$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e37362e302f32322d3234203d3e203536303436.roa File: 34332e3234382e37362e302f32322d3234203d3e203536303436.roa (raw, json) Hash identifier: 6vAiySraKvMpCDAOY0EZ4anWAfX4UBTDp6w/43rblH8= Subject key identifier: E0:D2:61:A0:00:A2:B6:A4:18:85:71:84:0B:FB:D6:C7:EE:99:EB:AF Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 2CE285C0A8EEFA1956C1B5491AD15AE202623FFA Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e37362e302f32322d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 05:41:44 +0000 ROA not before: Mon 20 Apr 2026 05:36:44 +0000 ROA not after: Mon 19 Apr 2027 05:41:44 +0000 asID: 56046 IP address blocks: 43.248.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:e2:85:c0:a8:ee:fa:19:56:c1:b5:49:1a:d1:5a:e2:02:62:3f:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:36:44 2026 GMT Not After : Apr 19 05:41:44 2027 GMT Subject: CN=E0D261A000A2B6A4188571840BFBD6C7EE99EBAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f0:38:e3:a6:c3:fc:7a:17:b6:91:7a:0d:ed: 9d:0c:e0:5c:c3:5f:5a:f0:c4:6e:da:62:67:83:71: 39:fd:14:1c:fe:24:dd:ff:8f:b9:e2:53:05:91:4b: 34:22:12:f8:e6:a0:aa:19:e1:b7:9b:fe:4a:8e:42: 20:e3:3c:86:b6:76:27:77:c5:01:c9:21:d5:9a:bb: 6f:72:43:04:28:61:b7:a9:99:15:dc:b7:c1:f5:91: 12:9b:d2:df:a0:eb:11:20:03:6d:05:92:70:e5:24: 34:84:1a:6c:56:57:f3:56:b3:e8:e3:53:98:ff:b5: e9:a6:35:be:4c:dd:df:28:df:7a:2d:63:e6:0c:5a: 4f:e4:fb:d8:84:a8:7f:38:49:21:fc:5d:09:66:e9: 14:dc:48:59:c0:46:ae:ae:c7:48:36:dd:e8:24:a7: 7d:a9:61:6e:5e:77:8b:92:74:b7:b3:a5:a1:30:c0: 3b:bb:ae:94:8e:15:61:f4:b4:83:2c:89:c1:c5:f7: b4:ed:17:f5:ba:fe:3a:c6:ad:00:a9:98:33:d8:75: 36:98:12:a5:69:2e:b3:6f:9d:4c:cc:20:14:a1:dd: 97:09:2d:d1:63:08:35:a3:8f:ce:43:c4:25:9a:89: 40:9b:97:5e:d8:f4:29:78:0e:26:6a:c0:5f:54:4d: f4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D2:61:A0:00:A2:B6:A4:18:85:71:84:0B:FB:D6:C7:EE:99:EB:AF X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e37362e302f32322d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.76.0/22 Signature Algorithm: sha256WithRSAEncryption 56:da:94:24:66:ab:26:a8:6d:16:8d:4d:2e:a0:48:25:8d:07: a0:83:1b:58:0b:27:fe:2f:a5:3e:f6:46:24:0d:aa:2b:b3:ec: 53:0f:a4:53:5f:d2:58:fc:c2:b3:dc:41:98:e7:df:a8:d6:19: 97:14:c8:da:b4:d3:b0:77:06:d3:a1:a9:a0:45:63:7e:90:6d: 07:6f:27:a0:de:3e:75:cc:07:48:68:02:63:dc:89:31:1b:b2: 6b:52:80:66:29:1d:b3:0e:01:c5:a5:aa:4f:d5:21:34:06:4e: 3c:c2:dd:db:88:f5:bd:ea:bf:cd:5e:e3:3b:9f:e3:70:23:f4: 4e:88:5d:e6:6a:a2:18:56:ff:94:d8:1b:0a:f1:81:51:22:3d: c1:dc:60:6f:58:ff:ee:e5:55:fb:14:0e:34:ac:fb:23:9e:ff: fb:b8:9d:09:75:58:7e:19:0e:28:28:83:3e:cc:b3:c8:cb:1d: 0a:cb:ac:d0:bb:e4:e0:80:32:64:0b:f8:9e:f0:59:4d:96:8a: 55:a0:c1:18:5f:6d:e5:f8:d9:13:40:e3:86:f3:14:22:a5:5a: 9b:8d:f3:26:83:12:52:87:19:d0:b2:cf:9a:2e:38:c4:29:34: 6e:cb:0d:e4:79:e0:1b:5e:24:70:03:3a:ab:74:50:b6:27:00: a8:1b:62:10 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIULOKFwKju+hlWwbVJGtFa4gJiP/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTM2NDRaFw0yNzA0MTkwNTQxNDRaMDMxMTAvBgNV BAMTKEUwRDI2MUEwMDBBMkI2QTQxODg1NzE4NDBCRkJENkM3RUU5OUVCQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP8DjjpsP8ehe2kXoN7Z0M4FzD X1rwxG7aYmeDcTn9FBz+JN3/j7niUwWRSzQiEvjmoKoZ4beb/kqOQiDjPIa2did3 xQHJIdWau29yQwQoYbepmRXct8H1kRKb0t+g6xEgA20FknDlJDSEGmxWV/NWs+jj U5j/temmNb5M3d8o33otY+YMWk/k+9iEqH84SSH8XQlm6RTcSFnARq6ux0g23egk p32pYW5ed4uSdLezpaEwwDu7rpSOFWH0tIMsicHF97TtF/W6/jrGrQCpmDPYdTaY EqVpLrNvnUzMIBSh3ZcJLdFjCDWjj85DxCWaiUCbl17Y9Cl4DiZqwF9UTfR9AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU4NJhoACitqQYhXGEC/vWx+6Z668wHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3NDMzNzg5Nzg2NzUwOTc3LzAvMzQzMzJlMzIzNDM4 MmUzNzM2MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv4TDANBgkqhkiG9w0BAQsFAAOCAQEAVtqUJGarJqhtFo1NLqBIJY0HoIMb WAsn/i+lPvZGJA2qK7PsUw+kU1/SWPzCs9xBmOffqNYZlxTI2rTTsHcG06GpoEVj fpBtB28noN4+dcwHSGgCY9yJMRuya1KAZikdsw4BxaWqT9UhNAZOPMLd24j1veq/ zV7jO5/jcCP0Tohd5mqiGFb/lNgbCvGBUSI9wdxgb1j/7uVV+xQONKz7I57/+7id CXVYfhkOKCiDPsyzyMsdCsus0Lvk4IAyZAv4nvBZTZaKVaDBGF9t5fjZE0DjhvMU IqVam43zJoMSUocZ0LLPmi44xCk0bssN5HngG14kcAM6q3RQticAqBtiEA== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:32 2026 by rpki-client