$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094436162547744770/0/34332e3232352e3231302e302f32342d3234203d3e20313331353036.roa File: 34332e3232352e3231302e302f32342d3234203d3e20313331353036.roa (raw, json) Hash identifier: lDnBFgBakcuUPAjKX1Upr+F/K3TMQR1ydrGGUqrFtQk= Subject key identifier: A4:E8:96:98:4A:54:D5:2D:EC:61:B5:7B:40:56:C8:41:F6:6D:6E:D4 Certificate issuer: /CN=EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163 Certificate serial: 4AFFCAFBD11D30F4318533C952386B0728CC5892 Authority key identifier: EE:AF:21:F2:1F:95:1D:FF:CE:8E:B9:CF:29:6F:8F:92:4D:6D:51:63 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/34332e3232352e3231302e302f32342d3234203d3e20313331353036.roa Signing time: Thu 09 Apr 2026 02:00:17 +0000 ROA not before: Thu 09 Apr 2026 01:55:17 +0000 ROA not after: Thu 08 Apr 2027 02:00:17 +0000 asID: 131506 IP address blocks: 43.225.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.crl rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ff:ca:fb:d1:1d:30:f4:31:85:33:c9:52:38:6b:07:28:cc:58:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163 Validity Not Before: Apr 9 01:55:17 2026 GMT Not After : Apr 8 02:00:17 2027 GMT Subject: CN=A4E896984A54D52DEC61B57B4056C841F66D6ED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9d:ea:35:b3:62:a3:3c:f7:59:97:64:ae:e4: 66:4d:c3:f0:30:48:bd:de:62:62:77:06:f9:39:29: 14:d7:52:c4:61:ec:f9:a0:98:eb:ce:40:26:ad:98: dc:c3:40:2d:78:cd:f9:dd:f1:1c:d2:92:14:ed:3f: f5:7a:f8:37:83:7a:14:8a:50:a1:bd:81:ab:95:db: 38:52:c5:3e:f8:12:48:bb:d4:9b:d6:a1:b2:db:72: 5f:b2:b0:06:4a:4f:98:40:cc:33:19:ab:f6:bb:9b: 57:9e:35:c7:89:5d:70:6e:fc:da:c4:8a:ea:b2:4c: 09:13:86:e7:d6:38:6f:a5:ff:4a:ca:db:20:11:38: c0:44:a9:13:26:e7:c6:b6:44:f3:c5:90:19:5c:32: b0:e4:07:f8:b1:b0:92:67:8e:09:9b:9a:65:5c:ac: 7f:16:72:b0:ef:f1:42:7c:58:1c:cd:c2:7f:92:47: 71:11:8d:83:76:67:a5:b5:c7:dd:11:90:7b:98:fa: ab:19:d3:a8:9c:70:8f:94:19:17:6f:aa:d1:d2:93: ca:6f:b1:ad:52:d5:7e:9a:e0:af:dd:84:7d:34:3d: f0:a0:b0:95:dd:1d:20:70:3f:86:2d:f4:35:ea:0c: 5a:ad:94:6d:9e:ef:db:dd:12:1a:0e:73:f0:f6:1c: e8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:E8:96:98:4A:54:D5:2D:EC:61:B5:7B:40:56:C8:41:F6:6D:6E:D4 X509v3 Authority Key Identifier: keyid:EE:AF:21:F2:1F:95:1D:FF:CE:8E:B9:CF:29:6F:8F:92:4D:6D:51:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/34332e3232352e3231302e302f32342d3234203d3e20313331353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.210.0/24 Signature Algorithm: sha256WithRSAEncryption 