$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1104608188126199815/0/34332e3235342e3136382e302f32322d3232203d3e20313331353635.roa File: 34332e3235342e3136382e302f32322d3232203d3e20313331353635.roa (raw, json) Hash identifier: MfiLKwC97r6IDlGtJuLI5ZnoR+6BkyMB1qUC1zGkb38= Subject key identifier: AD:63:0A:4E:86:36:64:BF:DF:11:96:EB:FC:E5:A2:8D:C4:6E:7D:82 Certificate issuer: /CN=2627A556D37BF3696EF5EA9B0FF28A6155EA0AA6 Certificate serial: 09A37962D9ECED61C1D1100FDEAD3122B75F8B66 Authority key identifier: 26:27:A5:56:D3:7B:F3:69:6E:F5:EA:9B:0F:F2:8A:61:55:EA:0A:A6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2627A556D37BF3696EF5EA9B0FF28A6155EA0AA6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1104608188126199815/0/34332e3235342e3136382e302f32322d3232203d3e20313331353635.roa Signing time: Wed 13 May 2026 00:48:38 +0000 ROA not before: Wed 13 May 2026 00:43:38 +0000 ROA not after: Wed 12 May 2027 00:48:38 +0000 asID: 131565 IP address blocks: 43.254.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1104608188126199815/0/2627A556D37BF3696EF5EA9B0FF28A6155EA0AA6.crl rsync://rpki-rps.cnnic.cn/repo/A1104608188126199815/0/2627A556D37BF3696EF5EA9B0FF28A6155EA0AA6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2627A556D37BF3696EF5EA9B0FF28A6155EA0AA6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a3:79:62:d9:ec:ed:61:c1:d1:10:0f:de:ad:31:22:b7:5f:8b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2627A556D37BF3696EF5EA9B0FF28A6155EA0AA6 Validity Not Before: May 13 00:43:38 2026 GMT Not After : May 12 00:48:38 2027 GMT Subject: CN=AD630A4E863664BFDF1196EBFCE5A28DC46E7D82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8f:38:75:27:4d:ee:ac:ee:16:5e:87:51:70: 30:1e:31:32:db:68:71:63:8a:e7:40:71:05:b6:83: 27:f0:10:1c:64:5d:95:78:71:66:3b:78:92:c1:78: 56:71:54:54:69:73:1a:05:e3:0a:25:9e:2a:ac:00: ea:79:86:01:e9:18:3b:9f:7b:f5:1b:ed:8e:6e:25: 26:a8:fd:f8:bd:7d:7b:2f:15:9b:b6:e7:b9:46:66: 98:92:d0:6f:ca:51:79:b0:8d:60:c1:ac:de:28:04: 1e:6b:5d:cc:8a:0c:04:1f:a2:f7:15:36:85:f9:d7: 56:cc:13:09:b5:7e:19:2c:bc:76:5b:97:c5:d4:d2: c6:67:e6:bc:c0:15:9d:da:67:6f:31:bd:5e:ae:87: 5e:ea:1f:14:d5:0b:0b:31:40:b0:5c:2e:e0:3e:f2: 50:f4:6d:6b:ee:73:1e:b0:71:69:f3:50:01:0f:3c: 2a:ae:bf:e5:b2:25:ee:ee:d7:c4:67:f2:a2:e6:eb: c3:08:e1:32:c6:3b:fe:98:9b:8d:f1:4a:7e:53:44: ac:cf:64:03:eb:93:1f:be:e0:71:79:98:d6:54:9e: d0:50:43:d8:35:df:86:dd:34:26:bc:54:f8:91:7c: 54:6f:bf:63:28:bc:cf:10:fc:57:b7:eb:c1:bb:b1: 5a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:63:0A:4E:86:36:64:BF:DF:11:96:EB:FC:E5:A2:8D:C4:6E:7D:82 X509v3 Authority Key Identifier: