$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1105375930328547341/0/34332e3235342e32372e302f32342d3234203d3e2034383437.roa File: 34332e3235342e32372e302f32342d3234203d3e2034383437.roa (raw, json) Hash identifier: TE4NaF/eF/qrYTsjwyjQmQNGwcNtHiBiLxwFl1yleq0= Subject key identifier: 39:2E:A6:51:7D:E5:37:44:D4:D4:4F:8A:DB:86:1F:94:99:54:7C:24 Certificate issuer: /CN=30BFDE48CAB9DDD5E275A7241FF7E4E40518F507 Certificate serial: 558AB2709711823656A63919CA1409ACC24DC5C9 Authority key identifier: 30:BF:DE:48:CA:B9:DD:D5:E2:75:A7:24:1F:F7:E4:E4:05:18:F5:07 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30BFDE48CAB9DDD5E275A7241FF7E4E40518F507.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1105375930328547341/0/34332e3235342e32372e302f32342d3234203d3e2034383437.roa Signing time: Sat 09 May 2026 06:18:17 +0000 ROA not before: Sat 09 May 2026 06:13:17 +0000 ROA not after: Sat 08 May 2027 06:18:17 +0000 asID: 4847 IP address blocks: 43.254.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1105375930328547341/0/30BFDE48CAB9DDD5E275A7241FF7E4E40518F507.crl rsync://rpki-rps.cnnic.cn/repo/A1105375930328547341/0/30BFDE48CAB9DDD5E275A7241FF7E4E40518F507.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30BFDE48CAB9DDD5E275A7241FF7E4E40518F507.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:8a:b2:70:97:11:82:36:56:a6:39:19:ca:14:09:ac:c2:4d:c5:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30BFDE48CAB9DDD5E275A7241FF7E4E40518F507 Validity Not Before: May 9 06:13:17 2026 GMT Not After : May 8 06:18:17 2027 GMT Subject: CN=392EA6517DE53744D4D44F8ADB861F9499547C24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:95:e4:2b:52:a2:e0:41:f6:b5:6a:9a:9c:8e: 1a:99:dd:b2:ca:c7:ce:8e:d5:88:95:b2:29:c9:a7: 27:cc:d9:49:81:fb:d0:9a:4c:a7:ed:9b:67:1c:70: b1:f0:04:4b:99:eb:80:de:74:9b:da:f5:68:d4:e4: 3e:5b:25:31:4a:ad:f9:e1:49:11:8e:54:a0:62:a0: fd:68:e5:3f:a3:4a:8a:43:30:14:b8:c7:f0:d0:21: 65:c9:03:b7:8c:fa:3f:1a:a9:b3:a9:e6:c4:c9:78: 27:95:0e:47:49:a1:04:61:33:4e:b3:a0:af:7e:0e: 02:e0:db:9e:a2:62:89:4f:91:b1:3f:75:c2:1d:9a: 27:ff:7c:24:1b:cf:18:60:73:c1:b8:79:02:b8:34: c1:da:75:9e:ee:c6:31:ed:c3:45:1e:d2:f9:cf:25: 18:f6:a0:5d:6c:38:68:4d:d5:7a:43:41:5e:e9:09: 80:64:54:1b:a4:ca:e7:d7:e8:e7:87:b7:9d:bd:c1: 78:7b:f5:90:b5:5c:a8:ef:54:42:b2:0f:63:07:4c: 84:47:de:55:16:0b:51:1f:10:21:90:f5:26:4e:c1: 49:22:0a:0f:4f:d0:8c:5e:9a:5d:a0:e4:86:0a:1e: bf:ce:78:43:60:05:6b:f1:da:b4:15:c7:77:6b:72: f2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:2E:A6:51:7D:E5:37:44:D4:D4:4F:8A:DB:86:1F:94:99:54:7C:24 X509v3 Authority Key Identifier: keyid:30:BF:DE:48:CA:B9:DD:D5:E2:75:A7:24:1F:F7:E4:E4:05:18:F5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1105375930328547341/0/30BFDE48CAB9DDD5E275A7241FF7E4E40518F507.