$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3132382e302f32302d3234203d3e203536303436.roa File: 34332e3234382e3132382e302f32302d3234203d3e203536303436.roa (raw, json) Hash identifier: OnIWIXz5aXPXFdzyH2ENcA4sZCDE/160wY4iJXjRfrA= Subject key identifier: 43:B1:C5:DA:F0:58:D1:2D:8B:3B:16:06:AD:F0:6B:22:13:C8:FE:5F Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 7D7A86797537C923E8B178FAD901B2C0E93F3B02 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3132382e302f32302d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 05:46:15 +0000 ROA not before: Mon 20 Apr 2026 05:41:15 +0000 ROA not after: Mon 19 Apr 2027 05:46:15 +0000 asID: 56046 IP address blocks: 43.248.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:7a:86:79:75:37:c9:23:e8:b1:78:fa:d9:01:b2:c0:e9:3f:3b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:41:15 2026 GMT Not After : Apr 19 05:46:15 2027 GMT Subject: CN=43B1C5DAF058D12D8B3B1606ADF06B2213C8FE5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6f:fc:ae:99:7a:97:42:7a:2a:fb:01:e4:b7: 5d:a8:64:07:6b:31:d4:2c:f0:b8:c5:a2:fd:ed:2e: d8:6a:b5:e1:2e:3c:f3:8f:4e:58:51:52:d5:2a:42: d2:e5:b7:30:4b:25:24:7c:53:02:05:68:58:a9:e3: e4:d6:77:27:9f:1d:83:a6:50:91:da:cf:61:23:5e: 5a:7a:07:7a:1c:5a:de:6f:76:c4:88:8a:34:b6:fe: 5f:b2:e5:63:a5:73:69:5a:9b:69:80:29:d0:bc:e3: 0e:73:44:be:f4:0f:a9:f0:36:78:a3:09:34:f8:8d: db:5b:a3:0e:5f:50:2d:8d:b4:54:ba:d1:76:20:9e: c3:14:47:ab:44:da:b1:f5:ee:a0:f5:5d:59:de:dc: 48:42:92:2b:29:64:07:15:f6:4b:2b:73:85:97:38: f3:9b:b3:5d:4e:fa:b8:b3:7f:71:86:9c:74:38:cc: 24:f1:a2:e2:20:72:db:cb:e0:88:df:d2:5f:fe:e1: 7c:62:a3:d2:69:f7:6e:50:14:fd:54:28:fb:4a:ae: 3a:07:86:f5:1a:26:61:02:cf:5a:77:50:47:d9:fe: cd:83:34:c9:50:d8:b5:70:1a:86:46:55:93:ea:c2: 81:fc:e4:c6:12:04:3c:5b:9a:01:3f:e3:e0:ed:b2: 08:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B1:C5:DA:F0:58:D1:2D:8B:3B:16:06:AD:F0:6B:22:13:C8:FE:5F X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3132382e302f32302d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.128.0/20 Signature Algorithm: sha256WithRSAEncryption 0a:d3:03:87:c8:ab:55:b5:9e:f9:56:33:d8:71:4e:48:bf:a0: a7:7e:17:d9:a7:50:79:89:e4:a1:4a:32:4e:7a:17:95:ca:a2: 7c:af:a4:d9:97:91:d2:9e:a1:4b:cc:45:16:fb:19:8c:60:c3: d9:9a:76:26:6b:24:a7:55:2b:4d:21:01:2c:98:ff:90:4e:f5: 50:65:a8:4e:eb:86:19:49:7d:e7:b7:f2:bd:04:0c:d5:01:2c: d4:ca:8b:06:cc:cc:ee:1a:c2:0c:b6:e4:99:a4:34:83:0b:b4: 7a:24:54:8a:45:bc:60:37:68:c3:e1:c6:15:e8:5f:4c:bb:82: ab:28:50:fa:54:fc:6c:4d:bb:63:6d:8d:5c:47:57:dd:30:b9: 63:1c:db:8c:af:a1:40:33:c4:98:3a:b6:10:ad:3d:a3:e7:33: d8:ef:58:aa:84:b8:00:df:99:2f:d2:96:82:42:65:90:09:7d: 7b:86:9c:ba:12:17:17:1a:02:87:57:6b:27:5f:4a:45:14:db: a5:ef:c6:06:49:03:af:96:94:3a:d1:e1:d9:ce:98:9b:89:09: b1:c5:d5:a7:e9:b9:f3:8d:2f:64:82:53:44:af:be:bc:17:1b: 9a:19:a4:77:e0:34:b6:10:65:57:0a:c6:9f:d5:e0:ea:75:14: 74:0e:8f:e4 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUfXqGeXU3ySPosXj62QGywOk/OwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTQxMTVaFw0yNzA0MTkwNTQ2MTVaMDMxMTAvBgNV BAMTKDQzQjFDNURBRjA1OEQxMkQ4QjNCMTYwNkFERjA2QjIyMTNDOEZFNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDb/yumXqXQnoq+wHkt12oZAdr MdQs8LjFov3tLthqteEuPPOPTlhRUtUqQtLltzBLJSR8UwIFaFip4+TWdyefHYOm UJHaz2EjXlp6B3ocWt5vdsSIijS2/l+y5WOlc2lam2mAKdC84w5zRL70D6nwNnij CTT4jdtbow5fUC2NtFS60XYgnsMUR6tE2rH17qD1XVne3EhCkispZAcV9ksrc4WX OPObs11O+rizf3GGnHQ4zCTxouIgctvL4Ijf0l/+4Xxio9Jp925QFP1UKPtKrjoH hvUaJmECz1p3UEfZ/s2DNMlQ2LVwGoZGVZPqwoH85MYSBDxbmgE/4+DtsgjVAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUQ7HF2vBY0S2LOxYGrfBrIhPI/l8wHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzQzMzc4OTc4Njc1MDk3Ny8wLzM0MzMyZTMyMzQz ODJlMzEzMjM4MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBCv4gDANBgkqhkiG9w0BAQsFAAOCAQEACtMDh8irVbWe+VYz2HFOSL+g p34X2adQeYnkoUoyTnoXlcqifK+k2ZeR0p6hS8xFFvsZjGDD2Zp2Jmskp1UrTSEB LJj/kE71UGWoTuuGGUl957fyvQQM1QEs1MqLBszM7hrCDLbkmaQ0gwu0eiRUikW8 YDdow+HGFehfTLuCqyhQ+lT8bE27Y22NXEdX3TC5YxzbjK+hQDPEmDq2EK09o+cz 2O9YqoS4AN+ZL9KWgkJlkAl9e4acuhIXFxoCh1drJ19KRRTbpe/GBkkDr5aUOtHh 2c6Ym4kJscXVp+m5840vZIJTRK++vBcbmhmkd+A0thBlVwrGn9Xg6nUUdA6P5A== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:34 2026 by rpki-client