$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203539303433.roa File: 34332e3235352e3232382e302f32322d3232203d3e203539303433.roa (raw, json) Hash identifier: 47ZX+odkDMI6UANpyurQ443lYb4OU8O8VarkF8Yb7sg= Subject key identifier: 10:F9:EE:AB:11:57:40:56:01:92:44:8F:72:76:BC:7B:FA:1D:86:56 Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 64B31C2261ECED3338D6718F690FA4B37286AF13 Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203539303433.roa Signing time: Mon 13 Apr 2026 03:57:51 +0000 ROA not before: Mon 13 Apr 2026 03:52:51 +0000 ROA not after: Mon 12 Apr 2027 03:57:51 +0000 asID: 59043 IP address blocks: 43.255.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 09:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:b3:1c:22:61:ec:ed:33:38:d6:71:8f:69:0f:a4:b3:72:86:af:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: Apr 13 03:52:51 2026 GMT Not After : Apr 12 03:57:51 2027 GMT Subject: CN=10F9EEAB115740560192448F7276BC7BFA1D8656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1f:84:ce:42:43:bf:55:d1:78:59:11:a9:cf: e1:4e:45:e6:29:dd:cb:69:89:35:0b:15:fd:cc:6e: ba:9e:e6:4e:62:2c:c7:a5:e0:19:ac:c9:19:a9:fb: df:82:3a:2f:bf:62:2b:88:f2:47:86:93:b1:ce:1e: 91:5d:70:0e:5f:b4:6d:92:0b:ef:e5:83:3b:b1:f6: 75:7e:3a:23:e3:ce:97:e8:3c:21:3a:7e:48:35:63: b6:ea:6c:16:74:ff:78:d3:3a:5b:da:06:d7:1f:04: 40:47:49:19:c2:43:83:bc:97:f1:c5:37:c0:6b:94: 46:09:95:26:87:fa:be:a0:03:95:9d:1b:56:c5:a9: 79:ed:7f:5d:ab:fb:1b:40:0e:05:50:07:e3:dc:9c: bd:27:56:1b:4c:7f:a5:0b:66:a7:1e:1a:25:81:c7: a1:6a:f7:b3:e2:c1:5c:f4:71:b8:c3:05:7b:c4:59: ff:4c:82:6a:b8:e2:dd:21:29:d9:ce:f6:27:28:05: e0:ce:36:d0:c6:62:ae:64:99:af:ee:3d:d9:a8:d3: 0e:a4:fe:55:f6:79:34:86:87:98:75:6a:fe:55:05: 8f:a4:97:77:fb:74:51:84:3e:40:3a:c1:8a:cb:26: 6a:5c:aa:04:0d:3a:38:43:c8:0a:ae:d8:76:1a:41: f5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:F9:EE:AB:11:57:40:56:01:92:44:8F:72:76:BC:7B:FA:1D:86:56 X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3232382e302f32322d3232203d3e203539303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.228.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:44:1e:05:9e:37:40:a4:27:36:bf:15:7c:84:13:15:5e:31: c0:84:56:a4:3b:53:ec:49:fb:86:fd:de:c9:20:42:de:5e:71: a0:8c:ae:9d:a8:97:39:c3:d1:a1:10:a5:fa:50:4b:1c:47:37: e4:57:93:33:7a:b6:2d:83:b7:9e:c9:24:5b:9a:1f:f7:58:56: 29:9b:4d:a5:26:af:82:d6:6f:da:5b:70:f2:1b:b9:6f:3c:3d: 00:12:17:30:63:9d:83:be:c6:29:1d:46:cf:d6:be:47:d3:ea: 92:af:eb:36:ac:43:20:a1:c8:1c:59:09:26:c9:2f:13:a2:e6: 6d:2b:08:d1:dd:08:fd:62:32:44:c1:3e:d7:ff:33:7d:73:bf: d0:dd:8a:cc:6f:19:8e:96:09:61:86:b0:ff:d2:d9:bf:1a:e9: 22:71:cf:a4:7d:f8:3e:15:f9:e5:6a:50:5a:b4:cb:de:2a:2e: 60:d9:43:e3:b0:6b:51:5a:ed:44:cf:9d:94:ad:b7:cc:7b:09: 82:2b:89:ba:bc:d0:a2:42:31:f1:0b:12:91:73:d3:d9:e3:d6: bc:c3:c8:82:72:d0:d1:5a:39:bc:57:6a:3b:75:84:4e:71:0f: 4e:59:55:73:f8:fe:6d:df:51:c4:48:36:c0:5f:41:08:b1:9e: 3f:fb:1d:5f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUZLMcImHs7TM41nGPaQ+ks3KGrxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA0MTMwMzUyNTFaFw0yNzA0MTIwMzU3NTFaMDMxMTAvBgNV BAMTKDEwRjlFRUFCMTE1NzQwNTYwMTkyNDQ4RjcyNzZCQzdCRkExRDg2NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7H4TOQkO/VdF4WRGpz+FOReYp 3ctpiTULFf3Mbrqe5k5iLMel4BmsyRmp+9+COi+/YiuI8keGk7HOHpFdcA5ftG2S C+/lgzux9nV+OiPjzpfoPCE6fkg1Y7bqbBZ0/3jTOlvaBtcfBEBHSRnCQ4O8l/HF N8BrlEYJlSaH+r6gA5WdG1bFqXntf12r+xtADgVQB+PcnL0nVhtMf6ULZqceGiWB x6Fq97PiwVz0cbjDBXvEWf9Mgmq44t0hKdnO9icoBeDONtDGYq5kma/uPdmo0w6k /lX2eTSGh5h1av5VBY+kl3f7dFGEPkA6wYrLJmpcqgQNOjhDyAqu2HYaQfWbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUEPnuqxFXQFYBkkSPcna8e/odhlYwHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDcyMDI1OS8wLzM0MzMyZTMyMzUz NTJlMzIzMjM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzOTMwMzQzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv/5DANBgkqhkiG9w0BAQsFAAOCAQEAjUQeBZ43QKQnNr8VfIQTFV4x wIRWpDtT7En7hv3eySBC3l5xoIyunaiXOcPRoRCl+lBLHEc35FeTM3q2LYO3nskk W5of91hWKZtNpSavgtZv2ltw8hu5bzw9ABIXMGOdg77GKR1Gz9a+R9Pqkq/rNqxD IKHIHFkJJskvE6LmbSsI0d0I/WIyRME+1/8zfXO/0N2KzG8ZjpYJYYaw/9LZvxrp InHPpH34PhX55WpQWrTL3iouYNlD47BrUVrtRM+dlK23zHsJgiuJurzQokIx8QsS kXPT2ePWvMPIgnLQ0Vo5vFdqO3WETnEPTllVc/j+bd9RxEg2wF9BCLGeP/sdXw== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:16 2026 by rpki-client