$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096250886386089987/0/34332e3234302e3230312e302f32342d3234203d3e2034383038.roa File: 34332e3234302e3230312e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: 4iUeVkG/jY1t+8WG/BciSvsYpoG5vX8uPqiNIUCf+TU= Subject key identifier: 4B:26:76:DC:3A:54:6B:D8:36:04:A0:74:14:13:9A:93:C8:D9:CB:3F Certificate issuer: /CN=AE09DD056B3B5EA4C48722C67F63F0A12CAAF727 Certificate serial: 7293E3AB1B1991C5609BF19AF5AEF6C292415C32 Authority key identifier: AE:09:DD:05:6B:3B:5E:A4:C4:87:22:C6:7F:63:F0:A1:2C:AA:F7:27 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/34332e3234302e3230312e302f32342d3234203d3e2034383038.roa Signing time: Tue 12 May 2026 01:55:19 +0000 ROA not before: Tue 12 May 2026 01:50:19 +0000 ROA not after: Tue 11 May 2027 01:55:19 +0000 asID: 4808 IP address blocks: 43.240.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.crl rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:93:e3:ab:1b:19:91:c5:60:9b:f1:9a:f5:ae:f6:c2:92:41:5c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE09DD056B3B5EA4C48722C67F63F0A12CAAF727 Validity Not Before: May 12 01:50:19 2026 GMT Not After : May 11 01:55:19 2027 GMT Subject: CN=4B2676DC3A546BD83604A07414139A93C8D9CB3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:88:15:4f:05:32:e5:b7:01:b3:17:24:0e:24: 6a:23:c3:6a:8d:30:42:57:a5:60:ff:ff:c5:88:44: a1:42:7a:2e:74:84:e2:11:45:c5:22:04:74:3a:6a: 42:2f:2d:24:e0:eb:88:e8:77:58:34:88:f6:de:f9: e7:bc:56:b0:5f:bf:7d:47:51:9e:74:6c:cc:9e:91: 1a:a1:8d:5d:77:8c:3a:15:9f:de:5b:4a:7d:3d:e2: 3d:63:8b:5e:75:38:6f:5c:51:63:b7:5b:07:64:c5: 4d:61:7b:76:e7:2f:39:6f:cb:48:de:5d:73:7a:e4: 2d:50:13:82:8d:cc:86:f3:6a:e1:49:39:93:4d:fe: ba:fc:bd:56:fb:f0:b8:05:6a:8c:c0:a2:fb:a1:80: 09:19:65:77:65:ee:bc:5f:08:2f:db:e9:4d:57:19: 36:57:9b:35:a1:91:8d:61:81:24:ff:f2:61:b1:42: 19:1f:8e:21:e4:bd:f2:13:2b:ee:b3:46:f4:5c:b4: f4:a9:e0:8a:d4:de:7d:f1:ce:ac:a7:fc:27:ba:eb: fe:c9:42:0a:ab:df:d0:84:20:e3:2c:50:4a:e8:b0: c6:ac:64:5d:85:37:4a:7b:fb:a5:19:43:0d:c3:c9: d8:d0:fc:2a:7a:94:44:73:40:d7:17:c4:a8:d4:06: 6b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:26:76:DC:3A:54:6B:D8:36:04:A0:74:14:13:9A:93:C8:D9:CB:3F X509v3 Authority Key Identifier: keyid:AE:09:DD:05:6B:3B:5E:A4:C4:87:22:C6:7F:63:F0:A1:2C:AA:F7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE09DD056B3B5EA4C48722C67F63F0A12CAAF727.