$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e38382e302f32322d3232203d3e2034383437.roa File: 34332e3235342e38382e302f32322d3232203d3e2034383437.roa (raw, json) Hash identifier: ILyPSCYo3vXC9lSbt0jLm7z6RYCYiQKxi3CswUXicZ8= Subject key identifier: 0B:22:B5:F9:03:34:16:BC:20:32:C1:75:8A:85:3E:EF:E8:31:2D:BA Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 373304A17BC723D73411EAB116962985635D64F3 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e38382e302f32322d3232203d3e2034383437.roa Signing time: Mon 13 Apr 2026 07:09:27 +0000 ROA not before: Mon 13 Apr 2026 07:04:27 +0000 ROA not after: Mon 12 Apr 2027 07:09:27 +0000 asID: 4847 IP address blocks: 43.254.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:33:04:a1:7b:c7:23:d7:34:11:ea:b1:16:96:29:85:63:5d:64:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:27 2026 GMT Not After : Apr 12 07:09:27 2027 GMT Subject: CN=0B22B5F9033416BC2032C1758A853EEFE8312DBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:fd:74:2a:22:8c:ee:87:90:fe:fb:0b:c4: 72:7a:cc:03:44:9e:1e:98:93:c1:0e:fa:73:40:d3: 34:04:33:71:0f:ac:7d:a9:6f:58:53:f1:7c:e4:d6: cb:27:c3:d4:34:bd:15:40:a8:fb:5d:ff:f0:93:33: e4:4f:2c:6d:3f:fc:2e:3a:64:84:99:2d:c5:af:ec: c9:35:b4:5e:18:a6:a2:77:4e:8b:5c:2e:0a:dc:7c: e8:43:8a:c5:95:c7:d1:c8:ed:42:0f:a7:c9:b0:b7: 0a:c7:9b:d2:94:45:97:5b:b1:19:53:93:45:c8:06: 5c:39:06:86:8f:16:9f:d5:fa:47:32:c6:5e:89:5b: 01:8b:9d:1b:3c:5c:c0:c1:1b:8a:2c:0b:b9:3f:25: e8:bf:17:1e:fa:5f:18:a8:a7:91:e5:d9:83:45:01: b6:3e:09:34:9f:28:22:bb:9e:50:fd:f5:82:cf:8c: 2a:bb:31:80:3b:9f:bc:c5:0d:a2:cd:aa:91:5e:5f: 48:54:f4:21:4a:3f:b9:b2:83:b1:c4:fd:ee:d8:dd: f2:26:b3:a2:3f:f9:70:25:41:1c:ea:85:fd:d6:7a: 43:f4:d3:7a:a8:f0:8b:c0:fc:b3:ab:dc:0c:77:b8: ee:9e:36:ef:02:e6:45:7f:4e:45:72:d3:d9:03:9e: c4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:22:B5:F9:03:34:16:BC:20:32:C1:75:8A:85:3E:EF:E8:31:2D:BA X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e38382e302f32322d3232203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.88.0/22 Signature Algorithm: sha256WithRSAEncryption 06:96:dc:35:b6:07:cd:27:e8:15:bd:15:dd:5c:71:88:ce:31: a6:8d:9d:6e:94:3a:f2:77:e2:c6:22:8d:4f:35:4c:0a:c5:a8: cf:06:ad:0e:f0:21:84:76:5d:a1:92:39:8b:2d:25:7f:75:84: 0f:63:e2:71:52:21:4d:b5:ff:8d:3b:03:d2:dc:93:e0:9f:79: 7f:99:b5:db:bc:57:e6:d2:84:98:ab:72:34:50:28:ab:7c:b9: c1:31:59:d2:11:1b:7f:6b:7d:df:a0:29:bc:82:c5:51:71:33: b2:e1:46:7c:bd:70:d0:9a:9d:71:88:56:7a:16:5c:12:ce:b5: 5f:20:26:13:81:f2:a0:55:09:00:d4:d7:18:71:34:e5:62:dc: 2a:07:a9:16:a1:1d:96:71:73:ed:24:64:2d:1b:11:90:ad:fe: eb:5d:b2:18:d1:d4:54:83:c0:4c:1b:40:ae:b8:6f:24:73:24: 36:e4:4b:46:91:43:b9:10:5d:3e:48:82:9d:26:26:6e:4f:58: b6:60:fd:ad:74:c5:47:91:84:80:89:15:bd:22:47:2a:1f:5d: ed:ad:23:c8:aa:5e:b3:94:e1:ea:53:5b:b7:69:4c:e9:29:a4: 60:66:fe:fe:52:76:fd:54:f4:bb:a3:53:e6:08:51:79:7b:57: 57:4e:39:5e -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUNzMEoXvHI9c0EeqxFpYphWNdZPMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjdaFw0yNzA0MTIwNzA5MjdaMDMxMTAvBgNV BAMTKDBCMjJCNUY5MDMzNDE2QkMyMDMyQzE3NThBODUzRUVGRTgzMTJEQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC86/10KiKM7oeQ/vsLxHJ6zANE nh6Yk8EO+nNA0zQEM3EPrH2pb1hT8Xzk1ssnw9Q0vRVAqPtd//CTM+RPLG0//C46 ZISZLcWv7Mk1tF4YpqJ3TotcLgrcfOhDisWVx9HI7UIPp8mwtwrHm9KURZdbsRlT k0XIBlw5BoaPFp/V+kcyxl6JWwGLnRs8XMDBG4osC7k/Jei/Fx76Xxiop5Hl2YNF AbY+CTSfKCK7nlD99YLPjCq7MYA7n7zFDaLNqpFeX0hU9CFKP7myg7HE/e7Y3fIm s6I/+XAlQRzqhf3WekP003qo8IvA/LOr3Ax3uO6eNu8C5kV/TkVy09kDnsS5AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUCyK1+QM0FrwgMsF1ioU+7+gxLbowHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzQzMzJlMzIzNTM0 MmUzODM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr/lgwDQYJKoZIhvcNAQELBQADggEBAAaW3DW2B80n6BW9Fd1ccYjOMaaNnW6U OvJ34sYijU81TArFqM8GrQ7wIYR2XaGSOYstJX91hA9j4nFSIU21/407A9Lck+Cf eX+Ztdu8V+bShJircjRQKKt8ucExWdIRG39rfd+gKbyCxVFxM7LhRny9cNCanXGI VnoWXBLOtV8gJhOB8qBVCQDU1xhxNOVi3CoHqRahHZZxc+0kZC0bEZCt/utdshjR 1FSDwEwbQK64byRzJDbkS0aRQ7kQXT5Igp0mJm5PWLZg/a10xUeRhICJFb0iRyof Xe2tI8iqXrOU4epTW7dpTOkppGBm/v5Sdv1U9LujU+YIUXl7V1dOOV4= -----END CERTIFICATE-----Generated at Mon Apr 13 17:47:12 2026 by rpki-client