$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136382e302f32322d3234203d3e203535393939.roa File: 34332e3234302e3136382e302f32322d3234203d3e203535393939.roa (raw, json) Hash identifier: UlvDqd+sZsCM1IT0FLHFXuu0FBnnLVYjAhKlTjcyc6M= Subject key identifier: 2A:6A:53:EF:87:77:51:C0:A2:0E:4F:62:B2:FF:2B:55:6D:FF:A6:8E Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 3797149E5655A1DDAE10A630DCE2CD382BA0B49C Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136382e302f32322d3234203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:41 +0000 ROA not before: Fri 08 May 2026 15:24:41 +0000 ROA not after: Fri 07 May 2027 15:29:41 +0000 asID: 55999 IP address blocks: 43.240.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:97:14:9e:56:55:a1:dd:ae:10:a6:30:dc:e2:cd:38:2b:a0:b4:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:41 2026 GMT Not After : May 7 15:29:41 2027 GMT Subject: CN=2A6A53EF877751C0A20E4F62B2FF2B556DFFA68E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:50:a6:e2:8e:65:69:60:20:f0:95:63:e0:31: 97:9c:f3:4d:a6:7f:47:3f:ce:82:a7:25:fe:64:d1: 0e:d9:15:9a:63:08:d6:5d:5d:71:a7:f3:c6:ed:8d: 09:52:dc:f7:6b:26:7d:95:c6:20:64:5e:8a:e8:32: b2:6b:c9:ca:04:c7:2a:a9:20:06:e3:0d:8e:c6:60: 58:f2:88:0c:59:22:e5:0c:42:fb:68:a1:9b:e3:f6: 85:d9:4c:a8:8d:9e:85:25:bc:7b:aa:2a:d6:5d:b4: ee:37:0f:69:b8:fb:29:48:ba:1e:62:dd:a1:e1:dd: 45:94:d8:0a:f9:9b:12:db:89:27:5a:40:e0:7d:fe: ed:db:99:58:2e:e5:ed:77:c9:f9:ce:e1:8e:c1:62: 61:fb:18:25:c9:90:8d:26:c9:26:1f:cb:a1:5c:86: 51:57:97:fc:e7:ac:ae:d3:08:29:2d:56:be:17:cc: 3c:ba:0c:a3:2c:7d:53:0d:13:40:1f:de:9f:f7:98: 82:7d:66:09:e1:6f:b8:13:3a:de:5f:63:76:5f:b7: e4:ea:d8:30:c7:ab:86:97:e0:67:47:d4:cd:b4:ce: 4a:a9:25:c8:3d:b6:d7:4a:45:42:26:db:da:80:ae: 45:32:68:38:3b:b6:dd:07:67:20:ba:32:d3:e1:b7: 0e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6A:53:EF:87:77:51:C0:A2:0E:4F:62:B2:FF:2B:55:6D:FF:A6:8E X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3136382e302f32322d3234203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.168.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:68:e9:dd:b9:1a:8b:39:48:d7:9d:cf:85:39:69:a5:76:3f: 39:4b:b0:6d:ee:fa:e1:c5:77:39:77:aa:f8:d3:b9:4a:eb:b3: 30:6c:79:48:d7:bd:28:f5:79:b0:2f:b9:b7:3c:7f:25:b8:9e: dd:00:76:a4:13:f9:84:7b:54:cb:4c:b6:c8:2a:01:8f:ef:41: 9a:a8:45:ab:97:c8:58:2d:09:6d:05:fb:14:2f:b9:66:c8:22: c7:3e:5a:aa:16:a3:cd:df:ce:6d:e6:a6:f8:91:06:e4:93:18: 75:45:70:b9:be:6d:35:29:d5:6c:56:78:00:3e:17:cf:1a:88: cc:4c:eb:60:cc:70:7f:ce:33:03:01:31:d6:3e:20:4c:2f:05: 03:24:54:61:30:dc:80:11:26:41:c1:70:3b:59:a4:9b:22:3d: 11:1e:74:26:f5:86:5d:59:9c:fe:bf:dd:54:29:f5:e0:dc:78: 5c:2b:ad:7a:21:c0:7e:c8:e3:4a:28:3e:87:8d:3f:1e:82:f6: 76:e3:47:0e:cb:0e:ba:7e:69:41:63:93:03:4c:4f:40:52:42: a1:c1:bd:df:fd:05:b7:3f:0a:05:3a:ea:fc:b3:89:da:02:03: da:19:63:b2:3c:15:b5:21:5d:83:83:7e:5b:d1:a0:a3:91:ec: fb:37:c4:e8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUN5cUnlZVod2uEKYw3OLNOCugtJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDFaFw0yNzA1MDcxNTI5NDFaMDMxMTAvBgNV BAMTKDJBNkE1M0VGODc3NzUxQzBBMjBFNEY2MkIyRkYyQjU1NkRGRkE2OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNUKbijmVpYCDwlWPgMZec802m f0c/zoKnJf5k0Q7ZFZpjCNZdXXGn88btjQlS3PdrJn2VxiBkXoroMrJrycoExyqp IAbjDY7GYFjyiAxZIuUMQvtooZvj9oXZTKiNnoUlvHuqKtZdtO43D2m4+ylIuh5i 3aHh3UWU2Ar5mxLbiSdaQOB9/u3bmVgu5e13yfnO4Y7BYmH7GCXJkI0mySYfy6Fc hlFXl/znrK7TCCktVr4XzDy6DKMsfVMNE0Af3p/3mIJ9Zgnhb7gTOt5fY3Zft+Tq 2DDHq4aX4GdH1M20zkqpJcg9ttdKRUIm29qArkUyaDg7tt0HZyC6MtPhtw5ZAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUKmpT74d3UcCiDk9isv8rVW3/po4wHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY5Mzg5OTU5NTg3NDMwNS8wLzM0MzMyZTMyMzQz MDJlMzEzNjM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivwqDANBgkqhkiG9w0BAQsFAAOCAQEAX2jp3bkaizlI153PhTlppXY/ OUuwbe764cV3OXeq+NO5SuuzMGx5SNe9KPV5sC+5tzx/Jbie3QB2pBP5hHtUy0y2 yCoBj+9BmqhFq5fIWC0JbQX7FC+5Zsgixz5aqhajzd/Obeam+JEG5JMYdUVwub5t NSnVbFZ4AD4XzxqIzEzrYMxwf84zAwEx1j4gTC8FAyRUYTDcgBEmQcFwO1mkmyI9 ER50JvWGXVmc/r/dVCn14Nx4XCuteiHAfsjjSig+h40/HoL2duNHDssOun5pQWOT A0xPQFJCocG93/0Ftz8KBTrq/LOJ2gID2hljsjwVtSFdg4N+W9Ggo5Hs+zfE6A== -----END CERTIFICATE-----Generated at Wed May 13 21:32:18 2026 by rpki-client