$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e3130342e302e302f31332d3234203d3e203337393633.roa File: 34372e3130342e302e302f31332d3234203d3e203337393633.roa (raw, json) Hash identifier: rwAzS9Eef9SzzpYNpqYqgoG+OJgKFf8Bv5eIn0vr0Fs= Subject key identifier: 4E:96:D2:A2:33:31:AC:18:B7:04:2E:46:5E:2C:17:93:8F:58:0F:9E Certificate issuer: /CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Certificate serial: 55200669C0905F2B65BFFFB8A7858B20177D363C Authority key identifier: A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e3130342e302e302f31332d3234203d3e203337393633.roa Signing time: Tue 21 Apr 2026 08:20:08 +0000 ROA not before: Tue 21 Apr 2026 08:15:08 +0000 ROA not after: Tue 20 Apr 2027 08:20:08 +0000 asID: 37963 IP address blocks: 47.104.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 18:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:20:06:69:c0:90:5f:2b:65:bf:ff:b8:a7:85:8b:20:17:7d:36:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Validity Not Before: Apr 21 08:15:08 2026 GMT Not After : Apr 20 08:20:08 2027 GMT Subject: CN=4E96D2A23331AC18B7042E465E2C17938F580F9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d7:03:c4:30:4f:2e:2c:22:5c:64:98:35:a4: 03:42:96:a8:6e:fb:c7:e3:6a:ac:e9:ab:76:55:78: 6f:02:a0:c9:2c:d2:3e:e2:e6:38:27:0e:53:d7:8d: ee:fe:b7:e7:d9:c8:a6:0a:0f:23:4d:7d:1d:1e:6c: fd:5e:39:03:50:ac:c1:37:0e:05:d5:26:e9:bc:79: aa:47:c6:47:3f:f7:d5:e0:6e:ff:fa:e5:f9:6f:e0: 02:67:c8:79:af:de:aa:17:5b:8c:3d:4f:8d:01:6d: 97:8b:89:9d:c5:83:55:2f:0e:3e:0b:6e:f8:22:96: 20:5f:cc:7a:5f:ec:f4:19:69:35:37:9e:1b:64:b4: 5f:cb:be:da:16:39:4d:a1:c6:71:0e:2c:1f:e6:b4: 8c:77:e3:70:70:ae:6e:a2:7f:29:62:14:d4:b6:9e: 80:b3:4d:a1:67:16:79:be:cd:05:f3:38:97:3d:08: e8:ae:ec:14:7f:a4:34:fb:36:b1:6c:79:b1:e1:ee: 7b:0c:1d:e8:b0:91:de:76:f0:5e:ed:f1:01:7a:2c: 9e:85:91:30:a5:31:89:3f:32:ab:83:b2:26:fa:1c: 04:de:8a:29:81:62:89:88:c9:f0:89:f9:bf:ad:99: bf:2d:a3:08:1d:ae:9a:db:6e:82:35:c3:69:a5:c6: 31:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:96:D2:A2:33:31:AC:18:B7:04:2E:46:5E:2C:17:93:8F:58:0F:9E X509v3 Authority Key Identifier: keyid:A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e3130342e302e302f31332d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 47.104.0.0/13 Signature Algorithm: sha256WithRSAEncryption 34:e5:b4:98:a3:3f:aa:61:1f:ff:0f:d0:0a:1f:4c:66:58:9f: 