$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e38382e302f32332d3233203d3e2039383038.roa File: 34332e3235342e38382e302f32332d3233203d3e2039383038.roa (raw, json) Hash identifier: X8kVifA40nJupn2O+1PLJ8esVjUnl6irOAwM+FdRvss= Subject key identifier: 3B:4C:B4:46:DB:15:43:F5:B3:2F:7B:9A:0F:DB:13:75:CF:1B:88:0D Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 73F2DDD08BAD65594855A513A60A125A07221CD8 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e38382e302f32332d3233203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:09:26 +0000 ROA not before: Mon 13 Apr 2026 07:04:26 +0000 ROA not after: Mon 12 Apr 2027 07:09:26 +0000 asID: 9808 IP address blocks: 43.254.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:f2:dd:d0:8b:ad:65:59:48:55:a5:13:a6:0a:12:5a:07:22:1c:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:26 2026 GMT Not After : Apr 12 07:09:26 2027 GMT Subject: CN=3B4CB446DB1543F5B32F7B9A0FDB1375CF1B880D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:74:9b:e6:bb:5e:3c:fe:d5:03:6e:6c:07:92: 75:d9:ba:57:9c:e1:d0:76:3e:00:17:a5:f7:e5:17: 4e:d7:67:65:de:01:5e:b4:01:5a:0e:14:b5:10:8b: 76:52:6f:12:66:99:91:84:05:57:c4:2e:fe:67:25: 63:49:9f:89:37:49:e6:e4:4c:d0:bf:89:c5:cc:51: 66:7a:9a:be:d7:18:2d:f0:cf:24:ef:a6:a2:9d:55: a5:4c:54:10:e2:af:7f:8f:e2:05:29:8f:e6:97:a3: c8:42:c4:ae:4a:72:e0:cc:34:fd:8b:f1:b3:8d:fc: 37:8e:06:2c:49:7b:99:f0:ad:a7:90:4e:3b:b8:34: bb:75:68:a3:b0:39:1e:19:ac:cc:d8:e6:a8:6d:f0: ce:47:c4:1d:7f:97:94:b8:da:01:2f:d6:ca:d8:db: df:9b:ae:b3:65:1e:75:e3:56:bb:01:eb:0a:38:39: 77:50:c9:6f:77:4c:14:14:55:8f:33:ae:07:7c:50: 76:b0:bb:e1:3f:82:13:4e:52:1a:2d:0b:3e:2e:6d: 1c:03:9d:63:52:0c:a9:f5:b4:5a:94:5c:d1:2a:d1: 55:6a:29:2e:6b:84:c2:34:d2:23:f7:4a:b9:30:ec: 8b:4c:4d:66:85:81:cd:64:3f:7e:db:98:ba:43:87: 87:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4C:B4:46:DB:15:43:F5:B3:2F:7B:9A:0F:DB:13:75:CF:1B:88:0D X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e38382e302f32332d3233203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.88.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:59:30:7d:83:aa:2f:7e:11:3c:37:ba:1a:27:bf:87:b4:b7: 50:91:24:dd:b4:94:18:60:33:d8:d9:f5:6b:e9:a0:85:ef:02: 48:f8:59:52:13:9c:02:53:67:2f:7b:61:8d:a6:1d:ed:84:43: 5b:93:e7:b7:96:3f:50:e2:e1:33:d4:f9:7e:a8:95:29:30:1e: e7:c0:e3:93:62:17:98:72:5c:cc:ea:28:6e:98:cc:9e:e4:95: ed:0a:c1:81:1f:6e:4e:ae:86:8d:81:33:b6:60:11:a8:29:db: e6:f4:d9:3a:b8:e5:77:7a:27:b5:b7:b2:89:07:b7:62:19:43: 50:50:59:be:d4:f3:dd:0a:3a:53:17:07:8f:a8:16:38:ab:77: b9:c7:96:85:c4:47:75:a1:4a:cc:4b:75:4c:18:7e:8a:13:bd: 37:bc:97:97:83:81:16:fe:01:46:1e:ce:0e:c7:44:8c:23:90: d8:f7:b4:c0:08:e2:79:12:6c:ab:95:b4:c1:f5:dd:e8:88:67: 31:56:bb:cd:c7:06:2d:3d:13:07:8d:b1:40:ae:17:79:66:e5: 93:b1:44:46:69:0a:ee:20:41:5c:97:12:67:de:42:6e:30:d8: d6:11:6c:48:ac:1a:a1:7e:a4:a3:9a:5a:d2:a9:cb:88:78:0b: 36:0a:08:ed -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUc/Ld0IutZVlIVaUTpgoSWgciHNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjZaFw0yNzA0MTIwNzA5MjZaMDMxMTAvBgNV BAMTKDNCNENCNDQ2REIxNTQzRjVCMzJGN0I5QTBGREIxMzc1Q0YxQjg4MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDndJvmu148/tUDbmwHknXZulec 4dB2PgAXpfflF07XZ2XeAV60AVoOFLUQi3ZSbxJmmZGEBVfELv5nJWNJn4k3Sebk TNC/icXMUWZ6mr7XGC3wzyTvpqKdVaVMVBDir3+P4gUpj+aXo8hCxK5KcuDMNP2L 8bON/DeOBixJe5nwraeQTju4NLt1aKOwOR4ZrMzY5qht8M5HxB1/l5S42gEv1srY 29+brrNlHnXjVrsB6wo4OXdQyW93TBQUVY8zrgd8UHawu+E/ghNOUhotCz4ubRwD nWNSDKn1tFqUXNEq0VVqKS5rhMI00iP3Srkw7ItMTWaFgc1kP37bmLpDh4e/AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUO0y0RtsVQ/WzL3uaD9sTdc8biA0wHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzQzMzJlMzIzNTM0 MmUzODM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzkzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEr/lgwDQYJKoZIhvcNAQELBQADggEBAFpZMH2Dqi9+ETw3uhonv4e0t1CRJN20 lBhgM9jZ9WvpoIXvAkj4WVITnAJTZy97YY2mHe2EQ1uT57eWP1Di4TPU+X6olSkw HufA45NiF5hyXMzqKG6YzJ7kle0KwYEfbk6uho2BM7ZgEagp2+b02Tq45Xd6J7W3 sokHt2IZQ1BQWb7U890KOlMXB4+oFjird7nHloXER3WhSsxLdUwYfooTvTe8l5eD gRb+AUYezg7HRIwjkNj3tMAI4nkSbKuVtMH13eiIZzFWu83HBi09EweNsUCuF3lm 5ZOxREZpCu4gQVyXEmfeQm4w2NYRbEisGqF+pKOaWtKpy4h4CzYKCO0= -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:02 2026 by rpki-client