59:17:a7:a0:ce:a3:b2:ff:c3:89:62:ae:3f:c6:a9:7b:0d:01: 17:15:2a:1e:37:5d:dd:c9:73:c9:1d:21:8b:8b:13:5a:54:90: 24:ec:2b:cb:f4:3e:fc:28:a2:04:6f:ed:3f:91:b0:73:8d:51: 12:20:ce:bd:d1:17:ae:f7:89:98:b6:19:33:72:53:be:25:e3: b4:34:b7:fe:00:32:4f:03:66:88:93:60:4a:88:60:c3:e6:9a: 10:ab:c5:25:28:3a:59:c7:31:1e:fd:66:9b:84:33:10:4f:db: 3f:bd:3d:6d:89:0d:08:ba:e0:1b:b8:d6:7d:dc:b9:be:47:8c: f2:10:69:61:1e:36:fe:88:cf:26:46:ba:e1:4b:3e:66:82:11: 88:cd:42:12:e7:18:7b:0f:eb:e2:fa:fa:1d:8b:1e:ea:7d:93: bd:0b:26:9f:a5:e4:bb:38:41:39:cd:d3:7b:0e:43:5c:25:5e: 0c:99:a1:03:60:18:b3:e8:e0:51:f4:69:86:73:b5:b5:99:ca: fe:c2:cc:da:d7:12:08:69:43:3d:b8:e7:f6:fe:31:82:49:8b: e2:d6:74:18:46:54:54:bb:0d:f8:80:c8:04:f8:39:a7:70:ee: 47:17:10:9a:3a:df:d3:b6:88:bb:ae:ae:5e:a8:31:04:86:3e: 7e:f6:16:b5 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUSv/K+9EdMPQxhTPJUjhrByjMWJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVBRjIxRjIxRjk1MURGRkNFOEVCOUNGMjk2RjhGOTI0 RDZENTE2MzAeFw0yNjA0MDkwMTU1MTdaFw0yNzA0MDgwMjAwMTdaMDMxMTAvBgNV BAMTKEE0RTg5Njk4NEE1NEQ1MkRFQzYxQjU3QjQwNTZDODQxRjY2RDZFRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmneo1s2KjPPdZl2Su5GZNw/Aw SL3eYmJ3Bvk5KRTXUsRh7PmgmOvOQCatmNzDQC14zfnd8RzSkhTtP/V6+DeDehSK UKG9gauV2zhSxT74Eki71JvWobLbcl+ysAZKT5hAzDMZq/a7m1eeNceJXXBu/NrE iuqyTAkThufWOG+l/0rK2yAROMBEqRMm58a2RPPFkBlcMrDkB/ixsJJnjgmbmmVc rH8WcrDv8UJ8WBzNwn+SR3ERjYN2Z6W1x90RkHuY+qsZ06iccI+UGRdvqtHSk8pv sa1S1X6a4K/dhH00PfCgsJXdHSBwP4Yt9DXqDFqtlG2e79vdEhoOc/D2HOh1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUpOiWmEpU1S3sYbV7QFbIQfZtbtQwHwYDVR0j BBgwFoAU7q8h8h+VHf/OjrnPKW+Pkk1tUWMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQzNjE2MjU0Nzc0NDc3MC8wL0VFQUYyMUYyMUY5NTFERkZDRThFQjlDRjI5NkY4 RjkyNEQ2RDUxNjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRUVBRjIxRjIxRjk1MURGRkNFOEVCOUNGMjk2RjhGOTI0RDZENTE2My5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ0MzYxNjI1NDc3NDQ3NzAvMC8zNDMzMmUzMjMy MzUyZTMyMzEzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM1MzAzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACvh0jANBgkqhkiG9w0BAQsFAAOCAQEAWRenoM6jsv/DiWKuP8ap ew0BFxUqHjdd3clzyR0hi4sTWlSQJOwry/Q+/CiiBG/tP5Gwc41REiDOvdEXrveJ mLYZM3JTviXjtDS3/gAyTwNmiJNgSohgw+aaEKvFJSg6WccxHv1mm4QzEE/bP709 bYkNCLrgG7jWfdy5vkeM8hBpYR42/ojPJka64Us+ZoIRiM1CEucYew/r4vr6HYse 6n2TvQsmn6XkuzhBOc3Tew5DXCVeDJmhA2AYs+jgUfRphnO1tZnK/sLM2tcSCGlD Pbjn9v4xgkmL4tZ0GEZUVLsN+IDIBPg5p3DuRxcQmjrf07aIu66uXqgxBIY+fvYW tQ== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:21 2026 by rpki-client