$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e39322e302e302f31342d3234203d3e203337393633.roa File: 34372e39322e302e302f31342d3234203d3e203337393633.roa (raw, json) Hash identifier: d0QnujeLIiBwhkySIvzmuDq1uWWqMCzgEV4dGlw/0i4= Subject key identifier: 63:B7:5F:7D:A7:E3:97:71:BD:E7:6B:C2:D2:B1:6A:59:EA:36:E5:78 Certificate issuer: /CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Certificate serial: 396A8340B3F9F3E4F757FF1A5191389AD925C7A9 Authority key identifier: A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e39322e302e302f31342d3234203d3e203337393633.roa Signing time: Tue 21 Apr 2026 02:14:09 +0000 ROA not before: Tue 21 Apr 2026 02:09:09 +0000 ROA not after: Tue 20 Apr 2027 02:14:09 +0000 asID: 37963 IP address blocks: 47.92.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 18:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:6a:83:40:b3:f9:f3:e4:f7:57:ff:1a:51:91:38:9a:d9:25:c7:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Validity Not Before: Apr 21 02:09:09 2026 GMT Not After : Apr 20 02:14:09 2027 GMT Subject: CN=63B75F7DA7E39771BDE76BC2D2B16A59EA36E578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5e:bc:60:43:54:d7:2e:ff:6f:39:f3:49:9a: 00:87:aa:bc:2e:70:0a:15:b3:fd:f2:28:9d:a2:7e: 23:d4:7c:d5:d2:ed:09:47:bb:c9:10:98:53:aa:c3: b5:c4:f2:ad:5c:23:10:22:5e:1b:0f:34:09:88:a7: 51:87:d6:16:78:3f:bc:2b:b3:bf:9b:13:96:c5:2f: cb:75:46:bb:2e:40:06:97:30:93:dd:76:d1:af:93: 98:5c:22:d1:9f:86:6a:51:ed:43:54:29:bf:76:1a: 97:48:69:8f:09:40:a0:14:b9:ae:0a:b7:34:76:9d: 99:85:62:66:d1:d6:11:3c:9b:87:32:78:ca:3e:59: 07:de:61:f8:1b:8e:13:cd:d3:27:80:13:61:82:11: 30:b5:97:71:4e:f2:96:f3:7e:5d:48:d1:03:87:25: 86:a3:bf:77:bc:b1:40:45:e4:66:5b:88:c0:f4:20: 4a:95:5e:e2:b6:a7:00:ef:24:a3:af:9b:03:9e:b3: dc:04:6c:80:84:5c:66:22:48:81:df:75:18:a3:b0: a0:e6:fd:92:1e:06:b3:71:28:a1:c1:ba:89:b9:c7: 21:d5:4e:b8:4f:96:cd:1e:6e:23:5c:ed:70:50:fa: a0:63:09:1a:52:ae:71:59:e0:4f:18:03:40:40:5a: 22:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B7:5F:7D:A7:E3:97:71:BD:E7:6B:C2:D2:B1:6A:59:EA:36:E5:78 X509v3 Authority Key Identifier: keyid:A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e39322e302e302f31342d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 47.92.0.0/14 Signature Algorithm: sha256WithRSAEncryption 7a:8a:a3:7f:51:37:ac:d8:26:e7:3a:61:cf:c6:a9:51:ef:4d: 80:11:3a:33:8b:2e:6f:49:78:ad:de:26:f8:a4:f0:3e:7d:b0: 4a:44:9f:6f:4c:3c:69:84:3c:58:77:af:1c:43:84:64:09:63: 06:6a:17:c3:5e:ec:60:7d:dc:f9:1c:30:7a:58:c7:5f:d2:a4: 6f:02:7f:e4:0a:8e:dc:a6:b8:ae:4e:2a:f2:31:e1:a1:6f:24: 67:d1:35:29:c3:ae:07:4c:d9:a8:76:18:71:c2:d6:3c:e5:d0: bf:ee:67:ba:f6:46:5f:c7:5e:2c:be:ea:73:5a:11:23:e8:52: 19:01:8c:4f:61:bd:2d:05:04:22:04:e8:eb:c5:3a:06:6a:b3: c6:f6:83:98:01:cb:ba:3c:84:d3:63:a1:2a:16:67:3d:32:a8: 25:db:10:a9:33:92:3d:b0:a0:a9:3c:43:ed:0c:d3:1b:a4:4d: 7d:82:16:38:ce:2b:dc:24:ce:a8:cd:46:37:30:81:a6:d8:9d: 19:9d:10:12:5e:b2:d0:9d:01:f5:89:e8:04:66:36:46:3e:89: 40:02:21:ad:eb:45:0b:34:93:42:c2:d2:c7:ec:86:13:48:38: 6e:56:34:b0:c5:ef:c3:a7:c5:8a:f5:5f:63:e7:0f:2d:c0:6f: c7:a2:88:e7 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUOWqDQLP58+T3V/8aUZE4mtklx6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkx MkRGRDIyOTAeFw0yNjA0MjEwMjA5MDlaFw0yNzA0MjAwMjE0MDlaMDMxMTAvBgNV BAMTKDYzQjc1RjdEQTdFMzk3NzFCREU3NkJDMkQyQjE2QTU5RUEzNkU1NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1XrxgQ1TXLv9vOfNJmgCHqrwu cAoVs/3yKJ2ifiPUfNXS7QlHu8kQmFOqw7XE8q1cIxAiXhsPNAmIp1GH1hZ4P7wr s7+bE5bFL8t1RrsuQAaXMJPddtGvk5hcItGfhmpR7UNUKb92GpdIaY8JQKAUua4K tzR2nZmFYmbR1hE8m4cyeMo+WQfeYfgbjhPN0yeAE2GCETC1l3FO8pbzfl1I0QOH JYajv3e8sUBF5GZbiMD0IEqVXuK2pwDvJKOvmwOes9wEbICEXGYiSIHfdRijsKDm /ZIeBrNxKKHBuom5xyHVTrhPls0ebiNc7XBQ+qBjCRpSrnFZ4E8YA0BAWiI9AgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUY7dffafjl3G952vC0rFqWeo25XgwHwYDVR0j BBgwFoAUpbKxTZdRO2wMgrHlQHA+uRLf0ikwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8xL0E1QjJCMTREOTc1MTNCNkMwQzgyQjFFNTQwNzAz RUI5MTJERkQyMjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkxMkRGRDIyOS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzEvMzQzNzJlMzkzMjJl MzAyZTMwMmYzMTM0MmQzMjM0MjAzZDNlMjAzMzM3MzkzNjMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMC L1wwDQYJKoZIhvcNAQELBQADggEBAHqKo39RN6zYJuc6Yc/GqVHvTYAROjOLLm9J eK3eJvik8D59sEpEn29MPGmEPFh3rxxDhGQJYwZqF8Ne7GB93PkcMHpYx1/SpG8C f+QKjtymuK5OKvIx4aFvJGfRNSnDrgdM2ah2GHHC1jzl0L/uZ7r2Rl/HXiy+6nNa ESPoUhkBjE9hvS0FBCIE6OvFOgZqs8b2g5gBy7o8hNNjoSoWZz0yqCXbEKkzkj2w oKk8Q+0M0xukTX2CFjjOK9wkzqjNRjcwgabYnRmdEBJestCdAfWJ6ARmNkY+iUAC Ia3rRQs0k0LC0sfshhNIOG5WNLDF78OnxYr1X2PnDy3Ab8eiiOc= -----END CERTIFICATE-----Generated at Tue Apr 28 08:04:36 2026 by rpki-client