keyid:26:27:A5:56:D3:7B:F3:69:6E:F5:EA:9B:0F:F2:8A:61:55:EA:0A:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1104608188126199815/0/2627A556D37BF3696EF5EA9B0FF28A6155EA0AA6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2627A556D37BF3696EF5EA9B0FF28A6155EA0AA6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1104608188126199815/0/34332e3235342e3136382e302f32322d3232203d3e20313331353635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.168.0/22 Signature Algorithm: sha256WithRSAEncryption a2:22:7e:f6:18:f0:22:48:aa:e5:62:33:f5:d2:ff:5d:69:0a: f6:9c:c6:6a:6e:3a:5d:31:a5:5e:d5:91:1e:a5:4e:85:1e:42: 17:e1:fe:53:84:0c:b8:75:2f:05:f1:cf:58:f1:f7:3e:11:78: d6:5a:7f:3c:72:f4:50:59:c7:a1:46:8b:76:fc:3f:80:ab:a2: 39:6f:0a:9f:bd:29:55:7a:ed:fa:4e:a8:69:70:d4:eb:74:4c: a4:ad:cd:1a:b5:00:7b:58:fc:dd:00:37:c9:6e:a8:4b:5a:38: 11:11:79:5f:2d:35:71:60:6d:de:15:3d:80:b6:f9:19:a2:9a: 70:d5:34:90:8d:46:59:72:27:e4:db:04:ec:ed:92:18:97:66: 02:47:61:6c:97:1c:bd:ef:c8:ff:bd:7b:43:f4:04:88:7d:a9: 6a:13:7a:b1:2f:c6:4b:21:39:f3:9b:44:da:fe:42:02:13:c7: 65:7f:71:ed:17:1d:9c:2c:2c:05:80:4d:30:d9:12:29:17:82: c9:4c:c5:e2:7e:6d:31:0a:ad:24:97:e8:b1:6b:c4:cc:32:32: c0:fe:77:f7:d4:3d:29:14:9b:3b:32:64:b3:dd:6b:49:68:44: f9:07:3f:6d:e1:e7:18:35:34:34:ab:52:a1:a1:2a:5d:bf:ce: 52:95:84:cc -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCaN5Ytns7WHB0RAP3q0xIrdfi2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjYyN0E1NTZEMzdCRjM2OTZFRjVFQTlCMEZGMjhBNjE1 NUVBMEFBNjAeFw0yNjA1MTMwMDQzMzhaFw0yNzA1MTIwMDQ4MzhaMDMxMTAvBgNV BAMTKEFENjMwQTRFODYzNjY0QkZERjExOTZFQkZDRTVBMjhEQzQ2RTdEODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+jzh1J03urO4WXodRcDAeMTLb aHFjiudAcQW2gyfwEBxkXZV4cWY7eJLBeFZxVFRpcxoF4wolniqsAOp5hgHpGDuf e/Ub7Y5uJSao/fi9fXsvFZu257lGZpiS0G/KUXmwjWDBrN4oBB5rXcyKDAQfovcV NoX511bMEwm1fhksvHZbl8XU0sZn5rzAFZ3aZ28xvV6uh17qHxTVCwsxQLBcLuA+ 8lD0bWvucx6wcWnzUAEPPCquv+WyJe7u18Rn8qLm68MI4TLGO/6Ym43xSn5TRKzP ZAPrkx++4HF5mNZUntBQQ9g134bdNCa8VPiRfFRvv2MovM8Q/Fe368G7sVpPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUrWMKToY2ZL/fEZbr/OWijcRufYIwHwYDVR0j BBgwFoAUJielVtN782lu9eqbD/KKYVXqCqYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NDYwODE4ODEyNjE5OTgxNS8wLzI2MjdBNTU2RDM3QkYzNjk2RUY1RUE5QjBGRjI4 QTYxNTVFQTBBQTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjYyN0E1NTZEMzdCRjM2OTZFRjVFQTlCMEZGMjhBNjE1NUVBMEFBNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDQ2MDgxODgxMjYxOTk4MTUvMC8zNDMzMmUzMjM1 MzQyZTMxMzYzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzMzMTM1MzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAiv+qDANBgkqhkiG9w0BAQsFAAOCAQEAoiJ+9hjwIkiq5WIz9dL/ XWkK9pzGam46XTGlXtWRHqVOhR5CF+H+U4QMuHUvBfHPWPH3PhF41lp/PHL0UFnH oUaLdvw/gKuiOW8Kn70pVXrt+k6oaXDU63RMpK3NGrUAe1j83QA3yW6oS1o4ERF5 Xy01cWBt3hU9gLb5GaKacNU0kI1GWXIn5NsE7O2SGJdmAkdhbJccve/I/717Q/QE iH2pahN6sS/GSyE585tE2v5CAhPHZX9x7RcdnCwsBYBNMNkSKReCyUzF4n5tMQqt JJfosWvEzDIywP5399Q9KRSbOzJks91rSWhE+Qc/beHnGDU0NKtSoaEqXb/OUpWE zA== -----END CERTIFICATE-----Generated at Wed May 13 20:55:17 2026 by rpki-client