$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e2034383337.roa File: 34332e3232362e3131322e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: Z78D+yuQgvJ7vx97Yh0DAIg5LBDlsu0hEXnXU8h31NQ= Subject key identifier: DE:58:C1:D5:47:6E:EA:0F:72:E1:7F:0A:8C:0F:02:EB:83:7B:9E:61 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 084DDD69B9483D590EEBA344AC8600F327379852 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 06:34:32 +0000 ROA not before: Mon 20 Apr 2026 06:29:32 +0000 ROA not after: Mon 19 Apr 2027 06:34:32 +0000 asID: 4837 IP address blocks: 43.226.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:4d:dd:69:b9:48:3d:59:0e:eb:a3:44:ac:86:00:f3:27:37:98:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:29:32 2026 GMT Not After : Apr 19 06:34:32 2027 GMT Subject: CN=DE58C1D5476EEA0F72E17F0A8C0F02EB837B9E61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:05:ad:7d:ad:2e:f5:0f:82:6a:10:a7:1c:63: 38:c5:06:08:0c:de:89:ad:ff:24:a1:a6:39:22:9f: d8:39:11:30:a4:25:df:1b:23:71:24:e3:67:6e:26: 9b:4a:bf:a6:f5:d9:a2:7b:bb:ab:79:d2:e0:81:cd: fa:c7:c2:7b:f1:38:e2:29:f5:eb:aa:1f:38:cc:ed: a7:8a:e7:a0:fe:7c:32:77:0a:7d:19:dd:03:0a:6c: 1b:ae:52:8f:5d:00:68:25:51:7e:5a:37:ed:1c:83: 6a:a0:7e:81:7e:c4:da:2b:02:31:8a:fc:9a:f1:7f: 99:81:21:77:3f:a8:cd:53:7d:e3:73:19:5e:e9:80: 1a:f1:f7:b3:cd:a3:b2:9b:c8:bb:fa:2b:34:bc:88: 12:ed:c7:46:70:4b:7d:56:2c:50:b1:d6:4c:39:df: 39:bf:79:00:6c:40:f3:f6:1a:4b:2b:14:9e:9c:f6: dc:48:5a:ab:54:47:26:d4:46:27:39:32:e5:59:95: bf:35:5c:44:c4:aa:11:7c:ee:39:0a:5e:5c:df:2f: b3:7c:3f:df:31:d6:8c:f3:02:9d:54:2d:0c:89:ad: 83:15:02:ed:9a:89:ff:a9:8e:a0:11:1d:87:41:81: 87:8a:93:91:d9:2f:e6:ae:fc:6b:f6:db:e1:dc:9c: 36:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:58:C1:D5:47:6E:EA:0F:72:E1:7F:0A:8C:0F:02:EB:83:7B:9E:61 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.112.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:2b:68:c2:52:eb:a4:98:38:a2:ea:2b:c5:00:91:cd:a4:86: ac:b5:03:af:96:f9:be:62:53:66:47:38:3e:b9:69:cc:07:43: 9d:c3:8b:c8:84:2a:44:69:4a:38:8d:23:dc:69:b5:d5:a1:05: 73:25:14:d7:44:07:a5:6b:58:e6:c1:92:c9:ec:81:13:2f:88: f1:ab:db:64:93:f4:5b:f3:1a:ac:d2:62:f6:63:d2:0e:cc:44: e4:52:ef:32:fc:17:63:0b:2e:96:ec:8e:a6:29:a9:4f:2d:25: 52:5c:6e:8f:74:01:b4:cd:e3:93:21:ff:89:82:65:0a:9c:4b: 6b:cb:f4:73:f5:0a:5a:f2:58:8a:13:7c:9c:11:b8:6c:31:f7: 30:e2:ab:67:80:aa:62:03:09:ac:e5:b1:3b:e6:3a:92:d6:58: fb:e9:bb:a4:f1:8f:f4:e9:4f:e7:c2:6e:86:b8:e7:dd:ca:e4: 13:98:32:4c:a5:fc:a2:42:2c:53:54:23:f6:e1:8f:55:c5:8c: 86:7d:2c:3c:62:1e:b5:c9:1e:ce:68:a8:5c:5d:4a:cd:cd:9c: 9a:2c:66:bf:63:a2:2f:d3:67:c9:2f:66:0d:61:9f:b4:fc:f5: 5d:8b:01:6b:b6:9a:e4:44:55:93:ee:45:09:77:ef:79:20:cb: 01:a9:19:87 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUCE3dablIPVkO66NErIYA8yc3mFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjI5MzJaFw0yNzA0MTkwNjM0MzJaMDMxMTAvBgNV BAMTKERFNThDMUQ1NDc2RUVBMEY3MkUxN0YwQThDMEYwMkVCODM3QjlFNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrBa19rS71D4JqEKccYzjFBggM 3omt/yShpjkin9g5ETCkJd8bI3Ek42duJptKv6b12aJ7u6t50uCBzfrHwnvxOOIp 9euqHzjM7aeK56D+fDJ3Cn0Z3QMKbBuuUo9dAGglUX5aN+0cg2qgfoF+xNorAjGK /Jrxf5mBIXc/qM1TfeNzGV7pgBrx97PNo7KbyLv6KzS8iBLtx0ZwS31WLFCx1kw5 3zm/eQBsQPP2GksrFJ6c9txIWqtURybURic5MuVZlb81XETEqhF87jkKXlzfL7N8 P98x1ozzAp1ULQyJrYMVAu2aif+pjqARHYdBgYeKk5HZL+au/Gv22+HcnDbxAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU3ljB1Udu6g9y4X8KjA8C64N7nmEwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM2 MmUzMTMxMzIyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM4MzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAivicDANBgkqhkiG9w0BAQsFAAOCAQEAWitowlLrpJg4ouorxQCRzaSGrLUD r5b5vmJTZkc4PrlpzAdDncOLyIQqRGlKOI0j3Gm11aEFcyUU10QHpWtY5sGSyeyB Ey+I8avbZJP0W/MarNJi9mPSDsxE5FLvMvwXYwsuluyOpimpTy0lUlxuj3QBtM3j kyH/iYJlCpxLa8v0c/UKWvJYihN8nBG4bDH3MOKrZ4CqYgMJrOWxO+Y6ktZY++m7 pPGP9OlP58Juhrjn3crkE5gyTKX8okIsU1Qj9uGPVcWMhn0sPGIetckezmioXF1K zc2cmixmv2OiL9NnyS9mDWGftPz1XYsBa7aa5ERVk+5FCXfveSDLAakZhw== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:56 2026 by rpki-client