$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e2034383337.roa File: 34332e3234382e3131362e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: XXYsVjOzfPpzlF1hSAUJUFt6EyaTgHaSRtGNjAVONvY= Subject key identifier: 52:28:E5:CA:A7:07:25:7F:F9:9E:7D:AE:A2:FF:86:A1:6F:F4:FA:1D Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 77F6A155A9EC692D36FCB810CB65374586844E07 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 05:49:16 +0000 ROA not before: Mon 20 Apr 2026 05:44:16 +0000 ROA not after: Mon 19 Apr 2027 05:49:16 +0000 asID: 4837 IP address blocks: 43.248.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f6:a1:55:a9:ec:69:2d:36:fc:b8:10:cb:65:37:45:86:84:4e:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:44:16 2026 GMT Not After : Apr 19 05:49:16 2027 GMT Subject: CN=5228E5CAA707257FF99E7DAEA2FF86A16FF4FA1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:52:65:ac:1d:ae:4c:d6:52:f9:39:ea:82:30: 09:f2:90:9c:72:bd:f4:c0:7f:72:9f:a2:76:95:73: ad:14:fb:ed:03:5d:7f:54:d9:f9:24:90:96:84:f0: 39:96:7e:5c:2e:5b:2e:93:9b:0b:e7:27:55:93:f0: 45:38:b2:0c:f7:67:36:08:e0:59:29:db:12:e5:38: 5e:6a:5b:bb:79:c3:ac:16:9b:40:b7:4f:c6:30:6b: a0:eb:15:bc:d3:fe:b0:bb:29:8b:c6:e6:b9:6c:40: 12:3c:3e:b9:e2:76:4a:39:b7:f3:e4:6c:fa:b9:e9: 40:56:94:18:05:23:ef:d9:0e:53:9c:a4:e9:9c:a4: 67:bd:44:44:ad:16:f0:be:e5:83:fb:2f:31:fe:c4: a7:83:ff:a7:44:c2:44:c7:98:fe:ec:f2:d6:e4:b3: 5b:00:82:5e:ef:7f:ee:f3:f4:9a:ef:80:45:97:84: b2:67:d1:21:65:1c:8a:7e:2b:1b:ea:63:b2:b2:89: d1:48:eb:b0:8f:0f:0d:54:68:dd:60:92:66:77:d2: 69:47:43:b1:9f:70:41:1d:74:14:d1:d8:52:30:81: cf:90:35:80:94:41:19:dc:e2:65:b1:3e:f8:60:06: ee:e5:90:49:2a:f3:73:1a:52:61:f1:ec:d1:5c:74: 22:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:28:E5:CA:A7:07:25:7F:F9:9E:7D:AE:A2:FF:86:A1:6F:F4:FA:1D X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3131362e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.116.0/22 Signature Algorithm: sha256WithRSAEncryption ad:0b:7e:2d:18:03:23:2d:bc:b7:57:f1:6a:19:33:c0:e2:19: 6b:76:c0:a7:db:e4:e7:6e:e5:c2:86:4b:bd:84:9c:3a:75:aa: b0:83:2e:77:94:ab:cb:17:a6:a5:34:7e:a5:ab:b3:45:9c:51: e3:87:61:92:f4:51:6e:be:28:f8:ac:16:0d:51:e3:03:57:8f: 84:1c:b8:fb:19:c7:27:e7:bd:61:a9:e3:2e:bd:c0:c5:6a:b1: a2:bc:67:58:a3:ad:c0:e3:14:20:53:19:35:dc:a6:e0:5a:04: 5d:99:66:54:df:30:7c:57:04:4d:a8:1e:80:5a:ca:f8:b2:2b: 67:6b:e7:5a:a5:13:8f:33:b5:c4:44:80:b1:e3:29:9f:7e:82: cf:0d:bf:47:37:83:45:95:7c:aa:dd:50:32:75:78:bc:2c:64: 59:14:aa:ff:8d:5c:0a:da:7d:63:18:ba:c6:89:31:fa:8d:20: 86:86:6f:e1:98:0e:bb:ca:ed:62:37:cf:33:bb:5f:75:0e:ff: a0:83:95:82:2d:1e:ef:06:80:91:99:51:f2:c1:6d:80:66:05: 9a:57:51:10:60:32:e6:a6:87:d1:f8:33:5e:be:9e:03:c6:3d: ab:fb:1e:13:6d:af:68:13:30:83:db:c3:04:7c:9e:78:3b:91: b3:67:7d:0f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUd/ahVansaS02/LgQy2U3RYaETgcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTQ0MTZaFw0yNzA0MTkwNTQ5MTZaMDMxMTAvBgNV BAMTKDUyMjhFNUNBQTcwNzI1N0ZGOTlFN0RBRUEyRkY4NkExNkZGNEZBMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGUmWsHa5M1lL5OeqCMAnykJxy vfTAf3KfonaVc60U++0DXX9U2fkkkJaE8DmWflwuWy6TmwvnJ1WT8EU4sgz3ZzYI 4Fkp2xLlOF5qW7t5w6wWm0C3T8Ywa6DrFbzT/rC7KYvG5rlsQBI8Prnidko5t/Pk bPq56UBWlBgFI+/ZDlOcpOmcpGe9REStFvC+5YP7LzH+xKeD/6dEwkTHmP7s8tbk s1sAgl7vf+7z9JrvgEWXhLJn0SFlHIp+KxvqY7KyidFI67CPDw1UaN1gkmZ30mlH Q7GfcEEddBTR2FIwgc+QNYCUQRnc4mWxPvhgBu7lkEkq83MaUmHx7NFcdCLjAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUUijlyqcHJX/5nn2uov+GoW/0+h0wHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3NDMzNzg5Nzg2NzUwOTc3LzAvMzQzMzJlMzIzNDM4 MmUzMTMxMzYyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM4MzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv4dDANBgkqhkiG9w0BAQsFAAOCAQEArQt+LRgDIy28t1fxahkzwOIZa3bA p9vk527lwoZLvYScOnWqsIMud5SryxempTR+pauzRZxR44dhkvRRbr4o+KwWDVHj A1ePhBy4+xnHJ+e9YanjLr3AxWqxorxnWKOtwOMUIFMZNdym4FoEXZlmVN8wfFcE TagegFrK+LIrZ2vnWqUTjzO1xESAseMpn36Czw2/RzeDRZV8qt1QMnV4vCxkWRSq /41cCtp9Yxi6xokx+o0ghoZv4ZgOu8rtYjfPM7tfdQ7/oIOVgi0e7waAkZlR8sFt gGYFmldREGAy5qaH0fgzXr6eA8Y9q/seE22vaBMwg9vDBHyeeDuRs2d9Dw== -----END CERTIFICATE-----Generated at Wed Apr 22 02:54:47 2026 by rpki-client