$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3234372e3130312e302f32342d3234203d3e2034383132.roa File: 34332e3234372e3130312e302f32342d3234203d3e2034383132.roa (raw, json) Hash identifier: mvUECDvLodFp/11AD5O24Evd5dSLDBKZTKf3mHCuAvc= Subject key identifier: A4:7F:70:01:79:8B:BD:C7:BC:32:40:B8:0E:9A:7C:4B:AC:7C:23:67 Certificate issuer: /CN=B8C15036932176BBE4E7217ED5772ACA3DB00427 Certificate serial: 49352E13A9052E7B5A6F5240D05905C7E985C4DF Authority key identifier: B8:C1:50:36:93:21:76:BB:E4:E7:21:7E:D5:77:2A:CA:3D:B0:04:27 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3234372e3130312e302f32342d3234203d3e2034383132.roa Signing time: Tue 21 Apr 2026 03:03:16 +0000 ROA not before: Tue 21 Apr 2026 02:58:16 +0000 ROA not after: Tue 20 Apr 2027 03:03:16 +0000 asID: 4812 IP address blocks: 43.247.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.crl rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:35:2e:13:a9:05:2e:7b:5a:6f:52:40:d0:59:05:c7:e9:85:c4:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C15036932176BBE4E7217ED5772ACA3DB00427 Validity Not Before: Apr 21 02:58:16 2026 GMT Not After : Apr 20 03:03:16 2027 GMT Subject: CN=A47F7001798BBDC7BC3240B80E9A7C4BAC7C2367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:94:5b:f5:5f:e1:80:3f:e2:cd:04:72:c6:b4: 91:1a:0b:77:f8:01:4b:aa:ab:f0:47:24:13:62:77: 36:8f:9b:f2:bb:50:ee:07:64:b2:e9:e4:ef:ae:e6: 16:6f:6b:ce:bd:74:b3:c2:e9:00:93:85:fb:ca:b5: 1d:ca:85:89:0b:ad:f1:a2:fa:ed:7e:2b:81:8b:c0: 36:c6:b4:2e:7a:b5:67:02:fe:7d:7c:2d:d5:ef:47: 5c:e2:97:77:28:6d:ba:d7:2f:c5:02:9d:db:ea:e4: 86:5c:19:e5:2b:34:7e:62:3a:a8:31:ee:0f:62:ca: 81:6e:ef:bd:8a:1c:b0:a4:d5:42:6b:83:15:46:67: 6d:45:42:e8:2d:da:13:32:5e:d6:bb:67:20:b7:c4: a6:45:ee:e4:f3:1d:d5:dc:db:ea:20:34:e2:ff:5d: dd:41:82:89:0d:d4:c2:7f:c3:9b:5a:0c:ab:83:9b: 25:33:a2:1c:37:33:b5:2b:6b:d4:03:51:bb:b1:36: 28:ba:eb:e2:5d:af:71:17:ae:6b:ff:d3:f6:b5:d9: 05:84:4e:a9:1e:83:c1:cf:33:1c:6a:d2:78:d7:80: 2b:99:e1:28:4d:2b:9d:1c:a4:14:61:b4:89:aa:d7: 69:99:c1:b5:ea:37:ad:58:35:c3:56:bc:aa:38:95: 47:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:7F:70:01:79:8B:BD:C7:BC:32:40:B8:0E:9A:7C:4B:AC:7C:23:67 X509v3 Authority Key Identifier: keyid:B8:C1:50:36:93:21:76:BB:E4:E7:21:7E:D5:77:2A:CA:3D:B0:04:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3234372e3130312e302f32342d3234203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.101.0/24 Signature Algorithm: sha256WithRSAEncryption 20:4c:39:b8:cd:0b:a1:c9:4b:b0:5a:f2:cf:92:b4:a2:24:2c: