$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e20313331343833.roa File: 34332e3232362e35322e302f32342d3234203d3e20313331343833.roa (raw, json) Hash identifier: KS6+NwXgORbJTGvIi6ZmnDocDr/srVdvHhdFfQhEeiI= Subject key identifier: DA:83:55:A5:92:13:E5:9E:D7:5B:B2:A4:61:0C:73:81:A3:EE:B6:32 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 4F978B88D192EFAED54646F71DC98232083BE440 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 09:10:49 +0000 ROA not before: Mon 20 Apr 2026 09:05:49 +0000 ROA not after: Mon 19 Apr 2027 09:10:49 +0000 asID: 131483 IP address blocks: 43.226.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:97:8b:88:d1:92:ef:ae:d5:46:46:f7:1d:c9:82:32:08:3b:e4:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 09:05:49 2026 GMT Not After : Apr 19 09:10:49 2027 GMT Subject: CN=DA8355A59213E59ED75BB2A4610C7381A3EEB632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:33:5a:f0:0e:f4:cb:92:a3:06:72:ae:c2:8a: 90:88:dd:85:2d:03:4d:16:e2:b1:07:49:8c:7c:31: 7d:b9:98:70:a9:aa:c8:53:bc:96:02:91:cb:b4:21: fe:47:e7:1f:5a:07:92:b1:dd:cf:26:88:6a:04:31: 01:c4:07:d8:34:07:26:a1:da:a2:22:60:4f:6d:80: 33:85:b0:05:2e:49:44:01:2f:95:5f:bd:f5:1e:b3: 97:8c:6e:11:fd:d6:0c:76:63:5d:2c:de:80:43:09: d7:13:f4:b8:12:31:d2:6a:a2:35:f9:de:b3:07:6c: b2:02:f0:43:76:1a:c6:89:2a:c1:be:de:48:5e:64: e4:99:78:a6:4a:14:f0:a0:6d:cd:1b:c6:26:4a:3a: b2:d4:be:51:32:32:1b:8c:92:60:99:ba:d0:f1:51: c7:32:f1:ba:d3:43:c4:59:83:0a:92:2c:94:5e:81: 11:17:77:47:0e:fc:4a:d4:ef:71:63:3d:82:07:2e: 65:18:37:ad:60:6c:36:0f:08:b7:cd:24:7b:ce:26: 4e:ca:ac:37:42:81:57:7a:64:1f:d2:71:46:28:36: b5:9d:77:cc:28:76:13:f7:83:75:93:0f:5a:7a:9c: 18:be:13:a9:69:23:61:ec:01:72:ad:fd:ba:2d:5a: 26:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:83:55:A5:92:13:E5:9E:D7:5B:B2:A4:61:0C:73:81:A3:EE:B6:32 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.52.0/24 Signature Algorithm: sha256WithRSAEncryption 13:31:fe:82:16:0b:44:46:61:b8:46:f2:a5:0a:27:12:e2:75: 6a:68:22:8d:d0:85:ce:8d:a8:90:96:aa:a6:22:cf:54:2e:c4: 22:25:3f:a6:ae:3d:d7:ea:05:35:20:51:09:a9:f5:22:32:ba: 7c:ee:64:fe:cb:9a:d6:d7:e7:b7:a0:eb:83:a9:92:ee:85:37: 1f:f2:6d:63:1c:06:a1:09:47:15:11:4b:f9:c1:f5:a7:10:e2: 38:bd:d5:ce:56:fd:9c:cc:de:08:a9:1c:ec:cd:76:29:88:6e: 85:11:92:ed:19:70:80:66:4e:7d:c1:0e:59:86:c7:70:bf:3a: 1c:e7:85:23:36:ad:18:d5:f2:46:be:17:ff:be:27:b9:26:69: 7c:0e:42:32:3a:c4:d1:d7:85:d6:12:a2:5f:44:b0:aa:ea:b7: c2:7f:2d:64:fa:10:d3:f8:c0:62:22:10:8e:f0:8e:68:80:61: 73:8d:8b:36:34:b8:67:cc:17:80:b8:14:3e:29:85:ec:b7:1d: 91:66:20:55:94:5c:fb:33:6b:80:0f:ee:2c:ea:38:d2:2b:c5: 24:c1:81:4d:c3:ed:cf:a6:b6:96:9e:0b:35:0d:9d:54:ea:da: 07:08:bd:f5:7a:fc:05:4f:1c:01:bc:28:fd:e4:73:84:ac:1a: b9:bb:a3:cc -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUT5eLiNGS767VRkb3HcmCMgg75EAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwOTA1NDlaFw0yNzA0MTkwOTEwNDlaMDMxMTAvBgNV BAMTKERBODM1NUE1OTIxM0U1OUVENzVCQjJBNDYxMEM3MzgxQTNFRUI2MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtM1rwDvTLkqMGcq7CipCI3YUt A00W4rEHSYx8MX25mHCpqshTvJYCkcu0If5H5x9aB5Kx3c8miGoEMQHEB9g0Byah 2qIiYE9tgDOFsAUuSUQBL5VfvfUes5eMbhH91gx2Y10s3oBDCdcT9LgSMdJqojX5 3rMHbLIC8EN2GsaJKsG+3kheZOSZeKZKFPCgbc0bxiZKOrLUvlEyMhuMkmCZutDx Uccy8brTQ8RZgwqSLJRegREXd0cO/ErU73FjPYIHLmUYN61gbDYPCLfNJHvOJk7K rDdCgVd6ZB/ScUYoNrWdd8wodhP3g3WTD1p6nBi+E6lpI2HsAXKt/botWibbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU2oNVpZIT5Z7XW7KkYQxzgaPutjIwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACviNDANBgkqhkiG9w0BAQsFAAOCAQEAEzH+ghYLREZhuEbypQonEuJ1 amgijdCFzo2okJaqpiLPVC7EIiU/pq491+oFNSBRCan1IjK6fO5k/sua1tfnt6Dr g6mS7oU3H/JtYxwGoQlHFRFL+cH1pxDiOL3Vzlb9nMzeCKkc7M12KYhuhRGS7Rlw gGZOfcEOWYbHcL86HOeFIzatGNXyRr4X/74nuSZpfA5CMjrE0deF1hKiX0Swquq3 wn8tZPoQ0/jAYiIQjvCOaIBhc42LNjS4Z8wXgLgUPimF7LcdkWYgVZRc+zNrgA/u LOo40ivFJMGBTcPtz6a2lp4LNQ2dVOraBwi99Xr8BU8cAbwo/eRzhKwaubujzA== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:15 2026 by rpki-client