$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3138302e302f32322d3234203d3e203535393939.roa File: 34332e3234302e3138302e302f32322d3234203d3e203535393939.roa (raw, json) Hash identifier: 6hVPd1lMuKUrEarp0zQuo5D+Zot2aNV8wE88G4h6rDc= Subject key identifier: 8D:A3:0A:F0:B0:25:76:F9:C4:4C:6F:8D:25:57:8E:49:B7:C9:EA:D2 Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 20D71EBF54A51DF113AC9AC277CA2E8BC86F0EFC Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3138302e302f32322d3234203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:42 +0000 ROA not before: Fri 08 May 2026 15:24:42 +0000 ROA not after: Fri 07 May 2027 15:29:42 +0000 asID: 55999 IP address blocks: 43.240.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d7:1e:bf:54:a5:1d:f1:13:ac:9a:c2:77:ca:2e:8b:c8:6f:0e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:42 2026 GMT Not After : May 7 15:29:42 2027 GMT Subject: CN=8DA30AF0B02576F9C44C6F8D25578E49B7C9EAD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:63:bc:df:66:36:c0:6f:53:79:48:16:c3:e3: 31:61:6a:73:8e:b9:8d:66:08:13:1b:6f:eb:df:4e: f8:00:19:00:1c:f4:ae:1c:61:22:03:e0:61:6e:aa: c7:ab:d6:c9:47:de:40:3f:68:cd:d7:31:1b:c5:d2: 1c:ad:ee:a9:e4:a0:bb:56:d9:26:35:44:38:20:58: af:fa:29:b2:35:54:cf:4d:99:5f:37:26:cf:e8:2e: 64:70:12:07:b5:50:df:af:d8:5c:52:ed:24:8b:42: 8e:97:0d:2d:a0:ac:3c:59:cc:12:81:be:77:e3:3a: f9:77:50:8d:bd:a3:1c:c9:a9:0a:18:63:b8:23:62: de:b5:fa:3c:9a:d3:2a:c6:8b:6b:25:9b:d3:ad:b1: b4:d2:2d:c9:67:ba:67:a4:15:80:02:35:71:cf:0e: 2e:a7:e2:c6:65:fb:94:44:af:5c:81:38:ad:02:b8: 4c:ce:17:e7:22:81:8a:f6:a6:12:88:ff:d3:ba:6d: 59:c6:52:3d:41:ae:7e:91:3d:ff:0f:67:00:50:68: 14:92:8a:8c:e1:44:90:53:a1:c3:af:92:55:6e:8f: a2:f7:1f:42:d8:9c:05:52:92:c8:5a:d2:3f:ba:18: 0e:c6:09:c5:54:8e:a0:1f:b4:59:34:a6:b3:f4:cd: f4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A3:0A:F0:B0:25:76:F9:C4:4C:6F:8D:25:57:8E:49:B7:C9:EA:D2 X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/34332e3234302e3138302e302f32322d3234203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.180.0/22 Signature Algorithm: sha256WithRSAEncryption cc:f6:cb:88:50:44:1d:e8:bf:6b:e5:38:7d:42:20:28:13:b9: cc:f2:12:8f:4a:f5:90:29:14:fe:56:92:74:15:9c:5c:8b:48: fe:7f:e4:90:72:3b:88:8d:24:3c:eb:6f:99:28:98:b4:03:ad: db:e2:77:07:0c:23:97:26:69:c5:43:a0:b9:3a:a5:78:19:d0: e3:6c:3d:30:4a:65:ce:0c:7e:ab:07:ee:53:7c:d9:4d:e6:31: 03:9c:4e:32:43:0d:7a:9b:b5:9d:d5:91:02:95:97:10:12:3d: 68:04:99:e1:14:be:19:65:e8:5e:6b:2d:da:21:16:62:6b:0e: 1d:bb:92:51:d7:ff:76:b1:7c:91:05:af:2b:b5:37:37:ab:a2: 28:12:5e:c1:a2:2a:0e:8a:7b:a8:0d:fc:25:6f:0c:75:78:bf: 9d:4a:63:6b:f6:2f:a9:b1:45:75:b8:e4:fc:ad:53:fa:80:98: 34:f3:3a:35:e0:58:c1:93:80:61:fe:75:42:b8:6e:c6:20:a2: 39:a9:c1:43:d4:3e:73:45:ff:4a:f8:1b:6e:2a:07:3c:2f:00: d0:ed:a9:8e:75:4b:fe:3f:5b:d1:c7:1b:61:a0:51:e2:51:b1: 62:3e:ae:74:d5:a9:f3:07:ea:2b:46:90:5b:3d:42:c0:e0:f8: 7e:ff:72:a6 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUINcev1SlHfETrJrCd8oui8hvDvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDJaFw0yNzA1MDcxNTI5NDJaMDMxMTAvBgNV BAMTKDhEQTMwQUYwQjAyNTc2RjlDNDRDNkY4RDI1NTc4RTQ5QjdDOUVBRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxY7zfZjbAb1N5SBbD4zFhanOO uY1mCBMbb+vfTvgAGQAc9K4cYSID4GFuqser1slH3kA/aM3XMRvF0hyt7qnkoLtW 2SY1RDggWK/6KbI1VM9NmV83Js/oLmRwEge1UN+v2FxS7SSLQo6XDS2grDxZzBKB vnfjOvl3UI29oxzJqQoYY7gjYt61+jya0yrGi2slm9OtsbTSLclnumekFYACNXHP Di6n4sZl+5REr1yBOK0CuEzOF+cigYr2phKI/9O6bVnGUj1Brn6RPf8PZwBQaBSS iozhRJBTocOvklVuj6L3H0LYnAVSksha0j+6GA7GCcVUjqAftFk0prP0zfTFAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUjaMK8LAldvnETG+NJVeOSbfJ6tIwHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjY5Mzg5OTU5NTg3NDMwNS8wLzM0MzMyZTMyMzQz MDJlMzEzODMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivwtDANBgkqhkiG9w0BAQsFAAOCAQEAzPbLiFBEHei/a+U4fUIgKBO5 zPISj0r1kCkU/laSdBWcXItI/n/kkHI7iI0kPOtvmSiYtAOt2+J3BwwjlyZpxUOg uTqleBnQ42w9MEplzgx+qwfuU3zZTeYxA5xOMkMNepu1ndWRApWXEBI9aASZ4RS+ GWXoXmst2iEWYmsOHbuSUdf/drF8kQWvK7U3N6uiKBJewaIqDop7qA38JW8MdXi/ nUpja/YvqbFFdbjk/K1T+oCYNPM6NeBYwZOAYf51QrhuxiCiOanBQ9Q+c0X/Svgb bioHPC8A0O2pjnVL/j9b0ccbYaBR4lGxYj6udNWp8wfqK0aQWz1CwOD4fv9ypg== -----END CERTIFICATE-----Generated at Wed May 13 21:32:19 2026 by rpki-client