$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235332e39362e302f32322d3234203d3e203435303632.roa File: 34352e3235332e39362e302f32322d3234203d3e203435303632.roa (raw, json) Hash identifier: wHKkno2S0eUP9c8joq9TPK95mF8vePf3o1UycFL6gdE= Subject key identifier: 41:B2:A9:19:44:6B:2E:E0:38:36:C9:6D:9C:71:95:1B:5B:6E:6F:E8 Certificate issuer: /CN=379467D9F9D2DBFEFEB8095755004EDD42CE00E6 Certificate serial: 62AAA5E758FEAFFE33045F057C7F3D3BB954962D Authority key identifier: 37:94:67:D9:F9:D2:DB:FE:FE:B8:09:57:55:00:4E:DD:42:CE:00:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235332e39362e302f32322d3234203d3e203435303632.roa Signing time: Fri 10 Apr 2026 05:49:16 +0000 ROA not before: Fri 10 Apr 2026 05:44:16 +0000 ROA not after: Fri 09 Apr 2027 05:49:16 +0000 asID: 45062 IP address blocks: 45.253.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.crl rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:aa:a5:e7:58:fe:af:fe:33:04:5f:05:7c:7f:3d:3b:b9:54:96:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=379467D9F9D2DBFEFEB8095755004EDD42CE00E6 Validity Not Before: Apr 10 05:44:16 2026 GMT Not After : Apr 9 05:49:16 2027 GMT Subject: CN=41B2A919446B2EE03836C96D9C71951B5B6E6FE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1e:5c:c5:c8:15:d5:6c:62:bc:f4:1e:b5:34: a8:d0:cd:e5:f9:ff:99:a7:24:68:5d:e3:d6:09:3e: 5a:51:f8:4d:11:c1:66:59:41:9b:fd:f9:69:09:6f: 74:23:39:58:0f:a9:f1:20:2d:a0:0f:ca:b0:4c:99: f0:ee:57:01:84:18:4a:66:45:d2:5f:ef:fd:88:9b: 4b:e9:9e:77:34:2b:6c:0e:22:bb:31:0b:10:e3:72: 8d:cd:44:77:9f:e1:fb:09:51:eb:c6:d6:42:af:92: a9:c9:e0:61:54:38:6b:51:de:09:d5:ec:1b:d8:c1: 41:a6:c3:e0:12:dd:44:e7:14:2c:02:fc:db:1f:78: b2:5b:fa:21:b8:42:9f:11:a7:81:90:4d:3d:7c:b1: 9b:b2:e7:7d:72:87:fe:1c:96:6a:5c:a8:d7:e9:9f: 83:de:f8:24:95:60:55:4c:9c:a6:19:91:7b:77:70: de:33:d4:9c:51:d4:7e:59:e1:ce:96:36:f6:60:43: 7a:e6:6e:dc:f5:2a:de:05:dc:8d:5c:db:1a:cb:42: ce:b7:be:b5:6e:fe:ef:0c:46:50:7a:61:2c:69:e2: 17:c1:34:1b:c8:54:ba:e5:41:21:9c:5e:69:a9:28: bb:72:bd:28:93:01:e7:18:5e:80:b8:2c:62:e6:11: 77:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B2:A9:19:44:6B:2E:E0:38:36:C9:6D:9C:71:95:1B:5B:6E:6F:E8 X509v3 Authority Key Identifier: keyid:37:94:67:D9:F9:D2:DB:FE:FE:B8:09:57:55:00:4E:DD:42:CE:00:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235332e39362e302f32322d3234203d3e203435303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.253.96.0/22 Signature Algorithm: sha256WithRSAEncryption 56:20:53:aa:fa:72:d6:d4:ab:9e:ad:71:9d:ce:1c:ca:fb:d4: