$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136302e302f32322d3234203d3e203535393939.roa File: 34332e3234302e3136302e302f32322d3234203d3e203535393939.roa (raw, json) Hash identifier: 9JcjLYz4oF6pH0laB4eyeAqU+/WWtj3ZXZoHc/zYEJU= Subject key identifier: 76:87:44:81:37:19:13:83:EB:B6:97:7F:11:36:E5:79:41:00:75:A7 Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 43E0B5DC61506D3672DCB22210B4075F024ACD04 Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136302e302f32322d3234203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:41 +0000 ROA not before: Fri 08 May 2026 15:24:41 +0000 ROA not after: Fri 07 May 2027 15:29:41 +0000 asID: 55999 IP address blocks: 43.240.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e0:b5:dc:61:50:6d:36:72:dc:b2:22:10:b4:07:5f:02:4a:cd:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:41 2026 GMT Not After : May 7 15:29:41 2027 GMT Subject: CN=7687448137191383EBB6977F1136E579410075A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e6:7c:62:09:13:f3:be:88:61:ed:8e:87:86: ec:f7:08:4d:36:1d:e2:2e:8e:1f:67:f2:1c:ea:de: ed:e2:45:f6:2e:26:da:0c:c6:20:79:76:04:e9:c0: 3e:f4:b1:bc:b9:9d:4f:96:12:48:b5:d6:7f:35:4d: d6:c4:63:8c:82:f2:db:16:50:12:b1:24:a1:03:a0: 76:5f:f5:69:a0:35:55:57:f2:8a:81:65:d5:93:9e: 88:7b:cf:b7:12:5b:27:3e:bc:89:66:aa:97:fc:d3: 80:da:93:03:80:ba:8e:5c:c9:b3:df:73:d3:14:19: 0a:b6:61:a6:ca:a2:7a:20:68:84:ef:80:89:e3:97: bc:8d:e1:a3:85:18:a8:43:77:38:80:da:95:5a:59: a4:14:ed:a2:d3:78:4f:55:92:dd:a1:0b:2e:01:3d: 44:b5:b9:7e:8d:17:9a:93:80:99:be:98:56:bb:45: 73:eb:85:a5:91:1c:b0:0e:4a:51:67:09:19:f0:62: 8f:8e:6c:e3:59:07:2a:21:c2:8f:9e:73:d3:5c:05: 68:10:4a:60:f4:a3:49:4b:29:9e:de:5e:07:bf:ec: 46:94:2f:8c:3d:e8:f4:79:76:fc:ec:32:a1:fb:d6: 12:ad:fe:b4:aa:64:33:14:99:e1:ab:ce:f0:c4:c8: 19:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:87:44:81:37:19:13:83:EB:B6:97:7F:11:36:E5:79:41:00:75:A7 X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136302e302f32322d3234203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.160.0/22 Signature Algorithm: sha256WithRSAEncryption 01:db:26:b5:b0:ad:75:35:10:33:b4:48:49:78:2f:97:11:72: 2d:5d:65:2d:d5:f5:8f:3b:c8:b9:15:41:4b:67:93:15:1c:64: 45:32:4b:83:a0:89:e4:7b:a1:f9:75:a8:4b:78:06:fa:35:8b: 51:26:13:1a:da:57:37:7f:ab:27:5e:43:97:01:d0:75:fb:c5: 65:93:57:eb:b9:9c:1b:0f:02:56:5a:b5:22:02:91:1b:36:95: f2:61:65:91:69:83:95:f0:24:af:6b:23:16:6e:03:b7:2d:40: d4:b7:14:24:b5:19:29:0a:5b:92:97:bb:fc:15:1c:16:43:fa: ef:cf:aa:0e:76:5e:3a:29:2b:de:6a:07:72:e4:d4:4a:c8:d2: e7:da:c7:a6:b6:d4:0b:c9:6b:e5:22:5d:78:54:49:09:b2:18: 6a:91:7f:35:23:dd:81:20:66:95:18:d7:94:04:bf:41:25:31: b1:e3:d1:64:b4:66:0c:63:9e:9e:a7:9b:25:d4:a4:10:93:89: a5:b1:82:61:1e:c6:56:18:23:26:79:38:b7:b9:b0:0c:d3:23: e0:3f:81:e8:f3:be:bf:a2:0b:2b:24:72:17:aa:54:ee:cd:26: 42:da:82:62:3e:db:de:4a:07:bb:aa:60:9a:97:b3:1f:6e:d1: 15:5f:b9:14 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQ+C13GFQbTZy3LIiELQHXwJKzQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDFaFw0yNzA1MDcxNTI5NDFaMDMxMTAvBgNV BAMTKDc2ODc0NDgxMzcxOTEzODNFQkI2OTc3RjExMzZFNTc5NDEwMDc1QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq5nxiCRPzvohh7Y6Hhuz3CE02 HeIujh9n8hzq3u3iRfYuJtoMxiB5dgTpwD70sby5nU+WEki11n81TdbEY4yC8tsW UBKxJKEDoHZf9WmgNVVX8oqBZdWTnoh7z7cSWyc+vIlmqpf804DakwOAuo5cybPf c9MUGQq2YabKonogaITvgInjl7yN4aOFGKhDdziA2pVaWaQU7aLTeE9Vkt2hCy4B PUS1uX6NF5qTgJm+mFa7RXPrhaWRHLAOSlFnCRnwYo+ObONZByohwo+ec9NcBWgQ SmD0o0lLKZ7eXge/7EaUL4w96PR5dvzsMqH71hKt/rSqZDMUmeGrzvDEyBm3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUdodEgTcZE4Prtpd/ETbleUEAdacwHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY5Mzg5OTU5NTg3NDMwNS8wLzM0MzMyZTMyMzQz MDJlMzEzNjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivwoDANBgkqhkiG9w0BAQsFAAOCAQEAAdsmtbCtdTUQM7RISXgvlxFy LV1lLdX1jzvIuRVBS2eTFRxkRTJLg6CJ5Huh+XWoS3gG+jWLUSYTGtpXN3+rJ15D lwHQdfvFZZNX67mcGw8CVlq1IgKRGzaV8mFlkWmDlfAkr2sjFm4Dty1A1LcUJLUZ KQpbkpe7/BUcFkP678+qDnZeOikr3moHcuTUSsjS59rHprbUC8lr5SJdeFRJCbIY apF/NSPdgSBmlRjXlAS/QSUxsePRZLRmDGOenqebJdSkEJOJpbGCYR7GVhgjJnk4 t7mwDNMj4D+B6PO+v6ILKyRyF6pU7s0mQtqCYj7b3koHu6pgmpezH27RFV+5FA== -----END CERTIFICATE-----Generated at Wed May 13 21:32:19 2026 by rpki-client