$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313533393131.roa File: 34332e3232362e34382e302f32342d3234203d3e20313533393131.roa (raw, json) Hash identifier: Q4qI+bhRZ+h2ZdTofX0nqQ2SaKHa5Rt0ojjKIxcNN9k= Subject key identifier: 76:B0:10:48:77:FF:21:D3:A6:70:7C:AB:B3:03:49:07:7B:A5:8D:C8 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 56BC5351EE13A3D10B8419EB5CA80C0257D4E6A0 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313533393131.roa Signing time: Mon 20 Apr 2026 06:45:42 +0000 ROA not before: Mon 20 Apr 2026 06:40:42 +0000 ROA not after: Mon 19 Apr 2027 06:45:42 +0000 asID: 153911 IP address blocks: 43.226.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:bc:53:51:ee:13:a3:d1:0b:84:19:eb:5c:a8:0c:02:57:d4:e6:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:40:42 2026 GMT Not After : Apr 19 06:45:42 2027 GMT Subject: CN=76B0104877FF21D3A6707CABB30349077BA58DC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e0:cd:19:de:b7:35:fe:2f:83:b4:be:4d:a0: 4d:ee:d5:39:a4:f9:e5:2e:0c:0d:0c:a5:f4:be:15: bc:1d:66:b7:5b:62:8e:7a:66:06:62:da:7f:33:20: bc:cf:c2:8c:eb:b9:e0:a4:63:a5:ab:50:60:a7:b7: 37:aa:20:8b:0a:9c:51:e6:6d:48:42:7a:5e:28:96: b2:a4:6e:7d:ea:17:3a:ed:c1:95:b2:77:10:6c:96: 7a:7a:c6:37:79:84:be:28:83:7e:19:d8:89:ba:43: df:d8:26:95:2c:d4:52:4b:17:e2:6a:a5:62:8e:c2: 5f:43:ef:c0:78:29:c4:07:c7:dc:b8:45:1b:f0:06: 96:10:25:c7:05:16:3d:fe:bc:a1:34:2b:73:f9:ec: d4:ac:cc:ee:dc:33:36:bd:cf:93:6f:f2:fc:41:f6: d5:f8:2f:b5:be:13:5f:a7:1a:98:e4:6f:2c:4b:77: 12:c8:53:6c:70:5d:60:5b:40:92:f3:b7:65:cb:e1: 35:4a:a3:9b:39:6c:b2:d3:1d:bd:06:b2:ab:3c:f3: 33:8d:ca:a6:26:9e:1f:80:e6:f0:ed:09:05:ff:86: a9:55:ad:e2:47:bc:20:55:0c:8c:11:5b:89:0d:0c: fd:a9:1a:62:a3:25:60:d6:03:6b:ef:6d:75:30:1d: 58:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B0:10:48:77:FF:21:D3:A6:70:7C:AB:B3:03:49:07:7B:A5:8D:C8 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e20313533393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.48.0/24 Signature Algorithm: sha256WithRSAEncryption 60:64:00:7b:e3:e0:e1:d7:7a:53:b9:60:cb:58:5b:1f:e6:09: e0:77:9d:03:7a:d3:6c:7a:e0:5c:d3:54:18:84:ba:67:1b:79: 8d:51:4b:1b:ae:f2:22:d4:f7:2b:cb:52:0b:04:7d:e6:b4:0e: f0:94:50:4a:b1:c4:c2:cf:5a:35:16:8d:04:89:ee:b7:1c:35: 2b:9b:0a:cc:68:1c:34:4a:4d:57:97:1d:c7:21:ca:63:9b:ea: d7:37:a9:87:95:a8:eb:84:27:82:da:9d:3c:fd:1d:16:2b:91: 41:9c:26:51:66:05:14:52:80:92:7d:27:c5:bb:64:b8:3c:66: de:d3:64:d1:6b:3d:6c:91:4a:4f:5b:1e:ad:76:33:b1:91:8c: 42:f6:89:8c:a6:c9:b3:46:ea:a8:53:b8:06:ea:0f:8b:bd:e4: 98:59:04:42:0f:f3:4c:4d:9b:8d:7c:09:17:ed:4b:a9:5f:62: 51:16:10:77:8f:4e:6c:9f:11:e5:23:10:43:c5:7f:8b:2a:5e: eb:c2:cf:70:66:ae:ae:7c:6f:2e:34:8a:4e:1b:8c:20:c8:6e: 04:94:5e:c5:68:6f:f0:4a:72:62:c6:08:7d:00:1b:a4:7f:6e: c4:bd:b9:45:30:ee:66:d9:c5:3a:23:b3:42:a3:71:cf:53:e1: cf:66:ee:17 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUVrxTUe4To9ELhBnrXKgMAlfU5qAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQwNDJaFw0yNzA0MTkwNjQ1NDJaMDMxMTAvBgNV BAMTKDc2QjAxMDQ4NzdGRjIxRDNBNjcwN0NBQkIzMDM0OTA3N0JBNThEQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT4M0Z3rc1/i+DtL5NoE3u1Tmk +eUuDA0MpfS+FbwdZrdbYo56ZgZi2n8zILzPwozrueCkY6WrUGCntzeqIIsKnFHm bUhCel4olrKkbn3qFzrtwZWydxBslnp6xjd5hL4og34Z2Im6Q9/YJpUs1FJLF+Jq pWKOwl9D78B4KcQHx9y4RRvwBpYQJccFFj3+vKE0K3P57NSszO7cMza9z5Nv8vxB 9tX4L7W+E1+nGpjkbyxLdxLIU2xwXWBbQJLzt2XL4TVKo5s5bLLTHb0Gsqs88zON yqYmnh+A5vDtCQX/hqlVreJHvCBVDIwRW4kNDP2pGmKjJWDWA2vvbXUwHVjrAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUdrAQSHf/IdOmcHyrswNJB3uljcgwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzQzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMzM5MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACviMDANBgkqhkiG9w0BAQsFAAOCAQEAYGQAe+Pg4dd6U7lgy1hbH+YJ 4HedA3rTbHrgXNNUGIS6Zxt5jVFLG67yItT3K8tSCwR95rQO8JRQSrHEws9aNRaN BInutxw1K5sKzGgcNEpNV5cdxyHKY5vq1zeph5Wo64QngtqdPP0dFiuRQZwmUWYF FFKAkn0nxbtkuDxm3tNk0Ws9bJFKT1serXYzsZGMQvaJjKbJs0bqqFO4BuoPi73k mFkEQg/zTE2bjXwJF+1LqV9iURYQd49ObJ8R5SMQQ8V/iype68LPcGaurnxvLjSK ThuMIMhuBJRexWhv8EpyYsYIfQAbpH9uxL25RTDuZtnFOiOzQqNxz1Phz2buFw== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:53 2026 by rpki-client