$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e203233363530.roa File: 34332e3232362e3131322e302f32322d3234203d3e203233363530.roa (raw, json) Hash identifier: un4Qc5+YWG4S5YWqG7ljbCKgqVtuWacQOGvMwLwPQ9s= Subject key identifier: E5:4A:EF:D8:50:58:E4:A1:68:3B:DE:9C:4C:35:B0:FC:E6:9C:B7:5B Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 5D8F97972D8762BA1C480A2D49F628C4E627BC4F Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:34:32 +0000 ROA not before: Mon 20 Apr 2026 06:29:32 +0000 ROA not after: Mon 19 Apr 2027 06:34:32 +0000 asID: 23650 IP address blocks: 43.226.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:8f:97:97:2d:87:62:ba:1c:48:0a:2d:49:f6:28:c4:e6:27:bc:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:29:32 2026 GMT Not After : Apr 19 06:34:32 2027 GMT Subject: CN=E54AEFD85058E4A1683BDE9C4C35B0FCE69CB75B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f7:e9:d9:92:72:57:d5:fd:30:3f:c7:65:74: a3:ec:32:65:45:9e:6a:4d:95:a3:f7:2e:ce:51:a2: f3:3c:42:a1:8a:04:f7:2a:51:ba:1d:c2:91:f9:8a: b5:89:5c:a0:12:7c:a5:96:b3:5b:7d:54:42:a5:b7: 21:14:40:2d:02:eb:61:6e:fd:af:0f:d5:b1:b8:98: 31:e4:b0:b0:2d:7f:b3:fc:28:e2:e7:91:0a:e0:f3: 01:97:ef:4f:53:1c:f2:25:00:9d:89:f8:2e:ed:39: 40:3b:46:e2:0a:96:f1:22:e0:0e:4c:29:7c:f0:c7: 9c:83:56:05:c5:f4:f9:d5:ef:ea:92:df:ca:d0:03: dd:7f:57:5d:5c:04:be:75:4f:47:14:9e:b4:2a:5a: e7:8a:c2:77:cf:08:bf:04:dc:5c:29:4a:5b:76:4f: c3:f8:0d:82:23:0c:cf:95:50:70:63:16:f4:13:a5: 05:77:34:3b:59:ca:8e:f3:61:a3:c4:02:e8:b1:cb: e8:d6:85:be:dd:7a:bd:8f:7f:7a:29:ca:a7:f8:73: be:1c:3c:d3:67:1b:28:25:ca:42:30:37:09:ee:9f: 9a:fb:6d:df:a4:cd:bf:da:eb:fe:ff:8e:a5:38:10: c3:a4:0c:5c:df:ae:39:32:34:d3:3c:81:30:ed:b6: 19:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4A:EF:D8:50:58:E4:A1:68:3B:DE:9C:4C:35:B0:FC:E6:9C:B7:5B X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.112.0/22 Signature Algorithm: sha256WithRSAEncryption 52:74:c4:d6:24:8c:56:5c:a9:bb:d1:9e:cc:95:d4:ba:0a:ee: 4f:7d:e6:13:34:85:15:5b:a9:8a:53:43:27:8b:37:59:da:7f: 4e:03:ed:fb:a0:48:63:1c:2d:c2:23:b0:b7:b1:28:20:5c:dc: a5:db:cf:2c:c3:46:20:0a:e3:cc:c9:bd:2a:ad:74:fb:7f:7b: 00:a8:11:1c:16:f9:63:2f:11:ac:bb:9a:75:50:e3:c7:5b:15: ef:77:52:c6:a6:2b:58:92:af:32:cf:8f:11:cf:c6:3e:0b:f5: a7:6f:10:ef:50:29:6f:29:f7:ad:28:cf:ea:a1:6f:54:0c:28: ca:23:7b:37:92:75:f2:e9:0d:47:df:c8:cd:72:14:db:f1:17: c0:c9:e0:68:1e:66:be:f4:d7:52:3e:5e:f3:3f:94:94:f2:d8: c2:5b:d0:9b:37:78:a9:25:93:8a:1d:ac:07:db:9c:0a:34:6e: 3f:e0:71:7f:f2:02:fc:b1:47:27:f0:da:74:b5:6f:70:ee:93: 45:29:09:7b:bc:e3:89:3c:37:59:da:ca:d7:8e:ab:f1:cf:c1: bd:7d:14:19:71:35:95:40:4e:69:32:20:38:6c:bf:a6:dd:98: 62:65:e9:6a:6e:3c:7a:03:05:c9:05:66:2b:ab:2e:56:c7:83: c4:77:47:b7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUXY+Xly2HYrocSAotSfYoxOYnvE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjI5MzJaFw0yNzA0MTkwNjM0MzJaMDMxMTAvBgNV BAMTKEU1NEFFRkQ4NTA1OEU0QTE2ODNCREU5QzRDMzVCMEZDRTY5Q0I3NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA9+nZknJX1f0wP8dldKPsMmVF nmpNlaP3Ls5RovM8QqGKBPcqUbodwpH5irWJXKASfKWWs1t9VEKltyEUQC0C62Fu /a8P1bG4mDHksLAtf7P8KOLnkQrg8wGX709THPIlAJ2J+C7tOUA7RuIKlvEi4A5M KXzwx5yDVgXF9PnV7+qS38rQA91/V11cBL51T0cUnrQqWueKwnfPCL8E3FwpSlt2 T8P4DYIjDM+VUHBjFvQTpQV3NDtZyo7zYaPEAuixy+jWhb7der2Pf3opyqf4c74c PNNnGyglykIwNwnun5r7bd+kzb/a6/7/jqU4EMOkDFzfrjkyNNM8gTDtthkRAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU5Urv2FBY5KFoO96cTDWw/Oact1swHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzEzMTMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivicDANBgkqhkiG9w0BAQsFAAOCAQEAUnTE1iSMVlypu9GezJXUugru T33mEzSFFVupilNDJ4s3Wdp/TgPt+6BIYxwtwiOwt7EoIFzcpdvPLMNGIArjzMm9 Kq10+397AKgRHBb5Yy8RrLuadVDjx1sV73dSxqYrWJKvMs+PEc/GPgv1p28Q71Ap byn3rSjP6qFvVAwoyiN7N5J18ukNR9/IzXIU2/EXwMngaB5mvvTXUj5e8z+UlPLY wlvQmzd4qSWTih2sB9ucCjRuP+Bxf/IC/LFHJ/DadLVvcO6TRSkJe7zjiTw3WdrK 146r8c/BvX0UGXE1lUBOaTIgOGy/pt2YYmXpam48egMFyQVmK6suVseDxHdHtw== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:13 2026 by rpki-client