$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3130312e302f32342d3234203d3e20313531333032.roa File: 34332e3234382e3130312e302f32342d3234203d3e20313531333032.roa (raw, json) Hash identifier: pTxdoHYTL3E6emGvaRmXjOZ9k4V8WfvYOQrjeGFQeCw= Subject key identifier: 07:76:F2:EF:1C:D0:94:7A:F6:30:B0:2F:58:06:2A:96:0F:D6:E0:3E Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 48A77BAB3727FCB5626A9E8AAD42E6BD9F6AF19F Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3130312e302f32342d3234203d3e20313531333032.roa Signing time: Mon 20 Apr 2026 08:17:19 +0000 ROA not before: Mon 20 Apr 2026 08:12:19 +0000 ROA not after: Mon 19 Apr 2027 08:17:19 +0000 asID: 151302 IP address blocks: 43.248.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a7:7b:ab:37:27:fc:b5:62:6a:9e:8a:ad:42:e6:bd:9f:6a:f1:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 08:12:19 2026 GMT Not After : Apr 19 08:17:19 2027 GMT Subject: CN=0776F2EF1CD0947AF630B02F58062A960FD6E03E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ef:50:80:58:fe:87:e0:92:b7:cc:dc:54:b8: 85:1c:6f:47:c7:88:3b:88:4f:84:4a:7b:ea:49:8c: 51:83:a7:b8:31:dd:18:6c:59:06:cd:60:28:bc:24: 6a:e0:ab:86:5d:b4:3e:5f:68:f0:32:7a:7d:67:00: 3b:85:65:61:aa:b7:8a:15:f5:c1:6d:c9:1e:1b:ac: 85:3a:6c:4e:18:27:a1:3b:13:8c:31:a0:a3:df:b2: 74:85:d2:98:f4:ad:07:85:f7:b3:7b:cf:44:0b:e4: 97:42:2c:0a:b3:8d:9c:69:55:0f:fd:6d:2b:f7:0b: e7:8a:93:2f:13:23:58:a1:88:b6:bd:12:fa:c1:0c: 37:a0:9e:ea:b7:3b:c5:08:d3:11:d7:07:85:c8:a1: 1b:bf:ac:04:4d:f8:6f:31:68:43:59:5c:02:2e:5f: e0:e8:d4:c4:b4:11:ca:92:7f:1a:ae:24:60:6b:23: 2f:cb:f1:e6:5c:34:60:8e:17:d9:7b:1f:2b:fa:b8: 7f:a3:6f:72:f6:0b:b5:7d:aa:e5:d1:00:06:91:f4: 76:f4:37:99:83:57:ca:10:25:aa:91:7b:da:f2:af: 0e:f3:66:e1:a8:f0:b1:52:53:7b:6c:ca:23:4c:7a: 8b:07:20:84:21:99:e0:5d:22:98:d9:5a:a9:c8:41: 46:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:76:F2:EF:1C:D0:94:7A:F6:30:B0:2F:58:06:2A:96:0F:D6:E0:3E X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3130312e302f32342d3234203d3e20313531333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.101.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:2f:06:22:40:73:f2:8c:a0:87:d4:ef:26:06:21:20:73:40: 86:2d:df:3b:5b:a8:17:b7:99:bd:24:2d:37:aa:28:4b:89:78: bd:eb:c5:60:7a:c2:03:f5:8d:25:73:cb:79:e9:fe:ad:a2:a2: c0:0e:88:ca:69:86:94:c2:47:70:b1:16:1d:98:7c:1e:fd:bf: 90:48:5f:31:67:5d:55:d3:1e:9d:a6:43:8f:8c:ed:dc:c9:76: cd:05:d4:b0:4c:14:8a:20:d4:af:01:32:d6:27:3d:f6:63:b1: 02:3f:e4:ed:31:5f:2a:63:7c:54:f5:5d:5f:cc:4e:cb:6b:91: 2b:5a:69:0e:31:35:97:4c:75:9b:01:fc:16:d2:bb:e4:6e:7b: 35:66:f0:9b:b7:0e:4f:80:26:69:72:88:10:af:e3:cc:36:03: ff:2b:09:10:e7:f4:b8:83:a9:64:01:55:3b:9a:1c:81:df:89: c9:6f:fb:57:8a:9f:33:25:76:43:5c:e4:53:af:02:7c:76:ad: 97:99:31:3d:43:51:78:bc:3d:9e:33:05:0c:54:4b:4e:37:ce: 12:01:fe:5a:f9:7b:73:35:02:1b:1b:7a:1e:66:54:ef:14:ea: 99:e8:f2:3e:8a:ae:62:4d:4b:a9:c6:9a:3f:8c:97:d1:81:c1: 58:9c:21:de -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUSKd7qzcn/LViap6KrULmvZ9q8Z8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwODEyMTlaFw0yNzA0MTkwODE3MTlaMDMxMTAvBgNV BAMTKDA3NzZGMkVGMUNEMDk0N0FGNjMwQjAyRjU4MDYyQTk2MEZENkUwM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc71CAWP6H4JK3zNxUuIUcb0fH iDuIT4RKe+pJjFGDp7gx3RhsWQbNYCi8JGrgq4ZdtD5faPAyen1nADuFZWGqt4oV 9cFtyR4brIU6bE4YJ6E7E4wxoKPfsnSF0pj0rQeF97N7z0QL5JdCLAqzjZxpVQ/9 bSv3C+eKky8TI1ihiLa9EvrBDDegnuq3O8UI0xHXB4XIoRu/rARN+G8xaENZXAIu X+Do1MS0EcqSfxquJGBrIy/L8eZcNGCOF9l7Hyv6uH+jb3L2C7V9quXRAAaR9Hb0 N5mDV8oQJaqRe9ryrw7zZuGo8LFSU3tsyiNMeosHIIQhmeBdIpjZWqnIQUbdAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUB3by7xzQlHr2MLAvWAYqlg/W4D4wHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0MzM3ODk3ODY3NTA5NzcvMC8zNDMzMmUzMjM0 MzgyZTMxMzAzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv4ZTANBgkqhkiG9w0BAQsFAAOCAQEAjC8GIkBz8oygh9TvJgYh IHNAhi3fO1uoF7eZvSQtN6ooS4l4vevFYHrCA/WNJXPLeen+raKiwA6IymmGlMJH cLEWHZh8Hv2/kEhfMWddVdMenaZDj4zt3Ml2zQXUsEwUiiDUrwEy1ic99mOxAj/k 7TFfKmN8VPVdX8xOy2uRK1ppDjE1l0x1mwH8FtK75G57NWbwm7cOT4AmaXKIEK/j zDYD/ysJEOf0uIOpZAFVO5ocgd+JyW/7V4qfMyV2Q1zkU68CfHatl5kxPUNReLw9 njMFDFRLTjfOEgH+Wvl7czUCGxt6HmZU7xTqmejyPoquYk1LqcaaP4yX0YHBWJwh 3g== -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:08 2026 by rpki-client