$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1114859310908768281/0/34332e3232342e37322e302f32322d3232203d3e2030.roa File: 34332e3232342e37322e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: Z7n2GETvz6qdxJjD+2JtNEFlMdPoKyod/n6PeMXops8= Subject key identifier: EE:7D:FE:35:8A:A9:C5:DE:53:70:78:89:91:C8:69:A8:96:3C:CD:17 Certificate issuer: /CN=A0C998BFCCAE8946353EA73912CB7156A19A818C Certificate serial: 2063BFFB4DABBB2CFA4B092153B3188A3226529E Authority key identifier: A0:C9:98:BF:CC:AE:89:46:35:3E:A7:39:12:CB:71:56:A1:9A:81:8C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A0C998BFCCAE8946353EA73912CB7156A19A818C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1114859310908768281/0/34332e3232342e37322e302f32322d3232203d3e2030.roa Signing time: Thu 04 Jun 2026 10:19:36 +0000 ROA not before: Thu 04 Jun 2026 10:14:36 +0000 ROA not after: Thu 03 Jun 2027 10:19:36 +0000 asID: 0 IP address blocks: 43.224.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1114859310908768281/0/A0C998BFCCAE8946353EA73912CB7156A19A818C.crl rsync://rpki-rps.cnnic.cn/repo/A1114859310908768281/0/A0C998BFCCAE8946353EA73912CB7156A19A818C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A0C998BFCCAE8946353EA73912CB7156A19A818C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 22:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:63:bf:fb:4d:ab:bb:2c:fa:4b:09:21:53:b3:18:8a:32:26:52:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0C998BFCCAE8946353EA73912CB7156A19A818C Validity Not Before: Jun 4 10:14:36 2026 GMT Not After : Jun 3 10:19:36 2027 GMT Subject: CN=EE7DFE358AA9C5DE5370788991C869A8963CCD17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a1:24:e3:b3:2b:c0:cf:09:cf:67:f0:03:43: 34:0c:2c:7e:7b:e1:fa:fb:c3:57:b7:e5:8c:47:6c: 13:ca:e7:ea:d6:f1:14:58:92:5b:1f:ac:5c:1c:e9: 7a:ec:32:2b:49:b5:5b:57:00:49:fb:8c:89:eb:73: 3a:5a:e2:f2:61:c8:e0:f9:21:f1:af:d4:94:3f:94: 72:96:e8:27:71:46:10:cc:85:65:67:40:17:af:d7: 00:90:7e:d9:04:af:75:0d:7c:50:a7:4f:16:15:c1: d1:04:0a:29:75:94:24:17:25:9e:44:db:5b:5d:a4: b3:27:22:8d:ce:fc:93:da:74:46:33:69:d3:83:5b: b5:f9:84:09:23:02:32:7e:a0:d6:b7:54:64:b7:f5: f4:c8:bc:c3:e2:95:36:56:65:c7:1f:6e:3f:be:7f: 2f:56:b5:29:d3:92:70:19:ed:6a:1e:8a:7c:0e:76: a6:27:21:6d:e9:29:6a:ba:87:c1:2e:9c:7b:72:69: 79:17:3c:88:e7:0c:01:07:77:2e:cd:61:aa:24:91: f9:91:0d:0c:e3:9a:46:ea:af:35:98:27:4b:97:56: b9:b9:a9:65:52:c7:5f:f6:55:2f:de:dc:b5:6e:52: 56:2e:a0:c8:30:45:81:40:5d:bc:eb:98:ec:46:4f: 04:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:7D:FE:35:8A:A9:C5:DE:53:70:78:89:91:C8:69:A8:96:3C:CD:17 X509v3 Authority Key Identifier: