$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235342e34382e302f32322d3234203d3e2034383337.roa File: 34352e3235342e34382e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: 49ti/9+UoHAPcHcsYm8hSD+9EpzZmho0nzQ82BWClK4= Subject key identifier: DF:6B:B0:C5:5F:F4:7B:CA:E1:B5:0F:42:FA:49:F0:D7:02:6D:2B:BA Certificate issuer: /CN=379467D9F9D2DBFEFEB8095755004EDD42CE00E6 Certificate serial: 338D336FF89BDB0EF9CBCAB2FE8DB419E8E64285 Authority key identifier: 37:94:67:D9:F9:D2:DB:FE:FE:B8:09:57:55:00:4E:DD:42:CE:00:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235342e34382e302f32322d3234203d3e2034383337.roa Signing time: Fri 10 Apr 2026 06:07:17 +0000 ROA not before: Fri 10 Apr 2026 06:02:17 +0000 ROA not after: Fri 09 Apr 2027 06:07:17 +0000 asID: 4837 IP address blocks: 45.254.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.crl rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:8d:33:6f:f8:9b:db:0e:f9:cb:ca:b2:fe:8d:b4:19:e8:e6:42:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=379467D9F9D2DBFEFEB8095755004EDD42CE00E6 Validity Not Before: Apr 10 06:02:17 2026 GMT Not After : Apr 9 06:07:17 2027 GMT Subject: CN=DF6BB0C55FF47BCAE1B50F42FA49F0D7026D2BBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ef:32:8c:d4:d1:35:8c:15:e5:62:6c:03:02: 8f:9c:bf:67:0b:c6:2b:c9:6f:ee:f3:d6:6d:31:f1: 42:4d:21:9d:94:7f:a8:5f:fc:2f:e3:9f:ef:bd:7f: 65:7f:df:d6:df:5f:f5:04:89:48:a4:90:3d:89:68: 2b:7e:be:3e:88:40:77:60:2f:15:56:12:b4:59:5e: 48:ac:2b:b6:5c:6d:b2:d4:de:3c:27:54:e9:45:0b: f3:5b:a8:eb:3f:e8:69:01:7c:fe:1b:84:29:e4:43: af:ac:65:82:b1:25:c0:5b:04:5d:fe:55:01:f1:38: 48:cf:99:05:bb:53:35:20:5e:9d:82:29:2f:07:53: 8f:61:ee:5a:02:5d:b5:d0:9a:62:2f:74:a8:ad:b9: 63:43:eb:01:dc:b3:92:b0:8f:23:b5:b8:75:f2:87: 40:01:9a:7f:81:bf:2f:d1:3d:20:4a:c7:25:67:d5: 05:e5:6f:a4:92:81:ff:01:1d:5c:8e:81:90:55:90: ff:74:ed:4c:12:77:24:8f:ec:1e:64:0a:07:bb:39: b6:25:5a:9a:ef:01:37:fd:2c:69:d2:3c:b5:ec:01: 0a:6d:42:17:b6:3e:d1:20:41:22:1b:b9:50:3e:3b: 14:0a:65:64:93:da:12:dc:7c:00:06:87:84:dd:d3: 39:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:6B:B0:C5:5F:F4:7B:CA:E1:B5:0F:42:FA:49:F0:D7:02:6D:2B:BA X509v3 Authority Key Identifier: keyid:37:94:67:D9:F9:D2:DB:FE:FE:B8:09:57:55:00:4E:DD:42:CE:00:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/379467D9F9D2DBFEFEB8095755004EDD42CE00E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094819527910227971/0/34352e3235342e34382e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.254.48.0/22 Signature