$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095955785751461891/0/34332e3232352e3231362e302f32322d3232203d3e2034383437.roa File: 34332e3232352e3231362e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: j/eV+lOtMaJE7zLazg78nWoyQGsOhGQyTahosxccrn8= Subject key identifier: 1F:46:0F:39:78:9D:34:31:D4:36:10:2A:10:1D:E1:2B:F0:9E:91:AB Certificate issuer: /CN=6DB7BEC2F251B209F570DD156FE1574B6D030B3D Certificate serial: 0B2269115E245F2DEC36B5094BE81ED662147C33 Authority key identifier: 6D:B7:BE:C2:F2:51:B2:09:F5:70:DD:15:6F:E1:57:4B:6D:03:0B:3D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6DB7BEC2F251B209F570DD156FE1574B6D030B3D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095955785751461891/0/34332e3232352e3231362e302f32322d3232203d3e2034383437.roa Signing time: Mon 13 Apr 2026 06:22:29 +0000 ROA not before: Mon 13 Apr 2026 06:17:29 +0000 ROA not after: Mon 12 Apr 2027 06:22:29 +0000 asID: 4847 IP address blocks: 43.225.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095955785751461891/0/6DB7BEC2F251B209F570DD156FE1574B6D030B3D.crl rsync://rpki-rps.cnnic.cn/repo/A1095955785751461891/0/6DB7BEC2F251B209F570DD156FE1574B6D030B3D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6DB7BEC2F251B209F570DD156FE1574B6D030B3D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 07:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:22:69:11:5e:24:5f:2d:ec:36:b5:09:4b:e8:1e:d6:62:14:7c:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DB7BEC2F251B209F570DD156FE1574B6D030B3D Validity Not Before: Apr 13 06:17:29 2026 GMT Not After : Apr 12 06:22:29 2027 GMT Subject: CN=1F460F39789D3431D436102A101DE12BF09E91AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c3:1b:b6:10:92:f3:6b:2b:82:2b:8a:52:ef: 9d:07:e8:12:2f:7d:c9:db:d5:e8:a1:70:d4:6f:6c: e0:45:94:21:47:d7:a0:ca:01:fb:11:3c:0c:6d:42: 35:56:63:6e:61:32:d1:71:14:76:ba:06:62:83:36: 7e:98:af:ec:57:c0:0c:21:c5:5e:5e:27:15:eb:57: 2a:b7:eb:5d:cc:9d:f4:de:33:61:7e:e7:f0:52:2f: 86:a7:e5:e3:b3:6b:3a:a8:2e:ec:03:16:12:fb:b8: ea:d2:a3:6f:14:89:3f:6f:ed:82:89:a5:a7:57:be: d8:38:c8:c6:2c:2f:3f:01:b1:f4:1b:02:c4:75:de: 69:8e:f7:60:16:38:bf:b6:73:35:75:31:b4:58:3d: c7:3f:bf:2d:84:3f:48:0f:f7:92:ca:ce:23:3b:7b: 84:ed:f3:5e:62:a9:1a:23:64:dc:ed:27:03:f7:f8: 58:ac:4c:a8:08:50:3e:57:11:54:42:07:6a:a8:4c: 37:12:95:b3:4f:0a:7c:1f:14:51:a1:9a:e7:db:e7: fb:84:ad:a1:99:62:41:96:2b:89:c3:5b:a7:5e:01: c5:52:47:2e:c3:f6:7e:aa:be:2e:90:33:32:8b:2e: f1:db:d9:e3:e8:c4:07:1b:fd:59:02:0c:3c:9c:99: e9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:46:0F:39:78:9D:34:31:D4:36:10:2A:10:1D:E1:2B:F0:9E:91:AB X509v3 Authority Key Identifier: keyid:6D:B7:BE:C2:F2:51:B2:09:F5:70:DD:15:6F:E1:57:4B:6D:03:0B:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095955785751461891/0/6DB7BEC2F251B209F570DD156FE1574B6D030B3D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6DB7BEC2F251B209F570DD156FE1574B6D030B3D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095955785751461891/0/34332e3232352e3231362e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.216.