$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e39302e302f32332d3233203d3e2039383038.roa File: 34332e3235342e39302e302f32332d3233203d3e2039383038.roa (raw, json) Hash identifier: FtC/ufRqmdA8cPMrgtcdtT4RS7kAuJrZIkJEJgJXMM8= Subject key identifier: F4:63:EC:F3:FB:23:DA:88:7C:E9:55:E9:54:F7:56:75:17:1F:69:09 Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 4B0D20E9BDA9D0F181D789517D79F1134CB73960 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e39302e302f32332d3233203d3e2039383038.roa Signing time: Mon 13 Apr 2026 07:09:27 +0000 ROA not before: Mon 13 Apr 2026 07:04:27 +0000 ROA not after: Mon 12 Apr 2027 07:09:27 +0000 asID: 9808 IP address blocks: 43.254.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:0d:20:e9:bd:a9:d0:f1:81:d7:89:51:7d:79:f1:13:4c:b7:39:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:04:27 2026 GMT Not After : Apr 12 07:09:27 2027 GMT Subject: CN=F463ECF3FB23DA887CE955E954F75675171F6909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8b:cf:be:96:d4:1e:cd:62:a2:fc:c6:fa:d8: 59:56:66:4f:72:46:6a:35:5c:bd:2c:a6:9e:e4:58: f3:8e:82:6b:30:11:62:67:7e:7b:04:18:38:55:07: 1d:de:43:0b:da:94:11:83:da:27:02:21:40:0d:cd: a1:fd:03:96:65:b3:71:58:ce:cf:03:74:cd:cc:b0: 6e:e9:18:6d:50:33:4b:87:1e:81:01:bd:cc:1d:00: d9:3a:00:dd:52:ee:6d:9e:33:ce:9d:24:63:2a:c0: bf:eb:f3:50:bb:2c:fa:29:c6:a5:99:d8:a0:ed:01: 0e:8c:92:95:78:c3:90:e9:58:23:b7:af:41:5f:6d: e8:95:17:92:03:a6:10:56:e7:80:02:5e:e6:3e:b4: 45:bc:6c:0f:29:66:ed:b4:5d:67:7b:45:b0:5a:33: 7f:97:57:be:5d:7b:05:10:92:7a:4d:a3:90:f6:9f: eb:69:b6:69:41:97:a1:31:e7:a4:c2:72:fa:b2:5b: cb:39:f9:d6:fb:c6:43:5d:e6:b4:da:ee:55:df:a3: bd:ab:d4:4e:4e:4e:85:ac:dd:72:ad:52:b8:1c:a2: 34:63:c5:d8:50:dc:a6:4b:e6:e9:13:82:f1:6b:6c: 99:c6:85:c8:0a:db:5e:7f:68:6b:01:71:f3:83:9e: 59:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:63:EC:F3:FB:23:DA:88:7C:E9:55:E9:54:F7:56:75:17:1F:69:09 X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/34332e3235342e39302e302f32332d3233203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.90.0/23 Signature Algorithm: sha256WithRSAEncryption 00:7e:a2:5d:80:36:75:3b:89:a2:01:aa:67:05:de:e4:41:c1: af:ff:b6:c0:db:39:56:51:93:22:2b:2a:9b:0b:91:54:8e:17: 55:9d:6e:3f:79:cc:a9:c2:f8:ca:19:99:fa:c5:ba:4e:9b:2b: 63:39:a8:09:af:47:0c:d8:bf:00:fb:27:e8:d4:37:33:30:68: 98:fe:fc:5f:26:b7:4b:0e:fc:97:84:ef:40:3d:64:67:d8:da: f4:e8:18:36:3b:9f:04:2d:53:d0:71:12:2f:b0:a8:66:63:c1: 5b:9d:b3:e5:55:df:ca:e0:6c:ce:74:f5:bd:05:88:d4:8b:a0: 32:a8:09:92:b6:ab:f1:a7:c2:63:6b:b7:c5:b4:0e:d6:17:57: 32:50:3e:a9:53:05:18:2b:af:76:92:51:b9:ca:5f:63:38:7b: bf:c4:76:62:40:54:82:c2:52:4c:16:5c:35:30:dd:05:c4:16: f5:a6:29:0a:81:0b:27:52:ca:c1:d2:3f:9a:08:3f:f0:f8:c7: fd:83:92:d0:26:5c:b1:13:61:6c:42:1e:52:00:13:83:08:82: b8:9c:47:35:a7:30:ac:40:d0:46:85:a8:8d:9f:a5:44:aa:22: 24:56:31:fe:ae:cf:d4:87:eb:12:06:5b:02:f8:de:74:6a:d8: 12:b7:83:ed -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUSw0g6b2p0PGB14lRfXnxE0y3OWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA0MjdaFw0yNzA0MTIwNzA5MjdaMDMxMTAvBgNV BAMTKEY0NjNFQ0YzRkIyM0RBODg3Q0U5NTVFOTU0Rjc1Njc1MTcxRjY5MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJi8++ltQezWKi/Mb62FlWZk9y Rmo1XL0spp7kWPOOgmswEWJnfnsEGDhVBx3eQwvalBGD2icCIUANzaH9A5Zls3FY zs8DdM3MsG7pGG1QM0uHHoEBvcwdANk6AN1S7m2eM86dJGMqwL/r81C7LPopxqWZ 2KDtAQ6MkpV4w5DpWCO3r0FfbeiVF5IDphBW54ACXuY+tEW8bA8pZu20XWd7RbBa M3+XV75dewUQknpNo5D2n+tptmlBl6Ex56TCcvqyW8s5+db7xkNd5rTa7lXfo72r 1E5OToWs3XKtUrgcojRjxdhQ3KZL5ukTgvFrbJnGhcgK215/aGsBcfODnlnvAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU9GPs8/sj2oh86VXpVPdWdRcfaQkwHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzQzMzJlMzIzNTM0 MmUzOTMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzkzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEr/lowDQYJKoZIhvcNAQELBQADggEBAAB+ol2ANnU7iaIBqmcF3uRBwa//tsDb OVZRkyIrKpsLkVSOF1Wdbj95zKnC+MoZmfrFuk6bK2M5qAmvRwzYvwD7J+jUNzMw aJj+/F8mt0sO/JeE70A9ZGfY2vToGDY7nwQtU9BxEi+wqGZjwVuds+VV38rgbM50 9b0FiNSLoDKoCZK2q/GnwmNrt8W0DtYXVzJQPqlTBRgrr3aSUbnKX2M4e7/EdmJA VILCUkwWXDUw3QXEFvWmKQqBCydSysHSP5oIP/D4x/2DktAmXLETYWxCHlIAE4MI gricRzWnMKxA0EaFqI2fpUSqIiRWMf6uz9SH6xIGWwL43nRq2BK3g+0= -----END CERTIFICATE-----Generated at Mon Apr 13 15:24:02 2026 by rpki-client