$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e33332e302f32342d3234203d3e203536303430.roa File: 34352e3131362e33332e302f32342d3234203d3e203536303430.roa (raw, json) Hash identifier: 2yzQQ3RfFhDKquFcv8UXbeKG27V0WF41cfHeNhLc4wY= Subject key identifier: 3E:A2:7B:7F:3A:E0:B0:20:68:10:6A:7A:39:2B:D4:E1:9C:D1:9E:A6 Certificate issuer: /CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Certificate serial: 0E2615F0AAC2070446FB0654B5422172CDDC4C53 Authority key identifier: 2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e33332e302f32342d3234203d3e203536303430.roa Signing time: Mon 13 Apr 2026 02:37:35 +0000 ROA not before: Mon 13 Apr 2026 02:32:35 +0000 ROA not after: Mon 12 Apr 2027 02:37:35 +0000 asID: 56040 IP address blocks: 45.116.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 09:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:26:15:f0:aa:c2:07:04:46:fb:06:54:b5:42:21:72:cd:dc:4c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A Validity Not Before: Apr 13 02:32:35 2026 GMT Not After : Apr 12 02:37:35 2027 GMT Subject: CN=3EA27B7F3AE0B02068106A7A392BD4E19CD19EA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e8:b9:85:2e:36:5b:63:0e:00:12:19:c1:05: b3:9c:d5:0c:fa:c6:7c:9d:e5:5f:e7:56:2f:3e:fe: 1f:fa:18:06:b4:06:5f:42:04:11:74:cc:e8:9b:ef: 3d:56:bf:89:0a:79:b8:28:31:4f:37:f6:00:f7:b1: b4:51:92:39:e4:e7:27:eb:e4:0c:c2:a3:c6:35:c4: a0:fa:e6:5f:18:4e:82:c8:05:ab:19:3e:b7:24:c4: f3:6d:5f:a2:dc:33:98:4d:5c:a1:91:b5:ce:fa:25: e8:de:d0:ba:e7:ab:ac:03:84:3a:0c:87:05:d1:3a: c2:5b:c5:c0:58:03:c9:02:f1:91:b3:f9:aa:b9:55: c8:f3:35:88:5b:5f:7d:2d:13:49:73:f3:7a:d8:fc: e8:52:f2:a2:00:18:d2:fd:90:28:a0:12:76:af:bb: f3:f0:3e:6b:3a:c7:33:0d:6c:c9:a7:41:74:c8:6e: ba:ad:17:97:f9:2b:f7:3b:71:f7:71:ff:eb:a3:be: c7:e9:7c:6d:7e:02:73:89:95:2e:9a:de:ef:6a:f6: d9:04:9e:20:1a:66:a2:5f:6f:e8:c9:58:46:ef:34: 78:c7:b4:b8:7c:a1:ce:bf:1e:0a:ee:43:15:27:b1: 78:2b:8c:98:86:7f:a6:47:14:d7:25:73:79:80:91: 91:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:A2:7B:7F:3A:E0:B0:20:68:10:6A:7A:39:2B:D4:E1:9C:D1:9E:A6 X509v3 Authority Key Identifier: keyid:2D:0B:C1:65:5D:17:A3:AB:09:C9:1E:43:A3:2D:E8:D8:AB:21:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2D0BC1655D17A3AB09C91E43A32DE8D8AB21351A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394720259/0/34352e3131362e33332e302f32342d3234203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.116.33.