$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3132382e302f32302d3234203d3e203233363530.roa File: 34332e3234382e3132382e302f32302d3234203d3e203233363530.roa (raw, json) Hash identifier: KARxv6ejz/DxVf/yeh49QE+JXnDBUPjqfdKmZ98wmls= Subject key identifier: 64:DC:1A:90:B6:63:DC:9D:C3:F9:E8:F9:71:04:0B:DC:71:EE:EF:E2 Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 5C3360935CD308F3C63D247E7165CE862525E895 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3132382e302f32302d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 05:46:15 +0000 ROA not before: Mon 20 Apr 2026 05:41:15 +0000 ROA not after: Mon 19 Apr 2027 05:46:15 +0000 asID: 23650 IP address blocks: 43.248.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:33:60:93:5c:d3:08:f3:c6:3d:24:7e:71:65:ce:86:25:25:e8:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:41:15 2026 GMT Not After : Apr 19 05:46:15 2027 GMT Subject: CN=64DC1A90B663DC9DC3F9E8F971040BDC71EEEFE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:40:56:bc:5a:e7:55:e1:1d:b9:88:93:e6:cb: eb:cb:8e:f2:41:03:5b:62:d9:e4:fc:b2:db:80:a6: da:87:e5:57:14:b5:84:b2:3c:e1:d4:21:84:60:c0: cd:c3:89:78:fd:70:03:03:39:54:b0:94:7e:40:8d: 0e:2c:e0:11:16:d6:ca:3b:a5:de:a5:5f:37:8b:1b: ef:6f:a5:4c:b7:84:80:c9:cb:b3:75:76:b0:30:84: f5:3f:58:f7:5e:de:d8:03:f0:5c:d7:a0:70:fa:f7: 0b:0c:d9:00:83:b1:10:33:d4:bd:1b:45:a9:1a:69: 20:19:51:19:71:da:2d:19:60:42:93:0c:79:b7:e0: fe:e5:f8:df:6f:91:82:d1:73:5a:a3:7a:58:0f:e4: c5:fc:91:9b:69:f9:31:f1:25:d4:a5:3f:82:70:95: 9d:69:94:32:f2:35:c6:50:f0:21:da:74:3b:d6:59: 15:6e:42:97:13:ad:8b:fd:37:b0:95:49:64:1e:77: 6e:76:69:56:53:51:d6:11:0c:fa:21:eb:b0:c6:ae: 2b:41:86:ed:2b:3c:a8:b2:f5:9e:a6:83:47:54:9e: 03:e3:e1:d6:ea:e6:92:e9:74:5f:be:e2:23:55:f0: 4e:4f:3c:0b:78:68:03:a3:e1:f7:e7:57:b6:ae:db: 90:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DC:1A:90:B6:63:DC:9D:C3:F9:E8:F9:71:04:0B:DC:71:EE:EF:E2 X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3132382e302f32302d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.128.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:93:26:96:04:97:8e:36:91:e7:2e:f7:ec:be:a1:c2:6b:47: b3:3d:c6:77:98:39:66:1d:ba:9f:3b:1f:fe:69:9a:9c:4c:e1: 5a:ba:e8:94:53:1d:dc:88:d2:8e:44:d5:e1:f0:9f:3b:42:69: 49:fe:35:9f:63:fc:35:38:50:56:34:24:b4:f4:a3:56:d8:b6: 35:23:88:9f:cf:8c:4d:a7:f9:5d:ba:0b:8f:db:3d:87:f7:08: 04:37:7a:fe:60:38:a2:b7:04:e9:b8:5f:2f:61:29:3d:58:a5: 69:33:27:2c:c3:94:40:94:7d:88:69:11:60:ac:b6:e5:d7:b5: b2:b3:06:a2:47:1d:79:00:be:72:01:5e:ea:be:6a:94:dc:21: b2:65:4c:1f:70:4b:03:20:20:3d:1c:0f:d5:a9:35:46:1b:ae: 3c:16:e2:3f:d9:a4:f0:d0:21:6f:e9:0c:48:fc:f8:09:de:a1: f7:37:da:dd:01:c9:0b:c2:d5:cf:3d:71:c3:83:67:05:b9:3d: 3b:66:f9:b2:14:f9:2d:ee:12:46:a7:16:26:2b:c6:d2:e4:f0: 78:d1:b0:4c:e3:0c:0a:49:ee:7e:e4:e7:5d:30:bd:ab:71:0c: f0:91:89:78:b7:bf:6c:59:59:c5:63:a4:28:20:9d:b4:a2:f7: d4:eb:7c:91 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUXDNgk1zTCPPGPSR+cWXOhiUl6JUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTQxMTVaFw0yNzA0MTkwNTQ2MTVaMDMxMTAvBgNV BAMTKDY0REMxQTkwQjY2M0RDOURDM0Y5RThGOTcxMDQwQkRDNzFFRUVGRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnQFa8WudV4R25iJPmy+vLjvJB A1ti2eT8stuAptqH5VcUtYSyPOHUIYRgwM3DiXj9cAMDOVSwlH5AjQ4s4BEW1so7 pd6lXzeLG+9vpUy3hIDJy7N1drAwhPU/WPde3tgD8FzXoHD69wsM2QCDsRAz1L0b RakaaSAZURlx2i0ZYEKTDHm34P7l+N9vkYLRc1qjelgP5MX8kZtp+THxJdSlP4Jw lZ1plDLyNcZQ8CHadDvWWRVuQpcTrYv9N7CVSWQed252aVZTUdYRDPoh67DGritB hu0rPKiy9Z6mg0dUngPj4dbq5pLpdF++4iNV8E5PPAt4aAOj4ffnV7au25BzAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUZNwakLZj3J3D+ej5cQQL3HHu7+IwHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzQzMzc4OTc4Njc1MDk3Ny8wLzM0MzMyZTMyMzQz ODJlMzEzMjM4MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBCv4gDANBgkqhkiG9w0BAQsFAAOCAQEAL5MmlgSXjjaR5y737L6hwmtH sz3Gd5g5Zh26nzsf/mmanEzhWrrolFMd3IjSjkTV4fCfO0JpSf41n2P8NThQVjQk tPSjVti2NSOIn8+MTaf5XboLj9s9h/cIBDd6/mA4orcE6bhfL2EpPVilaTMnLMOU QJR9iGkRYKy25de1srMGokcdeQC+cgFe6r5qlNwhsmVMH3BLAyAgPRwP1ak1Rhuu PBbiP9mk8NAhb+kMSPz4Cd6h9zfa3QHJC8LVzz1xw4NnBbk9O2b5shT5Le4SRqcW JivG0uTweNGwTOMMCknufuTnXTC9q3EM8JGJeLe/bFlZxWOkKCCdtKL31Ot8kQ== -----END CERTIFICATE-----Generated at Wed Apr 22 02:54:48 2026 by rpki-client