$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094488822684581890/0/34332e3234302e3232302e302f32322d3234203d3e203538353139.roa File: 34332e3234302e3232302e302f32322d3234203d3e203538353139.roa (raw, json) Hash identifier: vSeQnc0mmTH3jj/CmKx/qvwuVCC4G3xToac39RSw2JM= Subject key identifier: F1:FE:5A:5B:EB:71:D1:84:41:A5:66:D1:D2:77:21:F0:CB:57:7A:69 Certificate issuer: /CN=AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9 Certificate serial: 72D029CD842045721E9F284EEDFF982A98EB013C Authority key identifier: AE:4A:D2:7D:33:F9:D6:4B:7F:A2:18:4C:6C:03:0A:7B:80:91:E9:E9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/34332e3234302e3232302e302f32322d3234203d3e203538353139.roa Signing time: Thu 09 Apr 2026 05:09:21 +0000 ROA not before: Thu 09 Apr 2026 05:04:21 +0000 ROA not after: Thu 08 Apr 2027 05:09:21 +0000 asID: 58519 IP address blocks: 43.240.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.crl rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 22:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d0:29:cd:84:20:45:72:1e:9f:28:4e:ed:ff:98:2a:98:eb:01:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9 Validity Not Before: Apr 9 05:04:21 2026 GMT Not After : Apr 8 05:09:21 2027 GMT Subject: CN=F1FE5A5BEB71D18441A566D1D27721F0CB577A69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:93:ba:98:e5:32:42:34:b7:a7:15:20:1f:da: 67:36:fb:e0:db:11:ef:05:0c:e8:30:28:6b:89:9b: 38:df:2d:7a:57:f9:25:77:14:bd:31:a0:32:5c:53: 56:59:91:d3:3a:98:0e:ab:61:b4:4d:a2:d6:e9:65: 41:a4:65:0e:31:c8:97:c1:bc:81:80:80:55:7e:ea: c7:3f:de:d9:30:f6:ee:6c:4e:98:b5:da:8e:1d:ae: 7e:27:1d:91:3e:07:a6:67:c5:53:f9:85:ac:0f:69: cc:c0:ac:cb:3d:c3:6f:17:7a:b8:cf:82:d5:c1:47: 0c:24:54:74:6f:4c:63:34:aa:1b:95:26:02:85:87: f8:94:08:9e:c3:6f:af:50:e5:5d:d5:90:19:3f:44: 9a:76:be:a3:8c:08:2a:d3:be:9f:21:7f:b7:7c:1b: 41:2f:b3:9e:be:5c:d4:85:81:48:ee:75:4c:c7:f4: 71:9c:48:81:c3:06:14:72:11:8c:aa:c6:56:01:c3: d9:18:54:c7:8b:f1:61:82:0f:00:35:ad:5d:a1:4a: 0a:cf:d8:c0:ca:d6:4a:bf:c0:cf:a8:0d:fc:7b:5a: 0f:c5:ce:46:ef:d5:1e:63:14:46:3e:a1:6b:c2:e6: 49:09:cf:93:55:25:cf:8c:30:8e:ca:4f:5e:7f:6f: 8c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FE:5A:5B:EB:71:D1:84:41:A5:66:D1:D2:77:21:F0:CB:57:7A:69 X509v3 Authority Key Identifier: keyid:AE:4A:D2:7D:33:F9:D6:4B:7F:A2:18:4C:6C:03:0A:7B:80:91:E9:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE4AD27D33F9D64B7FA2184C6C030A7B8091E9E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094488822684581890/0/34332e3234302e3232302e302f32322d3234203d3e203538353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.220.0/22 