$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313531333030.roa File: 34332e3232362e34382e302f32342d3234203d3e20313531333030.roa (raw, json) Hash identifier: fhWh6Z1k9KSMTpmYWiDg0Ce2jH/3TcbeMJ/YxrjhyU4= Subject key identifier: B2:AE:8E:FA:BA:8C:13:36:33:99:84:4D:B1:7C:09:1B:AE:AE:A3:39 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 5E4F894A39447CE4F885B07B2C416E546CD03CFF Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313531333030.roa Signing time: Mon 20 Apr 2026 06:45:42 +0000 ROA not before: Mon 20 Apr 2026 06:40:42 +0000 ROA not after: Mon 19 Apr 2027 06:45:42 +0000 asID: 151300 IP address blocks: 43.226.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:4f:89:4a:39:44:7c:e4:f8:85:b0:7b:2c:41:6e:54:6c:d0:3c:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:40:42 2026 GMT Not After : Apr 19 06:45:42 2027 GMT Subject: CN=B2AE8EFABA8C13363399844DB17C091BAEAEA339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:50:bc:cb:a7:b7:11:c1:a7:3b:44:12:e3:da: e0:5d:a7:f3:d1:5a:f9:c4:e9:d9:2c:b1:34:61:4b: bf:9c:b7:f1:dc:92:18:f9:ab:b5:3d:c2:b0:04:be: 8b:a7:9a:8c:37:31:6a:66:9a:3d:f2:5b:41:4c:78: fc:30:a5:d4:dd:63:35:17:db:87:fa:b1:45:e9:72: 6a:1c:83:0b:1d:c0:d9:b2:39:a1:47:90:b8:6c:e3: 95:5a:8b:99:dd:90:8c:dc:bf:fc:b6:71:63:c9:d9: 03:57:69:61:56:d6:46:5c:98:c1:4f:7c:e2:1d:05: c7:29:d4:fd:5a:25:0d:17:6f:a5:39:e1:02:6e:8f: a9:60:97:3f:13:a0:7c:58:98:70:2d:31:c5:78:c9: 25:a4:21:1c:cd:db:d2:12:47:2f:58:5d:ce:f9:bb: a8:ee:6b:0b:7e:d2:93:ad:3b:de:bb:ec:c4:34:cb: da:11:1f:71:55:75:b1:5a:e3:96:cf:0b:f2:4a:96: c8:07:f0:42:44:53:97:ce:7f:fb:16:c6:f8:ab:fc: 86:4f:87:1c:a2:9a:3c:f0:ee:6f:d9:dc:b4:8a:42: 8a:83:c3:b1:94:a5:15:01:7c:06:57:7c:8a:bd:e2: 8d:bd:59:d4:b2:4a:1a:58:cf:b5:f9:9d:7c:80:80: 30:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:AE:8E:FA:BA:8C:13:36:33:99:84:4D:B1:7C:09:1B:AE:AE:A3:39 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313531333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.48.0/24 Signature Algorithm: sha256WithRSAEncryption 47:fc:a9:71:4c:51:cc:35:8e:ab:ad:bc:64:b2:51:73:17:5b: c4:42:fc:16:55:48:7b:73:54:66:f1:a9:2d:be:1c:de:7b:22: c8:ea:2c:f5:ab:9b:f8:9e:d0:57:63:c9:af:d8:07:00:9d:3b: 13:de:e5:70:d5:56:fe:d2:b4:ae:c4:2e:61:dc:6f:98:5f:dc: fe:d0:e3:1e:51:72:36:2f:de:13:78:81:5e:a8:19:05:a1:b5: 11:3b:af:a6:f1:c5:14:7b:cd:f5:05:88:66:cc:26:68:46:bd: fe:f1:fd:14:c9:99:5f:5d:4c:d5:29:63:f5:90:33:6f:16:e5: e5:34:de:1e:9b:30:c6:92:7b:3f:ec:e4:8c:bf:5c:b8:0f:47: 1e:1d:57:55:c1:5f:6a:2b:76:09:ec:99:82:15:34:01:00:85: 36:81:fc:a0:74:12:5b:96:45:f5:d2:45:07:89:45:d3:a6:06: 0d:de:18:b5:95:c2:55:23:d5:ca:96:b0:30:ee:c3:94:34:dc: 73:0b:b2:3d:6c:cb:35:61:5d:43:24:31:e4:ba:52:07:dd:d0: 6f:90:36:d1:f5:1f:1d:21:4a:e1:fe:ec:aa:cb:d3:b0:91:cc: 24:49:49:cd:f3:42:ed:95:b1:77:64:d8:6b:6d:fa:c2:2c:7d: bb:b5:cc:e9 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUXk+JSjlEfOT4hbB7LEFuVGzQPP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQwNDJaFw0yNzA0MTkwNjQ1NDJaMDMxMTAvBgNV BAMTKEIyQUU4RUZBQkE4QzEzMzYzMzk5ODQ0REIxN0MwOTFCQUVBRUEzMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvULzLp7cRwac7RBLj2uBdp/PR WvnE6dkssTRhS7+ct/Hckhj5q7U9wrAEvounmow3MWpmmj3yW0FMePwwpdTdYzUX 24f6sUXpcmocgwsdwNmyOaFHkLhs45Vai5ndkIzcv/y2cWPJ2QNXaWFW1kZcmMFP fOIdBccp1P1aJQ0Xb6U54QJuj6lglz8ToHxYmHAtMcV4ySWkIRzN29ISRy9YXc75 u6juawt+0pOtO9677MQ0y9oRH3FVdbFa45bPC/JKlsgH8EJEU5fOf/sWxvir/IZP hxyimjzw7m/Z3LSKQoqDw7GUpRUBfAZXfIq94o29WdSyShpYz7X5nXyAgDAxAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUsq6O+rqMEzYzmYRNsXwJG66uozkwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzQzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACviMDANBgkqhkiG9w0BAQsFAAOCAQEAR/ypcUxRzDWOq628ZLJRcxdb xEL8FlVIe3NUZvGpLb4c3nsiyOos9aub+J7QV2PJr9gHAJ07E97lcNVW/tK0rsQu YdxvmF/c/tDjHlFyNi/eE3iBXqgZBaG1ETuvpvHFFHvN9QWIZswmaEa9/vH9FMmZ X11M1Slj9ZAzbxbl5TTeHpswxpJ7P+zkjL9cuA9HHh1XVcFfait2CeyZghU0AQCF NoH8oHQSW5ZF9dJFB4lF06YGDd4YtZXCVSPVypawMO7DlDTccwuyPWzLNWFdQyQx 5LpSB93Qb5A20fUfHSFK4f7sqsvTsJHMJElJzfNC7ZWxd2TYa236wix9u7XM6Q== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:11 2026 by rpki-client