$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096330859092508673/0/34332e3234312e3234302e302f32332d3233203d3e2034383038.roa File: 34332e3234312e3234302e302f32332d3233203d3e2034383038.roa (raw, json) Hash identifier: Lydf+HeHIzjAwoZErdFDn5KtbiIWOENNEr7cVYyLFk0= Subject key identifier: B5:C8:90:D4:9E:AB:07:6C:BD:FF:D4:7D:EE:44:95:92:19:46:AA:4B Certificate issuer: /CN=D569CE49ED940955318F718AEACD6D410BFF66B3 Certificate serial: 3CAA0D54345B80C749451155349B94732E101665 Authority key identifier: D5:69:CE:49:ED:94:09:55:31:8F:71:8A:EA:CD:6D:41:0B:FF:66:B3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D569CE49ED940955318F718AEACD6D410BFF66B3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/34332e3234312e3234302e302f32332d3233203d3e2034383038.roa Signing time: Tue 12 May 2026 08:10:05 +0000 ROA not before: Tue 12 May 2026 08:05:05 +0000 ROA not after: Tue 11 May 2027 08:10:05 +0000 asID: 4808 IP address blocks: 43.241.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/D569CE49ED940955318F718AEACD6D410BFF66B3.crl rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/D569CE49ED940955318F718AEACD6D410BFF66B3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D569CE49ED940955318F718AEACD6D410BFF66B3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:aa:0d:54:34:5b:80:c7:49:45:11:55:34:9b:94:73:2e:10:16:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D569CE49ED940955318F718AEACD6D410BFF66B3 Validity Not Before: May 12 08:05:05 2026 GMT Not After : May 11 08:10:05 2027 GMT Subject: CN=B5C890D49EAB076CBDFFD47DEE4495921946AA4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:37:3f:8a:5e:54:57:2d:5d:e9:87:95:32:47: f2:7f:2c:47:ec:12:3e:99:71:80:5b:f3:74:2f:4b: d7:4f:01:ad:b7:46:e6:41:ac:cc:4c:2a:fa:79:de: ee:58:ef:12:25:f6:ef:2a:72:7c:74:c7:1b:bc:64: 33:ef:8a:31:71:67:65:fc:dc:b2:9b:ae:bd:25:33: a6:74:77:f0:b9:9a:60:1a:26:4a:b1:ef:8e:cb:2e: ec:04:58:3d:bd:4d:d5:d4:b2:f3:87:62:50:d2:02: 08:92:0f:29:90:61:60:ad:00:6b:40:29:60:ce:84: ba:0a:52:b8:6c:4f:5d:9d:25:a4:eb:7e:79:22:a2: 4a:f2:c2:c1:e2:d3:d4:7c:78:0b:17:95:93:1d:f1: f0:ed:c8:60:e5:7f:25:ea:06:cc:a2:fc:1a:aa:df: 9f:76:57:a6:81:44:10:e5:11:13:5d:18:dc:08:38: ee:f8:dd:a4:25:6e:9d:7f:c0:24:7a:b0:66:69:76: 2c:8c:d8:8c:30:1c:74:86:11:4d:9d:e4:5c:c3:46: 45:54:89:4b:a5:77:e9:76:b1:c4:e6:23:20:0b:22: 9e:da:61:61:0a:11:1a:61:05:a9:45:f8:a4:f7:c8: da:5c:15:6c:7c:eb:19:2b:c5:be:57:d0:58:3a:14: c0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C8:90:D4:9E:AB:07:6C:BD:FF:D4:7D:EE:44:95:92:19:46:AA:4B X509v3 Authority Key Identifier: