$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e34382e302f32322d3232203d3e203234343236.roa File: 34332e3233392e34382e302f32322d3232203d3e203234343236.roa (raw, json) Hash identifier: pI/Tdn5e+HRUexNm4/bpnBgDlibcfQ4jVQDXaAtVEQ4= Subject key identifier: 82:A6:7E:3D:C2:DC:23:99:64:14:7B:1F:7D:BA:D5:36:51:D7:CB:D4 Certificate issuer: /CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Certificate serial: 49BD2260CF3FCF0D499AF00958382C47B969E2C3 Authority key identifier: 2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e34382e302f32322d3232203d3e203234343236.roa Signing time: Fri 05 Jun 2026 05:51:16 +0000 ROA not before: Fri 05 Jun 2026 05:46:16 +0000 ROA not after: Fri 04 Jun 2027 05:51:16 +0000 asID: 24426 IP address blocks: 43.239.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:bd:22:60:cf:3f:cf:0d:49:9a:f0:09:58:38:2c:47:b9:69:e2:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Validity Not Before: Jun 5 05:46:16 2026 GMT Not After : Jun 4 05:51:16 2027 GMT Subject: CN=82A67E3DC2DC239964147B1F7DBAD53651D7CBD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f2:43:fe:3f:8e:f3:f4:d7:e9:3a:69:53:b6: d1:17:6d:ba:82:71:b7:68:a8:58:44:59:e0:f8:bd: ea:6c:3a:4c:2a:f7:8b:80:b1:3e:d9:d2:39:0d:6e: 2b:94:8a:e1:d7:f3:21:f1:85:9f:e3:96:13:db:38: f5:b6:90:21:38:26:d4:df:ba:10:9c:db:9c:8d:2a: bc:69:ca:00:3e:bb:9b:75:a9:43:7b:a4:b6:1b:e5: ec:72:99:41:cc:e9:20:7e:e8:64:dd:32:36:24:68: b8:a0:8a:5a:8e:ae:52:22:3f:60:aa:20:2e:e9:ea: 8f:7a:2f:c2:75:12:f8:68:2f:ae:09:1d:13:92:61: 3a:48:d9:bd:ba:c7:c3:aa:d6:40:ff:02:f8:3a:eb: 7e:0c:ea:52:ce:6d:15:5e:16:82:d8:2a:31:41:59: 38:80:7a:04:f2:a3:7f:ed:03:f0:9a:08:da:c5:ce: a0:b7:c1:3a:ba:fc:93:de:61:37:f6:42:ae:ae:77: ba:a8:0e:dd:3e:0e:1b:3e:4f:e4:b0:6a:e4:cd:e3: 36:df:93:b8:b5:9c:d3:1b:67:54:9e:cd:94:1e:03: 9f:8b:ef:16:ad:3a:e0:09:53:f2:c7:e0:44:cd:e2: ea:c9:7a:d2:13:f1:14:fe:c3:94:95:08:4c:b9:b4: 3d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A6:7E:3D:C2:DC:23:99:64:14:7B:1F:7D:BA:D5:36:51:D7:CB:D4 X509v3 Authority Key Identifier: keyid:2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e34382e302f32322d3232203d3e203234343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.239.48.0/22 Signature Algorithm: sha256WithRSAEncryption a3:48:bc:0a:de:25:a1:29:57:29:53:82:59:3f:47:3b:0e:dc: 5e:bc:14:9d:0e:37:b1:6a:37:df:4c:94:45:82:38:f6:1b:07: aa:77:0a:4f:46:8a:f4:77:20:0c:1a:43:d5:ec:3b:93:19:47: 04:90:1c:f1:a1:fb:2c:64:3f:39:76:80:83:6e:17:93:6c:ca: 24:7a:1b:24:fc:7d:d1:b3:f0:88:26:d2:62:43:1c:b8:c4:da: 69:63:de:fe:17:f4:c5:ea:ac:2a:a5:4e:69:c4:4e:85:38:53: 67:1b:a5:77:b5:93:3e:2d:66:42:7d:95:d7:47:d5:eb:bb:44: 4d:e3:49:11:35:45:db:4b:19:55:92:43:14:c3:40:a6:3e:9e: fa:ac:35:ba:8e:a7:da:c5:8f:02:f5:5f:e5:e2:26:f5:f3:98: 55:61:b5:c4:f9:8c:6e:f2:0e:be:47:6b:bb:3c:fd:59:c5:83: 67:46:57:98:30:1f:15:13:3b:cd:e3:84:32:90:1f:99:3f:67: 6c:94:b0:df:93:d6:14:5a:e3:fe:c0:41:05:2b:23:53:83:f1: c1:c7:81:bb:2e:d9:53:b7:75:83:b9:6a:e5:19:82:9c:ac:94: 49:79:0a:cf:55:ea:84:06:e0:a1:0b:87:fd:ee:0e:b6:ed:61: c1:30:52:90 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUSb0iYM8/zw1JmvAJWDgsR7lp4sMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0Mx OEQ2QjM2MDAeFw0yNjA2MDUwNTQ2MTZaFw0yNzA2MDQwNTUxMTZaMDMxMTAvBgNV BAMTKDgyQTY3RTNEQzJEQzIzOTk2NDE0N0IxRjdEQkFENTM2NTFEN0NCRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp8kP+P47z9NfpOmlTttEXbbqC cbdoqFhEWeD4vepsOkwq94uAsT7Z0jkNbiuUiuHX8yHxhZ/jlhPbOPW2kCE4JtTf uhCc25yNKrxpygA+u5t1qUN7pLYb5exymUHM6SB+6GTdMjYkaLigilqOrlIiP2Cq IC7p6o96L8J1EvhoL64JHROSYTpI2b26x8Oq1kD/Avg6634M6lLObRVeFoLYKjFB WTiAegTyo3/tA/CaCNrFzqC3wTq6/JPeYTf2Qq6ud7qoDt0+Dhs+T+SwauTN4zbf k7i1nNMbZ1SezZQeA5+L7xatOuAJU/LH4ETN4urJetIT8RT+w5SVCEy5tD0RAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUgqZ+PcLcI5lkFHsffbrVNlHXy9QwHwYDVR0j BBgwFoAULyyDOcyOREZ99bpdD2YUPBjWs2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODE0MDU0Ny8wLzJGMkM4MzM5Q0M4RTQ0NDY3REY1QkE1RDBGNjYx NDNDMThENkIzNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0MxOEQ2QjM2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MTQwNTQ3LzAvMzQzMzJlMzIzMzM5 MmUzNDM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDM0MzIzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAivvMDANBgkqhkiG9w0BAQsFAAOCAQEAo0i8Ct4loSlXKVOCWT9HOw7cXrwU nQ43sWo330yURYI49hsHqncKT0aK9HcgDBpD1ew7kxlHBJAc8aH7LGQ/OXaAg24X k2zKJHobJPx90bPwiCbSYkMcuMTaaWPe/hf0xeqsKqVOacROhThTZxuld7WTPi1m Qn2V10fV67tETeNJETVF20sZVZJDFMNApj6e+qw1uo6n2sWPAvVf5eIm9fOYVWG1 xPmMbvIOvkdruzz9WcWDZ0ZXmDAfFRM7zeOEMpAfmT9nbJSw35PWFFrj/sBBBSsj U4PxwceBuy7ZU7d1g7lq5RmCnKyUSXkKz1XqhAbgoQuH/e4Otu1hwTBSkA== -----END CERTIFICATE-----Generated at Sun Jun 14 09:56:53 2026 by rpki-client