$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e37362e302f32322d3234203d3e2034383337.roa File: 34332e3234382e37362e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: QWfbk4XCQ871gQBIMFxv2zPD0xR19WvOVfQBasCfw6E= Subject key identifier: 12:AC:4E:2D:C5:26:3B:9B:A6:24:7B:DE:D0:44:6A:51:04:6F:6B:1B Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 42C55D9B67D3C7D60E7EFC5D6C04F1022AEF4331 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e37362e302f32322d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 05:41:44 +0000 ROA not before: Mon 20 Apr 2026 05:36:44 +0000 ROA not after: Mon 19 Apr 2027 05:41:44 +0000 asID: 4837 IP address blocks: 43.248.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:c5:5d:9b:67:d3:c7:d6:0e:7e:fc:5d:6c:04:f1:02:2a:ef:43:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:36:44 2026 GMT Not After : Apr 19 05:41:44 2027 GMT Subject: CN=12AC4E2DC5263B9BA6247BDED0446A51046F6B1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1b:91:3d:bd:a4:70:0c:de:2d:6d:c4:8d:e9: 99:50:9e:82:ed:13:f7:19:cf:6e:46:13:9c:d8:63: 24:93:46:31:5f:39:3c:1a:93:09:ce:7e:e1:7e:2b: b3:6c:89:3b:e2:e5:70:a9:7f:bb:9f:41:3b:9e:1d: 0f:6c:b8:72:78:9a:a2:08:60:00:84:4c:3b:16:d5: db:d0:8a:50:27:d0:ca:8a:27:88:ef:4b:aa:2d:33: 92:48:4e:9e:c4:45:b5:15:07:7e:ca:ce:4a:bf:92: 46:84:5d:4b:e4:5f:50:cd:b3:49:95:4d:d6:3c:d5: 69:f8:c0:45:06:a7:0c:78:dd:04:ec:fd:dc:2e:fe: c8:6d:46:62:8b:e4:3d:89:e8:96:51:55:8e:41:22: 8c:58:67:b6:4e:a7:6c:7c:ab:5e:29:4b:d4:49:15: 3d:7e:f6:7a:cd:75:95:6f:10:d2:40:19:cf:e1:8b: a2:42:65:fa:cd:d5:08:e2:9f:a7:49:b6:78:e7:9a: 50:6a:ce:d2:82:a3:1e:d7:ac:db:ab:0e:40:fe:76: 1e:27:95:11:a7:a5:ec:2c:24:83:67:6f:e9:03:6e: 40:26:ad:6f:ee:0c:cc:09:50:83:8d:69:ff:16:4a: 21:10:f1:63:48:a2:d5:ff:ba:df:76:bf:41:c3:e1: 33:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:AC:4E:2D:C5:26:3B:9B:A6:24:7B:DE:D0:44:6A:51:04:6F:6B:1B X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e37362e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.76.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:f9:6d:b9:cb:77:b7:48:f6:70:75:b2:bc:c0:0d:f2:58:f1: 50:ca:ba:2d:0f:cc:85:c0:70:37:3c:b5:96:15:08:e4:78:2b: b5:21:ed:3c:c3:8d:ad:6b:a8:7a:21:92:07:49:80:06:58:51: c8:06:34:d9:bf:a5:2a:cd:cb:da:d4:09:b7:7a:84:62:90:f2: 8d:88:35:eb:ad:05:c9:92:5c:55:4c:bb:1b:a5:24:50:dd:81: 08:29:5b:98:22:95:85:23:b0:c2:9e:ca:4c:6d:78:e8:9f:8b: 68:6f:05:ca:34:8c:56:d4:b4:dd:12:c5:b5:32:9a:13:96:d1: 13:ec:4f:9f:d0:bc:7f:a3:7f:7e:9b:6b:e0:61:e0:b1:bc:7e: 39:c2:53:f2:56:ce:40:32:6b:a3:31:83:a5:6d:9b:be:35:02: 42:3a:64:2a:0e:02:8b:bd:5f:26:8c:48:60:40:00:4f:27:e9: 76:71:a0:fe:ec:1f:51:eb:47:d5:17:63:ea:01:43:5b:8e:20: ae:e2:1e:90:82:fe:76:e1:31:1b:20:6d:37:9c:aa:93:e6:85: dc:b2:ee:94:2a:bf:d0:93:b5:08:63:d1:26:f9:22:1a:64:58: 68:a8:c1:13:a4:1c:55:0b:62:44:4a:f3:9e:29:55:32:9c:ea: e6:2b:f1:c9 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUQsVdm2fTx9YOfvxdbATxAirvQzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTM2NDRaFw0yNzA0MTkwNTQxNDRaMDMxMTAvBgNV BAMTKDEyQUM0RTJEQzUyNjNCOUJBNjI0N0JERUQwNDQ2QTUxMDQ2RjZCMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQG5E9vaRwDN4tbcSN6ZlQnoLt E/cZz25GE5zYYySTRjFfOTwakwnOfuF+K7NsiTvi5XCpf7ufQTueHQ9suHJ4mqII YACETDsW1dvQilAn0MqKJ4jvS6otM5JITp7ERbUVB37Kzkq/kkaEXUvkX1DNs0mV TdY81Wn4wEUGpwx43QTs/dwu/shtRmKL5D2J6JZRVY5BIoxYZ7ZOp2x8q14pS9RJ FT1+9nrNdZVvENJAGc/hi6JCZfrN1Qjin6dJtnjnmlBqztKCox7XrNurDkD+dh4n lRGnpewsJINnb+kDbkAmrW/uDMwJUIONaf8WSiEQ8WNIotX/ut92v0HD4TNZAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUEqxOLcUmO5umJHve0ERqUQRvaxswHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3NDMzNzg5Nzg2NzUwOTc3LzAvMzQzMzJlMzIzNDM4 MmUzNzM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr+EwwDQYJKoZIhvcNAQELBQADggEBAIv5bbnLd7dI9nB1srzADfJY8VDKui0P zIXAcDc8tZYVCOR4K7Uh7TzDja1rqHohkgdJgAZYUcgGNNm/pSrNy9rUCbd6hGKQ 8o2INeutBcmSXFVMuxulJFDdgQgpW5gilYUjsMKeykxteOifi2hvBco0jFbUtN0S xbUymhOW0RPsT5/QvH+jf36ba+Bh4LG8fjnCU/JWzkAya6Mxg6Vtm741AkI6ZCoO Aou9XyaMSGBAAE8n6XZxoP7sH1HrR9UXY+oBQ1uOIK7iHpCC/nbhMRsgbTecqpPm hdyy7pQqv9CTtQhj0Sb5IhpkWGiowROkHFULYkRK854pVTKc6uYr8ck= -----END CERTIFICATE-----Generated at Wed Apr 22 02:53:53 2026 by rpki-client