$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106503155660619793/0/34352e3132372e3134342e302f32312d3231203d3e203633363134.roa File: 34352e3132372e3134342e302f32312d3231203d3e203633363134.roa (raw, json) Hash identifier: U0jAupG8woSMrVhzvzXvCyGAZPLICR8GAAYzIC1138E= Subject key identifier: 93:0A:A5:0D:C2:15:80:FA:B0:38:28:E8:4C:1A:E7:03:B0:F9:B0:37 Certificate issuer: /CN=40D86726DB14F9E5E06610928FF6C77226F14874 Certificate serial: 379C10B092B177F043E67ABFC5E45218DEA84675 Authority key identifier: 40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/34352e3132372e3134342e302f32312d3231203d3e203633363134.roa Signing time: Tue 12 May 2026 09:01:32 +0000 ROA not before: Tue 12 May 2026 08:56:32 +0000 ROA not after: Tue 11 May 2027 09:01:32 +0000 asID: 63614 IP address blocks: 45.127.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:9c:10:b0:92:b1:77:f0:43:e6:7a:bf:c5:e4:52:18:de:a8:46:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D86726DB14F9E5E06610928FF6C77226F14874 Validity Not Before: May 12 08:56:32 2026 GMT Not After : May 11 09:01:32 2027 GMT Subject: CN=930AA50DC21580FAB03828E84C1AE703B0F9B037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d3:00:ac:b8:8c:30:f7:f6:92:c7:a6:0f:ad: c4:8b:17:58:9a:4f:7b:d9:0b:0c:98:70:1f:62:c3: 7f:d0:5c:98:f0:7b:a7:3e:47:1a:81:65:15:bf:60: 2f:bf:b6:04:ba:14:ed:38:5c:08:f2:70:c5:8c:6a: d9:df:8c:97:51:d1:83:6e:be:d1:98:87:09:b8:f7: cb:6e:73:82:e5:4e:a8:3e:83:02:e4:33:6a:e6:f8: c9:54:e7:31:20:90:58:8c:34:aa:9e:bb:d1:0d:e8: 5f:14:56:24:8d:9b:b0:4d:d4:0a:fd:bf:de:ed:97: 15:74:52:72:22:04:d7:a2:e7:a0:a4:cc:77:2a:d4: 5a:1f:47:38:c2:d7:8a:c7:af:a4:ea:8f:79:ff:9e: c0:3d:fc:d8:7b:2c:33:ee:c8:f6:23:7c:40:da:dc: 93:af:50:9d:5b:5f:9c:7f:00:83:9c:2e:16:18:a4: a1:29:ac:b2:75:e0:81:31:a9:01:4d:38:be:a1:28: 65:11:06:f2:df:f9:1c:c5:7b:90:28:92:5b:4b:35: 40:d7:a3:3f:ce:1d:ad:59:e3:44:71:5f:fc:4d:9d: af:f3:96:19:3c:1a:71:22:b2:d5:23:8f:75:b2:ed: 70:63:4e:94:4e:da:89:dd:f3:91:13:71:77:35:02: d4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0A:A5:0D:C2:15:80:FA:B0:38:28:E8:4C:1A:E7:03:B0:F9:B0:37 X509v3 Authority Key Identifier: keyid:40:D8:67:26:DB:14:F9:E5:E0:66:10:92:8F:F6:C7:72:26:F1:48:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/40D86726DB14F9E5E06610928FF6C77226F14874.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40D86726DB14F9E5E06610928FF6C77226F14874.