$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094436162547744770/0/34332e3232352e3231312e302f32342d3234203d3e20313331353036.roa File: 34332e3232352e3231312e302f32342d3234203d3e20313331353036.roa (raw, json) Hash identifier: ahdlpfPhXEDcp22YQWvlKcmdg++QNsS1lt1yso+RQTk= Subject key identifier: 3C:F0:A1:E3:38:CF:80:5A:EB:FB:91:5A:58:F2:DD:AE:67:B3:40:76 Certificate issuer: /CN=EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163 Certificate serial: 2923B90F1D83EB85697FD48CBB64D55D1DC3ED65 Authority key identifier: EE:AF:21:F2:1F:95:1D:FF:CE:8E:B9:CF:29:6F:8F:92:4D:6D:51:63 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/34332e3232352e3231312e302f32342d3234203d3e20313331353036.roa Signing time: Thu 09 Apr 2026 02:00:17 +0000 ROA not before: Thu 09 Apr 2026 01:55:17 +0000 ROA not after: Thu 08 Apr 2027 02:00:17 +0000 asID: 131506 IP address blocks: 43.225.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.crl rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:23:b9:0f:1d:83:eb:85:69:7f:d4:8c:bb:64:d5:5d:1d:c3:ed:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163 Validity Not Before: Apr 9 01:55:17 2026 GMT Not After : Apr 8 02:00:17 2027 GMT Subject: CN=3CF0A1E338CF805AEBFB915A58F2DDAE67B34076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:94:1f:9e:e5:05:3c:b0:85:7e:28:2c:54:d2: 0c:38:18:b8:3b:14:74:c5:ae:67:d7:46:39:da:91: 30:04:27:62:4c:e6:e7:24:a0:d4:25:7c:aa:04:47: 3c:e6:5e:16:28:d7:09:b7:5a:73:81:13:8f:bc:15: 58:9a:ea:5c:41:de:64:e2:bd:e3:cf:d4:66:3e:8f: 0d:bb:dc:fb:e2:5b:62:be:28:2b:c8:49:46:7c:43: 5b:0c:16:d7:7b:87:ed:05:3c:c5:c4:3e:16:a0:28: b2:10:91:a1:f5:6f:7c:6d:4e:62:62:60:ec:52:f6: 65:d1:15:30:9d:8f:96:f9:88:c0:94:e6:e2:6a:81: 5d:0a:97:bc:95:e1:9a:12:74:f2:86:38:10:ff:79: 61:8b:97:0f:d1:1f:4a:c9:5b:b0:48:d5:f5:1d:16: 52:a1:f9:f3:c7:48:40:97:f6:6e:35:8a:13:21:ae: 22:96:d0:ba:ab:f5:e2:96:b7:23:b5:b8:a0:51:01: 3b:cf:33:60:58:d3:94:d8:2b:ff:92:53:ea:17:6c: 10:dd:2e:43:5a:53:42:8f:e7:ac:38:59:57:2b:60: ee:bf:01:d9:69:e2:0b:31:96:4f:d6:39:03:7d:0f: b8:9a:19:b0:15:7b:86:03:b9:5b:9f:d1:53:e3:38: 39:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F0:A1:E3:38:CF:80:5A:EB:FB:91:5A:58:F2:DD:AE:67:B3:40:76 X509v3 Authority Key Identifier: keyid:EE:AF:21:F2:1F:95:1D:FF:CE:8E:B9:CF:29:6F:8F:92:4D:6D:51:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/34332e3232352e3231312e302f32342d3234203d3e20313331353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.211.0/24 Signature Algorithm: sha256WithRSAEncryption