Algorithm: sha256WithRSAEncryption af:91:98:3b:73:bd:d1:38:cc:e6:bd:fc:28:d4:d4:41:1e:32: af:fb:f5:d3:d1:63:11:65:e3:d5:49:81:53:4b:ff:12:a3:07: b3:e3:68:c7:09:66:fa:57:b3:df:f4:a4:d6:a8:cb:53:e7:47: 30:d3:5a:dc:65:68:b5:bb:26:20:c2:27:ad:a6:cd:e0:a8:5d: 91:f1:86:3e:ae:e5:f4:58:32:af:9c:cb:9b:0b:1b:99:53:7d: d5:8e:60:47:e5:06:49:60:11:8e:82:e6:86:a6:90:97:26:c2: bc:0d:a3:ae:b6:ee:5a:01:26:35:5b:4c:55:e3:35:38:03:96: de:c9:a6:6a:74:e6:3d:14:ec:af:f2:6d:2d:ca:a7:d9:ab:3a: d1:46:77:a6:89:6c:c9:e6:29:68:c8:05:d2:01:a2:32:7f:b1: 61:05:95:66:b4:96:49:fe:9b:6a:88:80:63:3e:77:51:30:eb: 2d:99:fe:4e:db:62:66:fb:19:84:1a:e0:81:05:33:f7:15:14: 0c:10:15:29:b6:0b:75:81:56:a1:b2:ea:20:80:eb:30:92:40: a9:c1:a1:12:a3:89:5e:bb:ee:c1:63:56:e9:92:d5:3f:a7:6d: bd:5c:33:d0:23:7e:f8:a9:91:fd:b8:61:aa:22:31:b6:77:8c: 82:3a:8a:a4 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUM40zb/ib2w75y8qy/o20GejmQoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzc5NDY3RDlGOUQyREJGRUZFQjgwOTU3NTUwMDRFREQ0 MkNFMDBFNjAeFw0yNjA0MTAwNjAyMTdaFw0yNzA0MDkwNjA3MTdaMDMxMTAvBgNV BAMTKERGNkJCMEM1NUZGNDdCQ0FFMUI1MEY0MkZBNDlGMEQ3MDI2RDJCQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo7zKM1NE1jBXlYmwDAo+cv2cL xivJb+7z1m0x8UJNIZ2Uf6hf/C/jn++9f2V/39bfX/UEiUikkD2JaCt+vj6IQHdg LxVWErRZXkisK7ZcbbLU3jwnVOlFC/NbqOs/6GkBfP4bhCnkQ6+sZYKxJcBbBF3+ VQHxOEjPmQW7UzUgXp2CKS8HU49h7loCXbXQmmIvdKituWND6wHcs5KwjyO1uHXy h0ABmn+Bvy/RPSBKxyVn1QXlb6SSgf8BHVyOgZBVkP907UwSdySP7B5kCge7ObYl WprvATf9LGnSPLXsAQptQhe2PtEgQSIbuVA+OxQKZWST2hLcfAAGh4Td0zlfAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU32uwxV/0e8rhtQ9C+knw1wJtK7owHwYDVR0j BBgwFoAUN5Rn2fnS2/7+uAlXVQBO3ULOAOYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxOTUyNzkxMDIyNzk3MS8wLzM3OTQ2N0Q5RjlEMkRCRkVGRUI4MDk1NzU1MDA0 RURENDJDRTAwRTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzc5NDY3RDlGOUQyREJGRUZFQjgwOTU3NTUwMDRFREQ0MkNFMDBFNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODE5NTI3OTEwMjI3OTcxLzAvMzQzNTJlMzIzNTM0 MmUzNDM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/jAwDQYJKoZIhvcNAQELBQADggEBAK+RmDtzvdE4zOa9/CjU1EEeMq/79dPR YxFl49VJgVNL/xKjB7PjaMcJZvpXs9/0pNaoy1PnRzDTWtxlaLW7JiDCJ62mzeCo XZHxhj6u5fRYMq+cy5sLG5lTfdWOYEflBklgEY6C5oamkJcmwrwNo6627loBJjVb TFXjNTgDlt7Jpmp05j0U7K/ybS3Kp9mrOtFGd6aJbMnmKWjIBdIBojJ/sWEFlWa0 lkn+m2qIgGM+d1Ew6y2Z/k7bYmb7GYQa4IEFM/cVFAwQFSm2C3WBVqGy6iCA6zCS QKnBoRKjiV677sFjVumS1T+nbb1cM9Ajfvipkf24YaoiMbZ3jII6iqQ= -----END CERTIFICATE-----Generated at Mon Apr 13 15:21:50 2026 by rpki-client