$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114113049960120339/0/34352e3234392e3231322e302f32322d3232203d3e203633363535.roa File: 34352e3234392e3231322e302f32322d3232203d3e203633363535.roa (raw, json) Hash identifier: XRF+yXRb2uPY0v2bR7ngxvXurDM+P+M+esd6vmyMemI= Subject key identifier: 8A:43:20:38:C1:CE:02:55:5B:5F:11:07:53:C5:3C:EE:B4:EC:66:EA Certificate issuer: /CN=04CFDCD1650DD854FF0F6840232427716459F9F6 Certificate serial: 43A483D79FADB22E151EF7D3DE11824B5E480A8D Authority key identifier: 04:CF:DC:D1:65:0D:D8:54:FF:0F:68:40:23:24:27:71:64:59:F9:F6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/04CFDCD1650DD854FF0F6840232427716459F9F6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/34352e3234392e3231322e302f32322d3232203d3e203633363535.roa Signing time: Sat 06 Jun 2026 15:50:39 +0000 ROA not before: Sat 06 Jun 2026 15:45:39 +0000 ROA not after: Sat 05 Jun 2027 15:50:39 +0000 asID: 63655 IP address blocks: 45.249.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/04CFDCD1650DD854FF0F6840232427716459F9F6.crl rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/04CFDCD1650DD854FF0F6840232427716459F9F6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/04CFDCD1650DD854FF0F6840232427716459F9F6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 11:48:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a4:83:d7:9f:ad:b2:2e:15:1e:f7:d3:de:11:82:4b:5e:48:0a:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CFDCD1650DD854FF0F6840232427716459F9F6 Validity Not Before: Jun 6 15:45:39 2026 GMT Not After : Jun 5 15:50:39 2027 GMT Subject: CN=8A432038C1CE02555B5F110753C53CEEB4EC66EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:8d:f6:3e:46:5b:71:41:81:59:19:6e:a3:bc: 2d:3d:76:b5:06:92:51:4b:9b:ac:af:bd:72:f6:1a: a1:96:8e:5c:43:48:45:ed:69:b7:ee:11:79:ef:64: 80:f5:15:50:9c:1e:97:3c:c3:10:4a:85:c3:f2:cd: 82:f7:50:0a:45:df:80:ab:a8:ee:c8:c5:57:3e:04: d8:d3:7b:ed:cc:7d:50:f1:c8:db:75:7f:37:19:8d: cf:0a:d2:d1:17:43:52:62:c2:87:50:c1:82:48:34: 9a:81:05:26:ef:57:f1:dd:3c:21:bb:e7:c6:24:9f: 2c:de:1a:ae:22:e6:5a:69:53:2d:ae:01:81:22:c5: 31:af:23:2f:fd:18:6c:38:f2:6c:26:77:55:3f:cf: 64:b6:b6:47:a3:6b:75:e4:e8:b6:80:85:33:dd:19: d1:ea:a2:1f:f1:73:f2:7b:19:d8:3a:65:96:4f:8a: 25:73:fa:41:40:20:28:e4:7d:8c:97:ec:41:11:2a: 9c:c3:26:d6:3d:39:e9:2e:b3:a3:82:f9:e1:0e:2b: 3d:23:5e:42:f4:3b:d6:6b:f0:cb:96:d8:eb:fa:2f: 6c:30:ba:8b:e1:fb:10:be:32:f3:35:94:4c:dc:5c: 73:4a:3a:0f:7f:1a:3c:de:35:27:84:af:5d:2e:fa: b4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:43:20:38:C1:CE:02:55:5B:5F:11:07:53:C5:3C:EE:B4:EC:66:EA X509v3 Authority Key Identifier: