$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3138342e302f32312d3231203d3e203133333738.roa File: 34332e3234382e3138342e302f32312d3231203d3e203133333738.roa (raw, json) Hash identifier: cZXFx+hGVQSvEp1aG6rRR7RighYF8GI9Orf34BHUPzc= Subject key identifier: 87:D2:B9:5F:3B:02:F5:AA:7C:3F:58:AB:9D:AB:92:FF:13:82:EC:E3 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 5BE9A76F559D39CCFFCF8123A8258F8E740ACE9A Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3138342e302f32312d3231203d3e203133333738.roa Signing time: Mon 09 Mar 2026 10:11:30 +0000 ROA not before: Mon 09 Mar 2026 10:06:30 +0000 ROA not after: Mon 08 Mar 2027 10:11:30 +0000 asID: 13378 IP address blocks: 43.248.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:e9:a7:6f:55:9d:39:cc:ff:cf:81:23:a8:25:8f:8e:74:0a:ce:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Mar 9 10:06:30 2026 GMT Not After : Mar 8 10:11:30 2027 GMT Subject: CN=87D2B95F3B02F5AA7C3F58AB9DAB92FF1382ECE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9a:85:d0:30:49:be:08:c3:b5:84:bb:4c:4f: 12:e2:a9:5f:d7:7e:61:7f:4c:7e:ae:24:e6:f6:57: ab:ff:7b:40:d7:1c:8f:f4:a1:63:cd:c4:9d:5e:f4: 1b:57:b7:75:89:0b:96:25:da:67:a0:84:6b:1d:27: dc:24:e6:95:7f:31:9b:09:b5:f6:32:6b:3c:4d:98: 59:4f:59:e4:7d:8e:44:d0:98:31:b3:c1:f9:a7:5b: 04:fc:0f:b3:71:57:a0:8d:1b:75:83:79:b7:15:97: e3:05:cb:c7:65:ec:00:27:6e:85:c3:e3:33:67:e7: 70:dc:5f:6f:ed:3d:b1:98:45:79:56:56:09:f0:26: a6:c5:77:76:85:40:0b:42:87:fd:77:c3:1f:df:21: 2e:5a:d7:08:ff:eb:75:51:00:b0:5f:9b:9c:c1:b7: 5a:b8:29:ac:21:42:e9:98:54:19:65:c3:0a:8a:bd: c6:b6:b6:15:fb:0a:a5:a9:df:49:ce:06:d1:ee:3d: 4b:6b:15:8b:e4:38:a7:81:9d:de:07:8c:fa:3a:0c: 5f:04:da:5f:67:8f:23:88:2b:d2:e4:17:9c:2e:34: ed:57:9e:2a:e7:1e:f7:c3:70:2e:61:d8:ff:6b:56: ae:7a:69:3a:ef:32:bb:b3:15:93:33:d6:e8:f0:9d: 01:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D2:B9:5F:3B:02:F5:AA:7C:3F:58:AB:9D:AB:92:FF:13:82:EC:E3 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3138342e302f32312d3231203d3e203133333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.184.0/21 Signature Algorithm: sha256WithRSAEncryption 64:b3:e5:13:ac:d3:c7:b1:ef:68:f8:cd:2a:8e:1c:da:c5:a6: fb:c5:c7:fd:ad:68:01:01:d1:30:d4:6b:b3:ff:b8:ed:a7:b5: 97:25:64:82:1f:3c:bc:20:01:7a:f9:72:79:0c:28:e1:84:6b: 33:5a:7d:f2:54:70:ea:8d:c2:13:18:fc:7e:4b:20:1d:2e:5d: 9d:05:07:35:c8:59:d6:bf:14:f0:2e:40:1e:1e:41:07:93:de: 07:13:65:26:5d:70:b2:f0:fa:ae:b7:58:4d:53:42:40:04:88: b0:b8:e4:d6:0a:4a:12:eb:b2:5b:1e:b5:b9:51:eb:46:d9:95: fc:b9:f6:36:1d:cb:5f:69:db:9d:b2:27:e9:77:55:e4:a3:21: 60:67:39:db:c2:2f:58:13:81:70:42:5f:ae:48:a9:04:f5:fb: 2a:8e:90:bc:b0:bf:d4:a9:b3:94:24:0e:5c:c8:e7:3a:26:65: 8f:e0:06:db:3e:c5:8a:34:8f:87:d7:68:bf:d3:4a:00:e6:60: 85:cc:4e:82:c0:7f:23:9d:5c:21:ec:9f:89:12:d8:b1:9b:35: 1c:ec:12:21:46:85:f6:0b:d4:db:9f:6c:6a:0e:67:61:68:17: 81:86:96:a8:fa:45:3d:f2:48:4c:a9:2a:18:e8:3d:2c:89:c0: e5:ad:98:35 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUW+mnb1WdOcz/z4EjqCWPjnQKzpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjAzMDkxMDA2MzBaFw0yNzAzMDgxMDExMzBaMDMxMTAvBgNV BAMTKDg3RDJCOTVGM0IwMkY1QUE3QzNGNThBQjlEQUI5MkZGMTM4MkVDRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYmoXQMEm+CMO1hLtMTxLiqV/X fmF/TH6uJOb2V6v/e0DXHI/0oWPNxJ1e9BtXt3WJC5Yl2meghGsdJ9wk5pV/MZsJ tfYyazxNmFlPWeR9jkTQmDGzwfmnWwT8D7NxV6CNG3WDebcVl+MFy8dl7AAnboXD 4zNn53DcX2/tPbGYRXlWVgnwJqbFd3aFQAtCh/13wx/fIS5a1wj/63VRALBfm5zB t1q4KawhQumYVBllwwqKvca2thX7CqWp30nOBtHuPUtrFYvkOKeBnd4HjPo6DF8E 2l9njyOIK9LkF5wuNO1XnirnHvfDcC5h2P9rVq56aTrvMruzFZMz1ujwnQEnAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUh9K5XzsC9ap8P1irnauS/xOC7OMwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDc4NTc5NS8wLzM0MzMyZTMyMzQz ODJlMzEzODM0MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzEzMzMzMzczOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyv4uDANBgkqhkiG9w0BAQsFAAOCAQEAZLPlE6zTx7HvaPjNKo4c2sWm +8XH/a1oAQHRMNRrs/+47ae1lyVkgh88vCABevlyeQwo4YRrM1p98lRw6o3CExj8 fksgHS5dnQUHNchZ1r8U8C5AHh5BB5PeBxNlJl1wsvD6rrdYTVNCQASIsLjk1gpK EuuyWx61uVHrRtmV/Ln2Nh3LX2nbnbIn6XdV5KMhYGc528IvWBOBcEJfrkipBPX7 Ko6QvLC/1KmzlCQOXMjnOiZlj+AG2z7FijSPh9dov9NKAOZghcxOgsB/I51cIeyf iRLYsZs1HOwSIUaF9gvU259sag5nYWgXgYaWqPpFPfJITKkqGOg9LInA5a2YNQ== -----END CERTIFICATE-----Generated at Thu Mar 12 19:55:44 2026 by rpki-client