$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e20313533393131.roa File: 34332e3234382e39362e302f32312d3234203d3e20313533393131.roa (raw, json) Hash identifier: 4lZjBy4AS/x6wupeb4d35/qvjcEA95HinSt1YPmReYM= Subject key identifier: 3D:23:AA:15:55:93:EE:79:1F:A4:38:CE:6B:66:43:A1:09:D4:50:36 Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 5A9C235F6D506F006A24D7E1AF94814A12975785 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e20313533393131.roa Signing time: Mon 20 Apr 2026 05:44:34 +0000 ROA not before: Mon 20 Apr 2026 05:39:34 +0000 ROA not after: Mon 19 Apr 2027 05:44:34 +0000 asID: 153911 IP address blocks: 43.248.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:9c:23:5f:6d:50:6f:00:6a:24:d7:e1:af:94:81:4a:12:97:57:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:39:34 2026 GMT Not After : Apr 19 05:44:34 2027 GMT Subject: CN=3D23AA155593EE791FA438CE6B6643A109D45036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:02:94:83:cb:3c:22:06:4e:2c:de:a2:0d:c8: c9:9c:41:3d:fe:65:fa:8e:03:54:29:69:7a:25:65: b1:ca:19:b0:25:3e:a9:88:b9:38:49:ef:4c:6c:8a: 59:9f:3a:56:fa:d8:ad:98:62:e8:0f:12:29:81:ac: 15:85:2f:81:f3:e1:30:da:e4:17:c0:88:56:8e:cd: d4:6c:f6:2a:45:0d:29:21:e3:1d:b5:8d:e9:ab:cc: 00:06:f6:9d:72:8a:a0:04:4a:97:59:79:44:07:17: 99:32:b1:4d:42:e8:9c:0b:60:34:fe:16:69:6f:46: 8e:1b:88:21:ac:0b:e0:f0:ac:4a:53:43:e3:20:8c: 91:1e:9f:2f:09:65:3d:ce:64:76:bd:69:09:c0:31: 3f:1b:ad:cf:d2:bd:12:79:d6:82:61:fa:2e:3f:82: 29:64:a3:df:68:d7:7a:1d:16:df:53:7a:62:cd:4f: f0:f1:e3:09:60:9f:39:48:71:02:6e:c8:a4:ba:c4: 63:45:59:41:2b:11:9f:dc:d6:7a:0a:62:59:62:b1: b1:2d:60:ec:e9:7a:e6:83:45:2c:cd:79:00:8a:56: 25:fc:9a:75:b0:40:18:7b:6e:ad:29:e8:74:30:ee: 52:b4:3f:65:43:9e:ad:c1:dc:32:e0:16:97:25:cd: 1c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:23:AA:15:55:93:EE:79:1F:A4:38:CE:6B:66:43:A1:09:D4:50:36 X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e20313533393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.96.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:1d:be:e8:42:15:58:64:7a:47:cb:aa:4f:8f:07:51:ba:b6: bc:9a:d9:12:24:23:8d:d1:a6:13:26:01:6a:bd:08:88:ca:e0: 7a:e1:09:53:d1:c5:c5:0f:85:c6:4f:93:b5:63:72:cc:d2:66: 40:46:60:98:fe:81:54:ff:75:02:30:c8:b8:68:66:b3:ef:67: f9:a2:2d:21:2c:af:e2:1f:9d:55:3c:48:4e:79:0b:69:1b:ad: ba:a0:38:e2:7e:58:ee:87:16:4c:ae:39:3a:e1:2e:70:d1:34: d0:2e:53:45:b9:18:33:35:ab:47:6f:6f:87:3c:5d:82:d5:b5: f4:42:92:67:53:9e:ba:d2:f3:66:db:0b:e0:e7:8a:f0:12:fb: fd:d4:a6:59:1c:68:fa:cf:44:50:ab:a2:e2:33:03:11:a4:74: 66:04:b3:a4:78:ca:7b:c4:15:78:be:80:44:27:5f:15:c7:7a: 67:7f:3e:9a:a5:a9:4b:5e:66:4f:56:01:16:1d:0d:ba:8e:3c: 7d:17:a8:c1:b0:8f:7f:0a:4f:22:bb:32:31:ee:d5:03:8f:2d: 64:e6:da:47:47:ed:80:9c:5c:1b:77:5d:c7:23:bd:49:e1:7e: 2a:c8:22:6d:e4:13:ba:3e:f8:cb:e1:b9:8a:70:c1:1f:7c:41: 0c:cf:ea:92 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUWpwjX21QbwBqJNfhr5SBShKXV4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTM5MzRaFw0yNzA0MTkwNTQ0MzRaMDMxMTAvBgNV BAMTKDNEMjNBQTE1NTU5M0VFNzkxRkE0MzhDRTZCNjY0M0ExMDlENDUwMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQApSDyzwiBk4s3qINyMmcQT3+ ZfqOA1QpaXolZbHKGbAlPqmIuThJ70xsilmfOlb62K2YYugPEimBrBWFL4Hz4TDa 5BfAiFaOzdRs9ipFDSkh4x21jemrzAAG9p1yiqAESpdZeUQHF5kysU1C6JwLYDT+ FmlvRo4biCGsC+DwrEpTQ+MgjJEeny8JZT3OZHa9aQnAMT8brc/SvRJ51oJh+i4/ gilko99o13odFt9TemLNT/Dx4wlgnzlIcQJuyKS6xGNFWUErEZ/c1noKYllisbEt YOzpeuaDRSzNeQCKViX8mnWwQBh7bq0p6HQw7lK0P2VDnq3B3DLgFpclzRzTAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUPSOqFVWT7nkfpDjOa2ZDoQnUUDYwHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzQzMzc4OTc4Njc1MDk3Ny8wLzM0MzMyZTMyMzQz ODJlMzkzNjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzUzMzM5MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyv4YDANBgkqhkiG9w0BAQsFAAOCAQEASx2+6EIVWGR6R8uqT48HUbq2 vJrZEiQjjdGmEyYBar0IiMrgeuEJU9HFxQ+Fxk+TtWNyzNJmQEZgmP6BVP91AjDI uGhms+9n+aItISyv4h+dVTxITnkLaRutuqA44n5Y7ocWTK45OuEucNE00C5TRbkY MzWrR29vhzxdgtW19EKSZ1OeutLzZtsL4OeK8BL7/dSmWRxo+s9EUKui4jMDEaR0 ZgSzpHjKe8QVeL6ARCdfFcd6Z38+mqWpS15mT1YBFh0Nuo48fReowbCPfwpPIrsy Me7VA48tZObaR0ftgJxcG3ddxyO9SeF+KsgibeQTuj74y+G5inDBH3xBDM/qkg== -----END CERTIFICATE-----Generated at Wed Apr 22 02:54:46 2026 by rpki-client