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:4c:b1:82:ea:c3:27:32:4c:79:11:cb:df:ec:0b:08:62:f7: 39:51:5f:a5:48:13:d6:30:fb:5e:0b:20:c3:a5:54:1b:e5:9c: d0:51:10:0b:a9:84:4e:2d:ea:81:57:8d:95:45:89:68:11:70: ff:e8:a5:8d:ae:f6:ab:fa:2e:3c:11:75:ba:9e:b3:27:3f:2f: 8f:75:f0:8c:67:8c:6b:e7:34:91:cc:81:1f:10:19:d2:13:a6: 29:d2:cb:11:a5:a0:4e:8c:96:7c:fa:a7:a8:b9:32:17:c6:8c: 05:57:0f:84:41:fe:60:06:85:2c:e2:34:09:89:8f:01:a5:52: e0:38:18:e9:a5:6e:86:6c:e9:cc:37:75:4e:cd:e5:81:43:4c: 0d:67:61:28:ef:74:f1:01:ef:d5:25:92:3b:59:ed:85:2f:a7: 2b:42:e9:06:30:2c:58:f8:de:d7:fe:7f:9b:68:dd:1b:3e:e3: 3f:ce:92:97:0e:24:2e:91:9a:10:c8:8e:10:b1:0e:5c:aa:7a: e2:73:eb:e0:f6:23:5c:53:e0:77:86:8e:3f:5a:df:a6:e8:ee: e1:b7:cb:c7:5f:7f:36:0f:9f:84:3f:d4:14:20:c7:20:64:86: dd:fe:2e:5b:27:95:40:a2:68:ef:b6:a1:48:de:5d:14:d2:32: 9d:44:36:22 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUDiYV8KrCBwRG+wZUtUIhcs3cTFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhB QjIxMzUxQTAeFw0yNjA0MTMwMjMyMzVaFw0yNzA0MTIwMjM3MzVaMDMxMTAvBgNV BAMTKDNFQTI3QjdGM0FFMEIwMjA2ODEwNkE3QTM5MkJENEUxOUNEMTlFQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc6LmFLjZbYw4AEhnBBbOc1Qz6 xnyd5V/nVi8+/h/6GAa0Bl9CBBF0zOib7z1Wv4kKebgoMU839gD3sbRRkjnk5yfr 5AzCo8Y1xKD65l8YToLIBasZPrckxPNtX6LcM5hNXKGRtc76Jeje0Lrnq6wDhDoM hwXROsJbxcBYA8kC8ZGz+aq5VcjzNYhbX30tE0lz83rY/OhS8qIAGNL9kCigEnav u/PwPms6xzMNbMmnQXTIbrqtF5f5K/c7cfdx/+ujvsfpfG1+AnOJlS6a3u9q9tkE niAaZqJfb+jJWEbvNHjHtLh8oc6/HgruQxUnsXgrjJiGf6ZHFNclc3mAkZF5AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUPqJ7fzrgsCBoEGp6OSvU4ZzRnqYwHwYDVR0j BBgwFoAULQvBZV0Xo6sJyR5Doy3o2KshNRowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDcyMDI1OS8wLzJEMEJDMTY1NUQxN0EzQUIwOUM5MUU0M0EzMkRF OEQ4QUIyMTM1MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkQwQkMxNjU1RDE3QTNBQjA5QzkxRTQzQTMyREU4RDhBQjIxMzUxQS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0NzIwMjU5LzAvMzQzNTJlMzEzMTM2 MmUzMzMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAC10ITANBgkqhkiG9w0BAQsFAAOCAQEAb0yxgurDJzJMeRHL3+wLCGL3OVFf pUgT1jD7Xgsgw6VUG+Wc0FEQC6mETi3qgVeNlUWJaBFw/+ilja72q/ouPBF1up6z Jz8vj3XwjGeMa+c0kcyBHxAZ0hOmKdLLEaWgToyWfPqnqLkyF8aMBVcPhEH+YAaF LOI0CYmPAaVS4DgY6aVuhmzpzDd1Ts3lgUNMDWdhKO908QHv1SWSO1nthS+nK0Lp BjAsWPje1/5/m2jdGz7jP86Slw4kLpGaEMiOELEOXKp64nPr4PYjXFPgd4aOP1rf puju4bfLx19/Ng+fhD/UFCDHIGSG3f4uWyeVQKJo77ahSN5dFNIynUQ2Ig== -----END CERTIFICATE-----Generated at Mon Apr 13 15:30:56 2026 by rpki-client