$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3233312e302f32342d3234203d3e203536303430.roa File: 34332e3235352e3233312e302f32342d3234203d3e203536303430.roa (raw, json) Hash identifier: vw9zy+WcgNlkn5G3/Oo6AIVb6pxlr5huvxCsqaD5zlA= Subject key identifier: 10:E3:CA:49:73:A7:08:58:6A:EF:00:62:7A:24:8E:D4:7B:08:F8:2A Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 477C3E5313C094BAF9E0D5E459238326F581C21E Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3233312e302f32342d3234203d3e203536303430.roa Signing time: Mon 13 Apr 2026 02:27:54 +0000 ROA not before: Mon 13 Apr 2026 02:22:54 +0000 ROA not after: Mon 12 Apr 2027 02:27:54 +0000 asID: 56040 IP address blocks: 43.255.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 09:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:7c:3e:53:13:c0:94:ba:f9:e0:d5:e4:59:23:83:26:f5:81:c2:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: Apr 13 02:22:54 2026 GMT Not After : Apr 12 02:27:54 2027 GMT Subject: CN=10E3CA4973A708586AEF00627A248ED47B08F82A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3c:c9:f8:13:4f:ae:75:00:7b:9d:b5:c4:05: 80:ce:3f:1a:96:0d:c5:82:4b:3e:f3:9c:8c:3e:6a: ce:4d:46:6c:61:31:52:1d:d8:09:41:3f:77:d7:4b: b8:c2:01:68:2c:ed:1f:1a:04:fe:2a:d0:e3:23:ab: c5:d0:72:48:00:85:b2:3e:3c:60:af:b5:8d:31:6c: 96:94:6f:8c:9b:4d:ff:71:dd:31:38:c0:ff:5e:1e: 30:58:63:a1:0b:a8:2d:7e:1d:6c:a7:c2:97:a9:f5: b8:55:30:b4:a1:52:19:00:a3:e6:d8:58:fe:5d:d9: 4c:1b:3c:46:18:7e:9e:53:ea:0f:a0:14:7b:89:6f: 08:16:78:8e:c9:0c:a3:b2:7b:e2:6d:14:e5:0a:87: da:e6:b8:ac:19:06:0e:c4:5b:a3:f8:78:97:c0:d7: 0f:9e:79:a6:48:39:a9:d4:0a:a0:d9:42:7f:e2:c9: ae:e8:c7:49:65:2f:8d:c5:b6:09:1c:ef:1a:bc:21: 4c:2a:ce:96:ab:85:8e:af:c9:3a:9e:9b:1b:f1:df: 03:07:c0:1f:2d:24:89:cd:03:66:b5:cd:7a:ab:14: 25:55:f9:9f:0e:bc:19:c7:1f:01:34:e8:b4:5b:c8: 3c:81:a9:b5:b7:45:4b:e6:49:54:c2:ce:d2:8a:a8: 1c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E3:CA:49:73:A7:08:58:6A:EF:00:62:7A:24:8E:D4:7B:08:F8:2A X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34332e3235352e3233312e302f32342d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.231.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:fc:0b:f5:0a:71:0d:ba:62:bf:49:47:ed:db:8e:4c:b7:55: 28:58:49:87:21:bc:e5:74:98:17:6b:a0:91:37:11:82:4f:3d: b0:fd:ff:5e:8b:b4:72:99:01:f1:5b:18:24:9a:14:2d:6e:ee: eb:6e:39:99:32:2a:92:8b:27:14:cb:4f:90:48:bb:32:08:15: ca:b6:fc:82:49:8a:7f:04:23:cd:19:e7:e5:4e:40:d3:25:41: ad:85:f5:1f:94:f5:78:59:ff:4c:7c:6c:6c:b9:b7:5f:f8:92: 0d:14:d8:51:8c:0e:45:3b:ae:b9:bf:8c:95:a5:d7:dc:20:85: a3:44:8f:94:20:a0:93:0b:75:db:53:52:34:cf:c1:b7:70:b8: 98:51:c1:10:de:d1:e3:f2:d5:51:b7:ac:35:fc:85:77:70:e9: 0f:ab:f6:5c:46:e9:49:4b:f0:d2:1a:21:61:25:b4:a2:a6:87: 57:d8:e9:69:1b:2b:50:01:3e:be:0a:d5:cd:c6:21:98:30:fc: bf:89:02:cf:dc:b1:44:64:45:f1:6c:bb:61:dc:26:84:73:e7: a6:ad:a3:75:03:5d:38:bc:5d:9d:61:dc:ec:f0:e7:01:01:30: a4:a8:2d:44:ad:a4:46:71:4c:ac:db:c3:90:7f:88:9e:d1:21: ab:c7:4a:99 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUR3w+UxPAlLr54NXkWSODJvWBwh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA0MTMwMjIyNTRaFw0yNzA0MTIwMjI3NTRaMDMxMTAvBgNV BAMTKDEwRTNDQTQ5NzNBNzA4NTg2QUVGMDA2MjdBMjQ4RUQ0N0IwOEY4MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZPMn4E0+udQB7nbXEBYDOPxqW DcWCSz7znIw+as5NRmxhMVId2AlBP3fXS7jCAWgs7R8aBP4q0OMjq8XQckgAhbI+ PGCvtY0xbJaUb4ybTf9x3TE4wP9eHjBYY6ELqC1+HWynwpep9bhVMLShUhkAo+bY WP5d2UwbPEYYfp5T6g+gFHuJbwgWeI7JDKOye+JtFOUKh9rmuKwZBg7EW6P4eJfA 1w+eeaZIOanUCqDZQn/iya7ox0llL43Ftgkc7xq8IUwqzparhY6vyTqemxvx3wMH wB8tJInNA2a1zXqrFCVV+Z8OvBnHHwE06LRbyDyBqbW3RUvmSVTCztKKqBz3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUEOPKSXOnCFhq7wBieiSO1HsI+CowHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDcyMDI1OS8wLzM0MzMyZTMyMzUz NTJlMzIzMzMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACv/5zANBgkqhkiG9w0BAQsFAAOCAQEAjfwL9QpxDbpiv0lH7duOTLdV KFhJhyG85XSYF2ugkTcRgk89sP3/Xou0cpkB8VsYJJoULW7u6245mTIqkosnFMtP kEi7MggVyrb8gkmKfwQjzRnn5U5A0yVBrYX1H5T1eFn/THxsbLm3X/iSDRTYUYwO RTuuub+MlaXX3CCFo0SPlCCgkwt121NSNM/Bt3C4mFHBEN7R4/LVUbesNfyFd3Dp D6v2XEbpSUvw0hohYSW0oqaHV9jpaRsrUAE+vgrVzcYhmDD8v4kCz9yxRGRF8Wy7 YdwmhHPnpq2jdQNdOLxdnWHc7PDnAQEwpKgtRK2kRnFMrNvDkH+IntEhq8dKmQ== -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:17 2026 by rpki-client