$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235332e3232382e302f32322d3234203d3e203435303632.roa File: 34352e3235332e3232382e302f32322d3234203d3e203435303632.roa (raw, json) Hash identifier: kW1C3AtitS7lUJlGZkRzhMEOjzUGtzAU7IzrJt3LrqA= Subject key identifier: 1E:04:1F:09:D8:B8:20:CA:9C:5C:3F:0D:C9:A6:9A:68:4F:DD:0C:0D Certificate issuer: /CN=379467D9F9D2DBFEFEB8095755004EDD42CE00E6 Certificate serial: 3C9BFAFD1C857502A3D789CEFF0F6AFE5F69FF8C Authority key identifier: 37:94:67:D9:F9:D2:DB:FE:FE:B8:09:57:55:00:4E:DD:42:CE:00:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235332e3232382e302f32322d3234203d3e203435303632.roa Signing time: Fri 10 Apr 2026 05:59:09 +0000 ROA not before: Fri 10 Apr 2026 05:54:09 +0000 ROA not after: Fri 09 Apr 2027 05:59:09 +0000 asID: 45062 IP address blocks: 45.253.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.crl rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:9b:fa:fd:1c:85:75:02:a3:d7:89:ce:ff:0f:6a:fe:5f:69:ff:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=379467D9F9D2DBFEFEB8095755004EDD42CE00E6 Validity Not Before: Apr 10 05:54:09 2026 GMT Not After : Apr 9 05:59:09 2027 GMT Subject: CN=1E041F09D8B820CA9C5C3F0DC9A69A684FDD0C0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:32:a9:20:3b:0a:c4:25:de:ac:19:a3:9a:79: d9:b9:c5:34:10:91:c0:11:c2:13:ae:7c:a0:18:73: eb:e2:53:23:a3:ba:11:2c:b9:bd:ef:2b:21:4d:80: c3:68:98:05:9e:b2:68:82:b5:44:d6:5f:9a:65:27: 67:3c:56:22:31:78:73:d8:fe:f1:7b:77:a0:54:51: 04:ec:7f:e0:89:92:1e:2f:cb:cc:4b:2b:eb:ae:57: 9a:d3:53:b2:e8:09:f7:fc:8c:71:43:ae:91:38:84: bb:2c:0c:ce:71:84:e5:f9:e7:f6:28:12:b6:3a:53: e5:35:c0:a4:13:8b:50:11:2c:04:c1:e7:d9:c8:00: 2c:df:5b:3d:bb:e7:31:ee:c5:8d:84:b3:06:e0:90: af:e7:69:c8:6a:26:8a:96:ee:09:eb:5c:9e:3c:eb: dc:96:4d:9c:48:14:69:26:ad:95:61:c4:c5:a1:b8: 2d:85:bf:ef:54:b0:91:b4:15:64:ae:f8:4d:3f:05: 17:ad:0f:27:3f:0c:bd:ed:39:19:fa:92:3d:d7:62: 4c:ff:c7:c1:d4:c5:05:6e:62:a1:d9:1f:88:05:ed: 17:76:89:b4:e9:04:51:38:7b:9d:08:4d:4f:70:52: 8b:c5:2a:cd:02:92:b2:62:26:3d:38:d4:96:34:99: df:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:04:1F:09:D8:B8:20:CA:9C:5C:3F:0D:C9:A6:9A:68:4F:DD:0C:0D X509v3 Authority Key Identifier: keyid:37:94:67:D9:F9:D2:DB:FE:FE:B8:09:57:55:00:4E:DD:42:CE:00:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235332e3232382e302f32322d3234203d3e203435303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.253.228.