$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1105058072943919117/0/34332e3234382e332e302f32342d3234203d3e20313436383137.roa File: 34332e3234382e332e302f32342d3234203d3e20313436383137.roa (raw, json) Hash identifier: d0vwJeTmCU4zsy2KqtxTsSGu4eLNwoaiDds8UA+6/BI= Subject key identifier: 4B:EF:1C:74:9F:61:C4:64:51:E4:7A:5A:B7:10:DE:ED:A1:D9:4A:FB Certificate issuer: /CN=825E5C73B7552363E0F92261ADC637585EBE0362 Certificate serial: 1A8EEEF2CA0B8BEB3C2BDCB220DD9F4FBA8D9DEC Authority key identifier: 82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/34332e3234382e332e302f32342d3234203d3e20313436383137.roa Signing time: Fri 08 May 2026 09:34:29 +0000 ROA not before: Fri 08 May 2026 09:29:29 +0000 ROA not after: Fri 07 May 2027 09:34:29 +0000 asID: 146817 IP address blocks: 43.248.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:8e:ee:f2:ca:0b:8b:eb:3c:2b:dc:b2:20:dd:9f:4f:ba:8d:9d:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=825E5C73B7552363E0F92261ADC637585EBE0362 Validity Not Before: May 8 09:29:29 2026 GMT Not After : May 7 09:34:29 2027 GMT Subject: CN=4BEF1C749F61C46451E47A5AB710DEEDA1D94AFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:23:6d:6b:66:26:b8:f6:66:9e:0f:32:e8:cc: 18:f3:72:41:9e:f2:c3:68:57:8b:4c:6b:40:81:82: 48:d8:29:b8:2d:61:9d:10:65:03:48:c4:13:df:bf: 2b:6d:f0:05:21:44:4e:7f:73:3a:6d:65:1e:1e:71: 32:04:3a:be:f0:94:01:47:be:37:16:ac:ec:a7:aa: ed:b7:90:d3:ba:81:de:59:e9:fa:b4:73:57:26:47: eb:05:00:b3:af:ab:8b:2a:a4:94:08:40:ef:34:5f: 19:cd:61:46:d2:43:4b:3e:29:33:e0:75:2a:60:21: 69:10:ff:87:a5:8c:12:cc:d5:92:22:7d:50:5b:75: 24:20:e8:61:a7:26:c1:d9:0c:5a:4d:8c:15:a9:93: 1d:dd:12:6b:79:9d:09:ef:05:6a:b4:4e:78:b1:36: e0:85:37:2b:e9:33:fc:01:71:41:e8:3e:62:2b:c2: b4:a8:a2:a3:4c:c4:be:40:8c:e0:a6:ab:98:b2:84: d1:24:4b:69:0c:28:6a:d3:70:00:14:86:8a:a9:8e: 74:62:35:86:b4:84:c9:78:18:a2:94:fa:84:f4:ff: c7:43:ef:28:b0:7a:03:c2:3c:37:16:b5:dc:bc:09: 75:ce:c6:69:7c:6c:4d:61:a1:0c:39:66:9f:49:e1: aa:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:EF:1C:74:9F:61:C4:64:51:E4:7A:5A:B7:10:DE:ED:A1:D9:4A:FB X509v3 Authority Key Identifier: keyid:82:5E:5C:73:B7:55:23:63:E0:F9:22:61:AD:C6:37:58:5E:BE:03:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/825E5C73B7552363E0F92261ADC637585EBE0362.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/825E5C73B7552363E0F92261ADC637585EBE0362.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1105058072943919117/0/34332e3234382e332e302f32342d3234203d3e20313436383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.3.