$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203233363530.roa File: 34332e3234302e302e302f32322d3234203d3e203233363530.roa (raw, json) Hash identifier: bPogVX3uQJQGzo0k/LzYFSU6NIG5MQtSsY4AlKmeoY4= Subject key identifier: A7:81:73:6E:F9:F2:2F:D6:AF:D7:62:D7:BF:DE:D4:8C:29:F3:5F:F8 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 08F640A0172A0B54C7EA99A803B61C53802D088D Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203233363530.roa Signing time: Fri 17 Apr 2026 01:39:19 +0000 ROA not before: Fri 17 Apr 2026 01:34:19 +0000 ROA not after: Fri 16 Apr 2027 01:39:19 +0000 asID: 23650 IP address blocks: 43.240.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 11:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f6:40:a0:17:2a:0b:54:c7:ea:99:a8:03:b6:1c:53:80:2d:08:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 17 01:34:19 2026 GMT Not After : Apr 16 01:39:19 2027 GMT Subject: CN=A781736EF9F22FD6AFD762D7BFDED48C29F35FF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1e:e6:45:22:9a:72:73:30:05:8e:21:ac:92: f6:c8:95:d7:a4:b0:7b:eb:c4:e3:17:25:cf:da:c5: 0d:cd:2d:a0:24:a8:26:1d:7c:49:26:a0:13:ea:b5: 68:d9:7a:80:0c:35:34:f7:05:57:af:b4:7e:89:33: bf:3e:97:92:2b:01:28:7e:75:17:dd:ff:8b:54:52: d1:ed:c2:42:95:5b:aa:bd:1a:77:45:9d:8c:2a:10: c0:0b:6b:17:47:85:da:62:79:93:10:99:3c:53:59: d8:a6:6c:93:70:58:03:b8:ae:b5:5a:c4:85:fa:fc: b9:3f:d0:29:a6:c3:b1:c1:10:d0:51:6c:f8:ba:a0: 6b:03:44:44:2f:5e:9f:83:b3:e5:1e:29:80:40:ef: 38:1f:45:e6:66:00:9d:d4:04:a3:bd:1f:a1:40:60: 9a:7f:7c:d0:df:44:d2:fb:6c:89:34:61:1f:2a:b5: 7b:a2:90:e1:62:e5:85:1b:c5:62:7f:90:50:ad:0a: 00:50:0e:67:c3:56:31:90:51:0e:6e:6c:90:5b:e9: e0:fe:56:6e:21:82:cf:8b:6b:19:e3:44:aa:b2:e5: ed:9b:23:b0:85:9d:70:fd:a9:47:32:c6:86:56:e4: 76:68:71:f6:1e:cd:46:a2:8d:c9:83:2f:30:68:7c: 2d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:81:73:6E:F9:F2:2F:D6:AF:D7:62:D7:BF:DE:D4:8C:29:F3:5F:F8 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.0.0/22 Signature Algorithm: sha256WithRSAEncryption 88:2d:31:67:ba:ce:b3:31:9d:cd:76:17:39:db:ed:11:ec:98: a7:5e:5e:3c:8f:0e:8d:d6:15:c8:0f:d6:e9:ad:2c:e7:aa:9e: d3:b5:19:d3:2e:65:da:93:51:2c:f2:87:43:b1:9d:76:a5:8a: f9:a5:cc:be:e2:36:99:48:36:59:e9:89:a7:31:b7:2e:b3:88: ec:0e:1b:18:d0:ce:62:3f:d0:a7:0e:ba:da:9c:2e:78:b6:5e: 58:10:00:17:07:e5:da:ea:db:30:3f:20:d8:2e:f3:bc:8b:9e: 1d:d5:cc:86:d9:43:ae:a5:f8:51:19:56:5c:39:84:05:60:f8: 21:69:33:c7:01:76:4f:8e:52:9b:9e:ee:87:46:24:f8:e1:d2: 8d:d6:06:c8:28:1f:e4:90:30:1a:9b:f6:5c:69:6f:86:f0:a3: a6:8a:ec:cb:57:a1:75:ac:95:8c:ce:60:0e:90:86:ca:cd:d6: 73:82:7f:39:83:26:04:c3:71:6b:00:bc:55:c8:fb:1b:9a:84: cc:36:a5:31:24:ba:fe:6d:00:f5:c3:dd:3b:c6:dd:67:dc:89: 7b:c2:15:52:e9:44:5f:df:79:2e:04:e3:da:34:8e:17:c0:04: 4d:2e:c0:31:b5:f3:64:98:8a:68:04:17:22:e0:37:bb:62:a9: d0:4e:63:2f -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUCPZAoBcqC1TH6pmoA7YcU4AtCI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTcwMTM0MTlaFw0yNzA0MTYwMTM5MTlaMDMxMTAvBgNV BAMTKEE3ODE3MzZFRjlGMjJGRDZBRkQ3NjJEN0JGREVENDhDMjlGMzVGRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgHuZFIppyczAFjiGskvbIldek sHvrxOMXJc/axQ3NLaAkqCYdfEkmoBPqtWjZeoAMNTT3BVevtH6JM78+l5IrASh+ dRfd/4tUUtHtwkKVW6q9GndFnYwqEMALaxdHhdpieZMQmTxTWdimbJNwWAO4rrVa xIX6/Lk/0Cmmw7HBENBRbPi6oGsDREQvXp+Ds+UeKYBA7zgfReZmAJ3UBKO9H6FA YJp/fNDfRNL7bIk0YR8qtXuikOFi5YUbxWJ/kFCtCgBQDmfDVjGQUQ5ubJBb6eD+ Vm4hgs+LaxnjRKqy5e2bI7CFnXD9qUcyxoZW5HZocfYezUaijcmDLzBofC2RAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUp4FzbvnyL9av12LXv97UjCnzX/gwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMw MmUzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzMzNjM1MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr8AAwDQYJKoZIhvcNAQELBQADggEBAIgtMWe6zrMxnc12Fznb7RHsmKdeXjyP Do3WFcgP1umtLOeqntO1GdMuZdqTUSzyh0OxnXalivmlzL7iNplINlnpiacxty6z iOwOGxjQzmI/0KcOutqcLni2XlgQABcH5drq2zA/INgu87yLnh3VzIbZQ66l+FEZ Vlw5hAVg+CFpM8cBdk+OUpue7odGJPjh0o3WBsgoH+SQMBqb9lxpb4bwo6aK7MtX oXWslYzOYA6QhsrN1nOCfzmDJgTDcWsAvFXI+xuahMw2pTEkuv5tAPXD3TvG3Wfc iXvCFVLpRF/feS4E49o0jhfABE0uwDG182SYimgEFyLgN7tiqdBOYy8= -----END CERTIFICATE-----Generated at Mon Apr 27 13:51:47 2026 by rpki-client