keyid:04:CF:DC:D1:65:0D:D8:54:FF:0F:68:40:23:24:27:71:64:59:F9:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/04CFDCD1650DD854FF0F6840232427716459F9F6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/04CFDCD1650DD854FF0F6840232427716459F9F6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114113049960120339/0/34352e3234392e3231322e302f32322d3232203d3e203633363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.212.0/22 Signature Algorithm: sha256WithRSAEncryption 67:a8:c6:33:a0:48:b1:09:e5:67:1b:71:cb:b8:dd:2f:64:b2: 24:0f:fc:a3:7d:84:72:ea:24:74:1f:04:7c:f9:b6:45:cd:c9: 11:ba:cc:db:4e:65:c1:5f:e9:58:b4:c3:f1:8a:b8:b2:ad:6b: 27:43:bc:aa:92:b5:04:b3:17:b3:9d:66:20:99:96:42:dd:3e: 2d:2d:53:39:19:b8:98:9f:a1:7b:7c:81:00:66:2d:f9:3f:2e: ab:9a:cb:8a:e2:d0:8f:24:e3:69:a6:63:68:8f:c7:b5:e0:6f: 4a:38:68:db:7b:2f:ea:be:9b:99:8a:0b:33:29:b1:61:d0:ce: 9d:f6:ea:a9:e7:e6:59:0f:81:d3:25:25:04:95:ce:43:97:f9: b2:08:47:be:ee:88:ed:15:47:6f:1f:f9:a0:5d:a7:01:7d:3b: 4c:df:86:ea:b0:ed:69:79:c7:94:16:31:c4:af:14:a4:1c:78: f4:e0:ef:c3:b2:d5:43:59:58:a1:32:33:d4:4f:99:55:b6:9a: 94:14:8e:1b:5e:b0:8c:13:e9:14:0e:51:e4:cd:09:a0:f7:3c: 07:15:aa:33:65:da:a1:1f:79:93:07:54:d0:c9:65:41:36:a5: b0:be:07:8f:f2:8a:36:6a:3f:f7:d8:0d:03:44:5c:bf:66:ae: 4e:76:72:a1 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQ6SD15+tsi4VHvfT3hGCS15ICo0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDRDRkRDRDE2NTBERDg1NEZGMEY2ODQwMjMyNDI3NzE2 NDU5RjlGNjAeFw0yNjA2MDYxNTQ1MzlaFw0yNzA2MDUxNTUwMzlaMDMxMTAvBgNV BAMTKDhBNDMyMDM4QzFDRTAyNTU1QjVGMTEwNzUzQzUzQ0VFQjRFQzY2RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQjfY+RltxQYFZGW6jvC09drUG klFLm6yvvXL2GqGWjlxDSEXtabfuEXnvZID1FVCcHpc8wxBKhcPyzYL3UApF34Cr qO7IxVc+BNjTe+3MfVDxyNt1fzcZjc8K0tEXQ1JiwodQwYJINJqBBSbvV/HdPCG7 58YknyzeGq4i5lppUy2uAYEixTGvIy/9GGw48mwmd1U/z2S2tkeja3Xk6LaAhTPd GdHqoh/xc/J7Gdg6ZZZPiiVz+kFAICjkfYyX7EERKpzDJtY9Oekus6OC+eEOKz0j XkL0O9Zr8MuW2Ov6L2wwuovh+xC+MvM1lEzcXHNKOg9/GjzeNSeEr10u+rRVAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUikMgOMHOAlVbXxEHU8U87rTsZuowHwYDVR0j BBgwFoAUBM/c0WUN2FT/D2hAIyQncWRZ+fYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDExMzA0OTk2MDEyMDMzOS8wLzA0Q0ZEQ0QxNjUwREQ4NTRGRjBGNjg0MDIzMjQy NzcxNjQ1OUY5RjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDRDRkRDRDE2NTBERDg1NEZGMEY2ODQwMjMyNDI3NzE2NDU5RjlGNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExNDExMzA0OTk2MDEyMDMzOS8wLzM0MzUyZTMyMzQz OTJlMzIzMTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzUzNS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAi351DANBgkqhkiG9w0BAQsFAAOCAQEAZ6jGM6BIsQnlZxtxy7jdL2Sy JA/8o32EcuokdB8EfPm2Rc3JEbrM205lwV/pWLTD8Yq4sq1rJ0O8qpK1BLMXs51m IJmWQt0+LS1TORm4mJ+he3yBAGYt+T8uq5rLiuLQjyTjaaZjaI/HteBvSjho23sv 6r6bmYoLMymxYdDOnfbqqefmWQ+B0yUlBJXOQ5f5sghHvu6I7RVHbx/5oF2nAX07 TN+G6rDtaXnHlBYxxK8UpBx49ODvw7LVQ1lYoTIz1E+ZVbaalBSOG16wjBPpFA5R 5M0JoPc8BxWqM2XaoR95kwdU0MllQTalsL4Hj/KKNmo/99gNA0Rcv2auTnZyoQ== -----END CERTIFICATE-----Generated at Sun Jun 14 00:36:23 2026 by rpki-client