$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e20313331343833.roa File: 34332e3232362e3131322e302f32322d3234203d3e20313331343833.roa (raw, json) Hash identifier: FPe4SdtG/qNgJuKmGBSLNneFJTEbO5OHDwPFM919af0= Subject key identifier: 36:3C:44:D0:D8:5E:19:AB:6F:C5:BE:21:DB:26:9E:62:20:EF:F6:00 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 1BD41B839185DE6BCCB9AC8E28E3C1D7BD324005 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 09:10:50 +0000 ROA not before: Mon 20 Apr 2026 09:05:50 +0000 ROA not after: Mon 19 Apr 2027 09:10:50 +0000 asID: 131483 IP address blocks: 43.226.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d4:1b:83:91:85:de:6b:cc:b9:ac:8e:28:e3:c1:d7:bd:32:40:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 09:05:50 2026 GMT Not After : Apr 19 09:10:50 2027 GMT Subject: CN=363C44D0D85E19AB6FC5BE21DB269E6220EFF600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:22:a1:b6:3b:14:cf:cc:99:cd:99:35:dc:6c: 41:d0:9f:4a:ef:d8:ca:4d:62:d4:96:0a:f2:0c:bc: d5:fd:8e:e1:6d:7e:b9:70:d2:43:ea:15:e4:be:e3: 38:29:6c:9c:55:ab:a4:ff:98:28:99:e5:00:30:e3: 2d:ef:ea:e3:29:34:06:f2:ef:48:55:d1:e5:32:05: 37:43:c0:1e:e6:9e:5b:2f:4e:87:65:9d:b1:63:78: 6e:5e:9d:f8:8e:70:8a:6e:a4:6f:11:d0:d7:51:a8: 4b:e3:d6:ed:d8:05:65:c1:a3:a6:21:bc:d2:5c:73: ed:ea:bd:cb:dd:a3:49:fd:05:ee:e4:7e:4a:b0:5c: 5a:ad:a3:6f:10:f8:5b:4e:3a:d1:fe:45:7d:5f:de: 9f:42:36:9b:04:5f:31:d5:ca:0c:e2:f0:32:81:d3: 51:f4:a4:b3:ed:bb:be:0e:4c:a6:c9:c5:be:fd:50: 56:48:a4:6c:98:65:f1:40:19:12:1b:00:b0:25:83: 35:cb:78:e4:dd:47:23:93:fd:fa:ed:28:46:2d:b5: 09:73:d3:5c:dd:64:35:81:f5:76:f8:c2:a6:08:a8: 4f:73:0b:e5:5d:81:1c:6b:47:08:25:4d:43:e5:2d: 9b:a8:b8:04:7a:2b:0f:55:d5:3f:7f:ca:79:bc:da: a1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:3C:44:D0:D8:5E:19:AB:6F:C5:BE:21:DB:26:9E:62:20:EF:F6:00 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.112.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:5c:16:05:31:04:b1:8f:9f:fa:e4:77:2b:a2:f9:d4:96:91: 4b:37:6a:7d:0f:53:86:d6:b6:4d:64:ac:a4:ea:1e:1a:eb:04: f2:9f:d6:da:45:66:2d:e4:56:26:56:56:f0:17:47:16:08:55: 2d:3d:51:b2:73:8d:04:44:10:71:58:c3:71:38:cd:44:ad:f5: dd:ed:34:96:e9:cd:f5:97:19:56:12:dd:00:04:87:a2:ed:6d: 74:80:ba:13:4c:94:ba:c3:36:4b:cb:4a:a0:40:a0:8b:2c:24: ba:74:c3:06:2b:7b:09:eb:02:a4:6d:11:d4:31:e8:2f:0c:f8: 9a:ab:db:06:5f:9f:f7:56:85:df:07:4a:7d:81:70:d2:7e:86: 95:fd:5e:9d:9f:17:71:1b:d9:be:b0:4a:28:db:27:fb:5a:dc: 47:9c:6a:a4:15:19:a5:87:37:6b:8c:0f:c7:6c:0a:1d:c5:9e: b5:a5:7c:5e:ae:e8:b9:0d:0a:eb:03:08:ad:2c:22:4b:ce:c0: 1e:b5:77:37:dd:a5:8e:96:c2:91:e0:f6:2b:45:f7:36:aa:d8: 6f:92:96:42:06:b4:c3:78:a6:84:4c:34:38:57:d1:aa:e5:e5: ca:34:d2:2e:69:ed:c5:42:ee:45:20:b5:03:bd:e2:73:bb:97: f6:8f:ea:46 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUG9Qbg5GF3mvMuayOKOPB170yQAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwOTA1NTBaFw0yNzA0MTkwOTEwNTBaMDMxMTAvBgNV BAMTKDM2M0M0NEQwRDg1RTE5QUI2RkM1QkUyMURCMjY5RTYyMjBFRkY2MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPIqG2OxTPzJnNmTXcbEHQn0rv 2MpNYtSWCvIMvNX9juFtfrlw0kPqFeS+4zgpbJxVq6T/mCiZ5QAw4y3v6uMpNAby 70hV0eUyBTdDwB7mnlsvTodlnbFjeG5enfiOcIpupG8R0NdRqEvj1u3YBWXBo6Yh vNJcc+3qvcvdo0n9Be7kfkqwXFqto28Q+FtOOtH+RX1f3p9CNpsEXzHVygzi8DKB 01H0pLPtu74OTKbJxb79UFZIpGyYZfFAGRIbALAlgzXLeOTdRyOT/frtKEYttQlz 01zdZDWB9Xb4wqYIqE9zC+VdgRxrRwglTUPlLZuouAR6Kw9V1T9/ynm82qGNAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUNjxE0NheGatvxb4h2yaeYiDv9gAwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTg0OTA0OTY2MTcwMjE0NDIvMC8zNDMzMmUzMjMy MzYyZTMxMzEzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAivicDANBgkqhkiG9w0BAQsFAAOCAQEAT1wWBTEEsY+f+uR3K6L5 1JaRSzdqfQ9Thta2TWSspOoeGusE8p/W2kVmLeRWJlZW8BdHFghVLT1RsnONBEQQ cVjDcTjNRK313e00lunN9ZcZVhLdAASHou1tdIC6E0yUusM2S8tKoECgiywkunTD Bit7CesCpG0R1DHoLwz4mqvbBl+f91aF3wdKfYFw0n6Glf1enZ8XcRvZvrBKKNsn +1rcR5xqpBUZpYc3a4wPx2wKHcWetaV8Xq7ouQ0K6wMIrSwiS87AHrV3N92ljpbC keD2K0X3NqrYb5KWQga0w3imhEw0OFfRquXlyjTSLmntxULuRSC1A73ic7uX9o/q Rg== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:09 2026 by rpki-client