$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e37362e302f32322d3232203d3e203234343236.roa File: 34332e3234362e37362e302f32322d3232203d3e203234343236.roa (raw, json) Hash identifier: qjddBA3UucfwuaGZluArrlIkhoBaKzzo4HuI9mw4W4k= Subject key identifier: A9:B2:77:A4:F4:11:19:86:01:B2:1D:D9:60:AD:74:77:14:D0:31:7F Certificate issuer: /CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Certificate serial: 6F17C8C3D56470194BE36EBA1F576BA104946D50 Authority key identifier: 2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e37362e302f32322d3232203d3e203234343236.roa Signing time: Fri 05 Jun 2026 05:48:48 +0000 ROA not before: Fri 05 Jun 2026 05:43:48 +0000 ROA not after: Fri 04 Jun 2027 05:48:48 +0000 asID: 24426 IP address blocks: 43.246.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:17:c8:c3:d5:64:70:19:4b:e3:6e:ba:1f:57:6b:a1:04:94:6d:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Validity Not Before: Jun 5 05:43:48 2026 GMT Not After : Jun 4 05:48:48 2027 GMT Subject: CN=A9B277A4F411198601B21DD960AD747714D0317F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cc:51:06:71:09:35:d3:db:52:d2:bc:48:71: d6:c4:5e:c9:ab:2f:23:47:45:4a:11:6d:2b:f4:1a: 4e:d2:2a:d9:af:31:a1:84:69:0e:cf:88:ee:c1:c4: b1:7a:59:5c:f4:aa:42:1d:e3:05:c7:6c:61:56:58: 65:c7:89:35:0f:1d:70:51:ca:0f:1e:4b:c3:be:5f: cf:e2:4d:65:0b:16:d1:0b:b0:aa:d9:b2:79:e1:ee: c2:a2:99:92:d0:83:2b:e8:bf:d3:bc:48:2a:46:8f: e7:ff:e1:a5:58:42:6f:7a:20:4f:c9:12:6d:8b:5c: 6e:ac:46:63:3c:b8:2e:37:ad:f4:f0:a8:2c:58:f1: 41:f8:4a:d0:86:b7:0e:6a:69:96:b2:eb:81:83:db: f6:65:9a:aa:db:f1:bd:04:75:9f:c8:cb:dd:77:93: 4c:a7:8a:90:bc:1a:61:a4:6e:de:6b:11:d0:cd:0a: f9:4f:1a:2e:b1:68:0c:a7:0b:c5:36:23:44:65:c2: 9e:0e:a0:df:e9:6e:f9:29:7d:8f:1b:50:0f:5e:c1: 3c:91:1a:7d:08:ef:ec:f0:79:d7:f7:ce:3c:65:52: b7:f9:c9:1e:f4:df:e6:2c:dc:4a:f3:6d:e6:4d:7d: bf:83:5a:84:25:e6:76:e7:1e:cc:4b:fd:a3:a9:cf: 67:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B2:77:A4:F4:11:19:86:01:B2:1D:D9:60:AD:74:77:14:D0:31:7F X509v3 Authority Key Identifier: keyid:2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e37362e302f32322d3232203d3e203234343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.246.76.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:26:df:65:fb:e4:4f:32:eb:bd:ab:bc:4a:3a:c8:17:a8:42: 6c:bd:0c:ca:1d:68:64:ed:16:c0:b1:ba:64:76:d5:fc:5f:a4: 43:58:64:ac:ae:91:7d:74:9e:04:cd:ae:66:42:98:f5:ad:8e: dc:d4:16:0c:3f:37:4c:03:96:22:64:d3:6d:0a:0a:aa:00:08: ef:92:b8:b9:ff:bd:3e:d0:cd:20:e6:52:25:80:39:fc:23:3d: ed:2d:d8:8f:91:63:2a:07:29:67:9f:2a:9b:06:45:1f:f7:b9: 2a:ed:a2:45:b9:4d:d2:b2:0e:b7:00:3a:0f:d2:a8:68:4e:b7: 0d:6d:3d:c1:9e:6f:d3:7f:0a:1b:44:4e:21:c8:2c:5b:d4:92: 8d:10:50:74:83:83:f4:ad:5a:60:98:b5:ed:2f:3d:a4:75:c2: 90:6a:0d:3f:ad:c1:ea:95:eb:2b:1a:12:9c:41:2a:b6:eb:15: 3f:11:02:7b:22:50:40:78:38:b6:19:db:09:f5:ab:c8:de:c2: c6:59:6d:e1:2f:3f:a7:95:bf:6d:3e:5e:62:22:b1:c0:ca:37: 09:56:84:f7:9e:52:ca:1c:08:4a:d7:77:50:31:05:19:1c:9c: 4c:9c:74:57:98:58:c9:5e:43:94:78:09:6d:9b:ec:e4:f9:b8: 69:b8:7c:45 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUbxfIw9VkcBlL4266H1droQSUbVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0Mx OEQ2QjM2MDAeFw0yNjA2MDUwNTQzNDhaFw0yNzA2MDQwNTQ4NDhaMDMxMTAvBgNV BAMTKEE5QjI3N0E0RjQxMTE5ODYwMUIyMUREOTYwQUQ3NDc3MTREMDMxN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrzFEGcQk109tS0rxIcdbEXsmr LyNHRUoRbSv0Gk7SKtmvMaGEaQ7PiO7BxLF6WVz0qkId4wXHbGFWWGXHiTUPHXBR yg8eS8O+X8/iTWULFtELsKrZsnnh7sKimZLQgyvov9O8SCpGj+f/4aVYQm96IE/J Em2LXG6sRmM8uC43rfTwqCxY8UH4StCGtw5qaZay64GD2/Zlmqrb8b0EdZ/Iy913 k0ynipC8GmGkbt5rEdDNCvlPGi6xaAynC8U2I0Rlwp4OoN/pbvkpfY8bUA9ewTyR Gn0I7+zwedf3zjxlUrf5yR703+Ys3ErzbeZNfb+DWoQl5nbnHsxL/aOpz2fVAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUqbJ3pPQRGYYBsh3ZYK10dxTQMX8wHwYDVR0j BBgwFoAULyyDOcyOREZ99bpdD2YUPBjWs2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODE0MDU0Ny8wLzJGMkM4MzM5Q0M4RTQ0NDY3REY1QkE1RDBGNjYx NDNDMThENkIzNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0MxOEQ2QjM2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MTQwNTQ3LzAvMzQzMzJlMzIzNDM2 MmUzNzM2MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDM0MzIzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv2TDANBgkqhkiG9w0BAQsFAAOCAQEAjybfZfvkTzLrvau8SjrIF6hCbL0M yh1oZO0WwLG6ZHbV/F+kQ1hkrK6RfXSeBM2uZkKY9a2O3NQWDD83TAOWImTTbQoK qgAI75K4uf+9PtDNIOZSJYA5/CM97S3Yj5FjKgcpZ58qmwZFH/e5Ku2iRblN0rIO twA6D9KoaE63DW09wZ5v038KG0ROIcgsW9SSjRBQdIOD9K1aYJi17S89pHXCkGoN P63B6pXrKxoSnEEqtusVPxECeyJQQHg4thnbCfWryN7Cxllt4S8/p5W/bT5eYiKx wMo3CVaE955SyhwIStd3UDEFGRycTJx0V5hYyV5DlHgJbZvs5Pm4abh8RQ== -----END CERTIFICATE-----Generated at Sun Jun 14 09:56:49 2026 by rpki-client