$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096250886386089987/0/34332e3234302e3230302e302f32342d3234203d3e2034383038.roa File: 34332e3234302e3230302e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: jH4oDmP6oaOM9gvOyE2Nx4TAC2Qkee39rebiB87cwyI= Subject key identifier: 36:E7:D7:19:54:61:C2:E8:E8:7E:E5:B2:DA:42:2C:B6:BC:F7:F6:6F Certificate issuer: /CN=AE09DD056B3B5EA4C48722C67F63F0A12CAAF727 Certificate serial: 19F4A0B621216B94D7E6854AE6CDB05E8E960C6D Authority key identifier: AE:09:DD:05:6B:3B:5E:A4:C4:87:22:C6:7F:63:F0:A1:2C:AA:F7:27 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/34332e3234302e3230302e302f32342d3234203d3e2034383038.roa Signing time: Tue 12 May 2026 01:55:19 +0000 ROA not before: Tue 12 May 2026 01:50:19 +0000 ROA not after: Tue 11 May 2027 01:55:19 +0000 asID: 4808 IP address blocks: 43.240.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.crl rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f4:a0:b6:21:21:6b:94:d7:e6:85:4a:e6:cd:b0:5e:8e:96:0c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE09DD056B3B5EA4C48722C67F63F0A12CAAF727 Validity Not Before: May 12 01:50:19 2026 GMT Not After : May 11 01:55:19 2027 GMT Subject: CN=36E7D7195461C2E8E87EE5B2DA422CB6BCF7F66F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:21:b2:40:6d:9a:31:09:f6:78:b3:f7:1f:d2: 59:ef:9d:11:c7:5c:83:40:5c:7f:ad:37:57:94:51: 05:80:30:ab:58:63:c4:e7:e0:bc:53:65:91:47:8d: ba:bc:17:0a:42:f4:ba:d5:61:2d:51:2f:8c:5b:47: 07:3f:4d:37:31:fc:79:80:23:a0:36:97:90:19:44: cb:d5:8f:53:4d:26:62:27:c6:f2:8d:ff:67:83:2a: 58:23:46:4a:2f:bd:88:06:65:94:1c:e1:7e:35:e8: 2e:ec:c0:9a:04:bc:97:60:ac:2d:9e:a9:70:40:7e: ec:1c:af:47:5e:4e:25:1c:eb:de:86:86:b4:ce:70: 3c:24:ba:fb:1b:86:67:90:87:95:88:d2:f2:9b:78: b3:a6:28:c9:43:eb:1e:a7:87:2e:9b:a2:88:70:92: cc:07:96:b2:5c:fb:a7:18:26:79:df:b0:5f:f6:14: 9a:eb:6c:b3:7f:16:ef:06:ab:86:b4:fc:88:8b:97: 5c:72:92:ed:22:6d:3d:74:04:7a:fd:45:e8:32:d5: ba:e5:d3:aa:1d:6d:30:a7:fc:23:16:0d:b1:c0:bd: 12:27:95:1a:4c:f0:04:33:fc:23:7f:66:ab:db:46: fa:b4:95:86:3f:ec:8c:e7:98:92:b2:56:4f:e6:40: 63:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E7:D7:19:54:61:C2:E8:E8:7E:E5:B2:DA:42:2C:B6:BC:F7:F6:6F X509v3 Authority Key Identifier: keyid:AE:09:DD:05:6B:3B:5E:A4:C4:87:22:C6:7F:63:F0:A1:2C:AA:F7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/34332e3234302e3230302e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.200.