$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e32302e302f32322d3232203d3e203234343236.roa File: 34332e3234362e32302e302f32322d3232203d3e203234343236.roa (raw, json) Hash identifier: cLlYe1a8+ZtCt76Jk6rLZPzPAtlDTlXMqRMxNoY+njk= Subject key identifier: B2:DF:F3:D8:1A:04:51:1E:66:57:AA:59:6C:4F:85:78:5F:F0:48:77 Certificate issuer: /CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Certificate serial: 704670C72FD441406A1DE732D59F66E4D0527BBF Authority key identifier: 2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e32302e302f32322d3232203d3e203234343236.roa Signing time: Fri 05 Jun 2026 05:48:48 +0000 ROA not before: Fri 05 Jun 2026 05:43:48 +0000 ROA not after: Fri 04 Jun 2027 05:48:48 +0000 asID: 24426 IP address blocks: 43.246.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:46:70:c7:2f:d4:41:40:6a:1d:e7:32:d5:9f:66:e4:d0:52:7b:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Validity Not Before: Jun 5 05:43:48 2026 GMT Not After : Jun 4 05:48:48 2027 GMT Subject: CN=B2DFF3D81A04511E6657AA596C4F85785FF04877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5c:e9:1d:cc:19:05:42:70:d1:6a:83:0f:71: ad:e7:e6:2d:65:e1:99:17:5f:ec:d2:0d:8b:01:ea: 72:fb:e7:9b:40:ad:0d:ca:96:f3:cf:fa:28:1d:46: 3a:f5:14:56:33:67:5c:87:d8:5d:49:01:b4:db:1b: 5f:37:a3:fd:c7:28:11:9b:44:50:0f:95:d6:11:f7: 66:37:3e:a0:ab:cb:bd:91:b1:54:6a:82:9b:22:13: fb:97:13:e8:72:8d:15:38:57:94:8b:9e:21:9a:ea: 6e:8d:3c:4a:25:14:a9:43:85:3a:b9:52:bd:13:f5: 0a:9a:7a:54:31:01:05:58:10:c7:e2:20:b2:5d:1f: eb:a9:c1:c4:81:18:c3:f9:25:5a:57:12:aa:92:b0: bb:aa:c4:5b:e9:64:93:0a:b5:1e:28:36:8c:89:ad: 82:5b:d4:2b:ef:24:50:1a:a7:f4:3f:2b:68:c8:e4: 65:aa:aa:65:59:68:19:eb:10:06:e2:cc:0f:07:3c: 9d:3b:37:ea:a2:05:5f:24:78:c2:62:8b:80:68:38: 0a:d1:67:ea:8c:74:e5:d5:f2:84:ec:09:ba:39:bb: 54:9f:2e:d6:9d:17:43:9e:0e:c2:e1:cd:6a:46:7f: fd:12:06:f1:aa:95:52:61:d7:4b:0c:41:ce:96:79: f3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:DF:F3:D8:1A:04:51:1E:66:57:AA:59:6C:4F:85:78:5F:F0:48:77 X509v3 Authority Key Identifier: keyid:2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e32302e302f32322d3232203d3e203234343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.246.20.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:cf:b1:eb:81:9f:18:c4:e7:6c:df:7e:e0:80:28:78:21:4a: 15:7d:f5:ff:af:4b:66:60:30:c4:d1:b3:c0:be:15:ad:32:05: e3:82:62:45:ad:9b:7b:2f:1c:72:0f:ea:5a:2e:46:18:b0:8f: 62:fe:d3:53:68:0f:aa:b3:8d:21:ae:d9:4d:3c:5f:cc:6b:34: 5a:11:f9:54:b7:ac:8d:eb:ca:d4:ce:bd:40:5b:49:eb:39:14: 1f:01:21:4d:78:0b:4a:d0:ea:0c:03:78:e1:23:0c:25:3f:5d: 93:33:c3:07:6a:ca:63:8e:d9:0b:7f:91:be:89:93:c6:d1:7a: 0c:3e:1d:55:f1:d7:65:b3:64:f9:7d:34:81:ab:f4:b7:b4:db: b8:0d:41:37:15:6b:c8:8e:1a:98:1a:1f:57:fd:b9:ac:41:fe: d8:98:02:23:de:ca:c1:c7:6c:13:f4:32:23:ab:93:92:0b:3f: d7:df:0c:14:67:a6:62:57:73:e0:23:0a:ec:a3:85:98:8f:2b: 71:74:b0:3b:db:7e:7b:d4:98:06:42:7c:bc:da:e0:b8:01:c8: be:e6:d5:c3:36:c1:73:a2:74:16:16:d7:91:7d:65:0d:3f:13: b4:99:83:c0:63:8d:2e:d1:88:0c:8f:e6:34:19:8a:48:77:56: 82:d9:67:85 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUcEZwxy/UQUBqHecy1Z9m5NBSe78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0Mx OEQ2QjM2MDAeFw0yNjA2MDUwNTQzNDhaFw0yNzA2MDQwNTQ4NDhaMDMxMTAvBgNV BAMTKEIyREZGM0Q4MUEwNDUxMUU2NjU3QUE1OTZDNEY4NTc4NUZGMDQ4NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLXOkdzBkFQnDRaoMPca3n5i1l 4ZkXX+zSDYsB6nL755tArQ3KlvPP+igdRjr1FFYzZ1yH2F1JAbTbG183o/3HKBGb RFAPldYR92Y3PqCry72RsVRqgpsiE/uXE+hyjRU4V5SLniGa6m6NPEolFKlDhTq5 Ur0T9QqaelQxAQVYEMfiILJdH+upwcSBGMP5JVpXEqqSsLuqxFvpZJMKtR4oNoyJ rYJb1CvvJFAap/Q/K2jI5GWqqmVZaBnrEAbizA8HPJ07N+qiBV8keMJii4BoOArR Z+qMdOXV8oTsCbo5u1SfLtadF0OeDsLhzWpGf/0SBvGqlVJh10sMQc6WefNfAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUst/z2BoEUR5mV6pZbE+FeF/wSHcwHwYDVR0j BBgwFoAULyyDOcyOREZ99bpdD2YUPBjWs2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODE0MDU0Ny8wLzJGMkM4MzM5Q0M4RTQ0NDY3REY1QkE1RDBGNjYx NDNDMThENkIzNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0MxOEQ2QjM2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MTQwNTQ3LzAvMzQzMzJlMzIzNDM2 MmUzMjMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDM0MzIzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv2FDANBgkqhkiG9w0BAQsFAAOCAQEAjs+x64GfGMTnbN9+4IAoeCFKFX31 /69LZmAwxNGzwL4VrTIF44JiRa2bey8ccg/qWi5GGLCPYv7TU2gPqrONIa7ZTTxf zGs0WhH5VLesjevK1M69QFtJ6zkUHwEhTXgLStDqDAN44SMMJT9dkzPDB2rKY47Z C3+RvomTxtF6DD4dVfHXZbNk+X00gav0t7TbuA1BNxVryI4amBofV/25rEH+2JgC I97KwcdsE/QyI6uTkgs/198MFGemYldz4CMK7KOFmI8rcXSwO9t+e9SYBkJ8vNrg uAHIvubVwzbBc6J0FhbXkX1lDT8TtJmDwGONLtGIDI/mNBmKSHdWgtlnhQ== -----END CERTIFICATE-----Generated at Sun Jun 14 09:56:53 2026 by rpki-client