$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097437560596070403/0/34352e3235322e3130362e302f32332d3233203d3e20313337373032.roa File: 34352e3235322e3130362e302f32332d3233203d3e20313337373032.roa (raw, json) Hash identifier: 7GuhD/d0Q9Ke2wak9hgWIFaov5G+D4OytfxXlDX1a3I= Subject key identifier: 4B:F3:E0:AC:9F:B6:7E:B6:09:EC:AD:DE:67:EE:1F:0D:1D:DB:99:62 Certificate issuer: /CN=200F3395B71E54CEA9D9E15A8452B36EA909B567 Certificate serial: 2B77EB50CDCD7D34CE146C86D25AF7B08D87BCF7 Authority key identifier: 20:0F:33:95:B7:1E:54:CE:A9:D9:E1:5A:84:52:B3:6E:A9:09:B5:67 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/200F3395B71E54CEA9D9E15A8452B36EA909B567.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097437560596070403/0/34352e3235322e3130362e302f32332d3233203d3e20313337373032.roa Signing time: Thu 23 Apr 2026 07:06:54 +0000 ROA not before: Thu 23 Apr 2026 07:01:54 +0000 ROA not after: Thu 22 Apr 2027 07:06:54 +0000 asID: 137702 IP address blocks: 45.252.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097437560596070403/0/200F3395B71E54CEA9D9E15A8452B36EA909B567.crl rsync://rpki-rps.cnnic.cn/repo/A1097437560596070403/0/200F3395B71E54CEA9D9E15A8452B36EA909B567.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/200F3395B71E54CEA9D9E15A8452B36EA909B567.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 01:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:77:eb:50:cd:cd:7d:34:ce:14:6c:86:d2:5a:f7:b0:8d:87:bc:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=200F3395B71E54CEA9D9E15A8452B36EA909B567 Validity Not Before: Apr 23 07:01:54 2026 GMT Not After : Apr 22 07:06:54 2027 GMT Subject: CN=4BF3E0AC9FB67EB609ECADDE67EE1F0D1DDB9962 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8c:2e:10:64:a7:38:72:ad:77:dc:7f:f3:bd: 26:8b:ea:d5:ea:e5:9b:84:8f:ae:c3:ae:44:74:8c: 3b:eb:8f:db:87:bd:84:39:cb:8c:a9:7f:6a:8d:04: 5f:98:09:62:e8:0c:81:4c:d0:82:0d:f6:c8:4c:c2: 95:3d:65:8d:87:02:0e:27:73:26:48:66:72:f8:3d: 51:dc:2f:14:90:c9:1d:62:07:7d:31:93:d2:27:d0: 14:c1:e6:0a:24:c4:d0:1b:15:47:62:50:e0:bb:2e: c8:20:f3:18:99:f1:73:8b:6c:1a:1b:ec:4b:d3:52: 38:75:3d:1d:3f:8a:9b:d5:bc:d7:a5:b9:32:74:c9: 17:da:c9:94:c7:29:ce:16:5a:28:f7:f3:ea:f7:51: 2d:cd:e6:96:d0:5e:67:aa:06:29:9c:32:35:e7:7e: db:59:72:c5:b6:9c:92:8f:8b:d8:5a:6e:7b:f1:06: 99:35:d6:a6:9c:35:c1:30:dc:15:a3:66:4b:33:7d: 1f:e1:ec:b6:e9:2a:8a:41:fa:2d:7b:42:7c:e5:eb: db:63:a6:d9:c2:9a:eb:0d:f3:19:c2:b7:d9:db:b7: 8c:01:08:76:0e:25:17:20:75:be:64:cf:5d:d6:e5: b0:34:d3:0c:f9:98:d5:ee:4c:7d:8a:b9:52:7a:3f: c3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F3:E0:AC:9F:B6:7E:B6:09:EC:AD:DE:67:EE:1F:0D:1D:DB:99:62 X509v3 Authority Key Identifier: keyid:20:0F:33:95:B7:1E:54:CE:A9:D9:E1:5A:84:52:B3:6E:A9:09:B5:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097437560596070403/0/200F3395B71E54CEA9D9E15A8452B36EA909B567.