Route Origin Authorization
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1091985366321201154/0/AS134762.roa
File: AS134762.roa (raw, json)
Hash identifier: N2z2+koBLtbircqTZG5JtgAodTgNR2x6zwYjT3mns84=
Subject key identifier: C5:B2:C0:0E:36:E2:02:54:EA:DC:5A:2B:75:19:5D:A5:84:8A:8A:A1
Certificate issuer: /CN=89EA1A4A8D747274C368553DCBDC64DF11309CAC
Certificate serial: 74FA4744A1CE3F7CD85D467339D878A8BB2127FA
Authority key identifier: 89:EA:1A:4A:8D:74:72:74:C3:68:55:3D:CB:DC:64:DF:11:30:9C:AC
Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/89EA1A4A8D747274C368553DCBDC64DF11309CAC.cer
Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1091985366321201154/0/AS134762.roa
Signing time: Thu 09 Apr 2026 07:43:04 +0000
ROA not before: Thu 09 Apr 2026 07:38:04 +0000
ROA not after: Thu 08 Apr 2027 07:43:04 +0000
asID: 134762
IP address blocks: 43.226.32.0/24 maxlen: 24
43.226.33.0/24 maxlen: 24
43.226.34.0/24 maxlen: 24
43.226.35.0/24 maxlen: 24
43.226.36.0/24 maxlen: 24
43.226.37.0/24 maxlen: 24
43.226.38.0/24 maxlen: 24
43.226.39.0/24 maxlen: 24
43.226.40.0/24 maxlen: 24
43.226.41.0/24 maxlen: 24
43.226.42.0/24 maxlen: 24
43.226.43.0/24 maxlen: 24
43.226.44.0/24 maxlen: 24
43.226.45.0/24 maxlen: 24
43.226.46.0/24 maxlen: 24
43.226.47.0/24 maxlen: 24
43.226.50.0/24 maxlen: 24
43.226.51.0/24 maxlen: 24
43.226.53.0/24 maxlen: 24
43.226.54.0/24 maxlen: 24
43.226.64.0/24 maxlen: 24
43.226.65.0/24 maxlen: 24
43.226.66.0/24 maxlen: 24
43.226.67.0/24 maxlen: 24
43.226.68.0/24 maxlen: 24
43.226.69.0/24 maxlen: 24
43.226.70.0/24 maxlen: 24
43.226.71.0/24 maxlen: 24
43.226.76.0/24 maxlen: 24
43.226.77.0/24 maxlen: 24
43.226.144.0/24 maxlen: 24
43.226.145.0/24 maxlen: 24
43.226.146.0/24 maxlen: 24
43.226.147.0/24 maxlen: 24
43.226.148.0/24 maxlen: 24
43.226.149.0/24 maxlen: 24
43.226.150.0/24 maxlen: 24
43.226.151.0/24 maxlen: 24
43.226.152.0/24 maxlen: 24
43.226.153.0/24 maxlen: 24
43.226.154.0/24 maxlen: 24
43.226.155.0/24 maxlen: 24
43.226.156.0/24 maxlen: 24
43.226.157.0/24 maxlen: 24
43.226.158.0/24 maxlen: 24
43.226.159.0/24 maxlen: 24
43.227.64.0/24 maxlen: 24
43.227.65.0/24 maxlen: 24
43.227.66.0/24 maxlen: 24
43.227.67.0/24 maxlen: 24
103.45.172.0/24 maxlen: 24
103.45.173.0/24 maxlen: 24
103.45.174.0/24 maxlen: 24
103.45.175.0/24 maxlen: 24
103.45.176.0/24 maxlen: 24
103.45.177.0/24 maxlen: 24
103.45.178.0/24 maxlen: 24
103.45.179.0/24 maxlen: 24
103.45.180.0/24 maxlen: 24
103.45.181.0/24 maxlen: 24
103.45.182.0/24 maxlen: 24
103.45.183.0/24 maxlen: 24
103.45.184.0/24 maxlen: 24
103.45.185.0/24 maxlen: 24
103.45.186.0/24 maxlen: 24
103.45.187.0/24 maxlen: 24
103.45.188.0/24 maxlen: 24