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:d6:d0:09:0f:35:1f:3b:5a:a1:25:a9:66:9d:fc:7e:6f:2d: 55:46:17:4b:a8:3b:d8:d5:ad:e9:af:1d:21:ca:fd:7e:3c:c3: 8b:d6:13:43:f7:58:d9:61:ea:c8:ce:0f:0b:7b:28:17:52:b8: 3d:49:12:a7:c0:0b:82:20:38:92:e9:73:a6:71:1e:ac:71:5b: da:f9:b2:d1:76:6b:86:8e:a6:77:9a:0a:75:43:41:2e:e8:a6: 21:62:9f:c9:19:28:91:2b:6b:50:a5:87:5d:07:ed:58:07:57: 83:75:14:77:a3:23:92:02:7d:e1:1a:e5:41:de:8d:f0:c5:b2: d1:cd:c1:7d:f3:87:3a:da:46:2a:f5:00:1b:73:5e:a5:cf:d0: 66:b3:69:1f:96:f0:ea:35:09:60:5c:f1:37:e8:3a:ca:01:18: c6:4b:0e:03:5c:26:c4:ea:0a:74:b4:fe:36:82:a9:32:cd:40: 19:42:41:b9:b4:5a:d7:52:62:16:35:3e:dc:ab:9a:1a:7d:e8: 9e:fd:97:76:6d:16:82:7a:62:0e:05:69:5a:02:41:68:f1:ac: 5b:da:29:4e:0f:e3:10:11:cd:76:a6:40:ed:e7:ac:20:69:76: 02:b8:87:24:30:1a:4a:c8:a8:eb:67:c6:43:10:7d:df:0c:94: 85:1c:d1:bf -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUCyJpEV4kXy3sNrUJS+ge1mIUfDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRCN0JFQzJGMjUxQjIwOUY1NzBERDE1NkZFMTU3NEI2 RDAzMEIzRDAeFw0yNjA0MTMwNjE3MjlaFw0yNzA0MTIwNjIyMjlaMDMxMTAvBgNV BAMTKDFGNDYwRjM5Nzg5RDM0MzFENDM2MTAyQTEwMURFMTJCRjA5RTkxQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEwxu2EJLzayuCK4pS750H6BIv fcnb1eihcNRvbOBFlCFH16DKAfsRPAxtQjVWY25hMtFxFHa6BmKDNn6Yr+xXwAwh xV5eJxXrVyq3613MnfTeM2F+5/BSL4an5eOzazqoLuwDFhL7uOrSo28UiT9v7YKJ padXvtg4yMYsLz8BsfQbAsR13mmO92AWOL+2czV1MbRYPcc/vy2EP0gP95LKziM7 e4Tt815iqRojZNztJwP3+FisTKgIUD5XEVRCB2qoTDcSlbNPCnwfFFGhmufb5/uE raGZYkGWK4nDW6deAcVSRy7D9n6qvi6QMzKLLvHb2ePoxAcb/VkCDDycmelVAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUH0YPOXidNDHUNhAqEB3hK/CekaswHwYDVR0j BBgwFoAUbbe+wvJRsgn1cN0Vb+FXS20DCz0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk1NTc4NTc1MTQ2MTg5MS8wLzZEQjdCRUMyRjI1MUIyMDlGNTcwREQxNTZGRTE1 NzRCNkQwMzBCM0QuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkRCN0JFQzJGMjUxQjIwOUY1NzBERDE1NkZFMTU3NEI2RDAzMEIzRC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTU1Nzg1NzUxNDYxODkxLzAvMzQzMzJlMzIzMjM1 MmUzMjMxMzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAivh2DANBgkqhkiG9w0BAQsFAAOCAQEAjtbQCQ81HztaoSWpZp38fm8tVUYX S6g72NWt6a8dIcr9fjzDi9YTQ/dY2WHqyM4PC3soF1K4PUkSp8ALgiA4kulzpnEe rHFb2vmy0XZrho6md5oKdUNBLuimIWKfyRkokStrUKWHXQftWAdXg3UUd6MjkgJ9 4RrlQd6N8MWy0c3BffOHOtpGKvUAG3Nepc/QZrNpH5bw6jUJYFzxN+g6ygEYxksO A1wmxOoKdLT+NoKpMs1AGUJBubRa11JiFjU+3KuaGn3onv2Xdm0WgnpiDgVpWgJB aPGsW9opTg/jEBHNdqZA7eesIGl2AriHJDAaSsio62fGQxB93wyUhRzRvw== -----END CERTIFICATE-----Generated at Mon Apr 13 15:20:49 2026 by rpki-client