$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e203536303436.roa File: 34332e3232362e3131322e302f32322d3234203d3e203536303436.roa (raw, json) Hash identifier: P100/IVAiL+cvrBOnw8og2xwfLgqvluRizWoca5S5mQ= Subject key identifier: CF:2C:18:2D:FB:E6:28:9C:AD:88:D6:32:F9:32:22:58:17:C7:DB:3B Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 6C524F1A71ABCE887771AF31B67E3F1C4CCF19CD Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 06:34:32 +0000 ROA not before: Mon 20 Apr 2026 06:29:32 +0000 ROA not after: Mon 19 Apr 2027 06:34:32 +0000 asID: 56046 IP address blocks: 43.226.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:52:4f:1a:71:ab:ce:88:77:71:af:31:b6:7e:3f:1c:4c:cf:19:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:29:32 2026 GMT Not After : Apr 19 06:34:32 2027 GMT Subject: CN=CF2C182DFBE6289CAD88D632F932225817C7DB3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:23:02:17:16:e9:b2:b0:34:61:3f:9a:86:7e: 8c:94:d2:da:4e:02:c2:de:66:1e:5e:2c:83:91:c3: 74:ac:33:99:a0:a8:95:38:78:fd:8c:de:5f:fe:69: 65:58:76:bb:87:74:b7:4c:a8:d5:7a:fc:1f:e7:24: 07:8b:a9:a6:f8:20:67:f7:7f:fe:85:c0:28:9b:b8: 05:f9:3d:47:cb:43:ab:f1:79:f2:a1:a7:7f:16:ed: 52:36:bc:be:d3:6d:76:c3:08:98:15:3e:cc:be:22: 22:9f:de:c3:27:a9:59:e5:2f:62:d8:f8:f7:73:45: d1:81:d4:d1:37:b6:7a:3b:d5:2f:27:cb:1c:75:66: cd:75:db:91:d7:19:e6:ba:04:dc:cf:15:3b:d7:96: c4:ce:6f:47:3b:f1:5c:63:00:42:e0:67:88:b4:eb: a2:64:f7:fa:dd:92:26:9f:3b:bd:0f:1e:71:5c:87: 8d:1e:5b:10:b8:37:b7:04:04:e9:4b:e6:fd:47:fe: a9:c6:81:e4:7e:03:d1:4c:d4:8e:6a:cc:03:b0:b2: df:ee:c9:55:18:ed:4d:3f:70:7e:22:5c:3e:cb:2b: 36:ca:e7:2d:9a:c1:43:15:16:1e:8d:25:33:3a:b5: 23:82:4f:38:1d:4f:40:e6:9c:cc:2f:ce:ac:80:53: 79:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2C:18:2D:FB:E6:28:9C:AD:88:D6:32:F9:32:22:58:17:C7:DB:3B X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3131322e302f32322d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.112.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:fe:b6:7a:6b:82:57:8d:70:30:6d:93:7b:97:fe:a8:c4:fa: 05:d4:42:8c:f6:90:bf:2e:7f:69:f0:a5:5b:b3:e2:f2:b2:49: 6f:24:75:0f:9f:a1:1b:5a:81:cc:5a:ae:3d:73:c5:10:35:ac: 13:a3:53:08:0a:ab:64:e5:4b:78:6a:4d:9f:07:53:07:8c:15: a0:d6:7a:74:4a:45:59:56:22:8c:2e:08:ae:bb:2d:00:9f:4d: 29:0e:0d:ed:cb:d5:36:95:ae:49:dd:b3:c8:46:5f:60:d0:1b: af:d3:1d:eb:49:41:2c:b2:91:1e:2c:40:f3:2b:72:54:fe:d3: f1:38:a0:b3:c3:2e:e3:9d:e5:45:b0:3f:e8:a2:0c:00:27:3c: b5:5d:87:b6:96:67:02:9b:db:c7:1d:d7:12:8e:fc:79:18:aa: 62:06:7d:42:db:92:3b:4a:c9:8e:fe:32:78:1a:20:fc:a6:5e: c7:13:79:ad:c9:5b:0c:78:64:90:85:e0:ab:d7:93:7d:a1:82: 83:9f:3b:d0:e2:e2:8c:85:43:23:5a:9e:b7:c8:1c:c9:61:8c: 79:8e:2c:5a:08:a4:e2:ee:53:42:21:78:f9:b3:de:c3:f2:7f: 5f:ff:d6:5d:43:d9:e5:d8:8b:f5:32:c1:72:12:fd:23:43:1e: c2:f5:0c:69 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUbFJPGnGrzoh3ca8xtn4/HEzPGc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjI5MzJaFw0yNzA0MTkwNjM0MzJaMDMxMTAvBgNV BAMTKENGMkMxODJERkJFNjI4OUNBRDg4RDYzMkY5MzIyMjU4MTdDN0RCM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGIwIXFumysDRhP5qGfoyU0tpO AsLeZh5eLIORw3SsM5mgqJU4eP2M3l/+aWVYdruHdLdMqNV6/B/nJAeLqab4IGf3 f/6FwCibuAX5PUfLQ6vxefKhp38W7VI2vL7TbXbDCJgVPsy+IiKf3sMnqVnlL2LY +PdzRdGB1NE3tno71S8nyxx1Zs1125HXGea6BNzPFTvXlsTOb0c78VxjAELgZ4i0 66Jk9/rdkiafO70PHnFch40eWxC4N7cEBOlL5v1H/qnGgeR+A9FM1I5qzAOwst/u yVUY7U0/cH4iXD7LKzbK5y2awUMVFh6NJTM6tSOCTzgdT0DmnMwvzqyAU3lDAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUzywYLfvmKJytiNYy+TIiWBfH2zswHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzEzMTMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivicDANBgkqhkiG9w0BAQsFAAOCAQEAj/62emuCV41wMG2Te5f+qMT6 BdRCjPaQvy5/afClW7Pi8rJJbyR1D5+hG1qBzFquPXPFEDWsE6NTCAqrZOVLeGpN nwdTB4wVoNZ6dEpFWVYijC4IrrstAJ9NKQ4N7cvVNpWuSd2zyEZfYNAbr9Md60lB LLKRHixA8ytyVP7T8Tigs8Mu453lRbA/6KIMACc8tV2HtpZnApvbxx3XEo78eRiq YgZ9QtuSO0rJjv4yeBog/KZexxN5rclbDHhkkIXgq9eTfaGCg5870OLijIVDI1qe t8gcyWGMeY4sWgik4u5TQiF4+bPew/J/X//WXUPZ5diL9TLBchL9I0MewvUMaQ== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:25 2026 by rpki-client