$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136342e302f32322d3234203d3e203535393939.roa File: 34332e3234302e3136342e302f32322d3234203d3e203535393939.roa (raw, json) Hash identifier: S3OJ70919gSGQdFu+Fl7QUfepTBEXi5Q2KBXDNH4k8U= Subject key identifier: BF:82:81:EA:21:BD:21:AA:C4:A0:20:FE:AF:A1:A8:9E:28:14:94:AE Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 59F505583EEB8D569774650F692F0CF98583DBFC Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136342e302f32322d3234203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:41 +0000 ROA not before: Fri 08 May 2026 15:24:41 +0000 ROA not after: Fri 07 May 2027 15:29:41 +0000 asID: 55999 IP address blocks: 43.240.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f5:05:58:3e:eb:8d:56:97:74:65:0f:69:2f:0c:f9:85:83:db:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:41 2026 GMT Not After : May 7 15:29:41 2027 GMT Subject: CN=BF8281EA21BD21AAC4A020FEAFA1A89E281494AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:70:d5:f6:b0:e0:a6:bf:85:26:fe:fc:8e: 7e:11:db:2d:09:4d:0f:70:1a:f4:df:40:3b:3f:a2: 69:c9:c2:b3:6e:41:08:ec:5b:ae:c6:6d:39:e7:40: 15:3f:6c:d6:5e:df:fc:84:4c:d6:be:86:0f:d4:b0: 9c:8a:72:0c:e2:7b:70:66:7a:f3:b3:13:f6:11:a1: f5:4d:39:65:c5:58:6d:b8:d0:e1:8f:05:33:04:5c: b1:b9:4d:77:61:38:85:74:3a:f2:46:b0:f7:e2:61: df:8d:47:07:8f:0c:cc:de:82:f0:b7:33:20:b4:8b: d9:b2:11:f1:a0:4a:f4:1c:9d:51:4b:c3:c6:a8:c0: 39:d5:16:8f:fb:b2:d3:41:42:a4:1d:3f:2a:3a:9e: bf:80:d7:8a:12:bb:fa:9a:c0:33:fe:ab:ff:66:52: 7a:de:64:1f:b8:29:a5:80:36:a4:cb:ff:41:70:3a: ce:cb:8b:8a:fb:8a:03:b1:47:2a:ba:71:d5:14:ab: 58:61:03:7d:09:72:01:51:07:98:62:ef:76:16:2f: 38:5d:e5:db:cd:3c:61:56:be:3b:f5:81:dc:ff:f2: 88:75:99:d5:a2:a7:6c:30:64:fc:3d:b9:09:1c:97: 5a:2c:23:16:15:a4:b6:3a:b1:aa:cb:94:13:87:bd: 98:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:82:81:EA:21:BD:21:AA:C4:A0:20:FE:AF:A1:A8:9E:28:14:94:AE X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136342e302f32322d3234203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.164.0/22 Signature Algorithm: sha256WithRSAEncryption 87:b7:b3:8a:58:71:6d:5a:65:0f:c2:ea:dc:e2:7c:2d:10:f4: f0:8c:dd:0b:79:80:18:f0:04:fd:89:3e:7c:ab:8e:6d:e4:12: f7:8b:21:77:94:65:ab:11:c4:42:88:a3:7d:3f:c8:d6:6d:19: 93:4f:cd:f4:6e:65:6e:cc:60:02:06:72:1b:b3:cf:78:2a:27: 8e:4d:29:75:0a:30:21:96:b6:79:73:d2:91:f0:86:b0:c7:49: d8:93:e4:8a:ce:b0:98:e7:9c:a1:cf:70:b6:b4:47:c7:c0:6c: ea:f9:85:27:ab:45:d6:e1:f9:24:5c:1c:29:e8:00:34:9c:aa: 1c:76:86:eb:5e:59:37:0d:71:b7:0c:7a:5e:bc:fd:0e:42:31: 6a:63:f4:70:41:3f:bf:c6:0a:cf:f9:c1:00:b3:73:1a:4e:80: ed:b4:1c:af:25:67:8b:11:95:fc:90:9f:29:11:90:97:84:de: e4:81:2c:ce:e2:fe:0a:90:a8:bd:6f:5d:66:d4:19:b2:c5:30: 29:ef:71:99:c9:1b:27:22:1d:fe:2d:c1:c5:dd:09:5a:40:3b: 17:6d:a7:62:2b:36:98:08:09:43:1e:b1:90:6a:46:fe:1a:27: 5e:eb:ac:a6:e7:80:3f:89:a7:5c:07:6f:a6:1d:03:c5:3b:d2: 60:b8:5b:51 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUWfUFWD7rjVaXdGUPaS8M+YWD2/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDFaFw0yNzA1MDcxNTI5NDFaMDMxMTAvBgNV BAMTKEJGODI4MUVBMjFCRDIxQUFDNEEwMjBGRUFGQTFBODlFMjgxNDk0QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+0nDV9rDgpr+FJv78jn4R2y0J TQ9wGvTfQDs/omnJwrNuQQjsW67GbTnnQBU/bNZe3/yETNa+hg/UsJyKcgzie3Bm evOzE/YRofVNOWXFWG240OGPBTMEXLG5TXdhOIV0OvJGsPfiYd+NRwePDMzegvC3 MyC0i9myEfGgSvQcnVFLw8aowDnVFo/7stNBQqQdPyo6nr+A14oSu/qawDP+q/9m UnreZB+4KaWANqTL/0FwOs7Li4r7igOxRyq6cdUUq1hhA30JcgFRB5hi73YWLzhd 5dvNPGFWvjv1gdz/8oh1mdWip2wwZPw9uQkcl1osIxYVpLY6sarLlBOHvZiDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUv4KB6iG9IarEoCD+r6GonigUlK4wHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY5Mzg5OTU5NTg3NDMwNS8wLzM0MzMyZTMyMzQz MDJlMzEzNjM0MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivwpDANBgkqhkiG9w0BAQsFAAOCAQEAh7ezilhxbVplD8Lq3OJ8LRD0 8IzdC3mAGPAE/Yk+fKuObeQS94shd5RlqxHEQoijfT/I1m0Zk0/N9G5lbsxgAgZy G7PPeConjk0pdQowIZa2eXPSkfCGsMdJ2JPkis6wmOecoc9wtrRHx8Bs6vmFJ6tF 1uH5JFwcKegANJyqHHaG615ZNw1xtwx6Xrz9DkIxamP0cEE/v8YKz/nBALNzGk6A 7bQcryVnixGV/JCfKRGQl4Te5IEszuL+CpCovW9dZtQZssUwKe9xmckbJyId/i3B xd0JWkA7F22nYis2mAgJQx6xkGpG/honXuuspueAP4mnXAdvph0DxTvSYLhbUQ== -----END CERTIFICATE-----Generated at Wed May 13 21:32:19 2026 by rpki-client