$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133372e302f32342d3234203d3e20313531333032.roa File: 34332e3234382e3133372e302f32342d3234203d3e20313531333032.roa (raw, json) Hash identifier: SnAUOFSYu3ns2lNh8+Xxmfj0gmWAuXXcRnixKEha85k= Subject key identifier: F7:E2:E4:B6:F8:5A:74:B6:29:95:D0:4A:CF:FC:B9:89:BE:69:33:0E Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 155B569D478049A470F88D08AEB621574FE61B62 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133372e302f32342d3234203d3e20313531333032.roa Signing time: Mon 20 Apr 2026 08:17:19 +0000 ROA not before: Mon 20 Apr 2026 08:12:19 +0000 ROA not after: Mon 19 Apr 2027 08:17:19 +0000 asID: 151302 IP address blocks: 43.248.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:5b:56:9d:47:80:49:a4:70:f8:8d:08:ae:b6:21:57:4f:e6:1b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 08:12:19 2026 GMT Not After : Apr 19 08:17:19 2027 GMT Subject: CN=F7E2E4B6F85A74B62995D04ACFFCB989BE69330E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:67:34:bf:da:46:2c:a3:29:ec:8e:e5:4d:6c: d8:31:2d:a2:e8:85:52:42:c6:eb:c9:3c:fe:eb:f8: 1c:ba:06:06:0f:2b:d6:ff:68:e5:7f:74:28:c1:a3: 2c:62:e4:71:ff:b5:86:31:f6:75:24:21:b8:7e:a4: 52:3e:c2:79:8d:a4:90:a8:59:97:c1:4b:b5:13:4b: e5:79:1e:d1:ff:5d:94:a6:f0:18:39:16:3a:49:1c: 17:f8:72:db:c2:11:09:9e:c0:4b:d5:1d:9b:51:95: d2:cc:fb:c5:c4:87:4f:52:4b:3a:97:1d:5d:43:d0: 1e:bd:56:35:c2:be:08:9f:1b:6d:b8:e0:c6:e7:9d: 88:56:f0:22:0b:03:76:cb:b6:0c:df:d4:2b:16:bb: 3d:01:93:3d:d1:49:0e:ae:93:48:c7:de:89:5d:95: ca:7b:cd:45:a1:ef:68:d0:d7:ca:0a:18:b8:ba:b8: 87:b5:b4:a8:8c:e2:3f:55:80:8b:2e:f0:37:97:fb: 47:74:4a:e9:f7:a5:f7:ae:c5:e0:36:c9:68:c1:b9: da:20:44:d6:45:07:d3:06:a1:30:38:bb:8a:3d:e5: 89:a2:17:22:d9:03:8c:3f:11:87:30:a7:f0:52:f0: 6a:87:ad:8e:f6:4a:b5:e5:2d:50:7d:76:45:c3:7b: ac:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E2:E4:B6:F8:5A:74:B6:29:95:D0:4A:CF:FC:B9:89:BE:69:33:0E X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e3133372e302f32342d3234203d3e20313531333032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.137.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:50:22:44:2c:7d:a5:d5:df:a2:90:e8:88:bc:d4:e7:b2:e0: 60:30:7e:be:41:3e:25:5a:f1:ee:24:d0:b6:4a:35:0a:5f:07: eb:88:77:d8:3c:02:13:cf:e4:7d:1a:18:b1:01:39:a1:3d:79: 9e:42:85:50:b2:55:f2:40:5e:5d:70:2c:66:59:27:f9:c5:9c: 40:a1:94:a1:eb:62:bb:56:49:72:0f:92:37:ac:03:c7:c4:a9: 60:96:00:ba:60:6c:71:2e:2c:85:21:44:c8:da:d2:5d:57:d0: c0:92:60:65:48:11:36:2b:58:72:b5:87:4f:af:03:72:ca:6e: 75:62:76:fd:5c:03:e1:82:13:5c:fb:38:8f:e2:1c:4b:41:87: 0b:fd:a9:2b:62:be:ce:33:e9:5e:2d:c9:ef:3b:30:a2:9f:a8: 56:75:8c:8f:dd:ae:c7:81:4a:5c:a7:9b:5c:9e:57:2c:8e:55: bc:8f:d7:2a:f5:ef:da:55:79:15:b0:90:10:21:b6:14:7f:15: 0f:f9:24:97:00:ca:a3:20:c8:bf:84:21:18:ea:82:6b:89:a8: 3a:b7:b2:df:09:c3:3d:7c:94:d3:9b:fa:12:a1:d7:be:69:10: 66:80:e1:2f:82:73:cf:09:9a:2d:3b:60:26:b2:8f:08:87:14: 56:31:41:1b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFVtWnUeASaRw+I0IrrYhV0/mG2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwODEyMTlaFw0yNzA0MTkwODE3MTlaMDMxMTAvBgNV BAMTKEY3RTJFNEI2Rjg1QTc0QjYyOTk1RDA0QUNGRkNCOTg5QkU2OTMzMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUZzS/2kYsoynsjuVNbNgxLaLo hVJCxuvJPP7r+By6BgYPK9b/aOV/dCjBoyxi5HH/tYYx9nUkIbh+pFI+wnmNpJCo WZfBS7UTS+V5HtH/XZSm8Bg5FjpJHBf4ctvCEQmewEvVHZtRldLM+8XEh09SSzqX HV1D0B69VjXCvgifG2244MbnnYhW8CILA3bLtgzf1CsWuz0Bkz3RSQ6uk0jH3old lcp7zUWh72jQ18oKGLi6uIe1tKiM4j9VgIsu8DeX+0d0Sun3pfeuxeA2yWjBudog RNZFB9MGoTA4u4o95YmiFyLZA4w/EYcwp/BS8GqHrY72SrXlLVB9dkXDe6x7AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU9+LktvhadLYpldBKz/y5ib5pMw4wHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0MzM3ODk3ODY3NTA5NzcvMC8zNDMzMmUzMjM0 MzgyZTMxMzMzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv4iTANBgkqhkiG9w0BAQsFAAOCAQEAO1AiRCx9pdXfopDoiLzU 57LgYDB+vkE+JVrx7iTQtko1Cl8H64h32DwCE8/kfRoYsQE5oT15nkKFULJV8kBe XXAsZlkn+cWcQKGUoetiu1ZJcg+SN6wDx8SpYJYAumBscS4shSFEyNrSXVfQwJJg ZUgRNitYcrWHT68DcspudWJ2/VwD4YITXPs4j+IcS0GHC/2pK2K+zjPpXi3J7zsw op+oVnWMj92ux4FKXKebXJ5XLI5VvI/XKvXv2lV5FbCQECG2FH8VD/kklwDKoyDI v4QhGOqCa4moOrey3wnDPXyU05v6EqHXvmkQZoDhL4JzzwmaLTtgJrKPCIcUVjFB Gw== -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:10 2026 by rpki-client