$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234312e34382e302f32322d3234203d3e203536303436.roa File: 34332e3234312e34382e302f32322d3234203d3e203536303436.roa (raw, json) Hash identifier: WXCcbg+HGMWdUwbUN+SjzWrDYFA+SHt8ndILiUbJ44E= Subject key identifier: C8:39:DB:29:4D:65:62:03:44:84:2C:EF:2C:3B:A9:D6:F3:75:6F:4D Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 27D9BABF6DDC4FE9085574734B2C051010965E6F Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234312e34382e302f32322d3234203d3e203536303436.roa Signing time: Fri 17 Apr 2026 01:38:16 +0000 ROA not before: Fri 17 Apr 2026 01:33:16 +0000 ROA not after: Fri 16 Apr 2027 01:38:16 +0000 asID: 56046 IP address blocks: 43.241.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 16:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:d9:ba:bf:6d:dc:4f:e9:08:55:74:73:4b:2c:05:10:10:96:5e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 17 01:33:16 2026 GMT Not After : Apr 16 01:38:16 2027 GMT Subject: CN=C839DB294D65620344842CEF2C3BA9D6F3756F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:23:62:90:0f:88:57:9b:a9:c4:38:8a:98:e2: 99:cc:03:85:8c:c5:91:6b:81:54:e4:1a:8b:a7:13: 82:f1:d9:e0:49:cf:93:8e:e6:7d:55:cc:18:09:33: 93:05:b7:8c:db:3d:31:81:d3:98:5c:8b:db:ca:57: 53:0e:5d:11:b5:d0:1e:46:bf:47:72:a4:2b:3e:7e: ea:95:72:27:c6:02:a7:e1:a9:cc:d9:c3:14:1a:b5: ac:9c:ce:a9:4e:82:22:e4:6e:18:5c:08:0e:c6:5e: 46:d2:e1:67:de:48:56:fa:23:4c:31:49:f6:f8:c5: 05:2e:48:fc:dc:32:1f:23:1c:8c:ec:17:16:22:2c: c9:29:31:bb:ab:4e:73:d2:46:7a:ce:0e:e9:ea:65: 3d:b2:d1:e4:8a:07:ac:be:fc:34:21:4c:c1:53:b9: 70:7f:f8:bb:6f:c5:3a:7e:0d:4f:b9:65:0e:e7:e0: 0d:1c:ef:e3:e0:01:ce:13:aa:23:16:44:8d:bf:8c: a5:14:a5:4b:cb:f2:26:ee:42:39:f7:ef:e9:ac:c2: 1d:dd:4e:87:37:cf:39:a5:f7:c8:bf:2a:cd:78:fd: 19:37:3e:53:82:82:b3:21:af:eb:95:24:b5:3a:41: 47:85:25:64:01:81:7c:02:3a:7c:86:24:29:c5:87: ab:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:39:DB:29:4D:65:62:03:44:84:2C:EF:2C:3B:A9:D6:F3:75:6F:4D X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234312e34382e302f32322d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.48.0/22 Signature Algorithm: sha256WithRSAEncryption 76:d1:84:3c:d2:59:a5:98:45:29:25:69:a5:b7:8f:2f:83:24: cf:00:52:75:3a:d1:af:44:64:a0:35:6f:5e:8a:90:55:35:1e: fa:d9:5e:34:b7:c3:15:05:e6:31:1a:70:a2:88:2a:18:5e:33: a9:3d:f0:ef:1b:43:53:96:66:1e:84:a9:79:b6:71:d9:33:6a: df:85:d5:17:6c:e6:01:cd:6f:e9:1e:dc:f1:9d:43:20:54:36: 01:cb:de:f1:bb:3b:64:15:4d:50:37:c3:d0:b7:c1:e3:0e:18: ed:dc:bc:22:c6:57:aa:9b:e6:98:e0:e4:ac:28:44:52:1d:15: a1:ab:4f:42:24:b5:0d:b6:66:f2:b5:43:38:0a:1e:b8:6a:98: 1f:43:6d:a2:50:e0:96:b5:bb:2b:29:ed:64:81:a5:fe:03:76: 6a:ee:1c:08:63:17:c9:fe:c7:78:81:f0:b0:3f:60:09:99:71: a7:f3:e4:dc:97:eb:95:f1:cd:b9:e5:cb:43:a1:a0:63:f1:da: 5a:ad:a5:7a:71:3e:77:78:9e:f0:65:39:78:28:93:52:1b:b5: 4c:8e:ae:b5:aa:19:00:23:d7:f6:f3:2a:b2:c3:56:b1:85:95: ac:3c:24:ef:4c:e3:93:c7:76:70:fd:64:b4:54:50:fd:c7:2e: c5:27:87:d2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUJ9m6v23cT+kIVXRzSywFEBCWXm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTcwMTMzMTZaFw0yNzA0MTYwMTM4MTZaMDMxMTAvBgNV BAMTKEM4MzlEQjI5NEQ2NTYyMDM0NDg0MkNFRjJDM0JBOUQ2RjM3NTZGNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpI2KQD4hXm6nEOIqY4pnMA4WM xZFrgVTkGounE4Lx2eBJz5OO5n1VzBgJM5MFt4zbPTGB05hci9vKV1MOXRG10B5G v0dypCs+fuqVcifGAqfhqczZwxQatayczqlOgiLkbhhcCA7GXkbS4WfeSFb6I0wx Sfb4xQUuSPzcMh8jHIzsFxYiLMkpMburTnPSRnrODunqZT2y0eSKB6y+/DQhTMFT uXB/+LtvxTp+DU+5ZQ7n4A0c7+PgAc4TqiMWRI2/jKUUpUvL8ibuQjn37+mswh3d Toc3zzml98i/Ks14/Rk3PlOCgrMhr+uVJLU6QUeFJWQBgXwCOnyGJCnFh6tfAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUyDnbKU1lYgNEhCzvLDup1vN1b00wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMx MmUzNDM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAivxMDANBgkqhkiG9w0BAQsFAAOCAQEAdtGEPNJZpZhFKSVppbePL4MkzwBS dTrRr0RkoDVvXoqQVTUe+tleNLfDFQXmMRpwoogqGF4zqT3w7xtDU5ZmHoSpebZx 2TNq34XVF2zmAc1v6R7c8Z1DIFQ2Acve8bs7ZBVNUDfD0LfB4w4Y7dy8IsZXqpvm mODkrChEUh0VoatPQiS1DbZm8rVDOAoeuGqYH0NtolDglrW7KyntZIGl/gN2au4c CGMXyf7HeIHwsD9gCZlxp/Pk3JfrlfHNueXLQ6GgY/HaWq2lenE+d3ie8GU5eCiT Uhu1TI6utaoZACPX9vMqssNWsYWVrDwk70zjk8d2cP1ktFRQ/ccuxSeH0g== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:29 2026 by rpki-client