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:50:17:84:eb:df:56:7c:8e:70:b0:de:a4:62:97:24:c9:94: db:f9:16:aa:f0:9b:38:b5:62:8c:05:cd:30:60:ed:9a:6c:3d: b9:89:44:ee:0d:07:fb:a0:2c:d7:f4:ee:8d:b8:d9:82:d2:dc: 60:09:0e:6d:80:f5:5f:31:ae:57:7f:f0:eb:28:34:d0:00:5f: d3:10:e1:50:14:d8:a4:27:76:8f:36:42:42:cf:1e:4a:45:6c: 85:7a:16:53:93:64:68:41:42:46:6c:49:e5:e7:8d:0d:13:4d: 30:83:8a:d6:d5:76:0d:d2:bd:43:2f:5a:a6:d1:eb:e2:b1:29: f3:65:a8:d2:ed:a4:da:2f:60:f2:26:3b:38:97:54:b8:84:de: 6e:f5:39:6a:f1:17:2d:83:b0:15:ec:75:55:5b:4c:c5:52:6e: dc:29:54:bb:aa:d2:8d:7c:fb:49:00:e8:4e:1b:bc:e9:5c:db: 94:e2:4e:a0:8d:25:e3:63:51:95:71:5d:39:54:66:81:22:7f: 69:9a:e3:2b:28:c5:d3:3a:c4:4a:ab:5a:76:00:48:99:72:b4: ba:20:65:a2:22:a4:f9:f4:08:3e:ef:b8:d4:42:2f:12:22:78: de:51:f5:ab:14:66:b4:d7:5b:64:3a:fd:19:0b:17:e5:ab:e9: 17:dd:21:b6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUGfSgtiEha5TX5oVK5s2wXo6WDG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUUwOUREMDU2QjNCNUVBNEM0ODcyMkM2N0Y2M0YwQTEy Q0FBRjcyNzAeFw0yNjA1MTIwMTUwMTlaFw0yNzA1MTEwMTU1MTlaMDMxMTAvBgNV BAMTKDM2RTdENzE5NTQ2MUMyRThFODdFRTVCMkRBNDIyQ0I2QkNGN0Y2NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUIbJAbZoxCfZ4s/cf0lnvnRHH XINAXH+tN1eUUQWAMKtYY8Tn4LxTZZFHjbq8FwpC9LrVYS1RL4xbRwc/TTcx/HmA I6A2l5AZRMvVj1NNJmInxvKN/2eDKlgjRkovvYgGZZQc4X416C7swJoEvJdgrC2e qXBAfuwcr0deTiUc696GhrTOcDwkuvsbhmeQh5WI0vKbeLOmKMlD6x6nhy6boohw kswHlrJc+6cYJnnfsF/2FJrrbLN/Fu8Gq4a0/IiLl1xyku0ibT10BHr9Regy1brl 06odbTCn/CMWDbHAvRInlRpM8AQz/CN/ZqvbRvq0lYY/7IznmJKyVk/mQGNTAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUNufXGVRhwujofuWy2kIstrz39m8wHwYDVR0j BBgwFoAUrgndBWs7XqTEhyLGf2PwoSyq9ycwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI1MDg4NjM4NjA4OTk4Ny8wL0FFMDlERDA1NkIzQjVFQTRDNDg3MjJDNjdGNjNG MEExMkNBQUY3MjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUUwOUREMDU2QjNCNUVBNEM0ODcyMkM2N0Y2M0YwQTEyQ0FBRjcyNy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MjUwODg2Mzg2MDg5OTg3LzAvMzQzMzJlMzIzNDMw MmUzMjMwMzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvwyDANBgkqhkiG9w0BAQsFAAOCAQEAPlAXhOvfVnyOcLDepGKXJMmU2/kW qvCbOLVijAXNMGDtmmw9uYlE7g0H+6As1/TujbjZgtLcYAkObYD1XzGuV3/w6yg0 0ABf0xDhUBTYpCd2jzZCQs8eSkVshXoWU5NkaEFCRmxJ5eeNDRNNMIOK1tV2DdK9 Qy9aptHr4rEp82Wo0u2k2i9g8iY7OJdUuITebvU5avEXLYOwFex1VVtMxVJu3ClU u6rSjXz7SQDoThu86VzblOJOoI0l42NRlXFdOVRmgSJ/aZrjKyjF0zrESqtadgBI mXK0uiBloiKk+fQIPu+41EIvEiJ43lH1qxRmtNdbZDr9GQsX5avpF90htg== -----END CERTIFICATE-----Generated at Wed May 13 12:51:23 2026 by rpki-client