$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3138342e302f32312d3231203d3e203633353637.roa File: 34332e3234382e3138342e302f32312d3231203d3e203633353637.roa (raw, json) Hash identifier: 3X3eYPpRQpUKND2K7MA04RdyjbTSBK/g13wXuPc/Fyo= Subject key identifier: 2F:C0:1A:F2:B6:9E:44:70:93:9E:67:3C:C7:71:B6:71:24:88:79:FE Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 7801258D4356C6BD84F478E3301208BD8CFA8A4A Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3138342e302f32312d3231203d3e203633353637.roa Signing time: Fri 17 Apr 2026 01:47:34 +0000 ROA not before: Fri 17 Apr 2026 01:42:34 +0000 ROA not after: Fri 16 Apr 2027 01:47:34 +0000 asID: 63567 IP address blocks: 43.248.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 11:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:01:25:8d:43:56:c6:bd:84:f4:78:e3:30:12:08:bd:8c:fa:8a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 17 01:42:34 2026 GMT Not After : Apr 16 01:47:34 2027 GMT Subject: CN=2FC01AF2B69E4470939E673CC771B671248879FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:73:7b:4b:76:d3:ba:b5:0e:8d:17:51:e5:6d: 75:74:18:6f:d1:89:fc:7e:08:93:6b:9e:d9:73:87: ca:54:a5:db:d0:4c:6e:33:bf:6f:33:c0:f4:d1:0e: 7a:31:1d:f2:40:ff:b8:f5:39:bf:36:2a:4b:4b:7c: 7d:61:02:b1:45:fc:c9:d2:0c:80:c8:a8:2c:de:b7: 11:a2:94:7d:60:7b:88:27:cf:09:49:d6:63:ce:9b: 9b:d5:f8:2b:21:d5:8a:91:2c:ae:92:ef:d2:b7:da: a2:a8:70:14:d1:d9:e8:2f:01:19:cd:07:79:a3:c0: 34:cb:19:6f:1a:05:7a:50:5b:b3:14:57:5e:d5:ff: e0:be:49:ae:ef:77:e7:8c:45:f7:7d:d2:96:36:20: f3:36:b1:11:c5:57:20:cd:84:5d:57:8d:4b:6b:78: 90:69:4d:ab:eb:05:a3:ac:79:73:52:b3:c3:90:cd: c8:71:ca:6b:d1:a0:8e:58:ff:43:5e:04:e3:22:91: 82:06:93:c8:66:53:fd:00:d1:28:31:20:62:e1:d8: a1:11:7d:79:72:8e:8b:9d:62:75:c6:e6:99:14:9d: 62:22:a9:40:12:04:30:f8:3c:88:10:34:0e:10:14: 09:91:5f:a0:6d:1c:9f:a6:44:dd:64:ee:78:3b:e4: 1f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C0:1A:F2:B6:9E:44:70:93:9E:67:3C:C7:71:B6:71:24:88:79:FE X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3138342e302f32312d3231203d3e203633353637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.184.0/21 Signature Algorithm: sha256WithRSAEncryption 39:12:31:57:6c:83:e5:0d:90:7f:63:42:46:02:67:66:92:65: bc:64:87:f6:03:99:07:f7:af:3d:5f:67:80:1a:ea:ba:c6:0b: fe:e0:b0:41:ab:f2:ce:79:21:65:f5:8c:c3:bf:44:75:df:f6: 18:c9:ec:b0:ab:3e:f0:65:e1:c9:af:df:34:f5:0b:55:bb:b4: e9:a9:29:bd:4b:f0:c5:52:bd:c0:c9:14:59:bb:02:39:68:2c: d7:4f:9a:e6:6b:c8:22:f3:c7:41:e0:06:0b:68:be:75:0a:9f: aa:d7:56:37:e3:48:3b:bd:de:11:6a:70:68:a6:c1:b7:b6:01: cd:5f:74:3a:13:5d:a2:50:8e:0d:c9:37:b1:e9:4a:94:76:30: cd:74:5a:da:92:88:45:b4:26:dc:7b:61:4f:00:c0:ec:25:9c: 9f:2b:04:31:ca:dc:9b:bd:18:fa:46:72:1c:43:36:f7:c1:ac: 4a:65:7d:ae:e6:e3:25:de:95:2f:19:16:64:77:51:af:cc:f2: 21:55:57:31:37:e9:dc:6c:51:ba:60:8d:8f:f8:2f:f3:c4:52: 13:54:85:04:6a:1e:a3:7e:b8:a0:3e:f6:08:23:95:45:6a:b6: e9:1e:44:88:9b:69:d9:a5:55:90:62:69:d2:85:39:36:4b:d7: 00:7e:f9:0b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUeAEljUNWxr2E9HjjMBIIvYz6ikowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTcwMTQyMzRaFw0yNzA0MTYwMTQ3MzRaMDMxMTAvBgNV BAMTKDJGQzAxQUYyQjY5RTQ0NzA5MzlFNjczQ0M3NzFCNjcxMjQ4ODc5RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXc3tLdtO6tQ6NF1HlbXV0GG/R ifx+CJNrntlzh8pUpdvQTG4zv28zwPTRDnoxHfJA/7j1Ob82KktLfH1hArFF/MnS DIDIqCzetxGilH1ge4gnzwlJ1mPOm5vV+Csh1YqRLK6S79K32qKocBTR2egvARnN B3mjwDTLGW8aBXpQW7MUV17V/+C+Sa7vd+eMRfd90pY2IPM2sRHFVyDNhF1XjUtr eJBpTavrBaOseXNSs8OQzchxymvRoI5Y/0NeBOMikYIGk8hmU/0A0SgxIGLh2KER fXlyjoudYnXG5pkUnWIiqUASBDD4PIgQNA4QFAmRX6BtHJ+mRN1k7ng75B/VAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUL8Aa8raeRHCTnmc8x3G2cSSIef4wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDc4NTc5NS8wLzM0MzMyZTMyMzQz ODJlMzEzODM0MmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzYzMzM1MzYzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyv4uDANBgkqhkiG9w0BAQsFAAOCAQEAORIxV2yD5Q2Qf2NCRgJnZpJl vGSH9gOZB/evPV9ngBrqusYL/uCwQavyznkhZfWMw79Edd/2GMnssKs+8GXhya/f NPULVbu06akpvUvwxVK9wMkUWbsCOWgs10+a5mvIIvPHQeAGC2i+dQqfqtdWN+NI O73eEWpwaKbBt7YBzV90OhNdolCODck3selKlHYwzXRa2pKIRbQm3HthTwDA7CWc nysEMcrcm70Y+kZyHEM298GsSmV9rubjJd6VLxkWZHdRr8zyIVVXMTfp3GxRumCN j/gv88RSE1SFBGoeo364oD72CCOVRWq26R5EiJtp2aVVkGJp0oU5NkvXAH75Cw== -----END CERTIFICATE-----Generated at Mon Apr 27 17:26:05 2026 by rpki-client