af:48:7c:c4:52:22:18:9c:85:a9:56:a3:1e:d3:54:e9:aa:da: 43:10:fc:19:69:ef:f1:12:66:29:d5:03:d1:f0:75:ab:85:b7: 76:f8:68:13:6f:f0:ab:9b:26:9d:45:93:e8:07:a0:70:16:0f: de:2d:79:24:af:8f:3e:e9:fe:93:dc:2e:09:cb:c5:c5:ba:30: 6a:c8:f2:c1:4e:11:c4:6f:e8:9e:65:26:e3:cd:82:97:2c:97: 63:0b:2e:40:54:b9:c4:73:40:00:e8:fc:4a:9c:f8:b3:65:85: 66:2e:a8:68:94:82:79:da:b7:11:2c:b4:8c:5b:59:3d:60:45: 89:56:3e:6d:ef:cc:6e:50:ec:0b:04:0f:03:33:b2:f2:cb:60: 8f:0a:9c:17:41:69:88:44:f3:d9:d5:96:3c:e4:db:22:16:3c: 06:7b:a0:36:5f:79:b9:cc:f2:ba:43:0d:77:0a:26:7e:f8:30: 2a:7e:4e:4e:82:55:d3:b2:2e:0b:b4:4c:8d:90:29:64:b6:07: 7d:71:cb:06:49:99:91:15:3d:ef:24:9c:d5:18:1d:8d:cc:23: 68:52:4e:ad:22:6c:b2:f3:c0:cf:5e:4e:66:a2:f4:c0:44:ee: c8:52:6d:55 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUSTUuE6kFLntab1JA0FkFx+mFxN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMTUwMzY5MzIxNzZCQkU0RTcyMTdFRDU3NzJBQ0Ez REIwMDQyNzAeFw0yNjA0MjEwMjU4MTZaFw0yNzA0MjAwMzAzMTZaMDMxMTAvBgNV BAMTKEE0N0Y3MDAxNzk4QkJEQzdCQzMyNDBCODBFOUE3QzRCQUM3QzIzNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOlFv1X+GAP+LNBHLGtJEaC3f4 AUuqq/BHJBNidzaPm/K7UO4HZLLp5O+u5hZva869dLPC6QCThfvKtR3KhYkLrfGi +u1+K4GLwDbGtC56tWcC/n18LdXvR1zil3cobbrXL8UCndvq5IZcGeUrNH5iOqgx 7g9iyoFu772KHLCk1UJrgxVGZ21FQugt2hMyXta7ZyC3xKZF7uTzHdXc2+ogNOL/ Xd1BgokN1MJ/w5taDKuDmyUzohw3M7Ura9QDUbuxNii66+Jdr3EXrmv/0/a12QWE Tqkeg8HPMxxq0njXgCuZ4ShNK50cpBRhtImq12mZwbXqN61YNcNWvKo4lUcBAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUpH9wAXmLvce8MkC4Dpp8S6x8I2cwHwYDVR0j BBgwFoAUuMFQNpMhdrvk5yF+1Xcqyj2wBCcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MDA1NTEyMTY5MDYyNi8wL0I4QzE1MDM2OTMyMTc2QkJFNEU3MjE3RUQ1Nzcy QUNBM0RCMDA0MjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjhDMTUwMzY5MzIxNzZCQkU0RTcyMTdFRDU3NzJBQ0EzREIwMDQyNy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgwMDU1MTIxNjkwNjI2LzAvMzQzMzJlMzIzNDM3 MmUzMTMwMzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzEzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACv3ZTANBgkqhkiG9w0BAQsFAAOCAQEAIEw5uM0LoclLsFryz5K0oiQsr0h8 xFIiGJyFqVajHtNU6araQxD8GWnv8RJmKdUD0fB1q4W3dvhoE2/wq5smnUWT6Aeg cBYP3i15JK+PPun+k9wuCcvFxbowasjywU4RxG/onmUm482ClyyXYwsuQFS5xHNA AOj8Spz4s2WFZi6oaJSCedq3ESy0jFtZPWBFiVY+be/MblDsCwQPAzOy8stgjwqc F0FpiETz2dWWPOTbIhY8BnugNl95uczyukMNdwomfvgwKn5OToJV07IuC7RMjZAp ZLYHfXHLBkmZkRU97ySc1RgdjcwjaFJOrSJssvPAz15OZqL0wETuyFJtVQ== -----END CERTIFICATE-----Generated at Mon Apr 27 08:24:34 2026 by rpki-client