$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e3130302e302e302f31342d3234203d3e203337393633.roa File: 34372e3130302e302e302f31342d3234203d3e203337393633.roa (raw, json) Hash identifier: ppj+TlXCIrAcPf1eMhGWrhP2Ij9TixTm3BfPz4IPvbI= Subject key identifier: C4:CE:8D:D0:38:90:7A:91:83:61:3F:8A:45:ED:58:24:80:B8:7B:65 Certificate issuer: /CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Certificate serial: 56F444AD0D5FEED881F007A0487047095542FED9 Authority key identifier: A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e3130302e302e302f31342d3234203d3e203337393633.roa Signing time: Mon 20 Apr 2026 08:51:33 +0000 ROA not before: Mon 20 Apr 2026 08:46:33 +0000 ROA not after: Mon 19 Apr 2027 08:51:33 +0000 asID: 37963 IP address blocks: 47.100.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 18:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f4:44:ad:0d:5f:ee:d8:81:f0:07:a0:48:70:47:09:55:42:fe:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Validity Not Before: Apr 20 08:46:33 2026 GMT Not After : Apr 19 08:51:33 2027 GMT Subject: CN=C4CE8DD038907A9183613F8A45ED582480B87B65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:82:a9:22:6a:67:62:c8:08:ef:ff:da:86:a7: f5:96:b4:bb:b4:f1:a6:93:1d:96:5e:ee:78:d8:66: f8:84:04:ee:33:56:b5:10:12:55:b9:19:fa:0e:37: 8b:a0:dc:d9:d6:b7:82:ae:b9:1c:c7:b9:b2:8a:0d: 23:1b:3c:a3:72:a4:85:52:a5:49:56:68:b8:e4:d1: f0:eb:e9:24:52:d4:d0:1c:2c:d5:14:0e:55:e9:cb: 52:91:b6:8f:0d:b8:b3:55:4f:30:21:51:79:56:e7: 10:c8:cd:e3:f8:7b:ad:c0:00:71:ba:fb:30:b6:e2: e3:c9:44:64:09:0c:93:4a:00:35:5c:3b:40:4a:76: f3:08:b4:cc:99:a0:9f:bb:1e:5b:62:74:a6:98:58: 4b:63:1f:a4:0b:62:17:b2:9c:b0:ba:b7:ef:1d:10: 25:06:f8:ab:a3:2d:8e:77:50:93:a0:5f:ea:af:d3: c5:b4:eb:34:2b:95:4d:36:08:83:c2:02:0a:8b:92: 76:ca:52:3e:d8:ab:d8:f3:bf:7d:5d:e3:bd:32:db: 55:7f:e5:42:7d:eb:27:b3:75:29:4f:6b:b2:6b:29: ba:8b:44:3e:61:94:55:0d:8d:28:d0:90:6a:31:5e: 15:5d:26:06:fb:b8:18:48:ea:28:fd:4f:51:78:7d: 25:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CE:8D:D0:38:90:7A:91:83:61:3F:8A:45:ED:58:24:80:B8:7B:65 X509v3 Authority Key Identifier: keyid:A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e3130302e302e302f31342d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 47.100.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2e:6f:2e:81:ed:31:21:a2:8f:b5:46:b3:b5:4a:b9:10:24:d6: 92:56:f1:1f:b0:3a:71:36:aa:fb:20:93:92:2b:db:3a:78:6b: 27:d2:74:4f:61:f2:f8:c8:b7:fc:5b:7e:71:04:2b:5f:2c:68: 05:76:6a:31:c2:5c:42:75:5c:af:58:2e:c7:b2:f7:a6:74:bb: 46:47:0c:47:0c:40:27:21:c6:d8:c3:35:17:67:5b:a4:99:0b: f5:d2:f7:8a:8c:97:88:fd:89:40:1c:b3:26:ce:a3:23:5d:4f: a6:9f:d1:39:58:7e:08:27:a5:7f:fc:4e:cc:d7:8b:69:17:01: ed:35:09:84:04:bc:84:a2:36:6b:5a:bc:4b:a6:61:ff:2c:ba: 5b:02:45:a1:59:ed:31:37:22:3e:d7:a1:0f:8d:31:41:53:78: 09:7b:ac:18:7f:dc:51:ba:ce:79:7d:e9:6f:10:30:31:e1:8c: 5b:e3:97:00:c3:92:8f:1e:52:3a:9a:3b:f0:75:70:03:fc:53: 9e:4c:61:82:24:16:8b:ad:48:f6:af:2b:b4:95:c5:37:5c:83: ce:e0:4d:1f:46:49:b5:45:33:6d:50:ae:1b:ca:40:3b:b5:de: 93:08:9f:bd:64:d4:aa:56:5a:1a:42:5e:8a:44:39:45:48:29: 5f:36:84:62 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUVvRErQ1f7tiB8AegSHBHCVVC/tkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkx MkRGRDIyOTAeFw0yNjA0MjAwODQ2MzNaFw0yNzA0MTkwODUxMzNaMDMxMTAvBgNV BAMTKEM0Q0U4REQwMzg5MDdBOTE4MzYxM0Y4QTQ1RUQ1ODI0ODBCODdCNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsgqkiamdiyAjv/9qGp/WWtLu0 8aaTHZZe7njYZviEBO4zVrUQElW5GfoON4ug3NnWt4KuuRzHubKKDSMbPKNypIVS pUlWaLjk0fDr6SRS1NAcLNUUDlXpy1KRto8NuLNVTzAhUXlW5xDIzeP4e63AAHG6 +zC24uPJRGQJDJNKADVcO0BKdvMItMyZoJ+7HltidKaYWEtjH6QLYheynLC6t+8d ECUG+KujLY53UJOgX+qv08W06zQrlU02CIPCAgqLknbKUj7Yq9jzv31d470y21V/ 5UJ96yezdSlPa7JrKbqLRD5hlFUNjSjQkGoxXhVdJgb7uBhI6ij9T1F4fSX5AgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUxM6N0DiQepGDYT+KRe1YJIC4e2UwHwYDVR0j BBgwFoAUpbKxTZdRO2wMgrHlQHA+uRLf0ikwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8xL0E1QjJCMTREOTc1MTNCNkMwQzgyQjFFNTQwNzAz RUI5MTJERkQyMjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkxMkRGRDIyOS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzEvMzQzNzJlMzEzMDMw MmUzMDJlMzAyZjMxMzQyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwIvZDANBgkqhkiG9w0BAQsFAAOCAQEALm8uge0xIaKPtUaztUq5ECTWklbxH7A6 cTaq+yCTkivbOnhrJ9J0T2Hy+Mi3/Ft+cQQrXyxoBXZqMcJcQnVcr1gux7L3pnS7 RkcMRwxAJyHG2MM1F2dbpJkL9dL3ioyXiP2JQByzJs6jI11Ppp/ROVh+CCelf/xO zNeLaRcB7TUJhAS8hKI2a1q8S6Zh/yy6WwJFoVntMTciPtehD40xQVN4CXusGH/c UbrOeX3pbxAwMeGMW+OXAMOSjx5SOpo78HVwA/xTnkxhgiQWi61I9q8rtJXFN1yD zuBNH0ZJtUUzbVCuG8pAO7XekwifvWTUqlZaGkJeikQ5RUgpXzaEYg== -----END CERTIFICATE-----Generated at Tue Apr 28 08:04:37 2026 by rpki-client