$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e33322e302f32302d3230203d3e203234343236.roa File: 34332e3233392e33322e302f32302d3230203d3e203234343236.roa (raw, json) Hash identifier: iumQP7NK2TRR3GV4WxSN9DaebMnnaPQjD0QBfSATUv4= Subject key identifier: 65:88:E8:EA:75:3C:18:57:65:1A:C1:B9:A5:4A:33:4E:45:A0:D1:C9 Certificate issuer: /CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Certificate serial: 458D8EF1FE87AE26D67AA1E844A7036281F85D08 Authority key identifier: 2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e33322e302f32302d3230203d3e203234343236.roa Signing time: Fri 05 Jun 2026 05:51:16 +0000 ROA not before: Fri 05 Jun 2026 05:46:16 +0000 ROA not after: Fri 04 Jun 2027 05:51:16 +0000 asID: 24426 IP address blocks: 43.239.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:8d:8e:f1:fe:87:ae:26:d6:7a:a1:e8:44:a7:03:62:81:f8:5d:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Validity Not Before: Jun 5 05:46:16 2026 GMT Not After : Jun 4 05:51:16 2027 GMT Subject: CN=6588E8EA753C1857651AC1B9A54A334E45A0D1C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:eb:b8:21:78:e7:b3:ea:d5:13:b4:4c:18:24: 99:02:dc:58:c8:c5:00:66:87:77:7c:4e:30:d5:22: 72:e2:05:e2:4f:95:c8:c1:e9:b7:02:39:83:47:67: f9:b0:fb:f8:c3:30:e8:28:c4:af:0e:c8:79:07:d6: 18:4c:0d:96:aa:7c:f9:e9:c7:b5:68:9b:4c:8a:88: 67:e7:8a:ec:d3:a1:b0:38:de:48:88:f7:3b:f3:98: 45:8f:a3:9a:21:37:fb:fc:5c:ac:ca:d2:2f:6d:fc: 5e:67:1e:5e:81:b3:01:b7:67:c3:f9:4b:c0:f2:c3: f5:21:0f:48:ac:6b:03:c9:a4:7d:dd:67:d5:a6:a1: 55:54:0b:b3:82:8c:9b:c0:a9:e1:4f:71:28:a5:fd: b5:65:46:5b:22:41:ff:6d:f1:f1:33:a6:7c:7c:27: d8:b0:f5:00:20:dd:af:93:42:1e:7f:6d:e9:94:20: d2:2d:7e:b2:e8:9b:4f:24:54:bd:3e:98:81:15:12: a2:24:20:3f:1c:b0:a8:e3:d8:5d:0a:ca:90:f9:01: a0:70:dd:4b:31:98:11:e1:f0:a4:d8:00:5f:ae:d0: cc:3c:f9:bf:81:88:7c:12:43:10:02:36:c6:4b:04: 09:24:1b:25:c2:3d:56:5e:f8:c0:70:98:3e:d8:11: 96:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:88:E8:EA:75:3C:18:57:65:1A:C1:B9:A5:4A:33:4E:45:A0:D1:C9 X509v3 Authority Key Identifier: keyid:2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e33322e302f32302d3230203d3e203234343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.239.32.0/20 Signature Algorithm: sha256WithRSAEncryption 41:77:92:7f:c0:ee:6b:6a:61:5a:dd:41:31:13:a5:4b:6e:ed: 00:ee:5f:ac:33:a2:77:78:1c:60:5b:e7:5b:b0:d6:ec:48:97: a4:bd:7b:97:b5:99:01:7f:43:62:c6:50:ef:11:5b:b2:c2:49: e5:f2:6a:7f:1a:5c:3d:36:00:e0:f5:20:92:02:e0:0d:84:a1: 63:c2:25:10:9e:ad:3e:82:7d:35:77:fb:48:06:b2:51:f2:21: ac:38:4b:8b:e4:4b:13:69:e4:9d:c8:82:f2:6e:85:f3:69:1e: 95:98:38:77:9d:11:f3:3e:37:0e:94:f5:ad:59:58:02:6a:ab: 48:b6:2e:e4:92:1f:04:87:2e:74:34:6e:8f:28:02:26:84:e2: 55:47:5f:36:55:22:b0:5d:9b:ef:8b:d1:b2:9e:87:05:69:37: 38:e2:15:41:c9:49:a4:2e:2b:9e:91:e0:6d:9b:cb:8e:87:03: 7f:57:b2:58:05:15:c1:9e:3b:17:bf:0d:c7:72:80:6b:b7:1b: 8d:a8:0f:3a:60:ba:d9:5b:a0:45:3e:0a:93:e8:2c:70:ac:1c: 9c:d8:d4:a8:ec:30:3d:7b:f6:1d:ac:be:c1:ad:d4:72:90:24: c9:fb:bc:12:f5:22:cb:f0:d9:1b:48:93:a1:40:88:e3:6f:61: d5:33:5d:dd -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIURY2O8f6HribWeqHoRKcDYoH4XQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0Mx OEQ2QjM2MDAeFw0yNjA2MDUwNTQ2MTZaFw0yNzA2MDQwNTUxMTZaMDMxMTAvBgNV BAMTKDY1ODhFOEVBNzUzQzE4NTc2NTFBQzFCOUE1NEEzMzRFNDVBMEQxQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf67gheOez6tUTtEwYJJkC3FjI xQBmh3d8TjDVInLiBeJPlcjB6bcCOYNHZ/mw+/jDMOgoxK8OyHkH1hhMDZaqfPnp x7Vom0yKiGfniuzTobA43kiI9zvzmEWPo5ohN/v8XKzK0i9t/F5nHl6BswG3Z8P5 S8Dyw/UhD0isawPJpH3dZ9WmoVVUC7OCjJvAqeFPcSil/bVlRlsiQf9t8fEzpnx8 J9iw9QAg3a+TQh5/bemUINItfrLom08kVL0+mIEVEqIkID8csKjj2F0KypD5AaBw 3UsxmBHh8KTYAF+u0Mw8+b+BiHwSQxACNsZLBAkkGyXCPVZe+MBwmD7YEZYLAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUZYjo6nU8GFdlGsG5pUozTkWg0ckwHwYDVR0j BBgwFoAULyyDOcyOREZ99bpdD2YUPBjWs2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODE0MDU0Ny8wLzJGMkM4MzM5Q0M4RTQ0NDY3REY1QkE1RDBGNjYx NDNDMThENkIzNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0MxOEQ2QjM2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MTQwNTQ3LzAvMzQzMzJlMzIzMzM5 MmUzMzMyMmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzIzNDM0MzIzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBCvvIDANBgkqhkiG9w0BAQsFAAOCAQEAQXeSf8Dua2phWt1BMROlS27tAO5f rDOid3gcYFvnW7DW7EiXpL17l7WZAX9DYsZQ7xFbssJJ5fJqfxpcPTYA4PUgkgLg DYShY8IlEJ6tPoJ9NXf7SAayUfIhrDhLi+RLE2nknciC8m6F82kelZg4d50R8z43 DpT1rVlYAmqrSLYu5JIfBIcudDRujygCJoTiVUdfNlUisF2b74vRsp6HBWk3OOIV QclJpC4rnpHgbZvLjocDf1eyWAUVwZ47F78Nx3KAa7cbjagPOmC62VugRT4Kk+gs cKwcnNjUqOwwPXv2Hay+wa3UcpAkyfu8EvUiy/DZG0iToUCI429h1TNd3Q== -----END CERTIFICATE-----Generated at Sun Jun 14 09:56:23 2026 by rpki-client