$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e32342e302f32322d3232203d3e203234343236.roa File: 34332e3234362e32342e302f32322d3232203d3e203234343236.roa (raw, json) Hash identifier: Md3UORiYBLMokkrULok1l8rHWTNQzG6zrN6ApVEcobM= Subject key identifier: 88:FF:FF:20:DC:DE:41:C8:D0:F3:8F:8D:85:02:D6:AE:D7:F6:1A:1E Certificate issuer: /CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Certificate serial: 6B5FBC5C366C459B65148ED9BDBB79E23678C441 Authority key identifier: 2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e32342e302f32322d3232203d3e203234343236.roa Signing time: Fri 05 Jun 2026 05:48:11 +0000 ROA not before: Fri 05 Jun 2026 05:43:11 +0000 ROA not after: Fri 04 Jun 2027 05:48:11 +0000 asID: 24426 IP address blocks: 43.246.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:5f:bc:5c:36:6c:45:9b:65:14:8e:d9:bd:bb:79:e2:36:78:c4:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Validity Not Before: Jun 5 05:43:11 2026 GMT Not After : Jun 4 05:48:11 2027 GMT Subject: CN=88FFFF20DCDE41C8D0F38F8D8502D6AED7F61A1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b6:68:5b:b8:45:5c:e2:17:04:6d:43:10:94: f2:27:e2:12:94:7e:a6:01:d2:cf:66:74:0c:07:62: f6:f9:4a:ff:73:8f:f2:6d:e9:c4:3b:4d:38:08:e5: 4f:73:3b:4a:40:ea:dc:2c:76:cb:0c:59:28:cf:e1: de:2b:08:4a:4a:33:de:6a:d3:3f:25:72:51:54:e6: 93:f8:95:a0:5e:4d:4a:04:88:90:e3:1b:23:01:0f: 3f:b3:69:5e:08:8e:9c:db:45:0e:76:1a:02:de:bc: f9:02:3c:03:ff:b9:a3:ab:d0:9d:55:ca:55:d3:dd: 0d:db:97:c3:b7:19:a6:b2:d5:85:a3:79:b0:a7:1e: 3f:ee:5e:18:f9:98:91:24:2e:83:2c:7a:81:ac:98: c8:0e:06:8a:69:e7:65:54:d7:06:2f:da:fc:79:e7: 4a:86:a9:0b:cd:33:59:0e:5b:b4:0b:2a:40:f4:71: 9d:b9:c6:4a:bd:e6:fd:9f:95:b9:40:be:6a:87:a3: 2c:84:43:69:eb:5e:da:f8:69:ff:d8:53:da:3e:d2: c8:e5:7e:72:82:3e:2b:36:7c:83:4f:51:a3:64:8c: 4a:ec:79:50:f2:03:ec:48:65:83:dd:ce:e0:cc:51: 61:4a:f8:95:7b:57:de:fc:7f:8f:2a:24:96:de:9c: 65:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FF:FF:20:DC:DE:41:C8:D0:F3:8F:8D:85:02:D6:AE:D7:F6:1A:1E X509v3 Authority Key Identifier: keyid:2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e32342e302f32322d3232203d3e203234343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.246.24.0/22 Signature Algorithm: sha256WithRSAEncryption 61:cd:72:4d:b4:c2:8c:77:82:cc:d3:9a:01:94:b8:d2:2a:1d: 4d:26:21:ca:bd:16:9d:30:67:01:af:0a:1e:a3:b7:b1:8b:0c: 77:86:a0:46:70:b7:00:34:c3:70:36:26:81:61:7f:cc:d8:98: 1a:d4:7b:b5:c5:45:95:c4:be:74:8d:38:43:0f:04:9a:15:81: 27:47:06:ca:eb:a4:b8:fa:ea:19:26:f6:44:5d:c3:de:da:70: 00:a4:7d:99:01:1e:b0:38:f7:cc:cf:5f:4a:72:8e:9e:68:99: 4d:e5:d2:19:47:5a:f3:83:87:09:2f:41:bd:e2:3a:52:30:89: 10:af:7d:ef:0d:6b:dd:3d:38:8e:23:0d:a8:d5:73:27:88:fc: ed:d8:cb:dd:53:6f:eb:ad:f1:3f:59:3e:c0:68:ff:2f:c8:45: 99:34:d8:d4:04:16:8e:ac:99:2d:81:ed:d4:52:32:3a:ed:2f: 22:e3:ea:96:d2:47:cd:e1:0f:12:39:34:c3:8e:58:a6:a4:e7: d7:7b:27:8f:99:46:5c:c4:8e:e2:5e:40:71:a7:f4:26:1c:95: 16:c9:79:8f:6e:94:57:2f:b7:84:8e:f9:85:62:fd:a2:56:39: 22:95:3a:fb:e8:f7:e8:5f:56:36:d1:11:4c:50:87:26:c5:a1: cb:32:ae:56 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUa1+8XDZsRZtlFI7Zvbt54jZ4xEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0Mx OEQ2QjM2MDAeFw0yNjA2MDUwNTQzMTFaFw0yNzA2MDQwNTQ4MTFaMDMxMTAvBgNV BAMTKDg4RkZGRjIwRENERTQxQzhEMEYzOEY4RDg1MDJENkFFRDdGNjFBMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0tmhbuEVc4hcEbUMQlPIn4hKU fqYB0s9mdAwHYvb5Sv9zj/Jt6cQ7TTgI5U9zO0pA6twsdssMWSjP4d4rCEpKM95q 0z8lclFU5pP4laBeTUoEiJDjGyMBDz+zaV4IjpzbRQ52GgLevPkCPAP/uaOr0J1V ylXT3Q3bl8O3Gaay1YWjebCnHj/uXhj5mJEkLoMseoGsmMgOBopp52VU1wYv2vx5 50qGqQvNM1kOW7QLKkD0cZ25xkq95v2flblAvmqHoyyEQ2nrXtr4af/YU9o+0sjl fnKCPis2fINPUaNkjErseVDyA+xIZYPdzuDMUWFK+JV7V978f48qJJbenGV/AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUiP//INzeQcjQ84+NhQLWrtf2Gh4wHwYDVR0j BBgwFoAULyyDOcyOREZ99bpdD2YUPBjWs2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODE0MDU0Ny8wLzJGMkM4MzM5Q0M4RTQ0NDY3REY1QkE1RDBGNjYx NDNDMThENkIzNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0MxOEQ2QjM2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MTQwNTQ3LzAvMzQzMzJlMzIzNDM2 MmUzMjM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDM0MzIzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv2GDANBgkqhkiG9w0BAQsFAAOCAQEAYc1yTbTCjHeCzNOaAZS40iodTSYh yr0WnTBnAa8KHqO3sYsMd4agRnC3ADTDcDYmgWF/zNiYGtR7tcVFlcS+dI04Qw8E mhWBJ0cGyuukuPrqGSb2RF3D3tpwAKR9mQEesDj3zM9fSnKOnmiZTeXSGUda84OH CS9BveI6UjCJEK997w1r3T04jiMNqNVzJ4j87djL3VNv663xP1k+wGj/L8hFmTTY 1AQWjqyZLYHt1FIyOu0vIuPqltJHzeEPEjk0w45YpqTn13snj5lGXMSO4l5Acaf0 JhyVFsl5j26UVy+3hI75hWL9olY5IpU6++j36F9WNtERTFCHJsWhyzKuVg== -----END CERTIFICATE-----Generated at Sun Jun 14 09:56:29 2026 by rpki-client