$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e39362e302e302f31352d3234203d3e203337393633.roa File: 34372e39362e302e302f31352d3234203d3e203337393633.roa (raw, json) Hash identifier: qCOeajORd8EdADqBCDEKYOaZ9qR0x8mo50AIxKKf2kk= Subject key identifier: 70:79:9E:41:2F:C6:B0:1C:40:50:64:B5:95:67:08:28:47:BA:11:A8 Certificate issuer: /CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Certificate serial: 168F0EB000A0D13B761C725D7BD4FA2403032329 Authority key identifier: A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e39362e302e302f31352d3234203d3e203337393633.roa Signing time: Wed 22 Apr 2026 08:02:45 +0000 ROA not before: Wed 22 Apr 2026 07:57:45 +0000 ROA not after: Wed 21 Apr 2027 08:02:45 +0000 asID: 37963 IP address blocks: 47.96.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 18:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:8f:0e:b0:00:a0:d1:3b:76:1c:72:5d:7b:d4:fa:24:03:03:23:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5B2B14D97513B6C0C82B1E540703EB912DFD229 Validity Not Before: Apr 22 07:57:45 2026 GMT Not After : Apr 21 08:02:45 2027 GMT Subject: CN=70799E412FC6B01C405064B59567082847BA11A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a1:a8:b0:29:b5:ff:56:16:ec:4e:08:26:92: 95:73:b4:bc:a7:04:60:7e:7b:4e:d4:50:37:b6:b9: a6:e7:59:61:bd:03:00:96:9d:06:eb:61:27:9d:06: b2:ba:4c:f5:5e:92:b4:ae:ac:3a:68:bf:bc:61:cd: a3:90:7f:23:94:37:92:77:9f:bd:cc:03:00:be:0d: 06:cc:0e:f4:95:69:44:45:80:9d:99:91:06:2c:1a: 6d:70:2b:fa:db:e6:d3:0d:be:ff:f5:c2:51:82:bb: 20:4b:df:dd:2b:86:ed:0b:0b:47:4b:4f:eb:a3:04: 34:cb:9c:09:09:cd:1b:08:49:cb:28:74:6e:d0:34: 42:33:64:c5:0f:75:56:69:06:28:fd:5f:49:a8:62: a8:df:67:c2:09:10:2b:7f:b5:1f:12:92:17:eb:b1: 15:f6:09:2d:e2:1f:e6:36:2f:92:b2:0e:88:8a:4e: aa:ee:ac:84:75:7d:3f:d8:08:13:df:c2:55:40:e9: c3:bb:55:8d:23:28:49:43:48:8f:b6:f5:ad:7a:fa: a6:ed:22:55:9f:5f:2f:d9:60:2e:e0:18:e1:46:8b: a6:f5:49:ab:1c:b8:a8:7b:23:87:ef:31:1d:15:c2: 6f:de:c9:b4:2b:c4:92:2d:a5:d7:b2:6d:03:32:06: 09:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:79:9E:41:2F:C6:B0:1C:40:50:64:B5:95:67:08:28:47:BA:11:A8 X509v3 Authority Key Identifier: keyid:A5:B2:B1:4D:97:51:3B:6C:0C:82:B1:E5:40:70:3E:B9:12:DF:D2:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/A5B2B14D97513B6C0C82B1E540703EB912DFD229.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/A5B2B14D97513B6C0C82B1E540703EB912DFD229.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065887644090630145/1/34372e39362e302e302f31352d3234203d3e203337393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 47.96.