$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34352e3235332e32372e302f32342d3234203d3e20313338343231.roa File: 34352e3235332e32372e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: FJPmbrz1K6GNdCJDuPO1MKM248k8VZQRzSrolVi5dHg= Subject key identifier: 2B:22:2F:CF:C2:93:EF:89:86:C7:07:C9:98:6B:55:E7:70:DE:D5:11 Certificate issuer: /CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Certificate serial: 2F7FDD9188015541724F0DF5E0E9E1736E79DD3C Authority key identifier: 0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34352e3235332e32372e302f32342d3234203d3e20313338343231.roa Signing time: Mon 11 May 2026 07:00:48 +0000 ROA not before: Mon 11 May 2026 06:55:48 +0000 ROA not after: Mon 10 May 2027 07:00:48 +0000 asID: 138421 IP address blocks: 45.253.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:7f:dd:91:88:01:55:41:72:4f:0d:f5:e0:e9:e1:73:6e:79:dd:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Validity Not Before: May 11 06:55:48 2026 GMT Not After : May 10 07:00:48 2027 GMT Subject: CN=2B222FCFC293EF8986C707C9986B55E770DED511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:16:2b:3d:20:b5:43:fd:63:4f:8e:85:cd:63: 28:56:06:a5:9f:2e:75:5b:a4:5f:14:a6:f6:46:cd: 16:f9:8b:08:36:cc:01:33:8d:55:73:b5:5e:ee:ca: 53:c2:42:72:a8:9a:b8:41:f7:6e:57:ce:3a:f3:a7: 50:00:3b:47:68:2e:bb:32:f5:e3:a9:45:0c:53:2b: a2:db:0c:b4:58:9c:17:f2:80:d6:f9:94:df:31:ca: af:1a:bc:fa:a1:36:b3:4c:c7:89:82:17:53:57:39: 7c:37:e5:76:ee:b4:83:f5:a3:2d:d5:19:51:05:3e: 3c:10:ba:84:bc:cf:4c:a6:0a:19:59:2e:14:2f:13: e6:9a:9c:8d:63:41:38:2d:89:96:7a:88:92:f1:c7: a2:3c:60:5f:7c:06:ae:ac:37:e0:82:30:d6:f9:83: 88:2d:9b:30:04:e1:f5:b7:62:10:87:20:30:00:9a: 0b:f9:ce:3c:f8:1e:55:5a:35:b8:69:f9:dd:ce:68: 45:d5:b4:28:2e:8c:ca:a7:4b:5a:52:5e:c5:14:d8: a6:e4:07:c6:c0:39:69:f1:65:03:cb:ac:5d:57:79: a3:9f:6a:43:c1:eb:50:67:52:4c:02:e7:d4:d9:5a: 95:ef:86:d0:26:f9:4c:f8:1f:8a:47:d0:1f:d0:36: 39:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:22:2F:CF:C2:93:EF:89:86:C7:07:C9:98:6B:55:E7:70:DE:D5:11 X509v3 Authority Key Identifier: keyid:0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34352e3235332e32372e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.253.27.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:29:85:5d:5c:b8:9a:18:d4:e5:29:41:38:e6:16:11:a8:14: cf:50:44:77:b2:a7:29:75:89:7a:a3:f4:6d:bf:e5:3d:2d:f8: 68:65:17:a5:b6:64:f5:62:72:39:a5:45:ee:73:6c:f4:01:75: fa:a5:6b:f0:4d:60:29:fd:ff:d4:b0:db:e5:3d:d7:88:46:71: 8a:77:87:51:31:8d:8f:d9:9c:0f:c6:c9:4e:fd:48:fa:f2:01: 76:a1:b3:8e:5f:e3:f3:cb:df:b2:28:8f:77:c9:dc:4f:67:21: b9:b8:c2:74:ce:8a:34:61:cc:f4:bb:fa:3e:57:cb:7f:4b:d1: ce:52:43:cb:f5:cf:90:b7:fe:56:f6:5d:4d:af:74:fc:79:c1: 52:eb:73:20:45:42:6e:66:68:89:c0:8d:aa:cd:63:6e:33:db: 36:fb:1d:02:24:47:d9:20:e7:1f:7c:0c:e6:52:ab:42:36:7d: a7:ef:6f:73:de:33:c3:b7:99:d2:82:a7:62:69:08:70:29:58: af:eb:c6:0d:03:fa:78:86:50:70:d3:10:08:d3:ca:cc:bc:95: 41:ea:80:f9:09:bf:25:b8:1a:ad:7e:29:4b:dd:21:b7:34:11: 7f:c0:9b:de:dd:b1:45:4b:7d:69:44:d5:ab:16:6c:ec:72:52: 18:9f:c4:bf -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUL3/dkYgBVUFyTw314Onhc2553TwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3 NjlGREY4QjAeFw0yNjA1MTEwNjU1NDhaFw0yNzA1MTAwNzAwNDhaMDMxMTAvBgNV BAMTKDJCMjIyRkNGQzI5M0VGODk4NkM3MDdDOTk4NkI1NUU3NzBERUQ1MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyFis9ILVD/WNPjoXNYyhWBqWf LnVbpF8UpvZGzRb5iwg2zAEzjVVztV7uylPCQnKomrhB925Xzjrzp1AAO0doLrsy 9eOpRQxTK6LbDLRYnBfygNb5lN8xyq8avPqhNrNMx4mCF1NXOXw35XbutIP1oy3V GVEFPjwQuoS8z0ymChlZLhQvE+aanI1jQTgtiZZ6iJLxx6I8YF98Bq6sN+CCMNb5 g4gtmzAE4fW3YhCHIDAAmgv5zjz4HlVaNbhp+d3OaEXVtCgujMqnS1pSXsUU2Kbk B8bAOWnxZQPLrF1XeaOfakPB61BnUkwC59TZWpXvhtAm+Uz4H4pH0B/QNjk1AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUKyIvz8KT74mGxwfJmGtV53De1REwHwYDVR0j BBgwFoAUDkpkqQtIyO1KooboiD1ZW3af34swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkxMjQxMDg1OTk2MjM3MS8wLzBFNEE2NEE5MEI0OEM4RUQ0QUEyODZFODg4M0Q1 OTVCNzY5RkRGOEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3NjlGREY4Qi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTkxMjQxMDg1OTk2MjM3MS8wLzM0MzUyZTMyMzUz MzJlMzIzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAC39GzANBgkqhkiG9w0BAQsFAAOCAQEAaymFXVy4mhjU5SlBOOYWEagU z1BEd7KnKXWJeqP0bb/lPS34aGUXpbZk9WJyOaVF7nNs9AF1+qVr8E1gKf3/1LDb 5T3XiEZxineHUTGNj9mcD8bJTv1I+vIBdqGzjl/j88vfsiiPd8ncT2chubjCdM6K NGHM9Lv6PlfLf0vRzlJDy/XPkLf+VvZdTa90/HnBUutzIEVCbmZoicCNqs1jbjPb NvsdAiRH2SDnH3wM5lKrQjZ9p+9vc94zw7eZ0oKnYmkIcClYr+vGDQP6eIZQcNMQ CNPKzLyVQeqA+Qm/JbgarX4pS90htzQRf8Cb3t2xRUt9aUTVqxZs7HJSGJ/Evw== -----END CERTIFICATE-----Generated at Wed May 13 13:48:32 2026 by rpki-client