a7:31:db:6d:94:e7:a7:77:88:c1:b3:47:2b:8c:9c:6c:91:c3: 37:a0:4e:0f:6e:80:1f:5d:21:02:0b:88:8f:29:4a:20:d1:9b: 5d:c5:b8:99:d3:74:0c:a2:a8:27:ce:fe:33:a5:f4:e6:4a:aa: 3f:61:ef:ff:89:12:7b:6c:17:9d:ff:a1:c1:aa:f4:a0:0c:05: 56:2e:12:fe:4e:10:a9:e1:5f:c7:eb:60:f9:d1:e5:52:2e:27: 9f:ef:ef:ab:f7:69:c9:7f:f3:c3:31:e7:56:8d:37:27:4c:4e: 8d:77:1d:45:50:93:3d:15:56:41:43:77:63:48:44:03:b0:ea: 76:0b:7a:c5:2a:67:6f:b7:4c:f7:09:b1:16:40:65:88:28:db: 32:79:c3:39:16:ab:be:df:89:b9:c4:a5:72:5b:ad:90:37:c9: 4e:0f:11:1f:82:9f:8b:8b:be:b3:43:76:60:5d:07:15:f9:9e: ef:8e:b3:ac:a0:cb:fc:0b:3d:52:7c:25:10:03:4f:46:6f:fa: 7d:11:bd:b0:a8:ea:04:00:69:81:d6:c2:b4:68:9c:7d:6f:33: 1c:66:30:65:9a:8c:ba:f5:96:fb:39:fc:58:a1:0b:1b:7d:1d: 56:00:b3:b8:b7:78:e9:6d:ab:53:b2:11:ed:a5:91:78:d7:10: 14:9a:bb:09 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKSO5Dx2D64Vpf9SMu2TVXR3D7WUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVBRjIxRjIxRjk1MURGRkNFOEVCOUNGMjk2RjhGOTI0 RDZENTE2MzAeFw0yNjA0MDkwMTU1MTdaFw0yNzA0MDgwMjAwMTdaMDMxMTAvBgNV BAMTKDNDRjBBMUUzMzhDRjgwNUFFQkZCOTE1QTU4RjJEREFFNjdCMzQwNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjlB+e5QU8sIV+KCxU0gw4GLg7 FHTFrmfXRjnakTAEJ2JM5uckoNQlfKoERzzmXhYo1wm3WnOBE4+8FVia6lxB3mTi vePP1GY+jw273PviW2K+KCvISUZ8Q1sMFtd7h+0FPMXEPhagKLIQkaH1b3xtTmJi YOxS9mXRFTCdj5b5iMCU5uJqgV0Kl7yV4ZoSdPKGOBD/eWGLlw/RH0rJW7BI1fUd FlKh+fPHSECX9m41ihMhriKW0Lqr9eKWtyO1uKBRATvPM2BY05TYK/+SU+oXbBDd LkNaU0KP56w4WVcrYO6/Adlp4gsxlk/WOQN9D7iaGbAVe4YDuVuf0VPjODlnAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUPPCh4zjPgFrr+5FaWPLdrmezQHYwHwYDVR0j BBgwFoAU7q8h8h+VHf/OjrnPKW+Pkk1tUWMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQzNjE2MjU0Nzc0NDc3MC8wL0VFQUYyMUYyMUY5NTFERkZDRThFQjlDRjI5NkY4 RjkyNEQ2RDUxNjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRUVBRjIxRjIxRjk1MURGRkNFOEVCOUNGMjk2RjhGOTI0RDZENTE2My5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ0MzYxNjI1NDc3NDQ3NzAvMC8zNDMzMmUzMjMy MzUyZTMyMzEzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM1MzAzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACvh0zANBgkqhkiG9w0BAQsFAAOCAQEApzHbbZTnp3eIwbNHK4yc bJHDN6BOD26AH10hAguIjylKINGbXcW4mdN0DKKoJ87+M6X05kqqP2Hv/4kSe2wX nf+hwar0oAwFVi4S/k4QqeFfx+tg+dHlUi4nn+/vq/dpyX/zwzHnVo03J0xOjXcd RVCTPRVWQUN3Y0hEA7Dqdgt6xSpnb7dM9wmxFkBliCjbMnnDORarvt+JucSlclut kDfJTg8RH4Kfi4u+s0N2YF0HFfme746zrKDL/As9UnwlEANPRm/6fRG9sKjqBABp gdbCtGicfW8zHGYwZZqMuvWW+zn8WKELG30dVgCzuLd46W2rU7IR7aWReNcQFJq7 CQ== -----END CERTIFICATE-----Generated at Mon Apr 13 15:20:48 2026 by rpki-client