103.45.189.0/24 maxlen: 24
103.45.190.0/24 maxlen: 24
103.45.191.0/24 maxlen: 24
103.45.248.0/24 maxlen: 24
103.45.249.0/24 maxlen: 24
103.45.250.0/24 maxlen: 24
103.45.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rps.cnnic.cn/repo/A1091985366321201154/0/89EA1A4A8D747274C368553DCBDC64DF11309CAC.crl
rsync://rpki-rps.cnnic.cn/repo/A1091985366321201154/0/89EA1A4A8D747274C368553DCBDC64DF11309CAC.mft
rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/89EA1A4A8D747274C368553DCBDC64DF11309CAC.cer
rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl
rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 Apr 2026 02:47:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:fa:47:44:a1:ce:3f:7c:d8:5d:46:73:39:d8:78:a8:bb:21:27:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89EA1A4A8D747274C368553DCBDC64DF11309CAC
Validity
Not Before: Apr 9 07:38:04 2026 GMT
Not After : Apr 8 07:43:04 2027 GMT
Subject: CN=C5B2C00E36E20254EADC5A2B75195DA5848A8AA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:37:10:36:cf:43:c0:9b:3f:af:44:db:b6:33:
cc:9d:c9:fd:88:7c:32:02:e1:9f:93:51:62:db:da:
6c:3f:28:e0:72:85:2c:6a:bc:c6:7e:09:87:0d:bb:
a6:79:34:40:49:1c:b8:e5:97:78:cf:ab:66:ab:fa:
14:be:8d:1a:c2:00:8d:57:d3:9a:62:13:fc:08:af:
9b:9f:87:9b:87:6c:96:67:72:2a:50:37:29:f2:ca:
a9:85:90:71:1e:70:d5:51:26:85:c0:7f:81:b0:06:
42:03:9f:da:8a:f7:8f:f1:11:0c:20:3f:78:37:a3:
9c:97:a7:77:38:0c:ad:b8:d7:c8:25:6b:b4:fe:db:
42:04:75:ab:a9:35:3c:df:5b:c0:16:f5:65:d6:ed:
da:b4:44:cc:e8:bb:36:b0:b6:00:05:66:fc:2c:ab:
28:2f:30:2d:7f:23:cd:9a:a6:e9:77:62:0f:20:f4:
50:d0:bb:71:a4:a1:30:60:6f:f9:a9:d7:9c:14:24:
f0:7d:17:5c:06:b5:6b:f3:8a:dd:07:44:5b:13:7a:
02:b0:50:0c:39:32:58:70:88:ad:82:a2:e7:31:56:
c9:a4:ed:27:6f:54:1b:93:91:71:bf:13:73:d7:73:
14:11:ea:4b:71:7c:76:9a:cb:60:02:ee:c8:8b:f9:
8d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B2:C0:0E:36:E2:02:54:EA:DC:5A:2B:75:19:5D:A5:84:8A:8A:A1
X509v3 Authority Key Identifier:
keyid:89:EA:1A:4A:8D:74:72:74:C3:68:55:3D:CB:DC:64:DF:11:30:9C:AC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.cnnic.cn/repo/A1091985366321201154/0/89EA1A4A8D747274C368553DCBDC64DF11309CAC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/89EA1A4A8D747274C368553DCBDC64DF11309CAC.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1091985366321201154/0/AS134762.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.226.32.0/20
43.226.50.0/23
43.226.53.0-43.226.54.255
43.226.64.0/21
43.226.76.0/23
43.226.144.0/20
43.227.64.0/22
103.45.172.0-103.45.191.255
103.45.248.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:ff:4b:89:7c:d5:e8:83:02:b8:62:06:4c:48:41:7b:f6:6d:
