$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/0/34322e3132302e302e302f31352d3234203d3e203337393633.roa File: 34322e3132302e302e302f31352d3234203d3e203337393633.roa (raw, json) Hash identifier: XXn7dZqY253iCMJnbdN08/MFfnd99iY+5H22pfKR8EE= Subject key identifier: 67:43:46:A0:07:82:6D:F1:CF:24:64:65:FF:3C:99:AC:C0:5F:E0:E7 Certificate issuer: /CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Certificate serial: 340F3A1573420CAAD4D06174CDC1F3C71F1A3CEA Authority key identifier: B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/34322e3132302e302e302f31352d3234203d3e203337393633.roa Signing time: Wed 22 Apr 2026 02:44:01 +0000 ROA not before: Wed 22 Apr 2026 02:39:01 +0000 ROA not after: Wed 21 Apr 2027 02:44:01 +0000 asID: 37963 IP address blocks: 42.120.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 04:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:0f:3a:15:73:42:0c:aa:d4:d0:61:74:cd:c1:f3:c7:1f:1a:3c:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3CAFB59F10B03AD2106E8215DBB903F157D0C8E Validity Not Before: Apr 22 02:39:01 2026 GMT Not After : Apr 21 02:44:01 2027 GMT Subject: CN=674346A007826DF1CF246465FF3C99ACC05FE0E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:50:65:f3:0f:b3:5b:16:fa:8a:3a:87:55:9d: 56:3f:67:10:9b:ce:be:24:a7:df:56:ee:8a:b2:a8: b5:37:cb:2f:77:79:fd:ae:87:02:d9:d7:89:16:2a: 30:62:39:58:cc:01:6f:be:8a:e3:f2:fd:a1:61:7d: 87:63:81:43:98:1e:fe:7d:db:aa:21:40:cb:84:53: ba:71:96:ce:c9:c1:cf:47:5a:f7:78:cc:30:58:65: b1:e8:0a:8d:b3:e4:a1:b9:65:cb:b1:88:0c:6a:2d: be:21:bd:7c:1a:bb:de:33:92:05:e4:78:c8:09:be: 5c:ba:81:2b:fc:df:95:35:fb:0a:39:ec:67:b2:16: fd:cb:92:2a:3a:4a:6d:8a:c0:f8:22:a6:e1:2d:7b: f8:40:e7:71:c2:05:8f:e1:06:70:5d:91:b4:7c:2a: 8f:f2:f1:54:b6:79:e0:36:11:08:a9:bd:b2:f0:7b: b6:6b:f5:da:d6:ad:38:2e:00:df:c1:08:43:d5:fd: eb:15:79:1b:62:34:38:36:c0:c2:a0:b1:b1:dc:00: 1e:c4:d2:1d:55:8c:ed:e8:90:b8:73:3b:bc:9f:38: 3a:9f:f3:e9:bd:6f:00:a0:ca:84:aa:e5:5a:c3:ba: 59:02:53:fa:69:bc:d3:28:26:18:f6:b9:77:3e:39: 6b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:43:46:A0:07:82:6D:F1:CF:24:64:65:FF:3C:99:AC:C0:5F:E0:E7 X509v3 Authority Key Identifier: keyid:B3:CA:FB:59:F1:0B:03:AD:21:06:E8:21:5D:BB:90:3F:15:7D:0C:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B3CAFB59F10B03AD2106E8215DBB903F157D0C8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/0/34322e3132302e302e302f31352d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.120.0.0/15 