$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3232382e3131362e302f32322d3232203d3e2039383038.roa File: 34332e3232382e3131362e302f32322d3232203d3e2039383038.roa (raw, json) Hash identifier: f0iC8i2UKqg1L8jaJZowDfCqMiUR4RtaC5ywx1g17uU= Subject key identifier: C9:88:6B:B1:A5:FC:96:43:27:0D:76:39:C1:C5:92:F2:9C:7B:39:90 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 15FF448AEA2367DCB6E52ABF6D5BA3BD4F0D79B7 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3232382e3131362e302f32322d3232203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:09:27 +0000 ROA not before: Mon 13 Apr 2026 07:04:27 +0000 ROA not after: Mon 12 Apr 2027 07:09:27 +0000 asID: 9808 IP address blocks: 43.228.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ff:44:8a:ea:23:67:dc:b6:e5:2a:bf:6d:5b:a3:bd:4f:0d:79:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:27 2026 GMT Not After : Apr 12 07:09:27 2027 GMT Subject: CN=C9886BB1A5FC9643270D7639C1C592F29C7B3990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:13:fb:89:0e:09:3e:dd:01:7d:35:5b:e5:d9: 92:2f:db:07:2c:f2:bb:80:d9:3e:a7:0f:99:89:78: 1e:5a:06:77:f9:59:cb:64:7d:30:8e:7f:1e:62:64: 29:f7:7f:0c:5d:67:ca:fd:6f:4b:8b:6f:58:b9:f0: 25:59:bc:9e:f8:83:7e:9e:ad:51:e7:12:64:67:cd: 3f:74:3b:2e:82:cf:b9:26:58:de:32:ad:81:b9:9f: 6f:a9:20:ae:51:97:e7:ee:4d:f2:1f:14:2f:17:84: 37:81:a1:f3:71:a6:bc:27:4d:22:58:41:a0:41:55: 21:80:63:c7:20:e9:77:cb:ad:6f:87:94:9d:73:8b: d3:a5:1a:95:10:99:5b:1a:a9:9a:84:8a:98:ef:58: 94:62:4a:4c:cb:16:dc:d1:e8:41:2e:86:90:ac:23: 41:7d:a4:46:71:ea:c8:52:cf:de:1b:5a:d3:81:1d: a8:2a:40:ab:b1:e4:3d:59:f0:27:8d:81:77:90:6a: 94:d0:11:0e:d5:3b:5f:a5:1c:7e:9a:b1:85:3c:34: 74:0d:81:7c:67:56:3e:d4:84:85:bf:d9:c2:a5:00: 3e:cd:0a:7c:86:e5:87:1e:30:0d:4e:f0:d0:51:39: a3:de:df:c3:26:ee:d2:cc:f5:b8:d3:7b:9b:29:5e: 75:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:88:6B:B1:A5:FC:96:43:27:0D:76:39:C1:C5:92:F2:9C:7B:39:90 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3232382e3131362e302f32322d3232203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.228.116.0/22 Signature Algorithm: sha256WithRSAEncryption 75:39:e4:7e:fc:ca:07:d6:cd:f0:82:b4:ad:dc:ab:e2:5a:23: c8:c7:e7:10:3a:07:b7:39:d8:c3:09:f1:9b:32:41:89:c4:a4: db:68:d7:f3:16:41:a6:2b:77:d1:92:4e:70:b0:ee:32:34:8a: 36:8f:22:02:42:ec:0b:d1:33:84:53:e2:5b:10:d2:9e:09:24: e5:18:c9:0b:40:d5:4e:bc:9c:10:35:1b:e0:62:65:27:73:24: f5:08:81:6f:3f:54:23:10:d3:22:1b:b1:8a:64:b3:09:7b:5d: c5:f7:69:6c:e8:bf:73:dc:fa:bd:5b:91:a4:36:08:de:86:54: ed:0d:f6:96:5c:76:35:2d:35:b3:2d:5c:4a:e6:eb:6f:f5:0f: db:be:64:a5:15:98:7a:6c:17:f0:e4:ef:1d:ba:eb:80:9b:e6: 01:ee:d4:0b:61:16:ad:e0:5e:85:17:58:b9:97:7b:60:72:3d: 61:d7:2c:6f:1a:ad:25:1d:d0:12:43:10:f3:9c:d4:24:25:49: dc:41:a1:b5:75:9f:8c:c4:16:9f:4d:ef:cd:49:38:61:df:5a: 66:95:cc:35:c0:60:12:f4:27:9c:b3:d2:9a:bd:d6:cf:18:5e: 78:e5:69:f0:42:8f:a0:5d:15:c4:81:e6:9c:01:be:43:52:ab: 46:28:cc:f7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUFf9EiuojZ9y25Sq/bVujvU8NebcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjdaFw0yNzA0MTIwNzA5MjdaMDMxMTAvBgNV BAMTKEM5ODg2QkIxQTVGQzk2NDMyNzBENzYzOUMxQzU5MkYyOUM3QjM5OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcE/uJDgk+3QF9NVvl2ZIv2wcs 8ruA2T6nD5mJeB5aBnf5WctkfTCOfx5iZCn3fwxdZ8r9b0uLb1i58CVZvJ74g36e rVHnEmRnzT90Oy6Cz7kmWN4yrYG5n2+pIK5Rl+fuTfIfFC8XhDeBofNxprwnTSJY QaBBVSGAY8cg6XfLrW+HlJ1zi9OlGpUQmVsaqZqEipjvWJRiSkzLFtzR6EEuhpCs I0F9pEZx6shSz94bWtOBHagqQKux5D1Z8CeNgXeQapTQEQ7VO1+lHH6asYU8NHQN gXxnVj7UhIW/2cKlAD7NCnyG5YceMA1O8NBROaPe38Mm7tLM9bjTe5spXnW1AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUyYhrsaX8lkMnDXY5wcWS8px7OZAwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzQzMzJlMzIzMjM4 MmUzMTMxMzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzOTM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAivkdDANBgkqhkiG9w0BAQsFAAOCAQEAdTnkfvzKB9bN8IK0rdyr4lojyMfn EDoHtznYwwnxmzJBicSk22jX8xZBpit30ZJOcLDuMjSKNo8iAkLsC9EzhFPiWxDS ngkk5RjJC0DVTrycEDUb4GJlJ3Mk9QiBbz9UIxDTIhuximSzCXtdxfdpbOi/c9z6 vVuRpDYI3oZU7Q32llx2NS01sy1cSubrb/UP275kpRWYemwX8OTvHbrrgJvmAe7U C2EWreBehRdYuZd7YHI9YdcsbxqtJR3QEkMQ85zUJCVJ3EGhtXWfjMQWn03vzUk4 Yd9aZpXMNcBgEvQnnLPSmr3WzxheeOVp8EKPoF0VxIHmnAG+Q1KrRijM9w== -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:39 2026 by rpki-client