$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3234332e31322e302f32322d3232203d3e2034383437.roa File: 34332e3234332e31322e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: LcrocbM2YfGk2rYF1OAeGUAZD2BMIpJTy8xsIGcOTlQ= Subject key identifier: 78:EE:C0:1F:7C:F8:5B:50:24:B8:09:CA:28:E4:F2:02:AC:F1:7D:CD Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 0AB791FC618A4BC9431B55F30402C46837A114FF Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3234332e31322e302f32322d3232203d3e2034383437.roa Signing time: Mon 13 Apr 2026 07:09:27 +0000 ROA not before: Mon 13 Apr 2026 07:04:27 +0000 ROA not after: Mon 12 Apr 2027 07:09:27 +0000 asID: 4847 IP address blocks: 43.243.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b7:91:fc:61:8a:4b:c9:43:1b:55:f3:04:02:c4:68:37:a1:14:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:27 2026 GMT Not After : Apr 12 07:09:27 2027 GMT Subject: CN=78EEC01F7CF85B5024B809CA28E4F202ACF17DCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:29:04:ae:37:3a:b8:4f:b8:64:2d:be:7e:81: 49:f3:5f:60:b8:ab:4f:cf:d8:9d:19:e3:e6:39:17: 17:ba:87:7c:46:a5:9c:5a:e6:fd:82:a6:ad:aa:96: cb:ea:e3:16:24:88:c6:02:36:45:26:ec:13:1f:82: 75:6d:32:fe:ff:6d:4f:c6:1d:c4:6f:9b:fc:0e:53: 8d:13:73:9c:61:dc:53:f4:71:9b:86:18:8f:7a:8c: 3d:07:c4:6a:81:dd:e1:85:6d:a5:31:24:ec:cb:ff: df:c0:4c:8e:d0:e0:9c:84:a5:c5:de:da:bd:0b:26: e0:bc:0b:17:7b:c0:a9:c3:fa:0d:08:ec:69:53:47: 3e:28:95:ec:dd:0f:f4:57:b1:2b:d7:b8:98:fa:64: 63:91:0f:78:b8:5e:94:d3:a4:2e:3b:b8:13:b0:02: 02:c2:d9:e6:b7:67:81:93:25:b9:bb:8e:99:b5:87: 70:d3:56:a4:ed:63:60:d7:73:bc:6a:6b:ee:92:3f: a3:3d:bf:9f:99:dc:97:c5:3c:57:3c:82:1d:c3:37: dd:5a:3a:3d:e6:cc:ac:d8:30:04:20:34:60:66:cb: b4:b7:54:fb:09:bd:53:08:0a:47:26:39:a6:79:af: 56:7c:09:72:e7:90:a8:81:13:d7:39:d9:de:09:ac: 0d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:EE:C0:1F:7C:F8:5B:50:24:B8:09:CA:28:E4:F2:02:AC:F1:7D:CD X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3234332e31322e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.12.0/22 Signature Algorithm: sha256WithRSAEncryption 33:21:69:b5:e8:c7:80:b1:6f:b4:7c:04:f7:b7:d6:91:01:48: 80:13:fc:17:af:24:a2:95:49:aa:82:cf:f1:4c:29:35:74:bb: b6:9a:30:6a:38:85:5d:1c:c7:ab:48:bf:00:4c:24:7c:f6:26: c4:2e:f9:c9:ed:16:f4:0b:31:56:1f:d6:bc:f8:03:66:73:42: 7a:bf:2b:14:0c:5b:9f:53:61:a5:4f:f9:99:0a:b7:4f:f0:ca: ab:55:7b:2a:85:ab:44:43:4e:c4:a5:39:7d:65:4b:68:55:1d: d3:8c:c7:a9:56:89:5c:ba:7c:ce:da:5c:e2:64:34:d3:04:26: a5:89:15:d2:f0:79:a5:3a:6f:16:5f:62:a9:3b:e1:c2:f5:f1: 13:c1:17:63:fa:56:51:cb:18:52:20:f9:12:70:ac:43:2f:c2: 45:a1:dd:ba:37:5c:e3:37:c9:c9:95:ea:16:43:7c:02:51:d8: c2:cb:45:fa:c5:c2:cf:55:b1:5e:53:7a:2a:e2:5d:36:76:4b: 44:19:85:d4:e0:ce:1f:76:16:61:8c:38:ed:17:82:f1:de:09: f2:c7:77:4d:00:3f:0b:53:81:78:1e:85:b0:49:1f:8a:e8:0b: 88:76:26:f6:68:33:5f:ce:48:94:1f:e8:cd:81:cf:9b:5e:8b: 8c:16:10:a5 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUCreR/GGKS8lDG1XzBALEaDehFP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjdaFw0yNzA0MTIwNzA5MjdaMDMxMTAvBgNV BAMTKDc4RUVDMDFGN0NGODVCNTAyNEI4MDlDQTI4RTRGMjAyQUNGMTdEQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCEKQSuNzq4T7hkLb5+gUnzX2C4 q0/P2J0Z4+Y5Fxe6h3xGpZxa5v2Cpq2qlsvq4xYkiMYCNkUm7BMfgnVtMv7/bU/G HcRvm/wOU40Tc5xh3FP0cZuGGI96jD0HxGqB3eGFbaUxJOzL/9/ATI7Q4JyEpcXe 2r0LJuC8Cxd7wKnD+g0I7GlTRz4olezdD/RXsSvXuJj6ZGORD3i4XpTTpC47uBOw AgLC2ea3Z4GTJbm7jpm1h3DTVqTtY2DXc7xqa+6SP6M9v5+Z3JfFPFc8gh3DN91a Oj3mzKzYMAQgNGBmy7S3VPsJvVMICkcmOaZ5r1Z8CXLnkKiBE9c52d4JrA3bAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUeO7AH3z4W1AkuAnKKOTyAqzxfc0wHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzQzMzJlMzIzNDMz MmUzMTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr8wwwDQYJKoZIhvcNAQELBQADggEBADMhabXox4Cxb7R8BPe31pEBSIAT/Bev JKKVSaqCz/FMKTV0u7aaMGo4hV0cx6tIvwBMJHz2JsQu+cntFvQLMVYf1rz4A2Zz Qnq/KxQMW59TYaVP+ZkKt0/wyqtVeyqFq0RDTsSlOX1lS2hVHdOMx6lWiVy6fM7a XOJkNNMEJqWJFdLweaU6bxZfYqk74cL18RPBF2P6VlHLGFIg+RJwrEMvwkWh3bo3 XOM3ycmV6hZDfAJR2MLLRfrFws9VsV5TeiriXTZ2S0QZhdTgzh92FmGMOO0XgvHe CfLHd00APwtTgXgehbBJH4roC4h2JvZoM1/OSJQf6M2Bz5tei4wWEKU= -----END CERTIFICATE-----Generated at Mon Apr 13 17:47:14 2026 by rpki-client