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3b:0a:42:34:52:68:33:d2:c4:8b:8e:51:fa:bf:63:5c:b2:a3: 69:d4:41:a0:ff:fd:e0:34:ac:5e:a6:2d:e0:38:15:99:56:a7: f7:ee:3d:b3:87:d5:f8:e1:44:0a:0e:38:4a:32:31:5d:f4:2e: 96:80:92:c6:05:19:f5:02:fc:11:2a:f8:00:1f:a4:78:4f:9f: fa:57:9e:1b:47:2e:6c:2d:6a:91:97:de:28:f4:ba:d7:98:54: 4c:97:de:38:29:84:26:7f:5a:05:cd:9f:01:ec:84:31:42:25: 50:29:7e:12:42:c0:d3:56:87:35:da:79:08:f3:64:b8:cd:14: d4:d1:9b:d7:f3:58:0e:af:04:70:b7:9f:17:a4:59:32:63:c9: bd:fa:8f:e9:ad:41:21:6a:08:92:28:9b:4c:1c:5b:9e:97:c1: e4:a2:18:45:c0:90:b3:2c:c0:c1:16:b8:62:79:2d:ab:8e:d8: 9d:f0:e9:7e:6f:ab:8c:ed:7f:e5:e7:d4:cb:8f:98:bc:d6:04: 57:3b:74:c7:cc:e5:e3:0d:5c:f8:67:07:53:94:42:4c:7e:42: 67:c8:2c:ed:09:2b:c0:f3:8a:b5:e0:e8:c6:3f:1b:0d:c8:a2: 51:c3:8b:6b:17:d0:96:bd:ec:6c:60:9a:88:1f:0d:8c:8c:9c: 83:21:8d:3f -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUFo8OsACg0Tt2HHJde9T6JAMDIykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkx MkRGRDIyOTAeFw0yNjA0MjIwNzU3NDVaFw0yNzA0MjEwODAyNDVaMDMxMTAvBgNV BAMTKDcwNzk5RTQxMkZDNkIwMUM0MDUwNjRCNTk1NjcwODI4NDdCQTExQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2oaiwKbX/VhbsTggmkpVztLyn BGB+e07UUDe2uabnWWG9AwCWnQbrYSedBrK6TPVekrSurDpov7xhzaOQfyOUN5J3 n73MAwC+DQbMDvSVaURFgJ2ZkQYsGm1wK/rb5tMNvv/1wlGCuyBL390rhu0LC0dL T+ujBDTLnAkJzRsIScsodG7QNEIzZMUPdVZpBij9X0moYqjfZ8IJECt/tR8Skhfr sRX2CS3iH+Y2L5KyDoiKTqrurIR1fT/YCBPfwlVA6cO7VY0jKElDSI+29a16+qbt IlWfXy/ZYC7gGOFGi6b1SascuKh7I4fvMR0Vwm/eybQrxJItpdeybQMyBgmZAgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUcHmeQS/GsBxAUGS1lWcIKEe6EagwHwYDVR0j BBgwFoAUpbKxTZdRO2wMgrHlQHA+uRLf0ikwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTg4NzY0NDA5MDYzMDE0NS8xL0E1QjJCMTREOTc1MTNCNkMwQzgyQjFFNTQwNzAz RUI5MTJERkQyMjkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvQTVCMkIxNEQ5NzUxM0I2QzBDODJCMUU1NDA3MDNFQjkxMkRGRDIyOS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1ODg3NjQ0MDkwNjMwMTQ1LzEvMzQzNzJlMzkzNjJl MzAyZTMwMmYzMTM1MmQzMjM0MjAzZDNlMjAzMzM3MzkzNjMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB L2AwDQYJKoZIhvcNAQELBQADggEBADsKQjRSaDPSxIuOUfq/Y1yyo2nUQaD//eA0 rF6mLeA4FZlWp/fuPbOH1fjhRAoOOEoyMV30LpaAksYFGfUC/BEq+AAfpHhPn/pX nhtHLmwtapGX3ij0uteYVEyX3jgphCZ/WgXNnwHshDFCJVApfhJCwNNWhzXaeQjz ZLjNFNTRm9fzWA6vBHC3nxekWTJjyb36j+mtQSFqCJIom0wcW56XweSiGEXAkLMs wMEWuGJ5LauO2J3w6X5vq4ztf+Xn1MuPmLzWBFc7dMfM5eMNXPhnB1OUQkx+QmfI LO0JK8DzirXg6MY/Gw3IolHDi2sX0Ja97GxgmogfDYyMnIMhjT8= -----END CERTIFICATE-----Generated at Tue Apr 28 08:04:27 2026 by rpki-client