b:b0:57:e8:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Validity Not Before: May 11 06:55:48 2026 GMT Not After : May 10 07:00:48 2027 GMT Subject: CN=AE686980D2C5C87957DDDD141CD241A80C1B7EB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c0:0c:33:f1:17:f9:7b:19:f2:b8:85:22:3a: c0:97:30:b9:43:b7:92:a0:e7:67:f0:a6:e6:aa:49: 7c:0e:a3:b5:13:80:7c:35:58:7e:6c:08:6b:58:8d: 79:68:96:6f:6e:f4:22:d4:23:10:0c:83:81:f2:f7: 99:75:c0:6f:2c:83:5a:0d:6e:4e:d7:77:9a:b6:d2: 1f:6e:aa:57:e0:c2:01:7a:0a:2e:f7:97:eb:0a:d7: b1:de:e5:6c:9c:17:4b:a7:00:ff:a8:d9:b7:de:1f: 64:4a:5c:e6:92:c6:3b:d7:4e:d5:13:10:88:74:3e: 23:2a:34:c2:ea:c0:0b:0e:d7:4a:c1:51:92:3a:7f: 68:03:7c:52:d3:0f:15:06:62:19:9d:87:4d:52:c5: ad:70:5c:be:dc:c4:65:e4:50:10:eb:49:cf:46:c9: bb:1d:63:29:21:26:9d:1f:1e:34:b6:2b:82:3b:c7: 3d:08:07:25:7a:dd:7c:f1:f0:01:08:02:25:7e:c6: 5a:62:16:23:f6:92:7e:da:c6:20:a0:21:6c:ee:59: ee:bb:2b:da:d1:2e:68:1f:18:ff:d7:e7:9a:8b:7c: 5e:bc:0f:ac:77:c5:22:e8:af:03:6c:a2:ef:f1:30: 3a:cc:72:c9:c1:6c:49:fb:b0:54:e6:4d:c7:66:67: de:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:68:69:80:D2:C5:C8:79:57:DD:DD:14:1C:D2:41:A8:0C:1B:7E:B7 X509v3 Authority Key Identifier: keyid:0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34352e3235332e32362e302f32342d3234203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.253.26.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:90:e6:2b:1e:67:b1:84:88:ea:1a:3a:22:45:cd:65:ff:95: 0d:e5:d4:59:69:fb:49:cc:02:02:c0:bd:74:45:da:b5:ac:90: 68:5f:44:4b:ad:d2:5c:cb:8b:2c:32:1a:7c:a3:0e:0c:eb:47: 30:9f:af:3c:34:37:b4:14:4b:25:16:b7:ef:cb:63:3c:45:ab: b2:6f:6f:78:6d:3e:c0:2c:d1:f8:0b:a1:21:e6:de:90:5d:6a: 99:d7:b2:f9:c0:1d:cc:09:9c:fa:4a:d2:21:bb:00:39:44:ea: 34:5c:b2:2c:65:76:8f:35:c3:e2:f8:2e:fb:24:1f:8d:a7:31: a9:85:c4:4f:4d:a6:d7:cd:ea:9e:58:c2:f1:29:6e:4e:c9:d3: 61:9e:47:58:2f:a9:15:6b:e9:d0:99:c3:22:4d:a1:ad:c9:e5: a1:45:5d:07:19:73:6a:09:02:0d:a7:7d:cc:03:59:c4:47:39: 8a:4a:b2:4f:72:55:de:52:4a:53:aa:f6:36:a8:40:50:c6:7d: f5:d9:25:d1:4e:5c:cb:0f:6b:e7:85:bc:5a:3f:26:0a:12:cd: d9:b1:83:15:5d:10:f0:6b:35:96:16:87:de:41:e0:b3:73:90: f8:26:c2:48:41:f0:29:34:7a:44:38:b6:d7:90:f2:7b:06:39: 29:10:26:b6 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUbqjmbXqqM3N8pJObueqNK7BX6NAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3 NjlGREY4QjAeFw0yNjA1MTEwNjU1NDhaFw0yNzA1MTAwNzAwNDhaMDMxMTAvBgNV BAMTKEFFNjg2OTgwRDJDNUM4Nzk1N0REREQxNDFDRDI0MUE4MEMxQjdFQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfwAwz8Rf5exnyuIUiOsCXMLlD t5Kg52fwpuaqSXwOo7UTgHw1WH5sCGtYjXlolm9u9CLUIxAMg4Hy95l1wG8sg1oN bk7Xd5q20h9uqlfgwgF6Ci73l+sK17He5WycF0unAP+o2bfeH2RKXOaSxjvXTtUT EIh0PiMqNMLqwAsO10rBUZI6f2gDfFLTDxUGYhmdh01Sxa1wXL7cxGXkUBDrSc9G ybsdYykhJp0fHjS2K4I7xz0IByV63Xzx8AEIAiV+xlpiFiP2kn7axiCgIWzuWe67 K9rRLmgfGP/X55qLfF68D6x3xSLorwNsou/xMDrMcsnBbEn7sFTmTcdmZ973AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUrmhpgNLFyHlX3d0UHNJBqAwbfrcwHwYDVR0j BBgwFoAUDkpkqQtIyO1KooboiD1ZW3af34swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkxMjQxMDg1OTk2MjM3MS8wLzBFNEE2NEE5MEI0OEM4RUQ0QUEyODZFODg4M0Q1 OTVCNzY5RkRGOEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3NjlGREY4Qi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTEyNDEwODU5OTYyMzcxLzAvMzQzNTJlMzIzNTMz MmUzMjM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAt/RowDQYJKoZIhvcNAQELBQADggEBAF6Q5iseZ7GEiOoaOiJFzWX/lQ3l1Flp +0nMAgLAvXRF2rWskGhfREut0lzLiywyGnyjDgzrRzCfrzw0N7QUSyUWt+/LYzxF q7Jvb3htPsAs0fgLoSHm3pBdapnXsvnAHcwJnPpK0iG7ADlE6jRcsixldo81w+L4 LvskH42nMamFxE9NptfN6p5YwvEpbk7J02GeR1gvqRVr6dCZwyJNoa3J5aFFXQcZ c2oJAg2nfcwDWcRHOYpKsk9yVd5SSlOq9jaoQFDGffXZJdFOXMsPa+eFvFo/JgoS zdmxgxVdEPBrNZYWh95B4LNzkPgmwkhB8Ck0ekQ4tteQ8nsGOSkQJrY= -----END CERTIFICATE-----Generated at Wed May 13 12:28:50 2026 by rpki-client