$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313331343833.roa File: 34332e3232362e34382e302f32342d3234203d3e20313331343833.roa (raw, json) Hash identifier: J8UI5cqMzbn767fOLkFLbZIpBcagi2dKanuCELVIssY= Subject key identifier: 85:CE:45:19:80:93:FB:59:90:27:B6:EF:29:B1:F7:94:AC:19:B6:F1 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 244DA767647BB87A26581E33259BD583FD4809AC Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 09:10:50 +0000 ROA not before: Mon 20 Apr 2026 09:05:50 +0000 ROA not after: Mon 19 Apr 2027 09:10:50 +0000 asID: 131483 IP address blocks: 43.226.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:4d:a7:67:64:7b:b8:7a:26:58:1e:33:25:9b:d5:83:fd:48:09:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 09:05:50 2026 GMT Not After : Apr 19 09:10:50 2027 GMT Subject: CN=85CE45198093FB599027B6EF29B1F794AC19B6F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4c:55:e5:86:17:cb:e0:f2:f1:1c:59:34:80: 57:a6:ea:b4:9f:34:8a:bf:78:b7:e1:03:71:d0:17: 69:f7:ee:56:25:e7:24:2e:a0:17:15:ce:8e:19:ff: 77:65:ce:c9:bc:08:7f:df:a5:4e:fe:66:18:b7:8d: f2:64:65:f0:75:3c:74:97:0a:7b:c7:72:bf:c4:3b: 8b:c1:20:b3:fc:d7:98:7c:bb:6f:96:bf:53:81:aa: 33:3b:b3:53:d1:0d:9f:ba:ee:c5:7d:2c:b2:39:e4: b7:7e:dd:69:41:5f:c8:f2:30:cb:c0:04:c4:01:e7: 86:97:d2:3b:ad:49:75:a5:2a:68:b6:e5:2d:6b:40: d2:de:d7:29:62:43:99:b7:1e:02:9e:c0:41:d4:c7: 4f:d9:81:a3:a6:46:a3:41:59:78:22:f1:c1:43:a8: cb:87:13:c0:0c:68:99:b0:54:42:82:79:94:9d:6c: b7:b8:64:5a:ff:27:06:59:60:9e:33:94:93:e5:4b: 19:99:d9:77:58:78:74:2b:f0:14:fe:29:8a:3f:7e: 93:5a:7d:68:76:be:ef:8f:43:70:49:1f:4b:9f:a7: c3:28:01:13:73:3d:02:f0:3d:bb:80:e9:91:7a:ba: ef:ec:c2:73:f1:3f:1a:e1:75:b4:6b:91:c5:39:ea: e7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:CE:45:19:80:93:FB:59:90:27:B6:EF:29:B1:F7:94:AC:19:B6:F1 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.48.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:51:19:6f:03:e9:51:50:71:ec:de:26:56:66:ae:de:0f:97: 40:f0:06:41:85:ce:82:83:70:c1:6b:f3:5c:85:25:a0:6c:4f: a2:17:f4:fc:78:c4:ba:f6:83:7e:61:ce:dd:26:7c:84:92:77: 84:c0:4e:bb:1d:b1:7e:b1:a3:5e:af:6b:0c:94:4c:4f:e3:78: fd:ce:53:fa:60:3e:21:09:1d:95:c6:8e:ef:c5:57:2d:d6:4a: 91:88:be:b7:03:7b:6e:98:ae:b5:a0:bb:1e:04:ce:90:9d:b0: 7a:87:b7:fe:b1:04:e7:06:a3:73:2e:62:21:b5:cf:2b:ed:24: 52:1e:71:42:9d:f5:da:77:bf:df:45:ad:0c:f9:02:60:f3:07: 88:17:38:ba:24:66:ae:44:d6:40:45:4b:cc:9f:39:32:b1:ea: f6:ae:e6:21:d4:a5:4e:b6:a1:4a:56:0f:af:f0:54:47:7c:80: c5:2d:d2:80:e6:0f:93:cb:10:c5:44:51:5f:84:ce:22:56:ac: 08:4e:b8:46:bc:6e:ad:20:88:3a:96:92:f0:58:23:4a:1c:2b: e7:a9:c0:df:a2:4c:d1:03:44:cd:e9:51:5b:de:6e:c0:81:63: ed:61:da:e3:cc:51:76:e1:86:4c:de:ca:1d:f0:3d:ce:ce:ab: 5c:d9:df:45 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJE2nZ2R7uHomWB4zJZvVg/1ICawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwOTA1NTBaFw0yNzA0MTkwOTEwNTBaMDMxMTAvBgNV BAMTKDg1Q0U0NTE5ODA5M0ZCNTk5MDI3QjZFRjI5QjFGNzk0QUMxOUI2RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtTFXlhhfL4PLxHFk0gFem6rSf NIq/eLfhA3HQF2n37lYl5yQuoBcVzo4Z/3dlzsm8CH/fpU7+Zhi3jfJkZfB1PHSX CnvHcr/EO4vBILP815h8u2+Wv1OBqjM7s1PRDZ+67sV9LLI55Ld+3WlBX8jyMMvA BMQB54aX0jutSXWlKmi25S1rQNLe1yliQ5m3HgKewEHUx0/ZgaOmRqNBWXgi8cFD qMuHE8AMaJmwVEKCeZSdbLe4ZFr/JwZZYJ4zlJPlSxmZ2XdYeHQr8BT+KYo/fpNa fWh2vu+PQ3BJH0ufp8MoARNzPQLwPbuA6ZF6uu/swnPxPxrhdbRrkcU56uc3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUhc5FGYCT+1mQJ7bvKbH3lKwZtvEwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzQzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACviMDANBgkqhkiG9w0BAQsFAAOCAQEADlEZbwPpUVBx7N4mVmau3g+X QPAGQYXOgoNwwWvzXIUloGxPohf0/HjEuvaDfmHO3SZ8hJJ3hMBOux2xfrGjXq9r DJRMT+N4/c5T+mA+IQkdlcaO78VXLdZKkYi+twN7bpiutaC7HgTOkJ2weoe3/rEE 5wajcy5iIbXPK+0kUh5xQp312ne/30WtDPkCYPMHiBc4uiRmrkTWQEVLzJ85MrHq 9q7mIdSlTrahSlYPr/BUR3yAxS3SgOYPk8sQxURRX4TOIlasCE64RrxurSCIOpaS 8FgjShwr56nA36JM0QNEzelRW95uwIFj7WHa48xRduGGTN7KHfA9zs6rXNnfRQ== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:52 2026 by rpki-client