$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e203233363530.roa File: 34332e3234382e39362e302f32312d3234203d3e203233363530.roa (raw, json) Hash identifier: CZyxq4Axg27pvm6gklcp7uljOLOkMOivYM49Q+8hREg= Subject key identifier: 84:CE:90:94:D6:00:C7:D9:A4:05:92:09:92:F6:6F:86:A2:6F:EB:19 Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 63A04865579D8CD64197CA2214703D186309FAA3 Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 05:44:34 +0000 ROA not before: Mon 20 Apr 2026 05:39:34 +0000 ROA not after: Mon 19 Apr 2027 05:44:34 +0000 asID: 23650 IP address blocks: 43.248.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a0:48:65:57:9d:8c:d6:41:97:ca:22:14:70:3d:18:63:09:fa:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:39:34 2026 GMT Not After : Apr 19 05:44:34 2027 GMT Subject: CN=84CE9094D600C7D9A405920992F66F86A26FEB19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:72:c7:db:3a:43:a3:9b:ad:43:b1:16:06:20: 8d:38:55:c4:db:b1:c3:2a:41:51:fb:1e:3b:9e:5d: 36:7e:39:b0:2c:26:8f:d8:63:ea:bf:5d:2d:58:66: 74:8b:4b:22:cf:e9:f6:19:d5:ca:b0:34:cc:1e:10: 30:53:9d:e7:ae:20:a1:6e:ac:03:9a:b8:53:da:18: b2:97:1b:ff:20:6a:36:1d:1c:ec:0e:fc:0c:5d:19: 04:36:38:98:bd:88:53:ef:a3:24:ce:6b:ba:9c:59: d1:74:48:fd:55:54:0c:39:83:77:f2:3a:90:9a:2a: 0c:d8:37:6a:9a:ec:1b:cc:bf:d8:c6:22:f1:20:04: 2e:df:75:86:c7:a4:fe:48:ca:cf:61:ef:7a:78:c1: 8a:31:fc:e3:14:0a:39:75:c2:47:f7:96:37:da:f6: 59:66:f7:e7:14:20:dd:be:63:b6:a2:ed:6d:31:dd: 6d:5d:2f:89:29:8b:ae:f4:eb:de:51:6b:72:04:22: fc:41:3c:aa:91:d2:00:43:62:19:fc:11:16:d9:b1: e9:89:f4:8c:a9:cb:fb:58:fe:20:5b:35:d6:53:1a: 81:1d:b1:66:f2:a9:9e:75:e9:6f:c1:fe:d2:33:e2: 0a:53:1b:31:b6:98:fb:6d:8b:fd:d0:67:0d:7a:7b: 1b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:CE:90:94:D6:00:C7:D9:A4:05:92:09:92:F6:6F:86:A2:6F:EB:19 X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/34332e3234382e39362e302f32312d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.96.0/21 Signature Algorithm: sha256WithRSAEncryption 9f:48:de:20:72:ea:08:47:28:67:5a:d5:6a:f5:1d:fe:2f:37: 44:ed:5e:47:1c:71:df:28:0b:49:57:f6:64:41:a3:9f:fc:a4: 65:1a:5c:fa:1d:e6:bb:94:53:2d:fe:cf:63:fa:97:45:de:0a: 2a:68:28:b7:ca:5c:5b:eb:3a:b4:af:93:ff:48:39:11:89:c8: ac:33:26:e8:1d:73:c6:88:6c:35:3d:e7:bc:51:53:e8:61:f1: 4f:e7:33:4e:17:98:02:eb:22:78:54:7a:29:b5:19:7b:ea:d2: fa:b4:c3:25:44:b3:5c:e0:c5:95:20:71:0b:c3:77:e5:1c:89: fa:0a:b6:b3:1c:41:7f:dc:e4:cd:75:3d:6b:cf:1c:a5:7f:0f: d1:80:d7:9a:f9:80:fa:05:23:87:a5:b7:8d:fc:dc:88:16:b7: 12:5e:75:58:da:1d:e2:07:b3:18:5e:d4:74:92:af:1b:3c:3c: 2e:8d:57:82:48:b9:80:62:1f:07:19:f4:c7:f5:c9:2e:3a:e2: 09:e1:66:6f:80:1b:77:c4:54:8b:a7:5a:03:3b:ba:d8:e8:09: d5:7b:55:fe:f4:a0:f3:47:64:dc:03:f1:24:67:c1:cc:99:d4: 04:aa:65:dc:e5:73:d3:63:ae:2c:72:fe:29:d6:2f:ff:69:cd: 1d:c7:2e:b4 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUY6BIZVedjNZBl8oiFHA9GGMJ+qMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTM5MzRaFw0yNzA0MTkwNTQ0MzRaMDMxMTAvBgNV BAMTKDg0Q0U5MDk0RDYwMEM3RDlBNDA1OTIwOTkyRjY2Rjg2QTI2RkVCMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClcsfbOkOjm61DsRYGII04VcTb scMqQVH7HjueXTZ+ObAsJo/YY+q/XS1YZnSLSyLP6fYZ1cqwNMweEDBTneeuIKFu rAOauFPaGLKXG/8gajYdHOwO/AxdGQQ2OJi9iFPvoyTOa7qcWdF0SP1VVAw5g3fy OpCaKgzYN2qa7BvMv9jGIvEgBC7fdYbHpP5Iys9h73p4wYox/OMUCjl1wkf3ljfa 9llm9+cUIN2+Y7ai7W0x3W1dL4kpi670695Ra3IEIvxBPKqR0gBDYhn8ERbZsemJ 9Iypy/tY/iBbNdZTGoEdsWbyqZ516W/B/tIz4gpTGzG2mPtti/3QZw16exvtAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUhM6QlNYAx9mkBZIJkvZvhqJv6xkwHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3NDMzNzg5Nzg2NzUwOTc3LzAvMzQzMzJlMzIzNDM4 MmUzOTM2MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyv4YDANBgkqhkiG9w0BAQsFAAOCAQEAn0jeIHLqCEcoZ1rVavUd/i83RO1e Rxxx3ygLSVf2ZEGjn/ykZRpc+h3mu5RTLf7PY/qXRd4KKmgot8pcW+s6tK+T/0g5 EYnIrDMm6B1zxohsNT3nvFFT6GHxT+czTheYAusieFR6KbUZe+rS+rTDJUSzXODF lSBxC8N35RyJ+gq2sxxBf9zkzXU9a88cpX8P0YDXmvmA+gUjh6W3jfzciBa3El51 WNod4gezGF7UdJKvGzw8Lo1Xgki5gGIfBxn0x/XJLjriCeFmb4Abd8RUi6daAzu6 2OgJ1XtV/vSg80dk3APxJGfBzJnUBKpl3OVz02OuLHL+KdYv/2nNHccutA== -----END CERTIFICATE-----Generated at Wed Apr 22 02:54:48 2026 by rpki-client