$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3137362e302f32322d3234203d3e203535393939.roa File: 34332e3234302e3137362e302f32322d3234203d3e203535393939.roa (raw, json) Hash identifier: R0KVCUcJsMhiZNoSh/iH+0lgr3+OS5OBI1etaOPAPR0= Subject key identifier: 58:F6:F0:4C:FE:D3:B3:13:C0:AE:2B:03:3C:9D:6C:81:61:02:76:2A Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 756626BDA22FF497F2DFD82249EEAA2D9C4DF161 Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3137362e302f32322d3234203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:42 +0000 ROA not before: Fri 08 May 2026 15:24:42 +0000 ROA not after: Fri 07 May 2027 15:29:42 +0000 asID: 55999 IP address blocks: 43.240.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:66:26:bd:a2:2f:f4:97:f2:df:d8:22:49:ee:aa:2d:9c:4d:f1:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:42 2026 GMT Not After : May 7 15:29:42 2027 GMT Subject: CN=58F6F04CFED3B313C0AE2B033C9D6C816102762A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:0d:f4:6f:da:fb:1f:74:93:0b:13:38:76:6f: d4:ef:a6:99:7d:ae:74:4a:80:73:05:50:e6:8b:76: 84:3b:8e:f9:29:21:86:69:86:be:0b:86:57:41:f9: c5:9c:b3:d8:af:3b:eb:cf:39:81:de:4d:52:18:2b: 4d:b8:5e:60:29:f3:45:3e:e3:e1:da:16:f5:a9:6c: cd:ce:b6:95:51:f4:f5:2b:6f:89:2e:1a:65:ff:30: ef:9f:9f:39:1d:83:ec:7c:77:ea:57:ec:58:99:e7: 6a:fd:9a:4b:73:95:0a:3f:0f:9f:56:fa:30:fa:a5: 20:7a:5b:4e:21:a8:71:25:0c:9f:ea:13:fa:56:11: 2d:a4:45:65:c5:78:23:e9:ee:31:a6:88:1c:82:08: 9b:79:c0:60:1d:f5:52:e3:00:91:29:c8:8d:fe:42: 79:b8:f5:5f:55:a7:9b:6b:cf:a6:eb:d2:12:dc:c7: 08:e2:bd:0d:ab:65:c9:0c:55:a8:5f:8c:64:12:22: 2d:1a:77:37:75:d4:a0:97:bc:f6:7d:eb:b0:db:b3: e0:f9:ec:3d:77:05:be:d2:06:6c:8b:61:46:2a:b2: 0a:2b:21:fa:db:30:a0:37:86:8a:4a:b5:34:8c:a0: 52:f2:26:61:6e:07:4e:ea:39:52:84:f4:f9:39:87: d4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F6:F0:4C:FE:D3:B3:13:C0:AE:2B:03:3C:9D:6C:81:61:02:76:2A X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3137362e302f32322d3234203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.176.0/22 Signature Algorithm: sha256WithRSAEncryption 38:4e:dc:a2:ed:71:a1:2f:28:6e:93:21:d6:1a:fc:c0:8c:52: 86:82:a9:fe:e3:aa:29:95:f5:76:fd:5b:f0:aa:f6:3a:ff:1d: c2:10:8b:94:f9:a1:4f:d2:39:d4:01:74:ea:d4:64:02:1c:d0: c8:33:83:f3:48:c7:44:4e:e9:8d:67:ce:08:6a:38:90:0d:9c: ed:05:6f:0e:0b:ae:1e:77:dc:2e:d2:3f:99:fa:04:9d:c7:9f: b9:d9:1a:83:d0:2c:d6:89:65:7b:78:04:f1:fd:48:d1:e3:d9: 82:17:bf:9f:69:cc:3b:7c:69:15:b4:d6:b4:f0:f9:ae:27:1b: 5e:a3:65:1f:c0:d9:81:86:51:df:b6:5a:53:82:27:d8:9e:5c: 32:e8:44:92:14:7f:90:17:c6:0c:4e:62:2f:c2:23:e6:89:27: b7:29:b9:41:82:e9:3f:ab:9b:06:59:39:94:aa:fd:f3:76:9f: 33:13:f6:63:f1:4a:23:12:55:52:5b:36:43:d2:cd:6b:d4:73: a1:c8:3f:ab:8f:7f:4b:99:fd:8f:9e:be:47:43:95:32:45:bf: fe:57:94:de:9b:bb:7c:ab:a9:d8:a8:31:f3:b5:02:11:71:1a: bf:27:54:61:ab:bc:ca:b1:67:58:e3:51:31:a2:ae:53:1f:57: e8:d6:da:83 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUdWYmvaIv9Jfy39giSe6qLZxN8WEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDJaFw0yNzA1MDcxNTI5NDJaMDMxMTAvBgNV BAMTKDU4RjZGMDRDRkVEM0IzMTNDMEFFMkIwMzNDOUQ2QzgxNjEwMjc2MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGDfRv2vsfdJMLEzh2b9Tvppl9 rnRKgHMFUOaLdoQ7jvkpIYZphr4LhldB+cWcs9ivO+vPOYHeTVIYK024XmAp80U+ 4+HaFvWpbM3OtpVR9PUrb4kuGmX/MO+fnzkdg+x8d+pX7FiZ52r9mktzlQo/D59W +jD6pSB6W04hqHElDJ/qE/pWES2kRWXFeCPp7jGmiByCCJt5wGAd9VLjAJEpyI3+ Qnm49V9Vp5trz6br0hLcxwjivQ2rZckMVahfjGQSIi0adzd11KCXvPZ967Dbs+D5 7D13Bb7SBmyLYUYqsgorIfrbMKA3hopKtTSMoFLyJmFuB07qOVKE9Pk5h9TvAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUWPbwTP7TsxPArisDPJ1sgWECdiowHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY5Mzg5OTU5NTg3NDMwNS8wLzM0MzMyZTMyMzQz MDJlMzEzNzM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivwsDANBgkqhkiG9w0BAQsFAAOCAQEAOE7cou1xoS8obpMh1hr8wIxS hoKp/uOqKZX1dv1b8Kr2Ov8dwhCLlPmhT9I51AF06tRkAhzQyDOD80jHRE7pjWfO CGo4kA2c7QVvDguuHnfcLtI/mfoEncefudkag9As1olle3gE8f1I0ePZghe/n2nM O3xpFbTWtPD5ricbXqNlH8DZgYZR37ZaU4In2J5cMuhEkhR/kBfGDE5iL8Ij5okn tym5QYLpP6ubBlk5lKr983afMxP2Y/FKIxJVUls2Q9LNa9Rzocg/q49/S5n9j56+ R0OVMkW//leU3pu7fKup2Kgx87UCEXEavydUYau8yrFnWONRMaKuUx9X6Nbagw== -----END CERTIFICATE-----Generated at Wed May 13 21:32:17 2026 by rpki-client