$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e35362e302f32322d3232203d3e203234343236.roa File: 34332e3234362e35362e302f32322d3232203d3e203234343236.roa (raw, json) Hash identifier: SCFNnAHJ5Ff0LvDJPseFjNzyE4iNi+tD/xHKWtJGedk= Subject key identifier: B9:09:A8:52:BA:39:61:BB:1A:16:11:30:8E:A5:06:63:1F:18:93:D6 Certificate issuer: /CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Certificate serial: 2606C4F7857BB2CB571EEDE224216FAE023CE2C9 Authority key identifier: 2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e35362e302f32322d3232203d3e203234343236.roa Signing time: Fri 05 Jun 2026 05:49:19 +0000 ROA not before: Fri 05 Jun 2026 05:44:19 +0000 ROA not after: Fri 04 Jun 2027 05:49:19 +0000 asID: 24426 IP address blocks: 43.246.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:06:c4:f7:85:7b:b2:cb:57:1e:ed:e2:24:21:6f:ae:02:3c:e2:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Validity Not Before: Jun 5 05:44:19 2026 GMT Not After : Jun 4 05:49:19 2027 GMT Subject: CN=B909A852BA3961BB1A1611308EA506631F1893D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:83:bb:8b:bb:e4:8c:80:9e:16:6d:35:9b:85: 08:ba:2d:03:40:77:69:46:83:dd:39:09:4d:9d:2a: 5a:df:ca:17:9c:69:53:31:02:09:89:d9:0b:f8:27: 0c:78:22:06:8d:30:17:c2:42:1b:dd:30:96:fe:74: 97:f7:bd:9c:01:65:4f:51:8c:c6:f1:75:ab:4d:3a: 8c:dd:17:fb:e0:9a:f0:49:e4:59:ca:11:87:40:b5: ec:d0:1f:df:c0:46:8f:1d:d9:73:8e:56:0a:2a:b4: eb:fd:d3:ba:fa:25:ca:38:ee:ea:a4:e5:56:c8:fe: cd:48:a7:e3:b6:41:c0:ac:85:5f:82:f4:5e:2b:b3: b5:58:8d:e8:03:e3:ba:fb:57:26:88:d5:c8:ac:8c: f0:7f:5b:cd:9c:28:1a:ad:50:96:b8:bb:b2:64:a0: b4:8a:81:00:3f:be:de:d8:fc:75:96:4a:eb:5d:44: 98:60:d8:6d:30:93:55:9a:34:bc:19:9a:2a:a0:93: 57:cb:c4:39:c1:53:15:c7:78:73:76:5c:4b:d8:df: 36:fe:0c:d5:ca:20:cc:f7:73:08:22:fd:01:cc:9e: 8b:96:3b:81:63:73:4e:68:02:69:02:4b:4b:37:6c: 9e:b9:71:2d:d2:05:4a:8b:9a:92:5d:e8:58:78:54: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:09:A8:52:BA:39:61:BB:1A:16:11:30:8E:A5:06:63:1F:18:93:D6 X509v3 Authority Key Identifier: keyid:2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e35362e302f32322d3232203d3e203234343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.246.56.0/22 Signature Algorithm: sha256WithRSAEncryption a2:8b:3b:14:e3:f2:e9:da:6a:07:df:af:86:c0:2c:c1:75:65: a3:01:fa:0a:64:4d:57:81:66:44:f3:f4:9a:56:1c:e4:c0:b8: 1a:f6:f1:cd:e2:05:03:fc:11:96:8f:bc:7b:71:0f:be:b6:a8: 7e:dd:f4:7f:8a:7d:e5:ee:58:c0:0e:be:b9:e9:66:a6:9a:b4: 48:45:17:05:20:23:34:eb:cd:e1:10:40:6b:5c:1e:6f:dd:ad: 82:e1:47:1b:20:be:2a:07:9b:71:4b:7a:5e:62:e2:ff:f2:4b: 2a:76:5d:00:a1:f2:59:3f:17:e2:f6:f5:3a:9b:1f:68:ab:20: af:fb:d8:fc:b9:50:45:d0:59:05:a1:c2:0e:f2:c4:2c:85:44: ec:41:6d:e4:2d:70:08:93:0e:64:a4:05:0b:41:75:db:e3:05: ce:f7:fd:a1:d5:bb:4d:9b:0b:c7:72:c3:67:35:5d:99:37:c7: 62:08:a4:80:7e:23:67:55:fa:40:4c:68:c2:a8:81:3c:98:ba: fa:85:f8:04:d1:36:b4:61:70:e3:8d:dc:9b:f4:c8:67:26:3d: 21:ab:53:ab:84:c0:73:6f:18:1c:34:f2:3d:de:22:7f:b4:95: 3e:04:04:03:8e:60:77:ed:33:f0:e6:bf:e2:50:f9:52:e3:3f: df:ce:84:52 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUJgbE94V7sstXHu3iJCFvrgI84skwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0Mx OEQ2QjM2MDAeFw0yNjA2MDUwNTQ0MTlaFw0yNzA2MDQwNTQ5MTlaMDMxMTAvBgNV BAMTKEI5MDlBODUyQkEzOTYxQkIxQTE2MTEzMDhFQTUwNjYzMUYxODkzRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCng7uLu+SMgJ4WbTWbhQi6LQNA d2lGg905CU2dKlrfyhecaVMxAgmJ2Qv4Jwx4IgaNMBfCQhvdMJb+dJf3vZwBZU9R jMbxdatNOozdF/vgmvBJ5FnKEYdAtezQH9/ARo8d2XOOVgoqtOv907r6Jco47uqk 5VbI/s1Ip+O2QcCshV+C9F4rs7VYjegD47r7VyaI1cisjPB/W82cKBqtUJa4u7Jk oLSKgQA/vt7Y/HWWSutdRJhg2G0wk1WaNLwZmiqgk1fLxDnBUxXHeHN2XEvY3zb+ DNXKIMz3cwgi/QHMnouWO4Fjc05oAmkCS0s3bJ65cS3SBUqLmpJd6Fh4VIQ/AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUuQmoUro5YbsaFhEwjqUGYx8Yk9YwHwYDVR0j BBgwFoAULyyDOcyOREZ99bpdD2YUPBjWs2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODE0MDU0Ny8wLzJGMkM4MzM5Q0M4RTQ0NDY3REY1QkE1RDBGNjYx NDNDMThENkIzNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0MxOEQ2QjM2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MTQwNTQ3LzAvMzQzMzJlMzIzNDM2 MmUzNTM2MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDM0MzIzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv2ODANBgkqhkiG9w0BAQsFAAOCAQEAoos7FOPy6dpqB9+vhsAswXVlowH6 CmRNV4FmRPP0mlYc5MC4GvbxzeIFA/wRlo+8e3EPvraoft30f4p95e5YwA6+uelm ppq0SEUXBSAjNOvN4RBAa1web92tguFHGyC+KgebcUt6XmLi//JLKnZdAKHyWT8X 4vb1OpsfaKsgr/vY/LlQRdBZBaHCDvLELIVE7EFt5C1wCJMOZKQFC0F12+MFzvf9 odW7TZsLx3LDZzVdmTfHYgikgH4jZ1X6QExowqiBPJi6+oX4BNE2tGFw443cm/TI ZyY9IatTq4TAc28YHDTyPd4if7SVPgQEA45gd+0z8Oa/4lD5UuM/386EUg== -----END CERTIFICATE-----Generated at Sun Jun 14 09:56:48 2026 by rpki-client