1a:b5:8a:72:b8:4c:33:20:db:ad:18:a9:82:de:48:2e:9b:9f: e2:b6:0e:07:61:5d:b0:e5:2a:13:3d:bc:8b:4a:c5:88:71:81: ea:09:2e:48:94:f9:5c:2e:5a:df:8a:23:c3:4b:04:21:f4:f4: 7f:f3:aa:9d:c4:db:7b:58:ca:7e:25:39:cf:a2:16:af:4c:9f: 83:fa:3e:2d:be:ed:7f:61:13:53:4c:36:c5:83:f4:1b:bc:8a: 6f:e8:0a:bb:a9:1c:9e:71:55:b8:98:b2:3f:55:33:49:2e:e7: 7c:9d:dc:bc:30:68:af:86:39:96:66:bb:29:03:46:f1:78:1b: af:58:90:3f:5e:2f:5a:77:75:c2:ed:b5:5c:cb:43:11:0f:ff: 05:ce:c2:1e:fb:3d:84:64:33:53:90:af:9d:e0:36:f3:65:f1: 70:93:f3:2b:3f:d7:d1:7c:88:10:e4:9a:c9:8b:bb:f3:35:ab: 32:09:71:dd:74:d8:7a:1a:a7:6e:d7:c1:cc:61:40:6c:f1:f6: d7:70:b6:57:65:51:a4:c0:94:b2:bd:64:13:c7:38:6e:c8:04: 96:0d:c4:ad:d4:52:d4:69:39:a8:f9:d6:3c:6f:4e:2a:da:2d: 4c:d5:a9:fb -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIUVSAGacCQXytlv/+4p4WLIBd9NjwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkx MkRGRDIyOTAeFw0yNjA0MjEwODE1MDhaFw0yNzA0MjAwODIwMDhaMDMxMTAvBgNV BAMTKDRFOTZEMkEyMzMzMUFDMThCNzA0MkU0NjVFMkMxNzkzOEY1ODBGOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp1wPEME8uLCJcZJg1pANClqhu +8fjaqzpq3ZVeG8CoMks0j7i5jgnDlPXje7+t+fZyKYKDyNNfR0ebP1eOQNQrME3 DgXVJum8eapHxkc/99Xgbv/65flv4AJnyHmv3qoXW4w9T40BbZeLiZ3Fg1UvDj4L bvgiliBfzHpf7PQZaTU3nhtktF/LvtoWOU2hxnEOLB/mtIx343Bwrm6ifyliFNS2 noCzTaFnFnm+zQXzOJc9COiu7BR/pDT7NrFsebHh7nsMHeiwkd528F7t8QF6LJ6F kTClMYk/MquDsib6HATeiimBYomIyfCJ+b+tmb8towgdrprbboI1w2mlxjG9AgMB AAGjggIOMIICCjAdBgNVHQ4EFgQUTpbSojMxrBi3BC5GXiwXk49YD54wHwYDVR0j BBgwFoAUpbKxTZdRO2wMgrHlQHA+uRLf0ikwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8xL0E1QjJCMTREOTc1MTNCNkMwQzgyQjFFNTQwNzAz RUI5MTJERkQyMjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkxMkRGRDIyOS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzEvMzQzNzJlMzEzMDM0 MmUzMDJlMzAyZjMxMzMyZDMyMzQyMDNkM2UyMDMzMzczOTM2MzMucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwMvaDANBgkqhkiG9w0BAQsFAAOCAQEANOW0mKM/qmEf/w/QCh9MZlifGrWKcrhM MyDbrRipgt5ILpuf4rYOB2FdsOUqEz28i0rFiHGB6gkuSJT5XC5a34ojw0sEIfT0 f/OqncTbe1jKfiU5z6IWr0yfg/o+Lb7tf2ETU0w2xYP0G7yKb+gKu6kcnnFVuJiy P1UzSS7nfJ3cvDBor4Y5lma7KQNG8Xgbr1iQP14vWnd1wu21XMtDEQ//Bc7CHvs9 hGQzU5CvneA282XxcJPzKz/X0XyIEOSayYu78zWrMglx3XTYehqnbtfBzGFAbPH2 13C2V2VRpMCUsr1kE8c4bsgElg3ErdRS1Gk5qPnWPG9OKtotTNWp+w== -----END CERTIFICATE-----Generated at Tue Apr 28 08:04:26 2026 by rpki-client