$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1105058072943919117/0/34332e3234322e3139322e302f32322d3232203d3e20313436383137.roa File: 34332e3234322e3139322e302f32322d3232203d3e20313436383137.roa (raw, json) Hash identifier: yBWAqrtaZRelBnkEwzYYZGVkwyiuYbdfwpP6U5aYUX8= Subject key identifier: 21:CF:5E:9D:72:86:D6:97:24:48:F7:1C:23:8C:CF:D5:EE:43:45:58 Certificate issuer: /CN=825E5C73B7552363E0F92261ADC637585EBE0362 Certificate serial: 6F54C20B85FEE1636B27861F570A49F83F88691E Authority key identifier: 82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/34332e3234322e3139322e302f32322d3232203d3e20313436383137.roa Signing time: Fri 08 May 2026 09:34:30 +0000 ROA not before: Fri 08 May 2026 09:29:30 +0000 ROA not after: Fri 07 May 2027 09:34:30 +0000 asID: 146817 IP address blocks: 43.242.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:54:c2:0b:85:fe:e1:63:6b:27:86:1f:57:0a:49:f8:3f:88:69:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=825E5C73B7552363E0F92261ADC637585EBE0362 Validity Not Before: May 8 09:29:30 2026 GMT Not After : May 7 09:34:30 2027 GMT Subject: CN=21CF5E9D7286D6972448F71C238CCFD5EE434558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1e:14:c4:3e:1c:cc:dd:13:e2:dc:2e:27:2b: 98:01:3b:38:d1:44:89:47:0e:61:37:dc:39:5a:51: 23:b3:4c:f7:f2:73:a1:68:9a:d9:b5:4e:cc:07:54: 3f:2c:2f:66:fb:d7:8a:73:f0:0a:f5:d8:d0:55:f4: ad:a3:67:66:a4:df:0f:ce:51:cc:a7:17:42:89:b1: 79:6e:00:53:d2:c2:9e:9f:0e:e1:f9:0c:8d:e8:53: 09:fa:56:2d:3a:84:78:9b:d4:c3:57:2f:6d:6c:98: 15:12:62:99:30:93:57:b1:e3:e5:2f:41:be:25:f6: 29:d3:71:86:d2:ef:66:f0:3a:e4:49:e2:95:bd:db: c2:dd:d7:00:43:50:27:db:67:1b:df:e2:50:42:d2: 39:29:9d:bd:56:bb:9f:27:04:7b:29:e6:3b:7f:d0: 49:1a:22:80:a9:ef:72:02:04:57:86:73:3b:10:35: 92:97:6d:0d:26:df:f8:00:b3:4d:2d:f6:6f:b6:b8: 63:63:7e:34:71:d5:99:9c:01:a6:3f:9d:1c:3a:bf: 75:68:e2:d2:08:d3:05:61:3f:f0:4e:c5:77:ff:de: 40:c6:d3:05:84:f8:45:ad:f3:19:c0:f1:ff:c7:2f: b9:72:1a:b2:77:6c:ea:44:25:36:e2:c2:30:4e:20: ce:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CF:5E:9D:72:86:D6:97:24:48:F7:1C:23:8C:CF:D5:EE:43:45:58 X509v3 Authority Key Identifier: keyid:82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/34332e3234322e3139322e302f32322d3232203d3e20313436383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.192.0/22 Signature Algorithm: sha256WithRSAEncryption 51:7c:3b:23:46:5f:ee:19:9c:dd:cc:6c:cf:32:e2:ac:df:d9: 