$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e20313331343833.roa File: 34332e3234382e3131362e302f32322d3234203d3e20313331343833.roa (raw, json) Hash identifier: NtH4C5qyOKGfE4eGCEl2HgmXVUp6oHMUA11/6yN52ow= Subject key identifier: 2F:29:56:29:63:B7:E3:35:83:B9:B8:42:E1:EC:B6:5B:17:AC:2B:7E Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 149EF2A14D09A2F3460798C82E9CBE37059A2571 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 05:49:16 +0000 ROA not before: Mon 20 Apr 2026 05:44:16 +0000 ROA not after: Mon 19 Apr 2027 05:49:16 +0000 asID: 131483 IP address blocks: 43.248.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:9e:f2:a1:4d:09:a2:f3:46:07:98:c8:2e:9c:be:37:05:9a:25:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:44:16 2026 GMT Not After : Apr 19 05:49:16 2027 GMT Subject: CN=2F29562963B7E33583B9B842E1ECB65B17AC2B7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:74:00:75:af:bc:21:da:45:92:25:59:99:bb: fd:ed:dc:b5:04:c1:74:ec:bd:f8:15:56:67:3a:d3: 40:45:b9:fa:78:52:ac:62:b6:c3:7f:59:dd:bc:88: e4:03:1c:75:23:7e:c1:3a:d2:ba:71:5a:db:21:66: b3:cf:47:3c:73:7d:ac:ab:89:78:27:0f:9c:28:05: 52:76:30:4e:a2:d6:66:4f:a2:c8:20:d5:8c:d1:02: 8b:11:c3:c8:bd:41:8b:30:3d:11:93:bb:70:8f:4e: 3b:9d:f6:77:9f:71:76:1a:9e:b6:b9:ae:37:71:11: 78:19:01:2e:da:0c:9e:11:76:2c:97:5f:c5:9d:20: 47:8a:f7:d1:00:31:2a:c6:20:f3:91:5d:00:6f:29: 0a:86:9c:98:a1:11:ad:d9:9e:f7:9b:c9:a7:92:b5: 42:54:e2:1e:79:71:96:91:12:65:87:bc:46:ae:7b: 18:ea:ad:c8:54:bb:3b:4f:c0:9b:c1:5c:b7:01:74: 1e:1a:53:d8:ae:1f:11:40:85:85:10:b7:5d:71:54: fb:ab:7c:d2:a1:af:36:2f:7a:10:26:11:7f:cb:95: 1c:05:99:a9:44:1d:22:38:49:2a:03:95:50:5e:20: 6c:2c:19:b3:1f:5b:8d:da:17:5c:55:24:d2:27:50: 3e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:29:56:29:63:B7:E3:35:83:B9:B8:42:E1:EC:B6:5B:17:AC:2B:7E X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.116.0/22 Signature Algorithm: sha256WithRSAEncryption 22:15:20:06:40:25:3a:6e:3a:51:a5:f0:8e:c7:73:f1:3c:7f: 2e:7f:39:b1:2f:bf:8d:1b:d7:e9:ea:ec:90:91:98:d2:1e:fb: 76:b9:ef:d9:df:ee:69:04:f3:1a:dc:a6:ac:48:7a:d6:c1:9a: 50:37:18:c4:81:6c:16:15:73:f1:44:08:f8:1a:ef:68:25:71: 1e:56:3d:e8:30:2b:b2:fa:35:f2:c0:90:1c:a6:fa:94:98:4f: 80:37:90:54:09:01:d5:bf:d5:5d:65:6c:79:e0:d1:cb:5e:c3: 73:30:8a:f6:52:a3:e5:f0:2c:85:7a:df:5e:cb:1e:74:e4:29: 1e:6a:2d:34:c9:a0:87:30:bb:cb:66:99:8e:8e:26:54:92:ce: 83:c6:68:bd:2f:1c:67:37:33:0f:13:a1:65:47:3b:39:b1:92: a0:82:51:38:f4:6a:56:7f:46:64:4c:f4:a5:bf:c3:77:f2:d7: 1b:6a:e0:ee:40:87:e8:17:ed:33:ab:3d:12:ae:90:38:ef:54: 0d:c7:44:21:dd:9e:72:46:11:33:29:2a:5e:bb:c2:96:29:7e: 0e:30:b0:6d:f5:72:cc:f2:ed:03:32:e7:9e:e3:34:2a:35:6d: 74:4e:8e:13:8a:38:2f:ae:ae:44:eb:7e:e5:6d:e7:88:ee:32: fe:da:60:0f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFJ7yoU0JovNGB5jILpy+NwWaJXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTQ0MTZaFw0yNzA0MTkwNTQ5MTZaMDMxMTAvBgNV BAMTKDJGMjk1NjI5NjNCN0UzMzU4M0I5Qjg0MkUxRUNCNjVCMTdBQzJCN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRdAB1r7wh2kWSJVmZu/3t3LUE wXTsvfgVVmc600BFufp4UqxitsN/Wd28iOQDHHUjfsE60rpxWtshZrPPRzxzfayr iXgnD5woBVJ2ME6i1mZPosgg1YzRAosRw8i9QYswPRGTu3CPTjud9nefcXYanra5 rjdxEXgZAS7aDJ4RdiyXX8WdIEeK99EAMSrGIPORXQBvKQqGnJihEa3ZnvebyaeS tUJU4h55cZaREmWHvEauexjqrchUuztPwJvBXLcBdB4aU9iuHxFAhYUQt11xVPur fNKhrzYvehAmEX/LlRwFmalEHSI4SSoDlVBeIGwsGbMfW43aF1xVJNInUD4dAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQULylWKWO34zWDubhC4ey2WxesK34wHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0MzM3ODk3ODY3NTA5NzcvMC8zNDMzMmUzMjM0 MzgyZTMxMzEzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAiv4dDANBgkqhkiG9w0BAQsFAAOCAQEAIhUgBkAlOm46UaXwjsdz 8Tx/Ln85sS+/jRvX6erskJGY0h77drnv2d/uaQTzGtymrEh61sGaUDcYxIFsFhVz 8UQI+BrvaCVxHlY96DArsvo18sCQHKb6lJhPgDeQVAkB1b/VXWVseeDRy17DczCK 9lKj5fAshXrfXssedOQpHmotNMmghzC7y2aZjo4mVJLOg8ZovS8cZzczDxOhZUc7 ObGSoIJROPRqVn9GZEz0pb/Dd/LXG2rg7kCH6BftM6s9Eq6QOO9UDcdEId2eckYR MykqXrvClil+DjCwbfVyzPLtAzLnnuM0KjVtdE6OE4o4L66uROt+5W3niO4y/tpg Dw== -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:09 2026 by rpki-client