$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133322e302f32342d3234203d3e20313531333032.roa File: 34332e3234382e3133322e302f32342d3234203d3e20313531333032.roa (raw, json) Hash identifier: Z11St3BiD+t7jH1l4MU7O9YJPkxobzgPSQcFOiY3fNg= Subject key identifier: F7:F9:05:6B:21:1B:2A:6A:DB:8F:49:F3:5B:41:25:ED:6D:D6:0E:45 Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 01B4EE8BB4B726405E4BA1D1E4BA5D7107011320 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133322e302f32342d3234203d3e20313531333032.roa Signing time: Mon 20 Apr 2026 08:17:19 +0000 ROA not before: Mon 20 Apr 2026 08:12:19 +0000 ROA not after: Mon 19 Apr 2027 08:17:19 +0000 asID: 151302 IP address blocks: 43.248.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b4:ee:8b:b4:b7:26:40:5e:4b:a1:d1:e4:ba:5d:71:07:01:13:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 08:12:19 2026 GMT Not After : Apr 19 08:17:19 2027 GMT Subject: CN=F7F9056B211B2A6ADB8F49F35B4125ED6DD60E45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f9:8e:01:46:0d:8a:ee:0a:26:ef:ad:6d:f4: 6c:95:14:73:3e:3b:9e:7f:62:e7:8a:5f:90:78:67: b0:f9:2f:81:8f:68:1c:ed:f9:08:4e:0a:bf:99:ce: be:62:e0:c6:e7:e3:4b:f2:f2:b7:17:0c:06:d3:93: e2:fc:ac:ec:66:3d:ea:54:4f:4f:74:40:c2:54:27: 22:c6:71:bc:32:59:0d:a5:ba:a3:54:d9:31:64:b2: b9:55:99:89:15:7c:e1:2a:8c:e9:63:7e:bf:59:74: 12:c9:d4:5f:95:75:1d:fd:48:b1:cf:36:37:8b:19: 9d:ae:e8:00:2c:1b:14:c6:9d:ec:e3:87:1c:e4:e3: df:23:ee:3a:cc:f6:f4:d8:a2:70:bc:9a:2f:a9:e8: cb:42:53:d8:06:df:31:e4:5f:b1:fc:3d:3c:38:5b: 43:d7:56:d3:69:3d:ed:6c:a8:a9:30:6c:25:a5:e9: 00:0d:cf:b7:ef:46:b2:9f:b1:16:86:69:e8:6a:20: ca:2d:bb:56:27:69:79:f9:1c:6e:95:6b:cc:c0:0f: 5a:8d:39:d6:a8:3a:17:17:40:6f:c8:a0:64:9d:84: 6c:2c:4e:1c:f7:eb:cd:ed:e6:17:a2:5e:c2:1d:da: 5a:1e:0f:6e:83:4f:2d:bc:31:ea:99:91:bf:5c:e1: 09:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F9:05:6B:21:1B:2A:6A:DB:8F:49:F3:5B:41:25:ED:6D:D6:0E:45 X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133322e302f32342d3234203d3e20313531333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.132.0/24 Signature Algorithm: sha256WithRSAEncryption 27:b4:0c:7b:a6:82:e0:cb:bb:1c:7d:ba:3e:84:4a:84:f0:4e: 47:14:32:c7:6c:b6:ae:4e:2d:dd:b8:69:a9:2f:63:09:c7:88: f3:87:95:37:79:44:a4:67:20:fe:80:64:51:6b:a5:4c:5e:d6: cc:b6:c6:9b:12:59:fc:d6:e0:a3:7e:35:bd:5a:40:0b:ca:d3: cb:d9:89:a8:6f:79:69:ba:a0:01:6f:b1:82:8d:9a:51:56:87: 0e:5e:2c:f4:01:90:53:b2:0e:83:f2:3e:c8:e4:2b:40:06:18: c0:dd:b4:2d:c3:85:ad:3b:13:c4:47:1b:67:91:3b:66:7e:c1: aa:5e:06:2b:80:c3:07:f8:f3:40:f6:4d:15:c7:bc:75:6d:75: 95:eb:1e:1e:5a:7f:ae:94:37:d2:e5:f8:59:a3:52:2f:13:3f: 49:fe:5b:d5:00:16:21:c3:35:29:b7:1e:50:ba:a8:a7:53:98: 75:a2:b2:d3:40:b4:fa:60:c1:ac:42:09:11:a8:ae:57:7a:4a: b8:e8:ce:3c:61:e0:b3:d6:fa:26:ef:60:9b:1c:41:7a:f3:55: 33:53:fd:2b:a8:46:93:4d:7c:de:71:04:24:d6:73:36:28:af: d2:4d:87:17:d5:24:33:26:2d:58:d2:41:98:6a:4b:c7:ad:05: 5a:fd:d3:68 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUAbTui7S3JkBeS6HR5LpdcQcBEyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwODEyMTlaFw0yNzA0MTkwODE3MTlaMDMxMTAvBgNV BAMTKEY3RjkwNTZCMjExQjJBNkFEQjhGNDlGMzVCNDEyNUVENkRENjBFNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo+Y4BRg2K7gom761t9GyVFHM+ O55/YueKX5B4Z7D5L4GPaBzt+QhOCr+Zzr5i4Mbn40vy8rcXDAbTk+L8rOxmPepU T090QMJUJyLGcbwyWQ2luqNU2TFksrlVmYkVfOEqjOljfr9ZdBLJ1F+VdR39SLHP NjeLGZ2u6AAsGxTGnezjhxzk498j7jrM9vTYonC8mi+p6MtCU9gG3zHkX7H8PTw4 W0PXVtNpPe1sqKkwbCWl6QANz7fvRrKfsRaGaehqIMotu1YnaXn5HG6Va8zAD1qN OdaoOhcXQG/IoGSdhGwsThz3683t5heiXsId2loeD26DTy28MeqZkb9c4QnbAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU9/kFayEbKmrbj0nzW0El7W3WDkUwHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0MzM3ODk3ODY3NTA5NzcvMC8zNDMzMmUzMjM0 MzgyZTMxMzMzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv4hDANBgkqhkiG9w0BAQsFAAOCAQEAJ7QMe6aC4Mu7HH26PoRK hPBORxQyx2y2rk4t3bhpqS9jCceI84eVN3lEpGcg/oBkUWulTF7WzLbGmxJZ/Nbg o341vVpAC8rTy9mJqG95abqgAW+xgo2aUVaHDl4s9AGQU7IOg/I+yOQrQAYYwN20 LcOFrTsTxEcbZ5E7Zn7Bql4GK4DDB/jzQPZNFce8dW11leseHlp/rpQ30uX4WaNS LxM/Sf5b1QAWIcM1KbceULqop1OYdaKy00C0+mDBrEIJEaiuV3pKuOjOPGHgs9b6 Ju9gmxxBevNVM1P9K6hGk0183nEEJNZzNiiv0k2HF9UkMyYtWNJBmGpLx60FWv3T aA== -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:09 2026 by rpki-client