keyid:A0:C9:98:BF:CC:AE:89:46:35:3E:A7:39:12:CB:71:56:A1:9A:81:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1114859310908768281/0/A0C998BFCCAE8946353EA73912CB7156A19A818C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A0C998BFCCAE8946353EA73912CB7156A19A818C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1114859310908768281/0/34332e3232342e37322e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.72.0/22 Signature Algorithm: sha256WithRSAEncryption 15:7f:ff:17:7b:3a:18:3d:96:5d:31:4d:2c:6f:ea:cc:67:f0: c5:d1:a0:da:00:8a:67:ef:a0:8f:15:01:dc:61:8f:a4:de:37: f3:00:6a:fd:5a:61:b4:8f:8a:c5:df:01:f7:1b:0d:19:83:6c: 94:9c:3c:17:16:d1:bf:14:be:47:2e:61:a4:75:79:e7:c9:0f: 89:83:51:71:84:a9:68:de:35:74:8e:e5:d3:2c:82:bf:57:fe: 58:52:a3:5b:5d:89:15:2b:e9:fb:7a:3f:3a:a1:92:a8:57:dd: cb:89:66:8b:d8:d0:22:a5:3a:a8:59:40:e3:cd:b2:b8:08:dc: cd:4c:61:9b:a8:b8:ba:70:c0:75:fd:39:72:5b:e8:83:3a:ec: bd:98:7d:d4:64:fa:d1:74:2c:23:5f:d8:d9:d6:18:7d:c2:68: ad:19:a3:b0:06:28:e4:f5:06:50:54:c5:79:7f:92:d2:ea:70: 51:49:16:a3:78:f5:23:2c:d7:44:94:e9:cf:c6:e2:f8:5d:b5: 18:b8:68:52:09:43:cf:c5:84:76:ed:f4:8d:07:9e:ba:75:0f: ac:eb:72:d5:18:30:35:49:e8:89:be:b3:28:04:84:bb:dc:b5: 0f:e8:83:33:1a:ae:a4:f7:f5:ce:05:eb:e0:8d:8b:d2:a5:ea: 6f:e5:88:bd -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUIGO/+02ruyz6SwkhU7MYijImUp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBDOTk4QkZDQ0FFODk0NjM1M0VBNzM5MTJDQjcxNTZB MTlBODE4QzAeFw0yNjA2MDQxMDE0MzZaFw0yNzA2MDMxMDE5MzZaMDMxMTAvBgNV BAMTKEVFN0RGRTM1OEFBOUM1REU1MzcwNzg4OTkxQzg2OUE4OTYzQ0NEMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1oSTjsyvAzwnPZ/ADQzQMLH57 4fr7w1e35YxHbBPK5+rW8RRYklsfrFwc6XrsMitJtVtXAEn7jInrczpa4vJhyOD5 IfGv1JQ/lHKW6CdxRhDMhWVnQBev1wCQftkEr3UNfFCnTxYVwdEECil1lCQXJZ5E 21tdpLMnIo3O/JPadEYzadODW7X5hAkjAjJ+oNa3VGS39fTIvMPilTZWZccfbj++ fy9WtSnTknAZ7WoeinwOdqYnIW3pKWq6h8EunHtyaXkXPIjnDAEHdy7NYaokkfmR DQzjmkbqrzWYJ0uXVrm5qWVSx1/2VS/e3LVuUlYuoMgwRYFAXbzrmOxGTwQBAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQU7n3+NYqpxd5TcHiJkchpqJY8zRcwHwYDVR0j BBgwFoAUoMmYv8yuiUY1Pqc5EstxVqGagYwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx NDg1OTMxMDkwODc2ODI4MS8wL0EwQzk5OEJGQ0NBRTg5NDYzNTNFQTczOTEyQ0I3 MTU2QTE5QTgxOEMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTBDOTk4QkZDQ0FFODk0NjM1M0VBNzM5MTJDQjcxNTZBMTlBODE4Qy5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTE0ODU5MzEwOTA4NzY4MjgxLzAvMzQzMzJlMzIzMjM0 MmUzNzMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr4Egw DQYJKoZIhvcNAQELBQADggEBABV//xd7Ohg9ll0xTSxv6sxn8MXRoNoAimfvoI8V Adxhj6TeN/MAav1aYbSPisXfAfcbDRmDbJScPBcW0b8UvkcuYaR1eefJD4mDUXGE qWjeNXSO5dMsgr9X/lhSo1tdiRUr6ft6PzqhkqhX3cuJZovY0CKlOqhZQOPNsrgI 3M1MYZuouLpwwHX9OXJb6IM67L2YfdRk+tF0LCNf2NnWGH3CaK0Zo7AGKOT1BlBU xXl/ktLqcFFJFqN49SMs10SU6c/G4vhdtRi4aFIJQ8/FhHbt9I0Hnrp1D6zrctUY MDVJ6Im+sygEhLvctQ/ogzMarqT39c4F6+CNi9Kl6m/liL0= -----END CERTIFICATE-----Generated at Sat Jun 13 10:49:29 2026 by rpki-client