$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e20313331343833.roa File: 34332e3234382e39362e302f32312d3234203d3e20313331343833.roa (raw, json) Hash identifier: Cbx2xtO5R9KLAIBkUga5T+Cl/X2FlkGWwG7xPUozF9M= Subject key identifier: 36:BA:AB:42:30:97:0C:34:12:9F:E0:93:5E:F8:A3:E4:6D:83:32:56 Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 59E102807862EBE6B90D6612BE01C398C8958718 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 05:44:34 +0000 ROA not before: Mon 20 Apr 2026 05:39:34 +0000 ROA not after: Mon 19 Apr 2027 05:44:34 +0000 asID: 131483 IP address blocks: 43.248.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e1:02:80:78:62:eb:e6:b9:0d:66:12:be:01:c3:98:c8:95:87:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:39:34 2026 GMT Not After : Apr 19 05:44:34 2027 GMT Subject: CN=36BAAB4230970C34129FE0935EF8A3E46D833256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a1:ee:06:50:68:ad:54:47:19:9b:64:8b:f9: 30:63:80:1b:16:5f:da:d3:c2:d8:da:ba:f7:ea:6a: 27:c9:7a:fb:00:b2:45:6b:58:76:11:c1:56:2c:5b: ff:cc:1a:b7:f4:3b:8c:84:f9:cd:70:7f:99:f4:77: 05:d1:f5:10:26:6e:c9:bc:81:b7:ab:f4:52:4f:82: 1b:db:05:2a:7e:22:ef:1b:4b:89:7b:41:2e:5c:6f: f1:23:8b:ea:1c:a4:8c:29:57:fd:af:70:21:2c:6b: 46:f6:ca:eb:3e:0d:a4:74:aa:10:a2:a0:4d:7a:79: b7:ee:35:3a:d9:50:3a:83:61:92:56:01:03:1e:04: 2f:38:ea:ab:16:7e:16:b7:76:61:62:73:bd:c7:83: d3:9a:47:3c:3b:80:c6:ec:13:92:15:71:4e:cf:b3: 8e:96:32:c1:73:87:f9:e6:d5:17:b3:6e:22:bf:e2: e4:84:98:6b:d7:8e:b2:fd:ef:81:a1:5b:bf:3a:35: 13:70:27:b5:98:54:da:1b:8e:de:46:fc:86:67:84: bb:d0:29:4f:73:47:21:27:a7:2f:41:fc:94:d1:af: ff:11:b1:c5:41:f6:f1:8e:54:15:ed:a7:02:52:37: 34:07:a9:44:fa:4e:c7:59:f5:0d:d5:da:cd:5c:21: 4c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:BA:AB:42:30:97:0C:34:12:9F:E0:93:5E:F8:A3:E4:6D:83:32:56 X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.96.0/21 Signature Algorithm: sha256WithRSAEncryption 58:1d:70:7f:41:da:8b:a4:bc:0f:f0:03:6e:be:19:8b:4b:c9: 94:42:53:0e:14:45:47:dd:a5:e7:2a:37:2b:b6:b7:4d:67:9e: 45:29:2c:bc:fb:19:27:e2:24:02:cd:6b:47:f3:5c:76:39:4d: c4:a5:4e:cf:46:f7:ea:8a:f8:30:db:a5:ff:25:39:19:1b:5a: 26:a2:16:ca:0f:a1:72:2a:70:4c:58:4e:ed:0c:5a:f4:10:b9: f2:2d:d4:d1:d9:88:e5:3a:3c:c2:b8:6a:cc:20:1b:be:17:44: 2d:1d:33:65:3a:1f:a0:83:aa:3d:7f:ef:95:ad:fe:88:f9:47: 3d:22:f2:21:27:aa:21:26:d1:3a:79:76:7b:a4:8c:4b:3c:e0: 8f:07:d6:b9:cd:43:6b:5f:ca:32:04:70:3b:4c:01:23:2b:74: bc:db:0d:cd:29:e6:e3:4c:ab:92:00:99:52:07:50:bd:cc:a6: 04:cd:ca:95:6f:cc:3d:81:83:5a:b1:ec:0e:7e:9d:1c:80:53: 82:dd:3f:6c:fa:9e:a4:34:c6:81:39:3f:55:36:6f:b6:00:86: 5b:a6:e5:be:05:02:ae:ae:3c:7f:2e:12:a7:92:c3:b7:b5:2b: a9:c9:68:b9:8b:dc:b8:b9:40:bf:1a:10:2c:7c:00:32:dc:86: f9:52:d4:72 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUWeECgHhi6+a5DWYSvgHDmMiVhxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTM5MzRaFw0yNzA0MTkwNTQ0MzRaMDMxMTAvBgNV BAMTKDM2QkFBQjQyMzA5NzBDMzQxMjlGRTA5MzVFRjhBM0U0NkQ4MzMyNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5oe4GUGitVEcZm2SL+TBjgBsW X9rTwtjauvfqaifJevsAskVrWHYRwVYsW//MGrf0O4yE+c1wf5n0dwXR9RAmbsm8 gber9FJPghvbBSp+Iu8bS4l7QS5cb/Eji+ocpIwpV/2vcCEsa0b2yus+DaR0qhCi oE16ebfuNTrZUDqDYZJWAQMeBC846qsWfha3dmFic73Hg9OaRzw7gMbsE5IVcU7P s46WMsFzh/nm1RezbiK/4uSEmGvXjrL974GhW786NRNwJ7WYVNobjt5G/IZnhLvQ KU9zRyEnpy9B/JTRr/8RscVB9vGOVBXtpwJSNzQHqUT6TsdZ9Q3V2s1cIUxhAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUNrqrQjCXDDQSn+CTXvij5G2DMlYwHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzQzMzc4OTc4Njc1MDk3Ny8wLzM0MzMyZTMyMzQz ODJlMzkzNjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyv4YDANBgkqhkiG9w0BAQsFAAOCAQEAWB1wf0Hai6S8D/ADbr4Zi0vJ lEJTDhRFR92l5yo3K7a3TWeeRSksvPsZJ+IkAs1rR/NcdjlNxKVOz0b36or4MNul /yU5GRtaJqIWyg+hcipwTFhO7Qxa9BC58i3U0dmI5To8wrhqzCAbvhdELR0zZTof oIOqPX/vla3+iPlHPSLyISeqISbROnl2e6SMSzzgjwfWuc1Da1/KMgRwO0wBIyt0 vNsNzSnm40yrkgCZUgdQvcymBM3KlW/MPYGDWrHsDn6dHIBTgt0/bPqepDTGgTk/ VTZvtgCGW6blvgUCrq48fy4Sp5LDt7UrqclouYvcuLlAvxoQLHwAMtyG+VLUcg== -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:15 2026 by rpki-client