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106503155660619793/0/34352e3132372e3134342e302f32312d3231203d3e203633363134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.144.0/21 Signature Algorithm: sha256WithRSAEncryption 24:9d:e7:e9:b1:cd:c8:3b:66:3a:8d:16:fc:9d:81:ae:1d:e3: dc:7a:8f:fd:83:74:16:b5:45:7e:6c:d8:b4:9b:c9:d8:d5:a6: 72:5a:91:3c:b0:53:f1:69:ba:bb:29:18:d9:cf:9a:7a:b7:7c: 35:63:ae:cf:a7:3d:12:be:1f:b4:55:33:7d:fd:9d:11:e5:00: 67:7e:7d:d8:f9:99:9c:60:61:fe:3d:e1:f8:f2:fc:cc:6f:95: 89:ad:fd:c2:1d:f1:54:7e:78:3f:07:fa:43:d8:67:f2:51:59: 85:d4:17:32:c6:1e:16:b6:0a:f7:b7:33:cd:7b:30:90:74:e3: 1e:8b:19:1c:bb:00:dc:bc:52:68:67:fc:41:2e:a1:dd:11:5f: d1:25:88:8b:bb:81:6e:bf:4d:92:5b:67:32:1f:d5:73:9a:2e: d9:93:67:6f:80:94:e2:d1:c2:18:f4:b4:65:6c:b8:bd:65:60: 91:48:80:69:e2:be:05:84:c3:77:6a:29:12:7b:fc:e1:29:db: ec:57:1c:aa:1c:ad:37:67:88:78:f9:e5:3f:2d:2f:f4:dd:f7: 82:22:c7:10:99:a1:a5:92:e8:d7:97:43:e7:67:fb:9b:8c:01: d6:ad:0d:46:d7:34:bc:a5:39:e5:72:8c:ec:68:4d:68:3c:df: e2:ba:f3:dc -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUN5wQsJKxd/BD5nq/xeRSGN6oRnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIy NkYxNDg3NDAeFw0yNjA1MTIwODU2MzJaFw0yNzA1MTEwOTAxMzJaMDMxMTAvBgNV BAMTKDkzMEFBNTBEQzIxNTgwRkFCMDM4MjhFODRDMUFFNzAzQjBGOUIwMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX0wCsuIww9/aSx6YPrcSLF1ia T3vZCwyYcB9iw3/QXJjwe6c+RxqBZRW/YC+/tgS6FO04XAjycMWMatnfjJdR0YNu vtGYhwm498tuc4LlTqg+gwLkM2rm+MlU5zEgkFiMNKqeu9EN6F8UViSNm7BN1Ar9 v97tlxV0UnIiBNei56CkzHcq1FofRzjC14rHr6Tqj3n/nsA9/Nh7LDPuyPYjfEDa 3JOvUJ1bX5x/AIOcLhYYpKEprLJ14IExqQFNOL6hKGURBvLf+RzFe5AokltLNUDX oz/OHa1Z40RxX/xNna/zlhk8GnEistUjj3Wy7XBjTpRO2ond85ETcXc1AtTlAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUkwqlDcIVgPqwOCjoTBrnA7D5sDcwHwYDVR0j BBgwFoAUQNhnJtsU+eXgZhCSj/bHcibxSHQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwMzE1NTY2MDYxOTc5My8wLzQwRDg2NzI2REIxNEY5RTVFMDY2MTA5MjhGRjZD NzcyMjZGMTQ4NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBEODY3MjZEQjE0RjlFNUUwNjYxMDkyOEZGNkM3NzIyNkYxNDg3NC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwNjUwMzE1NTY2MDYxOTc5My8wLzM0MzUyZTMxMzIz NzJlMzEzNDM0MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzYzMzM2MzEzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAy1/kDANBgkqhkiG9w0BAQsFAAOCAQEAJJ3n6bHNyDtmOo0W/J2Brh3j 3HqP/YN0FrVFfmzYtJvJ2NWmclqRPLBT8Wm6uykY2c+aerd8NWOuz6c9Er4ftFUz ff2dEeUAZ3592PmZnGBh/j3h+PL8zG+Via39wh3xVH54Pwf6Q9hn8lFZhdQXMsYe FrYK97czzXswkHTjHosZHLsA3LxSaGf8QS6h3RFf0SWIi7uBbr9NkltnMh/Vc5ou 2ZNnb4CU4tHCGPS0ZWy4vWVgkUiAaeK+BYTDd2opEnv84Snb7FccqhytN2eIePnl Py0v9N33giLHEJmhpZLo15dD52f7m4wB1q0NRtc0vKU55XKM7GhNaDzf4rrz3A== -----END CERTIFICATE-----Generated at Wed May 13 13:42:18 2026 by rpki-client