Signature Algorithm: sha256WithRSAEncryption 52:67:d4:4b:12:a3:cf:08:4b:5a:96:8b:8a:61:07:78:00:dc: be:92:25:37:8f:0b:33:c9:2e:88:c6:0b:3f:a7:b8:0e:d9:40: 21:1e:10:be:ba:39:af:54:33:ad:62:05:73:2c:bb:1a:8f:7b: 8c:44:ee:1f:a8:d1:29:7d:86:63:de:18:3d:e5:4e:67:dc:31: e1:d3:96:3f:f3:e6:8f:8e:b6:b9:d6:39:2f:6e:56:d3:ff:19: 84:c6:01:e8:0b:d9:c8:7c:f8:f5:23:c0:6b:35:12:7b:20:5e: ca:37:e5:08:05:33:2c:10:7c:00:58:51:06:82:6e:72:43:4f: 33:ed:b5:c5:c6:a5:03:55:d3:cd:8d:99:e5:88:17:28:a1:ef: 1c:43:7b:38:ff:39:b0:0c:20:6b:34:c3:ec:33:af:a1:2e:8d: 15:06:a4:b3:02:f7:25:02:9a:01:aa:52:64:32:3c:dd:56:7a: c0:75:85:34:0a:9e:48:ad:39:0f:1c:eb:6a:8f:ba:47:e3:92: 8a:cc:cb:fa:64:79:0d:4a:d7:40:1e:f5:77:27:7f:a1:98:27: a3:93:1b:06:3d:3f:78:c3:7a:9a:cd:76:cd:7d:98:a8:44:54: 59:3a:ae:5d:7b:12:0c:c1:34:53:fd:e8:f4:72:58:ef:9b:3c: f6:d0:05:49 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUctApzYQgRXIenyhO7f+YKpjrATwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0QUQyN0QzM0Y5RDY0QjdGQTIxODRDNkMwMzBBN0I4 MDkxRTlFOTAeFw0yNjA0MDkwNTA0MjFaFw0yNzA0MDgwNTA5MjFaMDMxMTAvBgNV BAMTKEYxRkU1QTVCRUI3MUQxODQ0MUE1NjZEMUQyNzcyMUYwQ0I1NzdBNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYk7qY5TJCNLenFSAf2mc2++Db Ee8FDOgwKGuJmzjfLXpX+SV3FL0xoDJcU1ZZkdM6mA6rYbRNotbpZUGkZQ4xyJfB vIGAgFV+6sc/3tkw9u5sTpi12o4drn4nHZE+B6ZnxVP5hawPaczArMs9w28XerjP gtXBRwwkVHRvTGM0qhuVJgKFh/iUCJ7Db69Q5V3VkBk/RJp2vqOMCCrTvp8hf7d8 G0Evs56+XNSFgUjudUzH9HGcSIHDBhRyEYyqxlYBw9kYVMeL8WGCDwA1rV2hSgrP 2MDK1kq/wM+oDfx7Wg/Fzkbv1R5jFEY+oWvC5kkJz5NVJc+MMI7KT15/b4wjAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU8f5aW+tx0YRBpWbR0nch8MtXemkwHwYDVR0j BBgwFoAUrkrSfTP51kt/ohhMbAMKe4CR6ekwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQ4ODgyMjY4NDU4MTg5MC8wL0FFNEFEMjdEMzNGOUQ2NEI3RkEyMTg0QzZDMDMw QTdCODA5MUU5RTkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0QUQyN0QzM0Y5RDY0QjdGQTIxODRDNkMwMzBBN0I4MDkxRTlFOS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDQ4ODgyMjY4NDU4MTg5MC8wLzM0MzMyZTMyMzQz MDJlMzIzMjMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzODM1MzEzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivw3DANBgkqhkiG9w0BAQsFAAOCAQEAUmfUSxKjzwhLWpaLimEHeADc vpIlN48LM8kuiMYLP6e4DtlAIR4Qvro5r1QzrWIFcyy7Go97jETuH6jRKX2GY94Y PeVOZ9wx4dOWP/Pmj462udY5L25W0/8ZhMYB6AvZyHz49SPAazUSeyBeyjflCAUz LBB8AFhRBoJuckNPM+21xcalA1XTzY2Z5YgXKKHvHEN7OP85sAwgazTD7DOvoS6N FQakswL3JQKaAapSZDI83VZ6wHWFNAqeSK05Dxzrao+6R+OSiszL+mR5DUrXQB71 dyd/oZgno5MbBj0/eMN6ms12zX2YqERUWTquXXsSDME0U/3o9HJY75s89tAFSQ== -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:31 2026 by rpki-client