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096250886386089987/0/34332e3234302e3230312e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.201.0/24 Signature Algorithm: sha256WithRSAEncryption b0:1c:5d:c1:ca:04:0c:7d:4f:25:23:22:63:23:f1:20:8e:3a: a3:18:08:63:5d:30:d9:50:56:6c:fd:a2:c0:13:25:63:ab:1f: 73:41:24:cb:57:e2:c5:f0:70:f5:d1:b6:6e:7f:cf:0c:d2:c2: d1:e6:13:2f:c1:4e:cc:17:f4:93:51:50:dd:0f:ed:87:20:4f: 6d:d9:91:b6:d6:ec:9b:eb:4f:f4:be:86:50:86:2b:8a:f1:18: 30:71:3e:ec:db:ca:e6:5a:7b:4d:84:ef:d5:f2:af:4b:b3:fe: 4d:66:4b:36:c2:19:0a:f0:07:0d:1d:25:57:02:a9:97:62:09: 6e:33:23:2d:0c:9d:16:eb:7f:97:ce:a9:ae:f6:ee:41:48:b7: a2:fc:bf:c8:70:31:27:dd:80:fc:da:bd:ec:dd:5d:63:2e:e6: b8:5f:1f:fa:05:18:71:e3:59:63:97:e9:79:80:e1:94:1c:12: 25:28:18:44:7d:56:29:92:14:08:c8:32:3e:10:4d:b8:02:20: 7e:03:57:be:32:e1:8b:c7:5d:fc:8e:9e:e4:ce:f0:ce:9c:99: 33:19:df:1f:f3:ca:53:3d:cc:ba:7f:17:aa:7c:9d:45:99:93: 32:57:b3:46:92:17:06:be:51:c3:52:e5:2b:1a:e0:ce:12:d6: 41:64:4a:67 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUcpPjqxsZkcVgm/Ga9a72wpJBXDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUUwOUREMDU2QjNCNUVBNEM0ODcyMkM2N0Y2M0YwQTEy Q0FBRjcyNzAeFw0yNjA1MTIwMTUwMTlaFw0yNzA1MTEwMTU1MTlaMDMxMTAvBgNV BAMTKDRCMjY3NkRDM0E1NDZCRDgzNjA0QTA3NDE0MTM5QTkzQzhEOUNCM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChiBVPBTLltwGzFyQOJGojw2qN MEJXpWD//8WIRKFCei50hOIRRcUiBHQ6akIvLSTg64jod1g0iPbe+ee8VrBfv31H UZ50bMyekRqhjV13jDoVn95bSn094j1ji151OG9cUWO3WwdkxU1he3bnLzlvy0je XXN65C1QE4KNzIbzauFJOZNN/rr8vVb78LgFaozAovuhgAkZZXdl7rxfCC/b6U1X GTZXmzWhkY1hgST/8mGxQhkfjiHkvfITK+6zRvRctPSp4IrU3n3xzqyn/Ce66/7J Qgqr39CEIOMsUErosMasZF2FN0p7+6UZQw3DydjQ/Cp6lERzQNcXxKjUBmslAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUSyZ23DpUa9g2BKB0FBOak8jZyz8wHwYDVR0j BBgwFoAUrgndBWs7XqTEhyLGf2PwoSyq9ycwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI1MDg4NjM4NjA4OTk4Ny8wL0FFMDlERDA1NkIzQjVFQTRDNDg3MjJDNjdGNjNG MEExMkNBQUY3MjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUUwOUREMDU2QjNCNUVBNEM0ODcyMkM2N0Y2M0YwQTEyQ0FBRjcyNy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MjUwODg2Mzg2MDg5OTg3LzAvMzQzMzJlMzIzNDMw MmUzMjMwMzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvwyTANBgkqhkiG9w0BAQsFAAOCAQEAsBxdwcoEDH1PJSMiYyPxII46oxgI Y10w2VBWbP2iwBMlY6sfc0Eky1fixfBw9dG2bn/PDNLC0eYTL8FOzBf0k1FQ3Q/t hyBPbdmRttbsm+tP9L6GUIYrivEYMHE+7NvK5lp7TYTv1fKvS7P+TWZLNsIZCvAH DR0lVwKpl2IJbjMjLQydFut/l86prvbuQUi3ovy/yHAxJ92A/Nq97N1dYy7muF8f +gUYceNZY5fpeYDhlBwSJSgYRH1WKZIUCMgyPhBNuAIgfgNXvjLhi8dd/I6e5M7w zpyZMxnfH/PKUz3Mun8XqnydRZmTMlezRpIXBr5Rw1LlKxrgzhLWQWRKZw== -----END CERTIFICATE-----Generated at Wed May 13 14:11:00 2026 by rpki-client