71:f1:c2:21:70:5a:da:71:13:88:4d:7c:a7:39:05:16:d3:ba: 23:ad:30:01:42:92:e9:5d:dd:98:67:db:33:2f:f5:5d:b9:e3: 1c:46:f6:94:48:0b:3f:ca:95:af:28:11:e2:55:2b:d6:3e:08: af:36:77:ee:68:dd:f7:59:ee:25:32:99:27:d9:17:35:e8:1d: e1:c0:f9:9a:af:0d:d3:34:40:e7:0e:bd:75:66:e7:38:f8:0c: d7:47:bb:b0:49:27:de:a4:2c:da:07:19:38:23:81:c0:eb:41: c5:cd:1b:0f:8e:db:47:00:0f:e6:64:4d:d5:34:9b:b1:df:84: aa:25:6d:e7:0a:c4:80:ec:69:26:21:ae:9f:aa:d7:a9:c4:35: e6:1f:c7:6b:a5:ca:1f:a3:84:7c:84:d5:92:96:b4:dc:a3:a8: 98:3a:ff:d6:a5:25:86:3c:52:c6:59:56:3b:0d:38:bf:9a:b0: a6:56:f8:2a:22:1e:14:46:33:d9:84:8f:f3:ee:fa:7e:ed:08: d2:ad:71:ed:25:aa:57:14:f0:24:69:5c:2b:49:64:2d:fd:9e: d2:4b:17:a3:01:10:e4:a5:e5:25:d4:c2:7c:e5:61:53:f1:f1: bb:5a:10:44 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUb1TCC4X+4WNrJ4YfVwpJ+D+IaR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1 RUJFMDM2MjAeFw0yNjA1MDgwOTI5MzBaFw0yNzA1MDcwOTM0MzBaMDMxMTAvBgNV BAMTKDIxQ0Y1RTlENzI4NkQ2OTcyNDQ4RjcxQzIzOENDRkQ1RUU0MzQ1NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFHhTEPhzM3RPi3C4nK5gBOzjR RIlHDmE33DlaUSOzTPfyc6Fomtm1TswHVD8sL2b714pz8Ar12NBV9K2jZ2ak3w/O UcynF0KJsXluAFPSwp6fDuH5DI3oUwn6Vi06hHib1MNXL21smBUSYpkwk1ex4+Uv Qb4l9inTcYbS72bwOuRJ4pW928Ld1wBDUCfbZxvf4lBC0jkpnb1Wu58nBHsp5jt/ 0EkaIoCp73ICBFeGczsQNZKXbQ0m3/gAs00t9m+2uGNjfjRx1ZmcAaY/nRw6v3Vo 4tII0wVhP/BOxXf/3kDG0wWE+EWt8xnA8f/HL7lyGrJ3bOpEJTbiwjBOIM67AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUIc9enXKG1pckSPccI4zP1e5DRVgwHwYDVR0j BBgwFoAUgl5cc7dVI2Pg+SJhrcY3WF6+A2IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NTA1ODA3Mjk0MzkxOTExNy8wLzgyNUU1QzczQjc1NTIzNjNFMEY5MjI2MUFEQzYz NzU4NUVCRTAzNjIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1RUJFMDM2Mi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTExMDUwNTgwNzI5NDM5MTkxMTcvMC8zNDMzMmUzMjM0 MzIyZTMxMzkzMjJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMxMzQzNjM4MzEzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAivywDANBgkqhkiG9w0BAQsFAAOCAQEAUXw7I0Zf7hmc3cxszzLi rN/ZcfHCIXBa2nETiE18pzkFFtO6I60wAUKS6V3dmGfbMy/1XbnjHEb2lEgLP8qV rygR4lUr1j4IrzZ37mjd91nuJTKZJ9kXNegd4cD5mq8N0zRA5w69dWbnOPgM10e7 sEkn3qQs2gcZOCOBwOtBxc0bD47bRwAP5mRN1TSbsd+EqiVt5wrEgOxpJiGun6rX qcQ15h/Ha6XKH6OEfITVkpa03KOomDr/1qUlhjxSxllWOw04v5qwplb4KiIeFEYz 2YSP8+76fu0I0q1x7SWqVxTwJGlcK0lkLf2e0ksXowEQ5KXlJdTCfOVhU/Hxu1oQ RA== -----END CERTIFICATE-----Generated at Wed May 13 20:55:18 2026 by rpki-client