c4:b1:29:05:c9:5c:39:4e:44:cc:7a:4c:9b:1f:cb:de:e7:0d: ca:11:cc:4b:d6:da:56:04:ed:f1:7c:6f:e9:cb:66:52:5d:26: 09:48:5a:47:b0:c7:45:91:c5:23:8d:e4:44:1f:86:c0:7c:38: f6:e1:8c:d5:20:34:4e:f8:b3:2e:b0:39:d2:d5:9c:af:b9:06: 20:06:2b:b7:49:7d:12:04:61:5f:ca:2d:b9:47:0c:92:ca:64: 58:72:06:e6:da:2b:82:8c:96:8a:45:af:89:8c:a2:c9:a3:79: ed:2b:48:9c:06:7b:a0:ed:23:08:e2:3a:95:e9:0a:a9:97:8f: 4e:8f:41:0e:bf:3b:ee:7e:d4:9e:9c:32:ba:80:68:58:41:06: 8b:61:84:aa:be:42:c4:f8:e5:a5:ae:cd:f3:e3:25:60:75:a4: e2:67:af:6a:1b:6c:31:90:95:e5:1d:dc:b6:a7:72:1e:08:98: 85:bb:5d:5b:ec:1b:50:f0:78:a6:27:28:a6:c7:73:36:25:7c: b4:92:cd:cb:e0:ce:77:a1:99:50:34:d9:55:01:ea:88:b3:c8: 88:f5:71:6e:71:35:4d:67:da:71:8f:41:42:38:55:80:82:99: cf:5f:b7:9c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUYqql51j+r/4zBF8FfH89O7lUli0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzc5NDY3RDlGOUQyREJGRUZFQjgwOTU3NTUwMDRFREQ0 MkNFMDBFNjAeFw0yNjA0MTAwNTQ0MTZaFw0yNzA0MDkwNTQ5MTZaMDMxMTAvBgNV BAMTKDQxQjJBOTE5NDQ2QjJFRTAzODM2Qzk2RDlDNzE5NTFCNUI2RTZGRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPHlzFyBXVbGK89B61NKjQzeX5 /5mnJGhd49YJPlpR+E0RwWZZQZv9+WkJb3QjOVgPqfEgLaAPyrBMmfDuVwGEGEpm RdJf7/2Im0vpnnc0K2wOIrsxCxDjco3NRHef4fsJUevG1kKvkqnJ4GFUOGtR3gnV 7BvYwUGmw+AS3UTnFCwC/NsfeLJb+iG4Qp8Rp4GQTT18sZuy531yh/4clmpcqNfp n4Pe+CSVYFVMnKYZkXt3cN4z1JxR1H5Z4c6WNvZgQ3rmbtz1Kt4F3I1c2xrLQs63 vrVu/u8MRlB6YSxp4hfBNBvIVLrlQSGcXmmpKLtyvSiTAecYXoC4LGLmEXeLAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUQbKpGURrLuA4NsltnHGVG1tub+gwHwYDVR0j BBgwFoAUN5Rn2fnS2/7+uAlXVQBO3ULOAOYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxOTUyNzkxMDIyNzk3MS8wLzM3OTQ2N0Q5RjlEMkRCRkVGRUI4MDk1NzU1MDA0 RURENDJDRTAwRTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzc5NDY3RDlGOUQyREJGRUZFQjgwOTU3NTUwMDRFREQ0MkNFMDBFNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODE5NTI3OTEwMjI3OTcxLzAvMzQzNTJlMzIzNTMz MmUzOTM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzNTMwMzYzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAi39YDANBgkqhkiG9w0BAQsFAAOCAQEAViBTqvpy1tSrnq1xnc4cyvvUxLEp BclcOU5EzHpMmx/L3ucNyhHMS9baVgTt8Xxv6ctmUl0mCUhaR7DHRZHFI43kRB+G wHw49uGM1SA0TvizLrA50tWcr7kGIAYrt0l9EgRhX8otuUcMkspkWHIG5torgoyW ikWviYyiyaN57StInAZ7oO0jCOI6lekKqZePTo9BDr877n7UnpwyuoBoWEEGi2GE qr5CxPjlpa7N8+MlYHWk4mevahtsMZCV5R3ctqdyHgiYhbtdW+wbUPB4picopsdz NiV8tJLNy+DOd6GZUDTZVQHqiLPIiPVxbnE1TWfacY9BQjhVgIKZz1+3nA== -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:25 2026 by rpki-client