$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e203233363530.roa File: 34332e3234382e3131362e302f32322d3234203d3e203233363530.roa (raw, json) Hash identifier: vglH3M0xcxEvSH+h9DlHFW87vk0hGteBC86CggpyUHU= Subject key identifier: 70:66:09:BB:6D:4A:EE:EC:93:4A:76:A8:09:CC:D0:52:32:7D:96:DB Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 4963F698EAAA406E1CDE1A4567968A227B5B72BC Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 05:49:16 +0000 ROA not before: Mon 20 Apr 2026 05:44:16 +0000 ROA not after: Mon 19 Apr 2027 05:49:16 +0000 asID: 23650 IP address blocks: 43.248.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:63:f6:98:ea:aa:40:6e:1c:de:1a:45:67:96:8a:22:7b:5b:72:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:44:16 2026 GMT Not After : Apr 19 05:49:16 2027 GMT Subject: CN=706609BB6D4AEEEC934A76A809CCD052327D96DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:49:b9:f6:da:d2:8d:44:09:a6:5f:7c:8b:cd: 1e:b2:ae:89:65:e6:72:f5:75:f6:0a:5a:06:13:76: 1a:b8:01:1f:3d:68:81:a7:cc:be:9b:3e:de:76:80: 61:60:4f:d2:b8:71:c6:37:ea:4d:f1:99:59:07:79: 5f:94:2c:c6:34:ae:77:cc:0e:84:e3:9b:96:dc:16: 00:42:ae:bd:ef:7c:b4:da:d4:a8:e4:7c:cf:78:2b: 04:38:09:e1:70:61:b2:e6:6e:3e:c9:61:a3:2e:32: 7c:4e:a8:63:52:5f:40:3f:b3:d5:be:b2:75:ed:8d: c6:b1:ff:05:12:fe:dc:94:22:18:27:c2:e1:49:f0: b1:42:a2:b4:d2:f7:61:77:38:e5:cd:7f:b9:20:d3: 34:42:bd:fd:19:8c:8d:4b:81:af:f5:37:87:5b:08: f7:bf:0d:d4:d6:d0:30:48:1d:01:86:c6:47:54:12: e2:f0:10:86:d0:2f:dc:80:85:67:56:08:13:5c:2e: 45:0b:66:85:93:7e:5e:4e:83:f3:e7:ab:17:37:f1: b1:dc:7e:67:3f:9f:21:ff:01:a1:b8:30:6a:96:a6: 6f:d0:6e:2f:0b:af:46:a9:d1:b1:25:57:0b:99:8f: 7b:96:96:a9:33:7b:94:88:db:1d:fd:de:35:07:5b: 42:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:66:09:BB:6D:4A:EE:EC:93:4A:76:A8:09:CC:D0:52:32:7D:96:DB X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.116.0/22 Signature Algorithm: sha256WithRSAEncryption 91:79:07:06:dc:60:60:79:4a:88:e0:8c:a8:7b:b4:5d:d0:fb: 19:cb:80:95:85:0f:99:5e:e0:13:0a:3d:08:d5:64:d4:60:85: fd:02:ac:ca:c5:52:87:73:ff:99:94:ad:f6:a8:79:dc:b7:0f: b2:1e:63:34:16:84:e6:0f:e5:43:17:2f:81:f9:e6:a7:66:0c: 29:53:1b:5e:56:e8:b4:2f:86:21:e2:f8:51:47:30:00:2e:97: 9d:7e:6f:94:12:fc:53:be:e2:c4:1d:74:3c:cf:e4:85:d5:d8: 3e:0c:03:aa:ea:04:01:c3:68:7b:76:72:10:15:16:bd:6e:ba: c2:3d:f5:fb:03:4b:58:51:3d:70:d3:a9:c7:80:da:6c:ad:5d: f5:4d:cb:89:b1:46:4f:c1:60:a1:13:4e:7d:a4:2f:b3:24:56: 4b:e2:90:db:74:31:95:39:07:be:81:49:0a:fd:e3:e5:51:f1: d4:16:11:68:a3:6e:6e:bc:38:bf:de:d1:a8:c6:9f:dc:b5:3f: a7:13:4e:d5:85:6e:e8:80:29:68:fd:31:a1:43:9e:db:95:1f: 6b:fe:76:c3:be:68:5b:cd:fd:d4:30:d3:0e:36:53:ae:07:b1: b8:2f:f6:3b:20:b7:43:3c:4e:56:2c:ea:c6:c1:02:7b:cc:82: cc:c6:cd:1b -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUSWP2mOqqQG4c3hpFZ5aKIntbcrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTQ0MTZaFw0yNzA0MTkwNTQ5MTZaMDMxMTAvBgNV BAMTKDcwNjYwOUJCNkQ0QUVFRUM5MzRBNzZBODA5Q0NEMDUyMzI3RDk2REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSSbn22tKNRAmmX3yLzR6yroll 5nL1dfYKWgYTdhq4AR89aIGnzL6bPt52gGFgT9K4ccY36k3xmVkHeV+ULMY0rnfM DoTjm5bcFgBCrr3vfLTa1KjkfM94KwQ4CeFwYbLmbj7JYaMuMnxOqGNSX0A/s9W+ snXtjcax/wUS/tyUIhgnwuFJ8LFCorTS92F3OOXNf7kg0zRCvf0ZjI1Lga/1N4db CPe/DdTW0DBIHQGGxkdUEuLwEIbQL9yAhWdWCBNcLkULZoWTfl5Og/Pnqxc38bHc fmc/nyH/AaG4MGqWpm/Qbi8Lr0ap0bElVwuZj3uWlqkze5SI2x393jUHW0JJAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUcGYJu21K7uyTSnaoCczQUjJ9ltswHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzQzMzc4OTc4Njc1MDk3Ny8wLzM0MzMyZTMyMzQz ODJlMzEzMTM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv4dDANBgkqhkiG9w0BAQsFAAOCAQEAkXkHBtxgYHlKiOCMqHu0XdD7 GcuAlYUPmV7gEwo9CNVk1GCF/QKsysVSh3P/mZSt9qh53LcPsh5jNBaE5g/lQxcv gfnmp2YMKVMbXlbotC+GIeL4UUcwAC6XnX5vlBL8U77ixB10PM/khdXYPgwDquoE AcNoe3ZyEBUWvW66wj31+wNLWFE9cNOpx4DabK1d9U3LibFGT8FgoRNOfaQvsyRW S+KQ23QxlTkHvoFJCv3j5VHx1BYRaKNubrw4v97RqMaf3LU/pxNO1YVu6IApaP0x oUOe25Ufa/52w75oW8391DDTDjZTrgexuC/2OyC3QzxOVizqxsECe8yCzMbNGw== -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:10 2026 by rpki-client