$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/34352e3132332e38382e302f32322d3232203d3e2030.roa File: 34352e3132332e38382e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: G8aowGv2jw/lgg/xPAw4ki4N7rDCUFHki1crQKuFo/4= Subject key identifier: A5:BE:96:4C:41:AE:86:19:1B:48:63:13:6C:2F:C5:A9:5E:13:46:5B Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 1628912F787C475BCEC81E2506F2C9B8FAA531D5 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/34352e3132332e38382e302f32322d3232203d3e2030.roa Signing time: Fri 05 Jun 2026 05:57:32 +0000 ROA not before: Fri 05 Jun 2026 05:52:32 +0000 ROA not after: Fri 04 Jun 2027 05:57:32 +0000 asID: 0 IP address blocks: 45.123.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 20:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:28:91:2f:78:7c:47:5b:ce:c8:1e:25:06:f2:c9:b8:fa:a5:31:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: Jun 5 05:52:32 2026 GMT Not After : Jun 4 05:57:32 2027 GMT Subject: CN=A5BE964C41AE86191B4863136C2FC5A95E13465B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:92:41:6e:f8:bd:04:cc:e5:2e:06:0c:4f:c1: 4c:91:e9:82:b5:22:ff:c6:76:7a:8a:0e:a1:84:08: b8:ef:bd:26:ff:b7:d9:fa:be:40:ab:59:f0:02:95: b3:40:df:92:52:5a:17:2c:54:14:63:18:31:1a:8c: 44:f3:b5:4d:96:e9:dc:f4:80:cb:b2:40:53:a3:9d: 3d:fc:03:1d:24:18:95:32:bb:fd:f9:c1:14:4e:35: e8:f8:a6:57:21:f3:ae:97:df:80:9c:76:3a:82:04: e7:d1:29:2e:6b:6a:04:5b:59:48:b5:ee:d0:d8:f8: 7c:77:d8:e1:16:59:c5:dd:53:bb:aa:2f:9b:34:3a: b0:79:9e:fb:e6:3c:80:6c:7a:83:0e:27:5d:19:40: 1e:4c:fa:f0:fe:8f:ca:c4:d0:c8:25:0d:96:f3:25: 62:f7:28:aa:5d:71:59:87:0f:05:9a:f9:c5:40:39: 06:49:5e:95:fe:39:5b:69:27:96:62:26:6a:2b:f7: 55:ee:b9:d2:32:87:30:b2:5a:7b:e6:a6:0a:93:8f: 74:d2:e9:0f:ed:5b:8c:e9:80:52:c7:15:3b:c8:56: 4a:c8:6d:7d:55:87:b3:f0:01:1e:ff:8c:70:22:ff: 07:72:ac:0c:d1:5e:ad:30:ff:e2:21:95:21:71:52: 16:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BE:96:4C:41:AE:86:19:1B:48:63:13:6C:2F:C5:A9:5E:13:46:5B X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/34352e3132332e38382e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.123.88.0/22 Signature Algorithm: sha256WithRSAEncryption 90:a2:5c:51:e3:df:28:3b:b7:91:9a:d9:ac:3a:4c:e7:af:50: 40:f7:66:eb:dd:df:08:28:0b:71:c0:35:53:49:a1:8a:99:8f: 1b:32:66:8b:f2:64:37:e9:11:0c:fb:d6:7d:ab:66:21:cd:39: 60:10:30:db:6f:15:32:66:1f:2b:e6:3d:8d:b4:96:2a:04:7a: be:a9:41:6d:4a:67:ea:d8:5d:6f:92:d7:6b:88:9c:41:97:41: 94:05:da:8c:b5:12:b5:b0:9e:6f:aa:4f:38:6e:aa:72:55:3e: 13:83:9d:ca:43:47:91:24:dc:70:c2:72:15:59:60:2f:72:1a: af:a3:25:0b:8f:ec:0c:95:25:9f:54:ac:b7:af:2e:a0:b6:78: cd:f1:82:d4:aa:0d:ee:d2:2d:67:ef:17:8a:cd:97:3f:f1:09: 04:3e:11:1c:fd:e0:c0:a6:b4:04:a7:89:74:ad:f4:bb:cc:2b: c2:ec:06:92:86:cb:57:22:bb:cc:99:e4:40:05:4e:8a:77:81: 9e:9f:b6:11:19:51:f3:68:ec:73:00:f9:22:b2:4c:5a:8e:d5: 36:f0:04:42:c1:98:bb:2a:41:b0:97:43:01:6e:01:be:10:5e: 6a:06:d1:ad:a8:c5:f9:6c:c8:65:30:b5:ee:e3:7c:b9:ec:9a: 74:1b:85:29 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUFiiRL3h8R1vOyB4lBvLJuPqlMdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA2MDUwNTUyMzJaFw0yNzA2MDQwNTU3MzJaMDMxMTAvBgNV BAMTKEE1QkU5NjRDNDFBRTg2MTkxQjQ4NjMxMzZDMkZDNUE5NUUxMzQ2NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCkkFu+L0EzOUuBgxPwUyR6YK1 Iv/GdnqKDqGECLjvvSb/t9n6vkCrWfAClbNA35JSWhcsVBRjGDEajETztU2W6dz0 gMuyQFOjnT38Ax0kGJUyu/35wRRONej4plch866X34CcdjqCBOfRKS5ragRbWUi1 7tDY+Hx32OEWWcXdU7uqL5s0OrB5nvvmPIBseoMOJ10ZQB5M+vD+j8rE0MglDZbz JWL3KKpdcVmHDwWa+cVAOQZJXpX+OVtpJ5ZiJmor91XuudIyhzCyWnvmpgqTj3TS 6Q/tW4zpgFLHFTvIVkrIbX1Vh7PwAR7/jHAi/wdyrAzRXq0w/+IhlSFxUhafAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUpb6WTEGuhhkbSGMTbC/FqV4TRlswHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzQzNTJlMzEzMjMz MmUzODM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIte1gw DQYJKoZIhvcNAQELBQADggEBAJCiXFHj3yg7t5Ga2aw6TOevUED3Zuvd3wgoC3HA NVNJoYqZjxsyZovyZDfpEQz71n2rZiHNOWAQMNtvFTJmHyvmPY20lioEer6pQW1K Z+rYXW+S12uInEGXQZQF2oy1ErWwnm+qTzhuqnJVPhODncpDR5Ek3HDCchVZYC9y Gq+jJQuP7AyVJZ9UrLevLqC2eM3xgtSqDe7SLWfvF4rNlz/xCQQ+ERz94MCmtASn iXSt9LvMK8LsBpKGy1ciu8yZ5EAFTop3gZ6fthEZUfNo7HMA+SKyTFqO1TbwBELB mLsqQbCXQwFuAb4QXmoG0a2oxflsyGUwte7jfLnsmnQbhSk= -----END CERTIFICATE-----Generated at Sat Jun 13 15:29:42 2026 by rpki-client