$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3234372e3130322e302f32342d3234203d3e2034383132.roa File: 34332e3234372e3130322e302f32342d3234203d3e2034383132.roa (raw, json) Hash identifier: cyElE1Bhw1k8N2KlQApQW6apuaMTDy/PfxxWg4X95gQ= Subject key identifier: EC:79:F2:CB:8A:E0:5D:78:54:85:5D:2B:A5:50:6A:CE:E7:B7:F1:B7 Certificate issuer: /CN=B8C15036932176BBE4E7217ED5772ACA3DB00427 Certificate serial: 18771C151A2389C74C06D25D1BFC662A1EBEC1C5 Authority key identifier: B8:C1:50:36:93:21:76:BB:E4:E7:21:7E:D5:77:2A:CA:3D:B0:04:27 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3234372e3130322e302f32342d3234203d3e2034383132.roa Signing time: Tue 21 Apr 2026 03:03:16 +0000 ROA not before: Tue 21 Apr 2026 02:58:16 +0000 ROA not after: Tue 20 Apr 2027 03:03:16 +0000 asID: 4812 IP address blocks: 43.247.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.crl rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 04:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:77:1c:15:1a:23:89:c7:4c:06:d2:5d:1b:fc:66:2a:1e:be:c1:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C15036932176BBE4E7217ED5772ACA3DB00427 Validity Not Before: Apr 21 02:58:16 2026 GMT Not After : Apr 20 03:03:16 2027 GMT Subject: CN=EC79F2CB8AE05D7854855D2BA5506ACEE7B7F1B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:00:d3:a4:83:1f:fe:1a:c4:ea:4b:0a:1d:b4: aa:37:4e:4b:d4:98:54:85:9c:40:a7:0d:87:8f:3c: d3:82:18:05:16:35:15:a2:32:6b:66:e9:50:4d:c6: c8:93:25:ba:b8:da:b5:84:ad:8f:58:dd:73:6d:8d: 1d:17:97:3f:48:42:59:6b:15:b8:55:d9:19:01:ae: cc:fd:6b:48:a7:5b:7a:a8:38:55:0a:e0:af:80:f9: f2:38:30:f6:bd:e2:9f:82:da:28:d7:f6:99:63:74: 19:b4:48:94:cf:c5:dd:c6:f3:e0:fc:78:7a:58:a9: 1e:7b:77:16:43:43:8b:dd:40:4b:c7:02:60:c6:48: d5:87:19:e5:ab:20:a2:8a:00:8b:bf:2a:3c:0c:d8: 72:3e:56:5b:26:08:ed:0f:4d:da:7f:ff:f2:72:87: bb:1c:62:98:c7:5e:94:29:71:33:3a:b1:4d:c0:d3: 54:25:08:39:04:79:e8:7a:d5:13:05:f1:1e:36:ff: ea:43:b8:ef:05:1b:56:43:08:8d:d2:92:97:7e:49: 23:77:a8:14:49:d4:23:09:d0:48:1b:4d:aa:43:1e: 33:6a:7f:03:3b:5e:24:5b:e2:97:2d:a1:52:fd:bd: 7f:8d:8f:4f:ee:46:64:e2:a5:df:b0:00:6c:47:f1: 75:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:79:F2:CB:8A:E0:5D:78:54:85:5D:2B:A5:50:6A:CE:E7:B7:F1:B7 X509v3 Authority Key Identifier: keyid:B8:C1:50:36:93:21:76:BB:E4:E7:21:7E:D5:77:2A:CA:3D:B0:04:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3234372e3130322e302f32342d3234203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.102.0/24 Signature Algorithm: sha256WithRSAEncryption