$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106503155660619793/0/34332e3232372e3134302e302f32322d3232203d3e2034383038.roa File: 34332e3232372e3134302e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: OoUuuHrzunU/9BuZoT9WM1RqdfIvT8/e0JVCOV3IyEs= Subject key identifier: C7:5A:22:DF:29:87:59:66:5F:3D:E5:03:2A:31:D6:4C:84:47:D6:32 Certificate issuer: /CN=40D86726DB14F9E5E06610928FF6C77226F14874 Certificate serial: 47183D1167A9EF5EAE6BC6825DD79DC9124B5B2C Authority key identifier: 40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/34332e3232372e3134302e302f32322d3232203d3e2034383038.roa Signing time: Tue 12 May 2026 08:59:28 +0000 ROA not before: Tue 12 May 2026 08:54:28 +0000 ROA not after: Tue 11 May 2027 08:59:28 +0000 asID: 4808 IP address blocks: 43.227.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:18:3d:11:67:a9:ef:5e:ae:6b:c6:82:5d:d7:9d:c9:12:4b:5b:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D86726DB14F9E5E06610928FF6C77226F14874 Validity Not Before: May 12 08:54:28 2026 GMT Not After : May 11 08:59:28 2027 GMT Subject: CN=C75A22DF298759665F3DE5032A31D64C8447D632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c1:e1:cb:db:47:e8:21:7f:bf:46:aa:ad:cf: 4e:6d:67:92:63:d0:01:a7:cc:c2:4a:15:17:f2:0e: 28:af:cc:fd:4c:36:db:42:49:c6:64:cb:88:7f:7d: 08:f5:3d:41:63:91:95:55:da:6f:a7:0c:14:1d:ca: 18:c4:ff:19:2f:3e:e0:24:55:11:15:28:14:84:ca: 6f:89:d3:9a:65:75:4e:ce:16:6a:0d:86:f2:e0:bf: 64:21:1c:9e:47:63:fe:0d:3b:b2:22:b8:74:78:8b: a8:57:9b:49:7a:dc:e9:aa:86:9a:97:b6:3c:8e:51: 9f:c1:59:36:8c:de:87:93:50:e4:4b:1e:9b:42:1a: 87:7b:1c:1f:57:82:48:2c:ae:70:48:e1:6c:ce:55: 9c:ab:da:91:2f:8a:cc:a3:c1:b5:f9:10:49:01:ff: 9f:c2:32:f2:3d:ac:d8:95:cf:0f:aa:cc:2f:e8:87: eb:23:80:41:dd:5b:c0:d3:45:dc:f2:43:b7:c3:87: b0:94:4f:57:bd:b5:61:27:cc:18:db:11:ed:44:46: f2:7f:52:14:9d:81:64:81:1a:7b:01:eb:fd:8b:ee: 8d:2e:00:88:f6:96:d1:c7:31:d0:80:ce:f0:f0:f3: c8:3f:20:be:22:a3:e7:5f:64:5c:4b:af:93:eb:d3: da:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:5A:22:DF:29:87:59:66:5F:3D:E5:03:2A:31:D6:4C:84:47:D6:32 X509v3 Authority Key Identifier: keyid:40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/34332e3232372e3134302e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.140.0/22 Signature Algorithm: sha256WithRSAEncryption 84:12:d1:f7:0d:bc:72:e0:2d:b3:27:93:a5:ae:5b:32:8f:d8: 