$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133302e302f32342d3234203d3e20313531333032.roa File: 34332e3234382e3133302e302f32342d3234203d3e20313531333032.roa (raw, json) Hash identifier: UByMT9Hh/O3sfYXD6z6x764spWsOdsV3xcxLVvQAC/k= Subject key identifier: FA:25:DD:5E:CF:96:B9:9F:28:C7:4E:56:75:0F:0F:E3:7B:E7:A4:14 Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 4C78BB5E7415D7FFF2ECEC13E485F6841310DD46 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133302e302f32342d3234203d3e20313531333032.roa Signing time: Mon 20 Apr 2026 08:17:19 +0000 ROA not before: Mon 20 Apr 2026 08:12:19 +0000 ROA not after: Mon 19 Apr 2027 08:17:19 +0000 asID: 151302 IP address blocks: 43.248.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:78:bb:5e:74:15:d7:ff:f2:ec:ec:13:e4:85:f6:84:13:10:dd:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 08:12:19 2026 GMT Not After : Apr 19 08:17:19 2027 GMT Subject: CN=FA25DD5ECF96B99F28C74E56750F0FE37BE7A414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ff:33:a1:93:82:56:58:e5:54:e8:1f:6c:d0:51: 08:f2:f6:d3:a3:52:58:1a:34:8e:5e:2f:3b:87:30: b2:8a:1a:45:d7:93:ea:40:85:a6:3b:27:04:7f:a1: d5:ec:aa:39:b4:60:58:2e:84:27:c3:52:23:57:0c: 1f:23:f0:6a:bc:05:d7:b3:48:a5:22:52:44:b3:28: 87:bd:fa:09:b8:03:2d:42:b4:d7:6a:6e:97:1c:d2: 47:d1:95:00:9e:dd:ce:76:31:68:e6:b9:5a:99:96: 73:95:d5:42:20:0c:02:98:ce:fe:80:f1:be:68:02: 04:21:04:6c:46:93:f1:a2:84:b0:d0:e5:7c:1b:4b: 41:14:cb:34:d5:a6:f3:6d:c3:b7:27:35:d8:4d:c2: b1:3b:fc:64:1d:b4:bd:0f:72:ec:96:d7:9f:1c:40: b8:be:f9:e8:6e:a7:9e:75:a0:ac:b6:4a:b3:6c:a8: 06:ec:22:4d:9d:c3:c2:e6:3a:e4:fd:61:d1:0e:52: 91:29:1c:af:2d:18:1b:d6:c9:d5:46:3d:01:b8:08: c2:41:2b:62:40:65:0f:b1:1e:8d:4e:d6:2f:90:af: 9b:75:ef:81:47:0d:d7:6d:f6:87:a7:4c:81:d1:9c: 5f:4b:3e:e5:03:ef:0c:d7:2f:b1:dc:23:5b:f2:b3: 2e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:25:DD:5E:CF:96:B9:9F:28:C7:4E:56:75:0F:0F:E3:7B:E7:A4:14 X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133302e302f32342d3234203d3e20313531333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.130.0/24 Signature Algorithm: sha256WithRSAEncryption a2:2e:67:88:00:8c:25:ef:64:5d:ce:38:39:7e:e0:e5:d2:88: c7:64:0c:ba:23:a9:38:a5:53:00:7c:6a:45:7f:51:cb:b7:fc: 97:58:9b:55:65:c2:c5:83:fb:fa:d6:48:b9:36:0a:fe:bb:aa: b8:2e:91:c9:eb:9f:44:ff:b3:0b:bf:27:2e:60:20:b3:64:93: 53:ab:25:ca:9f:9c:07:1f:0b:84:4d:8b:17:9b:33:9f:c1:6d: 8a:25:bc:15:e5:c5:b0:14:d9:18:81:06:7b:c7:97:49:b4:ba: 84:3e:23:52:70:cd:c7:f4:f5:fb:a8:08:e4:b0:43:5e:24:04: d5:4b:c7:8f:5e:ad:1f:52:32:17:f3:6c:5e:87:f1:95:fe:74: 8c:d9:47:83:23:1e:94:82:8e:6b:36:d9:a0:75:66:91:66:f4: fe:77:80:57:55:49:fc:40:6e:4f:16:aa:16:e5:d3:f3:6b:04: ef:a8:d8:5c:c9:60:82:4d:a8:2a:8c:4d:aa:be:d8:a5:a7:77: 7a:9f:9e:b6:ee:c7:aa:06:bc:fb:19:11:99:0b:a7:13:61:8c: 23:22:92:75:83:4b:8e:e7:a1:35:f1:5b:b4:d0:5c:17:1d:75: 7a:fe:df:56:66:c6:1d:c1:e1:f7:4b:ea:b5:49:30:e4:75:04: 80:0b:18:17 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUTHi7XnQV1//y7OwT5IX2hBMQ3UYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwODEyMTlaFw0yNzA0MTkwODE3MTlaMDMxMTAvBgNV BAMTKEZBMjVERDVFQ0Y5NkI5OUYyOEM3NEU1Njc1MEYwRkUzN0JFN0E0MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD/M6GTglZY5VToH2zQUQjy9tOj UlgaNI5eLzuHMLKKGkXXk+pAhaY7JwR/odXsqjm0YFguhCfDUiNXDB8j8Gq8Bdez SKUiUkSzKIe9+gm4Ay1CtNdqbpcc0kfRlQCe3c52MWjmuVqZlnOV1UIgDAKYzv6A 8b5oAgQhBGxGk/GihLDQ5XwbS0EUyzTVpvNtw7cnNdhNwrE7/GQdtL0PcuyW158c QLi++ehup551oKy2SrNsqAbsIk2dw8LmOuT9YdEOUpEpHK8tGBvWydVGPQG4CMJB K2JAZQ+xHo1O1i+Qr5t174FHDddt9oenTIHRnF9LPuUD7wzXL7HcI1vysy6pAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU+iXdXs+WuZ8ox05WdQ8P43vnpBQwHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0MzM3ODk3ODY3NTA5NzcvMC8zNDMzMmUzMjM0 MzgyZTMxMzMzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv4gjANBgkqhkiG9w0BAQsFAAOCAQEAoi5niACMJe9kXc44OX7g 5dKIx2QMuiOpOKVTAHxqRX9Ry7f8l1ibVWXCxYP7+tZIuTYK/ruquC6RyeufRP+z C78nLmAgs2STU6slyp+cBx8LhE2LF5szn8FtiiW8FeXFsBTZGIEGe8eXSbS6hD4j UnDNx/T1+6gI5LBDXiQE1UvHj16tH1IyF/NsXofxlf50jNlHgyMelIKOazbZoHVm kWb0/neAV1VJ/EBuTxaqFuXT82sE76jYXMlggk2oKoxNqr7Ypad3ep+etu7Hqga8 +xkRmQunE2GMIyKSdYNLjuehNfFbtNBcFx11ev7fVmbGHcHh90vqtUkw5HUEgAsY Fw== -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:09 2026 by rpki-client