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:03:3c:c0:e2:f6:2b:4e:1b:28:58:aa:84:c1:0c:7a:fb:51: e5:3f:81:48:c3:f0:a8:06:11:22:d1:98:d1:a2:6c:c5:13:88: 19:8f:d9:45:b2:6b:e8:94:06:bc:41:15:3d:b5:63:1a:11:bb: 61:9d:97:52:ec:16:52:64:05:6b:eb:de:df:42:28:ed:e0:db: 7f:f5:a0:b2:10:e1:b1:37:44:48:26:e3:79:fe:a0:09:a2:40: f8:26:36:a9:6d:14:b8:e9:9f:3d:d6:18:70:53:4a:ff:d8:0f: bd:a6:54:bc:1c:55:99:39:95:c8:97:d4:93:9f:fe:31:dc:1e: 68:09:63:d0:da:65:a8:4a:5a:49:91:63:1b:34:7e:99:37:dc: c9:7b:36:70:cf:eb:d6:b9:58:9b:77:57:df:3e:1c:c4:29:d4: 01:0e:c7:f6:37:12:4b:b5:4a:65:41:29:2b:35:69:9a:1a:e4: f0:2d:d3:1a:cd:fe:c9:ca:8b:63:64:53:b2:cf:0b:ab:f6:95: ad:47:e1:f4:b0:82:cc:a3:fd:c1:b0:ed:fa:95:66:53:67:05: f9:45:5e:67:f9:8a:44:e9:93:78:97:a0:6d:dc:5a:05:c0:87: 97:fa:6b:0c:8e:bc:19:fe:50:2f:08:73:dc:9f:f2:ed:53:d9: bf:fc:fd:66 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPJv6/RyFdQKj14nO/w9q/l9p/4wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzc5NDY3RDlGOUQyREJGRUZFQjgwOTU3NTUwMDRFREQ0 MkNFMDBFNjAeFw0yNjA0MTAwNTU0MDlaFw0yNzA0MDkwNTU5MDlaMDMxMTAvBgNV BAMTKDFFMDQxRjA5RDhCODIwQ0E5QzVDM0YwREM5QTY5QTY4NEZERDBDMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOMqkgOwrEJd6sGaOaedm5xTQQ kcARwhOufKAYc+viUyOjuhEsub3vKyFNgMNomAWesmiCtUTWX5plJ2c8ViIxeHPY /vF7d6BUUQTsf+CJkh4vy8xLK+uuV5rTU7LoCff8jHFDrpE4hLssDM5xhOX55/Yo ErY6U+U1wKQTi1ARLATB59nIACzfWz275zHuxY2EswbgkK/nachqJoqW7gnrXJ48 69yWTZxIFGkmrZVhxMWhuC2Fv+9UsJG0FWSu+E0/BRetDyc/DL3tORn6kj3XYkz/ x8HUxQVuYqHZH4gF7Rd2ibTpBFE4e50ITU9wUovFKs0CkrJiJj041JY0md8LAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUHgQfCdi4IMqcXD8NyaaaaE/dDA0wHwYDVR0j BBgwFoAUN5Rn2fnS2/7+uAlXVQBO3ULOAOYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxOTUyNzkxMDIyNzk3MS8wLzM3OTQ2N0Q5RjlEMkRCRkVGRUI4MDk1NzU1MDA0 RURENDJDRTAwRTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzc5NDY3RDlGOUQyREJGRUZFQjgwOTU3NTUwMDRFREQ0MkNFMDBFNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDgxOTUyNzkxMDIyNzk3MS8wLzM0MzUyZTMyMzUz MzJlMzIzMjM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzNTMwMzYzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAi395DANBgkqhkiG9w0BAQsFAAOCAQEAjwM8wOL2K04bKFiqhMEMevtR 5T+BSMPwqAYRItGY0aJsxROIGY/ZRbJr6JQGvEEVPbVjGhG7YZ2XUuwWUmQFa+ve 30Io7eDbf/WgshDhsTdESCbjef6gCaJA+CY2qW0UuOmfPdYYcFNK/9gPvaZUvBxV mTmVyJfUk5/+MdweaAlj0NplqEpaSZFjGzR+mTfcyXs2cM/r1rlYm3dX3z4cxCnU AQ7H9jcSS7VKZUEpKzVpmhrk8C3TGs3+ycqLY2RTss8Lq/aVrUfh9LCCzKP9wbDt +pVmU2cF+UVeZ/mKROmTeJegbdxaBcCHl/prDI68Gf5QLwhz3J/y7VPZv/z9Zg== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:31 2026 by rpki-client