9d:50:2c:c7:9a:1c:8c:98:7d:0f:b6:1d:d8:c8:95:ed:17:25: 87:0b:8b:13:5a:3e:97:79:51:6a:98:c5:93:f4:6e:79:1c:24: a0:64:33:74:ec:47:d5:2c:d1:34:2c:79:d9:59:2e:a1:d7:bf: 43:2a:29:62:f6:a1:0e:e4:bd:45:eb:45:3e:8c:ba:1e:c1:a9: e0:ec:2c:ef:83:3e:8d:1b:3f:72:19:93:c8:d5:d5:d7:76:58: 07:b9:f8:fc:14:7e:b3:6e:43:b9:28:8c:b8:ce:ce:44:67:23: fd:ec:d5:1c:6a:fc:9e:de:51:fc:f9:3d:b7:30:90:24:4a:07: ac:c9:7a:35:c2:81:47:92:04:49:9a:a1:bc:93:9e:d6:f9:3d: 6b:5a:47:c9:28:51:1e:3e:41:1f:ef:af:3f:05:ec:41:08:e4: 63:9e:fd:89:62:72:e8:3c:d9:dd:f4:c6:ed:b6:cf:9b:2e:74: 3c:84:8d:b1:bc:98:7d:34:b3:4b:f9:f7:fe:f8:da:62:92:36: 76:7e:98:93:5c:9e:91:77:44:8d:7f:0a:f6:3e:f7:63:6b:b6: 9c:3b:70:c6:c6:9e:ae:8d:a1:5c:7b:ab:08:89:a2:13:f5:a7: 17:5a:2d:81 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIURxg9EWep716ua8aCXdedyRJLWywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIy NkYxNDg3NDAeFw0yNjA1MTIwODU0MjhaFw0yNzA1MTEwODU5MjhaMDMxMTAvBgNV BAMTKEM3NUEyMkRGMjk4NzU5NjY1RjNERTUwMzJBMzFENjRDODQ0N0Q2MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQweHL20foIX+/Rqqtz05tZ5Jj 0AGnzMJKFRfyDiivzP1MNttCScZky4h/fQj1PUFjkZVV2m+nDBQdyhjE/xkvPuAk VREVKBSEym+J05pldU7OFmoNhvLgv2QhHJ5HY/4NO7IiuHR4i6hXm0l63OmqhpqX tjyOUZ/BWTaM3oeTUORLHptCGod7HB9XgkgsrnBI4WzOVZyr2pEvisyjwbX5EEkB /5/CMvI9rNiVzw+qzC/oh+sjgEHdW8DTRdzyQ7fDh7CUT1e9tWEnzBjbEe1ERvJ/ UhSdgWSBGnsB6/2L7o0uAIj2ltHHMdCAzvDw88g/IL4io+dfZFxLr5Pr09oPAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUx1oi3ymHWWZfPeUDKjHWTIRH1jIwHwYDVR0j BBgwFoAUQNhnJtsU+eXgZhCSj/bHcibxSHQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwMzE1NTY2MDYxOTc5My8wLzQwRDg2NzI2REIxNEY5RTVFMDY2MTA5MjhGRjZD NzcyMjZGMTQ4NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIyNkYxNDg3NC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA2NTAzMTU1NjYwNjE5NzkzLzAvMzQzMzJlMzIzMjM3 MmUzMTM0MzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAivjjDANBgkqhkiG9w0BAQsFAAOCAQEAhBLR9w28cuAtsyeTpa5bMo/YnVAs x5ocjJh9D7Yd2MiV7RclhwuLE1o+l3lRapjFk/RueRwkoGQzdOxH1SzRNCx52Vku ode/QyopYvahDuS9RetFPoy6HsGp4Ows74M+jRs/chmTyNXV13ZYB7n4/BR+s25D uSiMuM7ORGcj/ezVHGr8nt5R/Pk9tzCQJEoHrMl6NcKBR5IESZqhvJOe1vk9a1pH yShRHj5BH++vPwXsQQjkY579iWJy6DzZ3fTG7bbPmy50PISNsbyYfTSzS/n3/vja YpI2dn6Yk1yekXdEjX8K9j73Y2u2nDtwxsaero2hXHurCImiE/WnF1otgQ== -----END CERTIFICATE-----Generated at Wed May 13 13:45:00 2026 by rpki-client