$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e38382e302f32322d3232203d3e203234343236.roa File: 34332e3234362e38382e302f32322d3232203d3e203234343236.roa (raw, json) Hash identifier: q5QL+mYjCpK2025GslKpSjbVnO9hCN354pQefwoIsyo= Subject key identifier: 43:4D:B8:E1:77:F2:23:60:F6:9F:3A:91:AD:F9:59:E8:61:FF:3A:06 Certificate issuer: /CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Certificate serial: 387B9CB3EDE4E0362237BCAE83233E18E1F72847 Authority key identifier: 2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e38382e302f32322d3232203d3e203234343236.roa Signing time: Fri 05 Jun 2026 05:51:16 +0000 ROA not before: Fri 05 Jun 2026 05:46:16 +0000 ROA not after: Fri 04 Jun 2027 05:51:16 +0000 asID: 24426 IP address blocks: 43.246.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7b:9c:b3:ed:e4:e0:36:22:37:bc:ae:83:23:3e:18:e1:f7:28:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Validity Not Before: Jun 5 05:46:16 2026 GMT Not After : Jun 4 05:51:16 2027 GMT Subject: CN=434DB8E177F22360F69F3A91ADF959E861FF3A06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:96:ca:46:f1:23:4c:d3:4c:dc:d2:02:49:b6: 0b:0b:01:01:2b:ad:d5:09:a2:7f:93:0a:a6:9d:5a: 38:29:50:5f:01:a8:26:6a:cd:3d:1f:5a:06:e9:74: c3:7f:d2:2f:cd:8c:4c:44:41:78:0d:d8:a4:dd:20: 0d:06:85:5e:58:8b:9b:84:4a:b8:86:92:a6:33:13: b4:68:7f:6d:ad:43:98:da:98:76:21:e5:8d:7e:9f: 6b:9b:2f:93:1f:5b:91:9b:0a:1f:07:9e:38:24:96: 2f:de:fa:53:3f:74:c1:c8:6d:64:c6:ce:3f:f9:93: 04:ef:80:d6:a2:1c:3a:fb:ef:82:c3:2d:65:77:60: 32:c5:34:bf:40:7e:c4:aa:64:cd:cc:92:36:aa:0a: 9d:33:a3:2b:6b:7b:04:03:5a:72:e2:19:fc:4c:b7: d0:08:91:9b:1e:0e:71:24:4d:32:db:ec:3f:7c:26: 9f:0c:fd:bf:f9:63:3d:9c:1f:7f:d0:d5:29:3f:13: 1e:84:e8:53:3a:be:32:b7:c1:cf:68:bf:5a:e1:f5: 25:20:18:74:8f:95:f6:76:7b:d5:e6:9f:e0:8a:11: b9:99:ec:41:10:ac:60:8a:04:27:11:ca:37:1d:5f: b0:90:c7:03:b2:8e:c5:2d:f1:b6:39:18:2b:50:3f: ba:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4D:B8:E1:77:F2:23:60:F6:9F:3A:91:AD:F9:59:E8:61:FF:3A:06 X509v3 Authority Key Identifier: keyid:2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3234362e38382e302f32322d3232203d3e203234343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.246.88.0/22 Signature Algorithm: sha256WithRSAEncryption d4:40:2a:6e:0f:03:90:a9:53:2d:eb:3b:6c:70:81:6f:d6:2b: 1f:d9:1f:df:b7:9c:1c:cb:ef:95:e3:53:3a:b1:c5:e5:6b:ed: b6:20:f9:d7:9e:c1:55:1e:79:1d:7a:f3:cb:7d:87:41:32:04: ba:c7:37:80:65:79:25:7e:30:3a:41:8a:52:c3:ea:77:db:eb: 18:00:f6:6a:40:d6:a5:58:d4:d5:7f:e4:80:88:0f:ff:5f:fb: 21:97:7f:4c:46:1b:63:44:52:ea:df:72:55:e5:5c:cf:b6:b4: 1c:8c:94:8f:be:9f:a1:45:34:2f:db:1b:f0:5f:bb:3a:7b:f6: 02:d4:0d:59:c7:c7:e8:dc:0a:2a:76:4f:1c:e8:40:15:25:89: 9c:88:4e:c6:02:34:66:6d:85:dc:3b:a1:81:89:ca:08:a9:56: d7:ad:dd:91:37:e2:ca:a1:7c:91:b7:00:f4:f1:c0:5c:13:99: 78:14:72:d3:5c:25:c4:20:67:2e:c7:0c:ab:cf:54:6c:4f:79: af:a1:7e:4a:ca:6d:93:ed:12:21:53:99:9d:f1:6f:4a:d3:68: f4:78:f7:cf:8c:2a:f0:06:b6:01:e9:7a:b3:79:ab:29:c1:4c: 31:11:52:b9:19:48:47:c5:ad:1e:80:af:7e:8f:9f:13:d7:b3: d3:9b:ce:f9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUOHucs+3k4DYiN7yugyM+GOH3KEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0Mx OEQ2QjM2MDAeFw0yNjA2MDUwNTQ2MTZaFw0yNzA2MDQwNTUxMTZaMDMxMTAvBgNV BAMTKDQzNERCOEUxNzdGMjIzNjBGNjlGM0E5MUFERjk1OUU4NjFGRjNBMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVlspG8SNM00zc0gJJtgsLAQEr rdUJon+TCqadWjgpUF8BqCZqzT0fWgbpdMN/0i/NjExEQXgN2KTdIA0GhV5Yi5uE SriGkqYzE7Rof22tQ5jamHYh5Y1+n2ubL5MfW5GbCh8Hnjgkli/e+lM/dMHIbWTG zj/5kwTvgNaiHDr774LDLWV3YDLFNL9AfsSqZM3MkjaqCp0zoytrewQDWnLiGfxM t9AIkZseDnEkTTLb7D98Jp8M/b/5Yz2cH3/Q1Sk/Ex6E6FM6vjK3wc9ov1rh9SUg GHSPlfZ2e9Xmn+CKEbmZ7EEQrGCKBCcRyjcdX7CQxwOyjsUt8bY5GCtQP7qZAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUQ0244XfyI2D2nzqRrflZ6GH/OgYwHwYDVR0j BBgwFoAULyyDOcyOREZ99bpdD2YUPBjWs2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODE0MDU0Ny8wLzJGMkM4MzM5Q0M4RTQ0NDY3REY1QkE1RDBGNjYx NDNDMThENkIzNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0MxOEQ2QjM2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MTQwNTQ3LzAvMzQzMzJlMzIzNDM2 MmUzODM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDM0MzIzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv2WDANBgkqhkiG9w0BAQsFAAOCAQEA1EAqbg8DkKlTLes7bHCBb9YrH9kf 37ecHMvvleNTOrHF5WvttiD5157BVR55HXrzy32HQTIEusc3gGV5JX4wOkGKUsPq d9vrGAD2akDWpVjU1X/kgIgP/1/7IZd/TEYbY0RS6t9yVeVcz7a0HIyUj76foUU0 L9sb8F+7Onv2AtQNWcfH6NwKKnZPHOhAFSWJnIhOxgI0Zm2F3DuhgYnKCKlW163d kTfiyqF8kbcA9PHAXBOZeBRy01wlxCBnLscMq89UbE95r6F+Ssptk+0SIVOZnfFv StNo9Hj3z4wq8Aa2Ael6s3mrKcFMMRFSuRlIR8WtHoCvfo+fE9ez05vO+Q== -----END CERTIFICATE-----Generated at Sun Jun 14 09:56:45 2026 by rpki-client