$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133352e302f32342d3234203d3e20313531333032.roa File: 34332e3234382e3133352e302f32342d3234203d3e20313531333032.roa (raw, json) Hash identifier: poyvcx+dFWMCEbVQc6Dn/ntIWbTKGttlClAKngfq1+E= Subject key identifier: AA:3C:99:A4:0F:48:43:75:8A:B5:2C:3C:E0:69:3A:51:63:26:F9:1F Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 73BD779BCE9317F6AF9F875AFAAA1876400FE6FA Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133352e302f32342d3234203d3e20313531333032.roa Signing time: Mon 20 Apr 2026 08:17:19 +0000 ROA not before: Mon 20 Apr 2026 08:12:19 +0000 ROA not after: Mon 19 Apr 2027 08:17:19 +0000 asID: 151302 IP address blocks: 43.248.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:bd:77:9b:ce:93:17:f6:af:9f:87:5a:fa:aa:18:76:40:0f:e6:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 08:12:19 2026 GMT Not After : Apr 19 08:17:19 2027 GMT Subject: CN=AA3C99A40F4843758AB52C3CE0693A516326F91F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:96:07:d9:4e:99:85:cb:a7:6d:45:a0:28:24: e7:d8:11:6b:8f:30:c6:89:15:4b:5b:ea:1f:d0:70: 81:1c:7a:d8:12:3c:38:b6:86:2b:8f:a8:e2:86:27: b9:3e:d1:39:57:8a:f7:da:b4:a5:9c:74:39:dc:9e: f5:d1:49:40:b1:71:00:09:fa:59:50:08:b1:7c:44: b1:dc:86:5b:ae:0c:93:19:8b:b3:99:cd:14:23:1c: 81:69:1f:f2:cd:d8:3a:d2:fd:f8:97:70:91:74:6e: 0d:63:13:f5:30:15:33:2e:b0:7e:6d:9b:b2:e0:b4: 11:16:b4:51:41:4c:c0:01:17:ac:46:1e:d0:39:d8: 09:fe:41:9e:4c:95:02:c1:57:a8:5b:85:42:ec:e6: 51:cd:69:0b:c7:4f:d1:7d:14:9f:e2:81:5a:68:9b: ff:4d:aa:8d:e7:d9:28:4a:d7:ad:c0:fa:ee:07:7a: 0e:f5:be:87:b7:17:62:9f:65:8e:ed:b3:41:d2:90: 58:08:10:a6:73:80:58:4d:27:d8:0d:50:c8:7e:e7: 9f:74:3b:23:ed:19:7d:f0:1a:ec:34:45:73:86:3f: 9c:f2:71:70:b4:03:57:63:22:e6:e5:ae:ae:6e:ba: 6a:fc:2c:1e:65:b0:fb:e9:3e:64:cc:b8:12:6d:81: cb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3C:99:A4:0F:48:43:75:8A:B5:2C:3C:E0:69:3A:51:63:26:F9:1F X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133352e302f32342d3234203d3e20313531333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.135.0/24 Signature Algorithm: sha256WithRSAEncryption 15:a5:5d:7d:a1:74:40:f7:b2:c8:3b:0c:ae:7e:a1:c2:c2:5e: d4:7c:65:56:d0:08:58:11:e7:d0:64:29:dd:ef:5f:dc:62:a3: 17:a1:58:ba:90:60:59:d0:f3:ee:c4:1b:09:72:e7:a3:e2:6f: 6b:90:e1:30:41:73:63:1d:7e:c5:ff:87:fc:a1:07:da:f3:41: 8e:25:3e:77:46:ec:d1:71:34:14:08:10:f1:5b:91:b2:51:9b: 0f:ab:0c:f0:47:4b:4a:fb:42:b7:94:51:75:03:7b:c1:ed:46: 80:4d:a3:f8:f0:b0:c0:41:60:db:d6:84:73:8d:20:2e:f9:ed: 2e:67:35:42:87:8b:cf:33:5a:30:42:df:73:cd:94:cd:08:8a: 5a:d7:6f:a0:89:bb:8c:8e:14:c5:1c:85:39:8d:04:ee:98:56: 36:87:cb:81:b2:f3:fe:25:2c:81:b8:9a:92:20:4b:ff:45:00: 74:88:4b:a6:76:bd:09:b5:9a:3b:44:a7:69:ed:5a:d6:e2:ec: 98:86:02:5d:96:d3:73:36:a6:37:c0:10:ed:bf:25:8c:95:bb: 42:81:df:37:71:13:ac:b5:e6:8c:1f:a6:01:3c:05:c1:9e:be: 29:bc:98:ec:e2:69:18:b1:5f:f4:36:84:0f:79:70:d6:c3:8f: 72:5f:f0:38 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUc713m86TF/avn4da+qoYdkAP5vowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwODEyMTlaFw0yNzA0MTkwODE3MTlaMDMxMTAvBgNV BAMTKEFBM0M5OUE0MEY0ODQzNzU4QUI1MkMzQ0UwNjkzQTUxNjMyNkY5MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVlgfZTpmFy6dtRaAoJOfYEWuP MMaJFUtb6h/QcIEcetgSPDi2hiuPqOKGJ7k+0TlXivfatKWcdDncnvXRSUCxcQAJ +llQCLF8RLHchluuDJMZi7OZzRQjHIFpH/LN2DrS/fiXcJF0bg1jE/UwFTMusH5t m7LgtBEWtFFBTMABF6xGHtA52An+QZ5MlQLBV6hbhULs5lHNaQvHT9F9FJ/igVpo m/9Nqo3n2ShK163A+u4Heg71voe3F2KfZY7ts0HSkFgIEKZzgFhNJ9gNUMh+5590 OyPtGX3wGuw0RXOGP5zycXC0A1djIublrq5uumr8LB5lsPvpPmTMuBJtgcuRAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUqjyZpA9IQ3WKtSw84Gk6UWMm+R8wHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0MzM3ODk3ODY3NTA5NzcvMC8zNDMzMmUzMjM0 MzgyZTMxMzMzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv4hzANBgkqhkiG9w0BAQsFAAOCAQEAFaVdfaF0QPeyyDsMrn6h wsJe1HxlVtAIWBHn0GQp3e9f3GKjF6FYupBgWdDz7sQbCXLno+Jva5DhMEFzYx1+ xf+H/KEH2vNBjiU+d0bs0XE0FAgQ8VuRslGbD6sM8EdLSvtCt5RRdQN7we1GgE2j +PCwwEFg29aEc40gLvntLmc1QoeLzzNaMELfc82UzQiKWtdvoIm7jI4UxRyFOY0E 7phWNofLgbLz/iUsgbiakiBL/0UAdIhLpna9CbWaO0Snae1a1uLsmIYCXZbTczam N8AQ7b8ljJW7QoHfN3ETrLXmjB+mATwFwZ6+KbyY7OJpGLFf9DaED3lw1sOPcl/w OA== -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:09 2026 by rpki-client