$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3234332e31322e302f32332d3233203d3e2039383038.roa File: 34332e3234332e31322e302f32332d3233203d3e2039383038.roa (raw, json) Hash identifier: cVhDxx7kh4ZoNn9WJVpwLMocPwcnodpVejskytXcrOM= Subject key identifier: 76:2C:C3:85:CE:CE:07:A6:8B:D4:C9:0A:18:8C:97:F6:69:C6:72:28 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 469650AF4461C70A838969940445CA0C690E2B1C Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3234332e31322e302f32332d3233203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:09:27 +0000 ROA not before: Mon 13 Apr 2026 07:04:27 +0000 ROA not after: Mon 12 Apr 2027 07:09:27 +0000 asID: 9808 IP address blocks: 43.243.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:96:50:af:44:61:c7:0a:83:89:69:94:04:45:ca:0c:69:0e:2b:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:27 2026 GMT Not After : Apr 12 07:09:27 2027 GMT Subject: CN=762CC385CECE07A68BD4C90A188C97F669C67228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:0e:20:92:2d:94:a1:ca:c2:4e:54:b7:d7: 1b:c4:62:e3:7b:a0:3f:58:26:1e:e8:b5:69:2a:59: 43:ea:56:19:9e:a5:4f:82:97:ba:6b:bc:e5:01:4d: 72:85:3d:f6:6a:f0:34:f1:63:48:d8:69:2a:32:bd: ff:56:d1:78:a6:96:bd:00:b2:f7:ce:f5:d8:8b:53: a8:a9:87:32:42:d7:b0:7a:f1:a4:55:0e:6f:35:04: 0b:e4:bc:c7:46:8e:e2:bf:c0:ee:46:d2:9b:96:e7: ef:51:50:b9:d1:89:f0:e9:4f:22:72:41:14:2b:27: 23:c0:92:2c:05:a2:2b:5a:6b:13:27:9d:41:15:e2: 35:d1:17:88:a7:f8:ae:fd:56:cc:cc:e9:ff:6c:13: da:52:1f:68:de:db:eb:14:81:af:26:6b:4a:fc:8e: 52:59:09:65:2f:14:b9:ad:59:93:76:8e:fc:af:7c: fe:58:47:97:20:04:1b:d7:90:17:7a:20:d7:ef:ca: 03:80:26:14:69:8b:28:44:a8:d5:27:ba:38:a2:f3: 31:bc:5a:23:03:f1:00:a4:91:4c:02:d1:8d:d5:16: ce:44:21:f7:f1:dd:22:fc:84:e6:9e:4c:ec:b1:e0: ad:40:f0:44:8f:92:6c:56:55:c9:18:51:33:30:5d: c1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:2C:C3:85:CE:CE:07:A6:8B:D4:C9:0A:18:8C:97:F6:69:C6:72:28 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3234332e31322e302f32332d3233203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.12.0/23 Signature Algorithm: sha256WithRSAEncryption 17:51:e8:51:46:81:fc:79:78:21:11:10:5b:8a:4b:d5:18:66: 27:29:ca:03:3b:6f:48:0c:93:f3:a9:26:9a:d4:07:84:85:5e: 9b:bb:66:9d:33:e6:71:c9:86:13:a5:56:92:de:27:3b:1c:5f: c7:2a:a9:99:a4:59:05:fe:6f:ea:39:0b:11:44:89:93:48:08: 2f:e1:60:98:34:67:83:56:a9:81:6e:8f:b0:51:ef:67:7c:64: ff:b0:2d:4a:a7:0e:0b:99:62:e4:66:31:54:f6:62:6d:e4:de: f1:c3:2f:36:cf:23:0a:78:ab:c5:3f:f1:72:2b:76:7c:c2:b6: cf:f1:70:aa:16:bd:d1:05:09:da:a7:c1:0b:46:93:94:b5:91: d9:33:b0:60:04:d3:ea:d8:85:7c:48:4b:cf:5a:28:bd:fa:3b: 56:11:6e:20:f0:5d:5e:2e:de:92:a1:34:a1:78:fe:b6:c7:7e: fd:4f:31:17:a2:78:0b:27:2f:22:cc:92:13:8c:36:65:40:77: 77:38:c8:11:13:c0:cd:c1:03:20:a5:3f:c3:b3:b2:44:c6:fd: 8d:07:52:07:56:1c:50:b4:5e:04:be:10:bb:25:7a:1b:c7:f3: 14:ca:50:69:f1:14:f4:22:d4:60:77:b2:5b:5a:fc:48:31:4d: 0b:7b:73:5a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIURpZQr0RhxwqDiWmUBEXKDGkOKxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjdaFw0yNzA0MTIwNzA5MjdaMDMxMTAvBgNV BAMTKDc2MkNDMzg1Q0VDRTA3QTY4QkQ0QzkwQTE4OEM5N0Y2NjlDNjcyMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyuw4gki2UocrCTlS31xvEYuN7 oD9YJh7otWkqWUPqVhmepU+Cl7prvOUBTXKFPfZq8DTxY0jYaSoyvf9W0Ximlr0A svfO9diLU6iphzJC17B68aRVDm81BAvkvMdGjuK/wO5G0puW5+9RULnRifDpTyJy QRQrJyPAkiwFoitaaxMnnUEV4jXRF4in+K79VszM6f9sE9pSH2je2+sUga8ma0r8 jlJZCWUvFLmtWZN2jvyvfP5YR5cgBBvXkBd6INfvygOAJhRpiyhEqNUnujii8zG8 WiMD8QCkkUwC0Y3VFs5EIffx3SL8hOaeTOyx4K1A8ESPkmxWVckYUTMwXcHBAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUdizDhc7OB6aL1MkKGIyX9mnGcigwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzQzMzJlMzIzNDMz MmUzMTMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzkzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEr8wwwDQYJKoZIhvcNAQELBQADggEBABdR6FFGgfx5eCEREFuKS9UYZicpygM7 b0gMk/OpJprUB4SFXpu7Zp0z5nHJhhOlVpLeJzscX8cqqZmkWQX+b+o5CxFEiZNI CC/hYJg0Z4NWqYFuj7BR72d8ZP+wLUqnDguZYuRmMVT2Ym3k3vHDLzbPIwp4q8U/ 8XIrdnzCts/xcKoWvdEFCdqnwQtGk5S1kdkzsGAE0+rYhXxIS89aKL36O1YRbiDw XV4u3pKhNKF4/rbHfv1PMReieAsnLyLMkhOMNmVAd3c4yBETwM3BAyClP8OzskTG /Y0HUgdWHFC0XgS+ELslehvH8xTKUGnxFPQi1GB3slta/EgxTQt7c1o= -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:02 2026 by rpki-client