Signature Algorithm: sha256WithRSAEncryption 7d:8c:6b:fb:fc:c1:18:80:62:36:1d:72:1b:49:8f:03:3b:21: 35:48:03:db:51:f8:0d:00:c8:03:0a:9d:be:09:94:4c:89:b0: 21:05:e6:1d:aa:2e:ef:87:77:a1:b3:02:d4:23:dd:50:f9:db: ac:9d:cc:ff:2e:30:0c:12:1b:0b:3b:36:59:0b:2e:3f:32:2f: 5f:58:35:7e:59:72:16:36:2e:53:12:62:75:73:3d:37:7f:93: b0:2e:7b:01:58:80:7d:46:5b:df:f4:c1:f2:53:68:73:4c:c5: 23:30:d2:11:41:c2:34:fd:d6:d6:2b:26:bc:f8:92:55:39:11: 47:e0:96:27:a4:f5:12:88:eb:de:48:38:7c:9e:d5:ed:77:5a: 99:64:77:9f:eb:44:f1:4f:bf:e3:f3:bb:57:0d:e4:ce:7c:47: 9d:c6:40:1c:46:ee:a1:76:e8:1c:1e:93:ca:4f:b5:bf:68:9d: fb:5e:c2:7a:4f:1d:31:1b:84:3d:58:f4:b2:d1:02:7b:64:fb: a2:06:ef:6b:31:03:68:d7:bc:11:7a:54:f4:05:09:dd:a7:0e: 58:c3:1d:a4:5f:74:20:d2:30:66:0d:d6:4f:63:bb:32:c5:6e: 2b:77:e2:8a:b0:29:13:02:01:5a:6b:14:2b:2c:9c:89:c4:eb: e6:7d:9c:f4 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUNA86FXNCDKrU0GF0zcHzxx8aPOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0Yx NTdEMEM4RTAeFw0yNjA0MjIwMjM5MDFaFw0yNzA0MjEwMjQ0MDFaMDMxMTAvBgNV BAMTKDY3NDM0NkEwMDc4MjZERjFDRjI0NjQ2NUZGM0M5OUFDQzA1RkUwRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/UGXzD7NbFvqKOodVnVY/ZxCb zr4kp99W7oqyqLU3yy93ef2uhwLZ14kWKjBiOVjMAW++iuPy/aFhfYdjgUOYHv59 26ohQMuEU7pxls7Jwc9HWvd4zDBYZbHoCo2z5KG5ZcuxiAxqLb4hvXwau94zkgXk eMgJvly6gSv835U1+wo57GeyFv3Lkio6Sm2KwPgipuEte/hA53HCBY/hBnBdkbR8 Ko/y8VS2eeA2EQipvbLwe7Zr9drWrTguAN/BCEPV/esVeRtiNDg2wMKgsbHcAB7E 0h1VjO3okLhzO7yfODqf8+m9bwCgyoSq5VrDulkCU/ppvNMoJhj2uXc+OWuDAgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUZ0NGoAeCbfHPJGRl/zyZrMBf4OcwHwYDVR0j BBgwFoAUs8r7WfELA60hBughXbuQPxV9DI4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8wL0IzQ0FGQjU5RjEwQjAzQUQyMTA2RTgyMTVEQkI5 MDNGMTU3RDBDOEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjNDQUZCNTlGMTBCMDNBRDIxMDZFODIxNURCQjkwM0YxNTdEMEM4RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzAvMzQzMjJlMzEzMjMw MmUzMDJlMzAyZjMxMzUyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwEqeDANBgkqhkiG9w0BAQsFAAOCAQEAfYxr+/zBGIBiNh1yG0mPAzshNUgD21H4 DQDIAwqdvgmUTImwIQXmHaou74d3obMC1CPdUPnbrJ3M/y4wDBIbCzs2WQsuPzIv X1g1fllyFjYuUxJidXM9N3+TsC57AViAfUZb3/TB8lNoc0zFIzDSEUHCNP3W1ism vPiSVTkRR+CWJ6T1Eojr3kg4fJ7V7XdamWR3n+tE8U+/4/O7Vw3kznxHncZAHEbu oXboHB6Tyk+1v2id+17Cek8dMRuEPVj0stECe2T7ogbvazEDaNe8EXpU9AUJ3acO WMMdpF90INIwZg3WT2O7MsVuK3fiirApEwIBWmsUKyycicTr5n2c9A== -----END CERTIFICATE-----Generated at Wed Apr 22 06:40:55 2026 by rpki-client