$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3132382e302f32302d3234203d3e203233363530.roa File: 34332e3232362e3132382e302f32302d3234203d3e203233363530.roa (raw, json) Hash identifier: 1sYVRbNI/xrN+m0JzMugUv6XnQJ6lSnc0PuFO4jVGks= Subject key identifier: F0:DA:6D:F5:6E:25:E3:46:2A:62:0C:A8:1D:A7:56:C5:97:52:71:E0 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 0E6AC69EE06E53A8AE8A0432FD5D75C89A8F1CCE Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3132382e302f32302d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:40:11 +0000 ROA not before: Mon 20 Apr 2026 06:35:11 +0000 ROA not after: Mon 19 Apr 2027 06:40:11 +0000 asID: 23650 IP address blocks: 43.226.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:6a:c6:9e:e0:6e:53:a8:ae:8a:04:32:fd:5d:75:c8:9a:8f:1c:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:35:11 2026 GMT Not After : Apr 19 06:40:11 2027 GMT Subject: CN=F0DA6DF56E25E3462A620CA81DA756C5975271E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0e:e8:cb:b2:f8:e6:82:02:58:e8:ba:87:00: 90:ee:68:de:8b:36:52:fe:66:8b:a6:c5:2c:15:af: f4:2a:ca:b6:4b:30:aa:08:b6:40:87:78:7e:19:e8: 6c:f1:98:10:af:7f:d2:5f:0c:92:3e:c6:00:c7:34: ef:7c:db:8b:69:18:9e:a9:76:de:05:21:d5:38:a7: 83:06:c1:af:57:35:27:40:54:a0:31:37:8f:96:c7: e8:4d:41:06:53:82:1a:f4:e9:19:46:05:93:7d:94: 35:9a:5d:09:07:5d:c9:dc:68:70:79:54:78:d3:2a: 93:9b:78:21:dd:5a:f4:94:b9:dd:23:29:ca:93:13: 00:56:9f:09:e0:52:87:e4:05:07:bb:21:d9:0d:22: 93:84:bf:d2:2c:ea:d8:24:43:96:1b:af:1b:a5:10: 39:95:10:79:54:b1:24:07:d0:cb:79:e8:a8:42:e3: 27:97:30:77:67:4e:3b:3e:f2:8b:7a:7e:b0:4e:85: dd:ae:1d:9a:1a:6b:1e:33:b4:75:10:a0:50:83:b3: 6c:de:84:7b:f6:62:56:03:3a:c0:89:90:de:ac:95: 7a:4c:fb:fc:15:36:35:6b:85:8c:eb:72:2a:a1:a2: 43:28:12:5b:e7:d9:fa:fb:17:62:7c:c5:5e:38:2e: af:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DA:6D:F5:6E:25:E3:46:2A:62:0C:A8:1D:A7:56:C5:97:52:71:E0 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e3132382e302f32302d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.128.0/20 Signature Algorithm: sha256WithRSAEncryption 21:ef:80:e2:d9:3b:f0:ca:04:8e:71:52:8b:c2:36:5e:fa:39: a4:85:bc:c4:07:4b:0e:b6:fa:db:c4:d0:b6:da:45:3d:6b:76: 81:65:3e:6a:a3:78:62:c3:5e:9d:78:72:4a:aa:bc:a9:cf:ef: eb:5a:27:a4:37:9b:50:6d:75:de:4e:5b:4b:31:87:c8:b0:de: 23:8e:a4:9f:c1:df:fc:8b:91:7d:ad:cc:e7:4e:15:45:77:93: 9a:a3:ae:3a:d0:67:14:58:39:49:36:ce:40:e5:5f:b0:ff:5b: bc:4f:c5:3c:ed:c0:ce:26:a2:9e:0c:18:03:71:85:c5:16:fe: ce:14:a6:50:cf:36:6f:19:cd:6d:f4:78:15:e7:95:29:d1:82: 88:a3:87:44:59:4d:a5:f9:5e:20:fe:c6:ce:ff:b2:f6:11:cb: 36:ce:16:f4:2f:54:2d:58:1e:63:71:ca:1a:63:97:0f:e6:e1: 1f:04:e4:ae:b4:7d:3f:72:bb:94:de:e6:60:43:bd:95:22:af: 08:d2:66:46:18:a4:24:6f:c1:8b:1a:fe:6e:46:68:b4:23:4e: 4c:19:24:35:f6:ae:6a:1b:c5:15:cc:cb:8a:71:1a:61:79:d0: 8f:e8:33:91:1e:b1:3f:db:0c:4b:5f:45:96:b4:21:6d:6f:fd: 1c:90:d4:1e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUDmrGnuBuU6iuigQy/V11yJqPHM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM1MTFaFw0yNzA0MTkwNjQwMTFaMDMxMTAvBgNV BAMTKEYwREE2REY1NkUyNUUzNDYyQTYyMENBODFEQTc1NkM1OTc1MjcxRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsDujLsvjmggJY6LqHAJDuaN6L NlL+ZoumxSwVr/QqyrZLMKoItkCHeH4Z6GzxmBCvf9JfDJI+xgDHNO9824tpGJ6p dt4FIdU4p4MGwa9XNSdAVKAxN4+Wx+hNQQZTghr06RlGBZN9lDWaXQkHXcncaHB5 VHjTKpObeCHdWvSUud0jKcqTEwBWnwngUofkBQe7IdkNIpOEv9Is6tgkQ5Ybrxul EDmVEHlUsSQH0Mt56KhC4yeXMHdnTjs+8ot6frBOhd2uHZoaax4ztHUQoFCDs2ze hHv2YlYDOsCJkN6slXpM+/wVNjVrhYzrciqhokMoElvn2fr7F2J8xV44Lq9FAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU8Npt9W4l40YqYgyoHadWxZdSceAwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzEzMjM4MmUzMDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBCvigDANBgkqhkiG9w0BAQsFAAOCAQEAIe+A4tk78MoEjnFSi8I2Xvo5 pIW8xAdLDrb628TQttpFPWt2gWU+aqN4YsNenXhySqq8qc/v61onpDebUG113k5b SzGHyLDeI46kn8Hf/IuRfa3M504VRXeTmqOuOtBnFFg5STbOQOVfsP9bvE/FPO3A ziaingwYA3GFxRb+zhSmUM82bxnNbfR4FeeVKdGCiKOHRFlNpfleIP7Gzv+y9hHL Ns4W9C9ULVgeY3HKGmOXD+bhHwTkrrR9P3K7lN7mYEO9lSKvCNJmRhikJG/Bixr+ bkZotCNOTBkkNfauahvFFczLinEaYXnQj+gzkR6xP9sMS19FlrQhbW/9HJDUHg== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:57 2026 by rpki-client