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/200F3395B71E54CEA9D9E15A8452B36EA909B567.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097437560596070403/0/34352e3235322e3130362e302f32332d3233203d3e20313337373032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.252.106.0/23 Signature Algorithm: sha256WithRSAEncryption 86:52:47:3b:cb:54:c7:bc:f1:55:be:18:0d:bf:b2:39:f4:7c: fa:79:e1:92:cb:e2:28:14:7d:f2:d4:62:d8:dc:a7:3c:eb:a7: 17:30:13:bd:ff:a3:93:e8:9e:45:a8:e1:d0:3d:f2:d1:16:b8: 10:a8:9a:cc:73:2c:90:4a:0a:00:71:a0:fb:8b:bf:44:6f:92: a1:8a:dc:10:e3:52:64:1b:5f:5e:87:89:4d:1b:d3:cf:5b:ab: 9d:26:32:e8:9a:bc:0d:9f:77:5c:61:5a:33:3c:0e:5c:c2:51: d2:de:d5:5f:28:d3:b3:b5:79:86:95:9b:e3:26:dc:ab:96:cc: eb:33:aa:cb:4d:43:19:9e:93:02:93:81:c1:aa:83:2c:24:2e: 83:89:d8:8f:46:bd:32:eb:c5:0f:db:32:5d:80:37:08:d4:d3: ba:11:54:53:94:8c:0d:1d:9c:8e:f7:8f:04:43:32:9d:83:f4: 4c:3f:41:57:17:39:9f:be:3b:93:2f:e6:a0:fc:97:32:14:98: 2c:75:2c:7c:50:02:56:07:36:cb:a8:a7:d9:7d:e0:72:10:e6: ed:47:7b:52:0e:c2:b6:32:91:8a:16:5a:6f:ec:6c:c1:04:88: bb:85:46:34:e9:41:c7:20:21:24:c3:76:97:d9:17:df:95:42: 9f:bc:d4:92 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUK3frUM3NfTTOFGyG0lr3sI2HvPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAwRjMzOTVCNzFFNTRDRUE5RDlFMTVBODQ1MkIzNkVB OTA5QjU2NzAeFw0yNjA0MjMwNzAxNTRaFw0yNzA0MjIwNzA2NTRaMDMxMTAvBgNV BAMTKDRCRjNFMEFDOUZCNjdFQjYwOUVDQURERTY3RUUxRjBEMUREQjk5NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkjC4QZKc4cq133H/zvSaL6tXq 5ZuEj67DrkR0jDvrj9uHvYQ5y4ypf2qNBF+YCWLoDIFM0IIN9shMwpU9ZY2HAg4n cyZIZnL4PVHcLxSQyR1iB30xk9In0BTB5gokxNAbFUdiUOC7Lsgg8xiZ8XOLbBob 7EvTUjh1PR0/ipvVvNeluTJ0yRfayZTHKc4WWij38+r3US3N5pbQXmeqBimcMjXn fttZcsW2nJKPi9habnvxBpk11qacNcEw3BWjZkszfR/h7LbpKopB+i17Qnzl69tj ptnCmusN8xnCt9nbt4wBCHYOJRcgdb5kz13W5bA00wz5mNXuTH2KuVJ6P8OzAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUS/PgrJ+2frYJ7K3eZ+4fDR3bmWIwHwYDVR0j BBgwFoAUIA8zlbceVM6p2eFahFKzbqkJtWcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzNzU2MDU5NjA3MDQwMy8wLzIwMEYzMzk1QjcxRTU0Q0VBOUQ5RTE1QTg0NTJC MzZFQTkwOUI1NjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjAwRjMzOTVCNzFFNTRDRUE5RDlFMTVBODQ1MkIzNkVBOTA5QjU2Ny5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0Mzc1NjA1OTYwNzA0MDMvMC8zNDM1MmUzMjM1 MzIyZTMxMzAzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzMzNzM3MzAzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAS38ajANBgkqhkiG9w0BAQsFAAOCAQEAhlJHO8tUx7zxVb4YDb+y OfR8+nnhksviKBR98tRi2NynPOunFzATvf+jk+ieRajh0D3y0Ra4EKiazHMskEoK AHGg+4u/RG+SoYrcEONSZBtfXoeJTRvTz1urnSYy6Jq8DZ93XGFaMzwOXMJR0t7V XyjTs7V5hpWb4ybcq5bM6zOqy01DGZ6TApOBwaqDLCQug4nYj0a9MuvFD9syXYA3 CNTTuhFUU5SMDR2cjvePBEMynYP0TD9BVxc5n747ky/moPyXMhSYLHUsfFACVgc2 y6in2X3gchDm7Ud7Ug7CtjKRihZab+xswQSIu4VGNOlBxyAhJMN2l9kX35VCn7zU kg== -----END CERTIFICATE-----Generated at Mon Apr 27 13:54:38 2026 by rpki-client