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:34:b5:c2:7f:34:af:6e:fe:46:12:18:63:07:c6:77:4c:12: 41:e0:9d:23:ae:f5:ac:a4:fe:5b:7c:e8:de:07:c5:38:77:4d: ad:94:54:33:2f:c6:6d:17:d2:c7:2c:c6:5c:9f:de:dd:42:f1: 17:82:9c:77:52:aa:c9:67:91:41:3b:71:0b:f9:38:33:c5:7e: ca:7d:82:a7:69:59:cb:a7:6e:81:48:c1:8b:c8:9a:18:1b:a7: a0:df:0e:64:54:dc:eb:66:8c:79:50:64:0f:07:ec:b6:e6:e8: b4:5a:91:b8:fd:61:25:c5:66:87:7c:35:ad:f8:2b:1f:82:07: 82:14:4d:cb:a6:bb:c9:aa:e0:02:a0:6e:76:f9:02:44:55:53: 13:52:e2:7f:d5:24:f2:e6:4e:08:0f:e9:90:3a:57:10:65:cf: 46:f1:d0:b4:55:71:9c:3f:d8:46:96:1a:c8:20:6f:28:ea:e2: 18:cc:5b:6c:c6:82:67:e3:99:39:d7:69:8a:18:8e:c1:cc:92: 85:9f:af:e5:4c:ed:0f:4e:17:46:c8:78:85:30:8f:68:c5:9c: 40:7d:b5:c1:49:f5:95:e2:ed:f0:48:a4:bf:92:28:b0:76:d0: 6a:db:e5:64:17:e0:06:e5:78:2d:18:9c:91:8f:8e:55:c1:07: 85:1c:9e:97 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUGo7u8soLi+s8K9yyIN2fT7qNnewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1 RUJFMDM2MjAeFw0yNjA1MDgwOTI5MjlaFw0yNzA1MDcwOTM0MjlaMDMxMTAvBgNV BAMTKDRCRUYxQzc0OUY2MUM0NjQ1MUU0N0E1QUI3MTBERUVEQTFEOTRBRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdI21rZia49maeDzLozBjzckGe 8sNoV4tMa0CBgkjYKbgtYZ0QZQNIxBPfvytt8AUhRE5/czptZR4ecTIEOr7wlAFH vjcWrOynqu23kNO6gd5Z6fq0c1cmR+sFALOvq4sqpJQIQO80XxnNYUbSQ0s+KTPg dSpgIWkQ/4eljBLM1ZIifVBbdSQg6GGnJsHZDFpNjBWpkx3dEmt5nQnvBWq0Tnix NuCFNyvpM/wBcUHoPmIrwrSooqNMxL5AjOCmq5iyhNEkS2kMKGrTcAAUhoqpjnRi NYa0hMl4GKKU+oT0/8dD7yiwegPCPDcWtdy8CXXOxml8bE1hoQw5Zp9J4ao3AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUS+8cdJ9hxGRR5HpatxDe7aHZSvswHwYDVR0j BBgwFoAUgl5cc7dVI2Pg+SJhrcY3WF6+A2IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NTA1ODA3Mjk0MzkxOTExNy8wLzgyNUU1QzczQjc1NTIzNjNFMEY5MjI2MUFEQzYz NzU4NUVCRTAzNjIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODI1RTVDNzNCNzU1MjM2M0UwRjkyMjYxQURDNjM3NTg1RUJFMDM2Mi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA1MDU4MDcyOTQzOTE5MTE3LzAvMzQzMzJlMzIzNDM4 MmUzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzQzNjM4MzEzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACv4AzANBgkqhkiG9w0BAQsFAAOCAQEATDS1wn80r27+RhIYYwfGd0wSQeCd I671rKT+W3zo3gfFOHdNrZRUMy/GbRfSxyzGXJ/e3ULxF4Kcd1KqyWeRQTtxC/k4 M8V+yn2Cp2lZy6dugUjBi8iaGBunoN8OZFTc62aMeVBkDwfstubotFqRuP1hJcVm h3w1rfgrH4IHghRNy6a7yargAqBudvkCRFVTE1Lif9Uk8uZOCA/pkDpXEGXPRvHQ tFVxnD/YRpYayCBvKOriGMxbbMaCZ+OZOddpihiOwcyShZ+v5UztD04XRsh4hTCP aMWcQH21wUn1leLt8Eikv5IosHbQatvlZBfgBuV4LRickY+OVcEHhRyelw== -----END CERTIFICATE-----Generated at Wed May 13 20:55:23 2026 by rpki-client