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/30BFDE48CAB9DDD5E275A7241FF7E4E40518F507.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1105375930328547341/0/34332e3235342e32372e302f32342d3234203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.27.0/24 Signature Algorithm: sha256WithRSAEncryption a5:75:21:99:c2:34:7b:1d:8d:02:98:d2:2f:13:d5:38:32:9a: 95:c1:07:03:45:92:c1:12:5b:5c:1c:a8:1c:50:d6:ee:04:77: b3:7e:2a:d9:f1:24:fb:61:96:30:94:9e:b7:af:dd:1f:ac:40: a6:b9:b1:50:81:5c:29:88:0c:c5:0d:d3:90:74:93:c3:8c:30: 9d:05:af:d9:2c:7a:c7:33:60:73:32:f7:8e:67:1f:39:20:4c: 94:b8:0b:3c:fa:63:81:3c:73:9e:2c:83:bb:d1:85:dc:4f:7b: c7:23:f3:1b:18:07:7c:9f:fd:4d:18:4c:e6:2e:d6:de:1d:29: f8:5d:96:45:e2:f7:70:0a:b8:8e:5a:e2:8a:d5:74:73:97:bd: 2a:70:a8:e0:1f:67:a5:02:43:67:30:2a:63:a5:92:4d:65:c8: ce:e4:04:39:9a:6c:0c:f3:23:45:63:14:9f:8b:88:4a:66:02: 68:1a:ce:00:2c:f3:c4:06:26:9a:98:29:0f:bf:9e:02:f3:90: 3f:97:2b:b2:d3:79:e0:58:ef:92:77:f9:af:66:5b:4e:dd:21: 46:54:0e:39:4e:e5:73:d8:ad:7d:32:95:17:3c:4c:08:52:83: e7:ca:cd:fd:4c:57:53:04:e9:46:93:50:03:b7:90:6e:05:93: 7e:3c:2a:e6 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUVYqycJcRgjZWpjkZyhQJrMJNxckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBCRkRFNDhDQUI5RERENUUyNzVBNzI0MUZGN0U0RTQw NTE4RjUwNzAeFw0yNjA1MDkwNjEzMTdaFw0yNzA1MDgwNjE4MTdaMDMxMTAvBgNV BAMTKDM5MkVBNjUxN0RFNTM3NDRENEQ0NEY4QURCODYxRjk0OTk1NDdDMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaleQrUqLgQfa1apqcjhqZ3bLK x86O1YiVsinJpyfM2UmB+9CaTKftm2cccLHwBEuZ64DedJva9WjU5D5bJTFKrfnh SRGOVKBioP1o5T+jSopDMBS4x/DQIWXJA7eM+j8aqbOp5sTJeCeVDkdJoQRhM06z oK9+DgLg256iYolPkbE/dcIdmif/fCQbzxhgc8G4eQK4NMHadZ7uxjHtw0Ue0vnP JRj2oF1sOGhN1XpDQV7pCYBkVBukyufX6OeHt529wXh79ZC1XKjvVEKyD2MHTIRH 3lUWC1EfECGQ9SZOwUkiCg9P0Ixeml2g5IYKHr/OeENgBWvx2rQVx3drcvJBAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUOS6mUX3lN0TU1E+K24YflJlUfCQwHwYDVR0j BBgwFoAUML/eSMq53dXidackH/fk5AUY9QcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NTM3NTkzMDMyODU0NzM0MS8wLzMwQkZERTQ4Q0FCOURERDVFMjc1QTcyNDFGRjdF NEU0MDUxOEY1MDcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzBCRkRFNDhDQUI5RERENUUyNzVBNzI0MUZGN0U0RTQwNTE4RjUwNy5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA1Mzc1OTMwMzI4NTQ3MzQxLzAvMzQzMzJlMzIzNTM0 MmUzMjM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAr/hswDQYJKoZIhvcNAQELBQADggEBAKV1IZnCNHsdjQKY0i8T1TgympXBBwNF ksESW1wcqBxQ1u4Ed7N+KtnxJPthljCUnrev3R+sQKa5sVCBXCmIDMUN05B0k8OM MJ0Fr9ksesczYHMy945nHzkgTJS4Czz6Y4E8c54sg7vRhdxPe8cj8xsYB3yf/U0Y TOYu1t4dKfhdlkXi93AKuI5a4orVdHOXvSpwqOAfZ6UCQ2cwKmOlkk1lyM7kBDma bAzzI0VjFJ+LiEpmAmgazgAs88QGJpqYKQ+/ngLzkD+XK7LTeeBY75J3+a9mW07d IUZUDjlO5XPYrX0ylRc8TAhSg+fKzf1MV1ME6UaTUAO3kG4Fk348KuY= -----END CERTIFICATE-----Generated at Wed May 13 13:30:17 2026 by rpki-client