4c:3d:55:e2:ce:99:13:19:52:88:0b:ac:23:da:30:42:06:4f:
f7:fa:6e:e6:48:78:54:94:13:d4:07:ff:c1:b3:bc:a2:63:d0:
4f:91:f4:d9:d0:de:e3:61:9a:d8:ba:91:d6:11:d3:ef:55:12:
44:ae:e1:76:19:e9:e2:56:82:3c:e4:69:10:34:7f:05:25:be:
80:60:3a:93:f4:ce:13:7b:07:be:b7:33:75:c8:99:b9:ca:65:
7c:fc:89:b7:97:26:30:7f:1e:7e:ea:67:78:0d:56:ec:fd:3d:
fa:51:43:d9:77:cd:c8:8a:77:61:a8:f5:a8:34:16:06:cc:b2:
e0:64:4a:2a:cb:0b:a5:8a:4a:41:d1:ef:d9:5a:bd:bb:9e:fd:
0b:8a:bf:88:34:02:d8:ce:ac:31:a1:83:d8:46:cd:43:d6:d0:
0a:d7:ed:d9:46:05:88:05:83:bd:c4:26:64:fd:9c:f7:0d:81:
12:de:a5:4a:74:00:f8:3e:95:e9:df:50:58:c3:a5:dc:ce:4a:
77:9c:57:89:0a:05:4c:67:75:18:85:df:9b:f0:ed:69:93:fa:
17:3d:15:f0:8e:c0:b8:1e:3a:09:a6:9a:c2:b2:ef:5a:c9:69:
6d:33:b5:e3
-----BEGIN CERTIFICATE-----
MIIFGjCCBAKgAwIBAgIUdPpHRKHOP3zYXUZzOdh4qLshJ/owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODlFQTFBNEE4RDc0NzI3NEMzNjg1NTNEQ0JEQzY0REYx
MTMwOUNBQzAeFw0yNjA0MDkwNzM4MDRaFw0yNzA0MDgwNzQzMDRaMDMxMTAvBgNV
BAMTKEM1QjJDMDBFMzZFMjAyNTRFQURDNUEyQjc1MTk1REE1ODQ4QThBQTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6NxA2z0PAmz+vRNu2M8ydyf2I
fDIC4Z+TUWLb2mw/KOByhSxqvMZ+CYcNu6Z5NEBJHLjll3jPq2ar+hS+jRrCAI1X
05piE/wIr5ufh5uHbJZncipQNynyyqmFkHEecNVRJoXAf4GwBkIDn9qK94/xEQwg
P3g3o5yXp3c4DK2418gla7T+20IEdaupNTzfW8AW9WXW7dq0RMzouzawtgAFZvws
qygvMC1/I82apul3Yg8g9FDQu3GkoTBgb/mp15wUJPB9F1wGtWvzit0HRFsTegKw
UAw5MlhwiK2CoucxVsmk7SdvVBuTkXG/E3PXcxQR6ktxfHaay2AC7siL+Y0vAgMB
AAGjggIkMIICIDAdBgNVHQ4EFgQUxbLADjbiAlTq3FordRldpYSKiqEwHwYDVR0j
BBgwFoAUieoaSo10cnTDaFU9y9xk3xEwnKwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud
HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5
MTk4NTM2NjMyMTIwMTE1NC8wLzg5RUExQTRBOEQ3NDcyNzRDMzY4NTUzRENCREM2
NERGMTEzMDlDQUMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5
bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1
LzEvODlFQTFBNEE4RDc0NzI3NEMzNjg1NTNEQ0JEQzY0REYxMTMwOUNBQy5jZXIw
XgYIKwYBBQUHAQsEUjBQME4GCCsGAQUFBzALhkJyc3luYzovL3Jwa2ktcnBzLmNu
bmljLmNuL3JlcG8vQTEwOTE5ODUzNjYzMjEyMDExNTQvMC9BUzEzNDc2Mi5yb2Ew
GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBggrBgEFBQcBBwEB/wRQME4wTAQC
AAEwRgMEBCviIAMEASviMjAMAwQAK+I1AwQAK+I2AwQDK+JAAwQBK+JMAwQEK+KQ
AwQCK+NAMAwDBAJnLawDBAZnLYADBAJnLfgwDQYJKoZIhvcNAQELBQADggEBAKX/
S4l81eiDArhiBkxIQXv2bUw9VeLOmRMZUogLrCPaMEIGT/f6buZIeFSUE9QH/8Gz
vKJj0E+R9NnQ3uNhmti6kdYR0+9VEkSu4XYZ6eJWgjzkaRA0fwUlvoBgOpP0zhN7
B763M3XImbnKZXz8ibeXJjB/Hn7qZ3gNVuz9PfpRQ9l3zciKd2Go9ag0FgbMsuBk
SirLC6WKSkHR79lavbue/QuKv4g0AtjOrDGhg9hGzUPW0ArX7dlGBYgFg73EJmT9
nPcNgRLepUp0APg+lenfUFjDpdzOSnecV4kKBUxndRiF35vw7WmT+hc9FfCOwLge
OgmmmsKy71rJaW0zteM=
-----END CERTIFICATE-----
Generated at Mon Apr 13 12:23:33 2026 by rpki-client