$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e2034383337.roa File: 34332e3232362e34382e302f32342d3234203d3e2034383337.roa (raw, json) Hash identifier: 5/CwoHrTpoDAqltatM64gBjp+b7NVa4o2kiRqNaGbhQ= Subject key identifier: 56:E0:E1:AA:37:11:68:53:E4:0E:C9:AF:F5:AC:12:6F:41:73:B3:AC Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 6CE13C3A04DC1B9E851164AA78693739604A5092 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 06:45:42 +0000 ROA not before: Mon 20 Apr 2026 06:40:42 +0000 ROA not after: Mon 19 Apr 2027 06:45:42 +0000 asID: 4837 IP address blocks: 43.226.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e1:3c:3a:04:dc:1b:9e:85:11:64:aa:78:69:37:39:60:4a:50:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:40:42 2026 GMT Not After : Apr 19 06:45:42 2027 GMT Subject: CN=56E0E1AA37116853E40EC9AFF5AC126F4173B3AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:55:3b:76:87:a8:87:07:25:ad:76:d9:2d:6e: 65:e6:ea:9b:31:b1:a4:fb:62:0b:79:eb:d6:56:3b: 25:b1:dc:0f:83:ab:b1:05:6b:e3:40:1e:60:de:b5: b9:e8:30:d9:c1:8d:a8:ef:15:07:d7:5b:89:72:1e: df:e2:92:99:56:32:17:58:fb:3a:08:94:44:46:9b: 4c:7b:ee:ae:82:63:04:c6:ae:85:55:4b:43:80:ee: ba:a4:7f:3c:49:9a:65:ff:f0:a0:ed:3d:4c:a3:ca: cc:37:fd:7d:49:60:81:04:96:c9:e1:f8:07:02:db: 44:a3:63:3a:6b:70:55:4d:50:74:40:98:c5:0a:f4: 8d:b1:d7:9b:a5:13:2a:d6:f2:7f:09:cc:b7:41:20: 8c:1f:56:ae:6b:85:9a:a4:3b:fa:8f:6f:0d:51:4a: d5:19:16:1c:b1:d5:97:aa:15:a9:83:4b:9e:cf:15: 1d:e5:a5:a0:09:a5:92:46:a8:83:bd:fd:77:4a:84: 29:2f:1e:37:be:90:57:13:e3:09:2b:8e:37:66:13: 08:37:8e:7b:6e:24:78:22:7d:fb:68:e9:d3:c5:cc: f6:47:7c:8d:36:d1:b1:7e:fe:e1:66:85:80:71:d9: 30:74:15:5f:94:69:77:c5:73:22:b7:61:32:21:86: 32:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E0:E1:AA:37:11:68:53:E4:0E:C9:AF:F5:AC:12:6F:41:73:B3:AC X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e34382e302f32342d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.48.0/24 Signature Algorithm: sha256WithRSAEncryption a8:d4:65:bd:8a:3b:9f:f2:28:d6:ad:6b:52:e7:3d:97:f6:00: 8e:2f:13:ae:1c:73:6a:48:4f:41:34:21:9c:b7:2c:61:d8:8b: db:7f:c7:a2:26:cf:b9:6c:7e:be:fe:56:c2:8c:32:77:53:d1: e8:67:91:6c:a5:2c:d2:59:cb:17:3f:32:4e:4a:3b:ae:1d:3c: db:8a:97:fe:1f:0b:01:d2:3f:dd:c6:93:91:4c:e0:5a:bc:9d: 71:a5:ce:fd:55:85:31:57:db:c4:d5:3f:e8:60:b5:37:db:21: cd:f4:81:34:b0:30:df:c7:32:d2:46:e9:40:c5:72:e7:c8:e0: f2:71:7c:e8:53:9f:90:df:5d:be:e6:5d:4b:35:ca:fe:52:8a: 55:6b:5e:e1:aa:63:af:02:55:0a:b0:d0:47:a9:5b:0f:81:3d: ed:4b:32:90:79:1b:79:0e:dd:8f:5b:27:02:36:6e:80:a3:41: a3:f7:d3:e5:b3:cf:85:bb:32:f2:e2:04:3b:73:d4:d1:7d:f3: 5b:5a:5f:2b:3c:5c:0a:e7:b0:c1:a9:15:5e:f4:8c:f9:3e:bc: e7:ec:9c:33:83:7a:1d:63:f0:9f:a8:8d:05:33:43:e0:d7:bc: 4a:9f:35:42:1f:16:0f:af:34:35:f6:f4:a1:51:43:4d:b5:d1: 07:9f:62:bc -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUbOE8OgTcG56FEWSqeGk3OWBKUJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQwNDJaFw0yNzA0MTkwNjQ1NDJaMDMxMTAvBgNV BAMTKDU2RTBFMUFBMzcxMTY4NTNFNDBFQzlBRkY1QUMxMjZGNDE3M0IzQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3VTt2h6iHByWtdtktbmXm6psx saT7Ygt569ZWOyWx3A+Dq7EFa+NAHmDetbnoMNnBjajvFQfXW4lyHt/ikplWMhdY +zoIlERGm0x77q6CYwTGroVVS0OA7rqkfzxJmmX/8KDtPUyjysw3/X1JYIEElsnh +AcC20SjYzprcFVNUHRAmMUK9I2x15ulEyrW8n8JzLdBIIwfVq5rhZqkO/qPbw1R StUZFhyx1ZeqFamDS57PFR3lpaAJpZJGqIO9/XdKhCkvHje+kFcT4wkrjjdmEwg3 jntuJHgiffto6dPFzPZHfI020bF+/uFmhYBx2TB0FV+UaXfFcyK3YTIhhjIpAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUVuDhqjcRaFPkDsmv9awSb0Fzs6wwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM2 MmUzNDM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAr4jAwDQYJKoZIhvcNAQELBQADggEBAKjUZb2KO5/yKNata1LnPZf2AI4vE64c c2pIT0E0IZy3LGHYi9t/x6Imz7lsfr7+VsKMMndT0ehnkWylLNJZyxc/Mk5KO64d PNuKl/4fCwHSP93Gk5FM4Fq8nXGlzv1VhTFX28TVP+hgtTfbIc30gTSwMN/HMtJG 6UDFcufI4PJxfOhTn5DfXb7mXUs1yv5SilVrXuGqY68CVQqw0EepWw+BPe1LMpB5 G3kO3Y9bJwI2boCjQaP30+Wzz4W7MvLiBDtz1NF981taXys8XArnsMGpFV70jPk+ vOfsnDODeh1j8J+ojQUzQ+DXvEqfNUIfFg+vNDX29KFRQ0210QefYrw= -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:00 2026 by rpki-client