$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32302e302f32322d3234203d3e2034383038.roa File: 34352e3132342e32302e302f32322d3234203d3e2034383038.roa (raw, json) Hash identifier: VQKbcAq7R8xZyittc+WvYgaK4W2mqZVQrC8loMmspbc= Subject key identifier: 68:EA:D2:10:89:C7:26:3E:65:79:7B:7C:88:6C:6F:65:02:6D:B0:2B Certificate issuer: /CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Certificate serial: 4ED2FEED650E7CD3452F0C54417E19B15195BF0A Authority key identifier: B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32302e302f32322d3234203d3e2034383038.roa Signing time: Thu 04 Jun 2026 08:49:36 +0000 ROA not before: Thu 04 Jun 2026 08:44:36 +0000 ROA not after: Thu 03 Jun 2027 08:49:36 +0000 asID: 4808 IP address blocks: 45.124.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 14:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d2:fe:ed:65:0e:7c:d3:45:2f:0c:54:41:7e:19:b1:51:95:bf:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Validity Not Before: Jun 4 08:44:36 2026 GMT Not After : Jun 3 08:49:36 2027 GMT Subject: CN=68EAD21089C7263E65797B7C886C6F65026DB02B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c0:a6:5b:09:59:c4:39:60:ff:8a:32:dd:29: 44:c9:0e:43:71:9c:59:f7:74:5b:92:b6:3c:43:ad: b1:7b:d1:e1:14:2f:7d:0e:80:f9:45:35:f6:fb:fe: 1c:26:4b:b3:e3:3d:7f:af:80:4f:49:d7:0f:0f:65: 3a:e1:4f:c3:38:4a:5b:6d:5d:64:b1:c0:31:74:20: 33:a5:33:b1:d6:25:4e:11:42:92:30:8d:db:5b:38: a5:64:d6:49:11:93:9a:7b:0c:8f:f7:79:a2:6f:80: 0b:cd:87:55:bd:1d:48:02:23:59:ce:10:36:ea:bc: 01:7d:7b:29:42:71:09:54:08:87:63:a6:0e:70:08: f2:7b:66:2b:25:6e:0f:95:a2:ef:3c:28:9c:8f:02: 1f:5b:8c:d4:4c:b8:c1:af:88:0d:86:6a:0f:6f:2c: 22:1b:70:0d:cc:6e:42:b6:65:94:ca:a5:d1:53:be: 6c:13:7e:3b:7c:02:84:97:31:83:0d:89:49:39:cb: f6:ca:b2:98:0e:85:fd:44:f9:cf:55:dc:39:33:03: c6:02:ad:fb:b2:8c:87:ef:9d:45:24:eb:bf:90:c9: ec:8a:c7:95:33:01:45:25:6f:9f:27:14:61:6c:55: 7c:4a:60:63:71:40:ff:20:10:a6:48:ec:1b:90:3b: 2f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:EA:D2:10:89:C7:26:3E:65:79:7B:7C:88:6C:6F:65:02:6D:B0:2B X509v3 Authority Key Identifier: keyid:B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/34352e3132342e32302e302f32322d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.124.20.0/22 Signature Algorithm: sha256WithRSAEncryption 38:dd:6c:ae:ca:fc:85:f3:fe:18:b7:57:97:00:a8:df:7d:40: 5e:7c:ec:6f:0d:52:ad:f1:64:f3:56:37:4f:c9:bb:d9:3a:4c: d1:b0:c5:f6:ff:e7:18:cc:37:00:cf:a1:92:30:3c:60:64:06: 49:17:b7:e9:41:83:eb:73:71:74:4c:1e:71:ae:34:f9:4d:74: d9:da:cd:f2:df:75:9a:e9:0a:40:54:a6:c5:50:d2:03:d9:fe: 0e:52:4c:70:ac:ec:4e:bd:cb:ea:6c:af:1d:c2:4d:13:28:ef: 4b:1a:2f:6b:c8:11:28:bf:58:79:9d:5a:fd:ac:40:64:df:3f: ae:e4:d4:09:48:9a:19:f6:26:12:cc:55:05:6a:24:0c:77:b5: 1d:0f:93:eb:05:fa:94:91:89:c7:6d:9a:66:87:53:f3:95:e3: 42:de:d7:c7:24:67:71:41:d0:0e:48:9e:77:cf:94:0d:2b:13: 7c:25:2b:0d:28:13:14:fd:fc:5e:a2:70:7a:f3:39:ec:6c:9d: 87:01:09:c6:f4:0f:2f:4c:4d:58:7f:62:d6:9f:2e:98:04:31: 7d:d9:a4:a9:00:93:9c:9f:4d:2f:8c:d9:6b:89:1f:14:c6:63: cc:f4:cb:1e:f0:5f:96:83:33:7a:0c:28:dd:0a:ff:2f:5a:e9: 17:23:fc:22 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUTtL+7WUOfNNFLwxUQX4ZsVGVvwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3 RDI3NzVDOTAeFw0yNjA2MDQwODQ0MzZaFw0yNzA2MDMwODQ5MzZaMDMxMTAvBgNV BAMTKDY4RUFEMjEwODlDNzI2M0U2NTc5N0I3Qzg4NkM2RjY1MDI2REIwMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdwKZbCVnEOWD/ijLdKUTJDkNx nFn3dFuStjxDrbF70eEUL30OgPlFNfb7/hwmS7PjPX+vgE9J1w8PZTrhT8M4Sltt XWSxwDF0IDOlM7HWJU4RQpIwjdtbOKVk1kkRk5p7DI/3eaJvgAvNh1W9HUgCI1nO EDbqvAF9eylCcQlUCIdjpg5wCPJ7Zislbg+Vou88KJyPAh9bjNRMuMGviA2Gag9v LCIbcA3MbkK2ZZTKpdFTvmwTfjt8AoSXMYMNiUk5y/bKspgOhf1E+c9V3DkzA8YC rfuyjIfvnUUk67+QyeyKx5UzAUUlb58nFGFsVXxKYGNxQP8gEKZI7BuQOy8zAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUaOrSEInHJj5leXt8iGxvZQJtsCswHwYDVR0j BBgwFoAUsoJ0pxih/pp0525HeweQYH0ndckwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MjcyNDMzMTczNTAyMzYzMy8wL0IyODI3NEE3MThBMUZFOUE3NEU3NkU0NzdCMDc5 MDYwN0QyNzc1QzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3RDI3NzVDOS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTEyNzI0MzMxNzM1MDIzNjMzLzAvMzQzNTJlMzEzMjM0 MmUzMjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAItfBQwDQYJKoZIhvcNAQELBQADggEBADjdbK7K/IXz/hi3V5cAqN99QF587G8N Uq3xZPNWN0/Ju9k6TNGwxfb/5xjMNwDPoZIwPGBkBkkXt+lBg+tzcXRMHnGuNPlN dNnazfLfdZrpCkBUpsVQ0gPZ/g5STHCs7E69y+psrx3CTRMo70saL2vIESi/WHmd Wv2sQGTfP67k1AlImhn2JhLMVQVqJAx3tR0Pk+sF+pSRicdtmmaHU/OV40Le18ck Z3FB0A5InnfPlA0rE3wlKw0oExT9/F6icHrzOexsnYcBCcb0Dy9MTVh/YtafLpgE MX3ZpKkAk5yfTS+M2WuJHxTGY8z0yx7wX5aDM3oMKN0K/y9a6Rcj/CI= -----END CERTIFICATE-----Generated at Sat Jun 13 19:54:42 2026 by rpki-client