keyid:D5:69:CE:49:ED:94:09:55:31:8F:71:8A:EA:CD:6D:41:0B:FF:66:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/D569CE49ED940955318F718AEACD6D410BFF66B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D569CE49ED940955318F718AEACD6D410BFF66B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096330859092508673/0/34332e3234312e3234302e302f32332d3233203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.240.0/23 Signature Algorithm: sha256WithRSAEncryption 82:f9:c2:9b:9a:cc:6d:09:cb:45:73:5d:6d:2a:c0:2a:34:03: f4:e1:8b:47:f2:6b:75:d3:53:9f:e4:60:9d:e7:e7:e6:99:bd: c3:7a:a2:d6:7b:ed:60:f7:89:f1:e0:da:9c:37:95:a9:c0:54: f0:1f:dd:2f:24:2e:5e:c2:d0:16:31:cf:d1:93:37:fa:f3:34: 69:d9:fd:1d:6b:db:ac:4a:bd:ea:99:3f:55:56:4d:3b:6b:ca: 94:97:e4:c5:3c:f4:52:e3:03:05:2b:77:54:2c:5c:47:00:ea: bf:7a:29:26:1f:e8:1d:a8:c5:c2:fd:58:15:90:f6:fa:29:75: e0:5f:90:6c:ad:9e:20:65:dd:73:18:23:c2:29:78:47:8c:9f: 4e:a5:34:9f:75:69:7c:d2:3f:db:e8:d7:dc:30:44:89:69:db: d1:78:c1:15:72:fc:f8:1c:2b:f8:24:c8:9c:3d:3e:3a:61:4a: 14:35:df:62:4b:34:f1:50:a2:df:ed:f9:fa:b4:0d:f3:62:56: 1c:ef:c0:91:d0:a5:0b:de:02:5d:e3:a9:8e:25:ca:2b:0d:59: c5:e2:f2:c4:15:6d:1a:14:4c:28:4f:62:f0:01:a8:66:ad:b3: 0e:47:dc:43:bd:ec:70:49:5a:e6:91:b7:7d:dd:0f:f6:01:d3: 55:16:fc:6d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUPKoNVDRbgMdJRRFVNJuUcy4QFmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU2OUNFNDlFRDk0MDk1NTMxOEY3MThBRUFDRDZENDEw QkZGNjZCMzAeFw0yNjA1MTIwODA1MDVaFw0yNzA1MTEwODEwMDVaMDMxMTAvBgNV BAMTKEI1Qzg5MEQ0OUVBQjA3NkNCREZGRDQ3REVFNDQ5NTkyMTk0NkFBNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Nz+KXlRXLV3ph5UyR/J/LEfs Ej6ZcYBb83QvS9dPAa23RuZBrMxMKvp53u5Y7xIl9u8qcnx0xxu8ZDPvijFxZ2X8 3LKbrr0lM6Z0d/C5mmAaJkqx747LLuwEWD29TdXUsvOHYlDSAgiSDymQYWCtAGtA KWDOhLoKUrhsT12dJaTrfnkiokrywsHi09R8eAsXlZMd8fDtyGDlfyXqBsyi/Bqq 3592V6aBRBDlERNdGNwIOO743aQlbp1/wCR6sGZpdiyM2IwwHHSGEU2d5FzDRkVU iUuld+l2scTmIyALIp7aYWEKERphBalF+KT3yNpcFWx86xkrxb5X0Fg6FMAnAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUtciQ1J6rB2y9/9R97kSVkhlGqkswHwYDVR0j BBgwFoAU1WnOSe2UCVUxj3GK6s1tQQv/ZrMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjMzMDg1OTA5MjUwODY3My8wL0Q1NjlDRTQ5RUQ5NDA5NTUzMThGNzE4QUVBQ0Q2 RDQxMEJGRjY2QjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDU2OUNFNDlFRDk0MDk1NTMxOEY3MThBRUFDRDZENDEwQkZGNjZCMy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MzMwODU5MDkyNTA4NjczLzAvMzQzMzJlMzIzNDMx MmUzMjM0MzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEASvx8DANBgkqhkiG9w0BAQsFAAOCAQEAgvnCm5rMbQnLRXNdbSrAKjQD9OGL R/JrddNTn+Rgnefn5pm9w3qi1nvtYPeJ8eDanDeVqcBU8B/dLyQuXsLQFjHP0ZM3 +vM0adn9HWvbrEq96pk/VVZNO2vKlJfkxTz0UuMDBSt3VCxcRwDqv3opJh/oHajF wv1YFZD2+il14F+QbK2eIGXdcxgjwil4R4yfTqU0n3VpfNI/2+jX3DBEiWnb0XjB FXL8+Bwr+CTInD0+OmFKFDXfYks08VCi3+35+rQN82JWHO/AkdClC94CXeOpjiXK Kw1ZxeLyxBVtGhRMKE9i8AGoZq2zDkfcQ73scEla5pG3fd0P9gHTVRb8bQ== -----END CERTIFICATE-----Generated at Wed May 13 10:23:25 2026 by rpki-client