a3:b9:4e:9b:3e:1a:c6:4e:56:94:5e:bb:d1:08:fd:1b:55:16: f5:ab:6b:da:a6:2e:39:fc:42:a0:ec:9c:35:12:a0:23:74:7e: f8:9b:24:68:a5:25:8a:5b:65:4b:2d:29:2f:45:8b:cb:a8:90: 77:1f:bf:88:b5:97:0c:ef:08:2a:f6:c8:8c:bf:16:64:e3:84: 8a:c6:ef:08:a9:4c:58:f7:22:01:3c:0e:80:65:40:2c:2e:09: 50:cd:38:5f:47:d8:92:ef:06:57:f3:17:91:58:1d:22:49:b2: 9f:eb:6f:0f:5d:37:c6:de:33:05:a3:e1:c4:fd:cd:a3:73:3f: 82:d9:1e:49:39:ad:6c:e5:0d:ab:b8:cc:ab:a4:65:1c:77:e5: f1:81:4e:ae:20:04:1d:64:0d:cc:e0:d8:40:12:8d:16:34:39: ad:62:f3:a0:bb:83:f1:6f:f4:7f:a7:db:b3:3b:86:f6:3a:38: 31:a4:8e:e5:6f:39:80:cf:83:09:a0:5f:49:36:41:7f:54:a7: 53:4e:52:cb:f2:e7:03:41:46:e0:4b:72:33:23:75:dd:ac:78: 7a:28:45:d6:d8:4d:c6:3f:76:2e:5d:53:39:65:1f:17:fd:fc: 90:12:53:65:af:fa:2e:20:fa:25:1b:d6:10:a9:6a:d0:7c:b0: ad:05:f1:3e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUGHccFRojicdMBtJdG/xmKh6+wcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMTUwMzY5MzIxNzZCQkU0RTcyMTdFRDU3NzJBQ0Ez REIwMDQyNzAeFw0yNjA0MjEwMjU4MTZaFw0yNzA0MjAwMzAzMTZaMDMxMTAvBgNV BAMTKEVDNzlGMkNCOEFFMDVENzg1NDg1NUQyQkE1NTA2QUNFRTdCN0YxQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrANOkgx/+GsTqSwodtKo3TkvU mFSFnECnDYePPNOCGAUWNRWiMmtm6VBNxsiTJbq42rWErY9Y3XNtjR0Xlz9IQllr FbhV2RkBrsz9a0inW3qoOFUK4K+A+fI4MPa94p+C2ijX9pljdBm0SJTPxd3G8+D8 eHpYqR57dxZDQ4vdQEvHAmDGSNWHGeWrIKKKAIu/KjwM2HI+VlsmCO0PTdp///Jy h7scYpjHXpQpcTM6sU3A01QlCDkEeeh61RMF8R42/+pDuO8FG1ZDCI3Skpd+SSN3 qBRJ1CMJ0EgbTapDHjNqfwM7XiRb4pctoVL9vX+Nj0/uRmTipd+wAGxH8XWJAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU7Hnyy4rgXXhUhV0rpVBqzue38bcwHwYDVR0j BBgwFoAUuMFQNpMhdrvk5yF+1Xcqyj2wBCcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MDA1NTEyMTY5MDYyNi8wL0I4QzE1MDM2OTMyMTc2QkJFNEU3MjE3RUQ1Nzcy QUNBM0RCMDA0MjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjhDMTUwMzY5MzIxNzZCQkU0RTcyMTdFRDU3NzJBQ0EzREIwMDQyNy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgwMDU1MTIxNjkwNjI2LzAvMzQzMzJlMzIzNDM3 MmUzMTMwMzIyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzEzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACv3ZjANBgkqhkiG9w0BAQsFAAOCAQEAo7lOmz4axk5WlF670Qj9G1UW9atr 2qYuOfxCoOycNRKgI3R++JskaKUliltlSy0pL0WLy6iQdx+/iLWXDO8IKvbIjL8W ZOOEisbvCKlMWPciATwOgGVALC4JUM04X0fYku8GV/MXkVgdIkmyn+tvD103xt4z BaPhxP3No3M/gtkeSTmtbOUNq7jMq6RlHHfl8YFOriAEHWQNzODYQBKNFjQ5rWLz oLuD8W/0f6fbszuG9jo4MaSO5W85gM+DCaBfSTZBf1SnU05Sy/LnA0FG4EtyMyN1 3ax4eihF1thNxj92Ll1TOWUfF/38kBJTZa/6LiD6JRvWEKlq0HywrQXxPg== -----END CERTIFICATE-----Generated at Mon Apr 27 08:24:33 2026 by rpki-client