$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e20313533393131.roa File: 34332e3232362e35322e302f32342d3234203d3e20313533393131.roa (raw, json) Hash identifier: QdS6vgx7x8o/o1XHebRkA1mMVMjFmE4xk8z6t6t/TN4= Subject key identifier: B7:89:AC:D1:85:FC:BD:4E:91:55:1D:A5:E4:C7:E5:D4:B8:CC:29:C9 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 01C8A44D999DD883F72830BFC8AA2C6E9EB87A32 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e20313533393131.roa Signing time: Mon 20 Apr 2026 06:47:29 +0000 ROA not before: Mon 20 Apr 2026 06:42:29 +0000 ROA not after: Mon 19 Apr 2027 06:47:29 +0000 asID: 153911 IP address blocks: 43.226.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c8:a4:4d:99:9d:d8:83:f7:28:30:bf:c8:aa:2c:6e:9e:b8:7a:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:42:29 2026 GMT Not After : Apr 19 06:47:29 2027 GMT Subject: CN=B789ACD185FCBD4E91551DA5E4C7E5D4B8CC29C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:6f:da:03:32:fc:ed:31:93:d9:3e:4c:64:f4: fa:bb:6d:a3:49:66:ba:53:97:6c:89:e5:f6:f6:a4: db:af:d2:80:01:6a:a4:ac:71:9d:d3:23:1e:98:a6: 80:e7:15:53:30:23:29:ed:0b:d0:0a:04:a9:4a:0d: da:9c:44:83:b2:ea:8e:18:c9:42:bc:9c:a9:04:e7: e4:c0:cb:d1:54:1c:7b:df:ae:cf:9f:06:b8:63:f9: 98:c4:30:ae:13:fe:67:1b:c4:19:6b:21:ca:d2:2d: 10:54:9e:9e:9c:15:4c:76:52:4b:f5:03:d5:1f:43: 36:a7:17:59:7e:67:d8:53:fc:34:21:88:d8:4f:9d: 65:ed:89:9d:ad:b8:9d:e5:38:6f:b3:15:c2:50:1a: dd:2a:3c:42:12:5f:e3:16:2e:b8:6e:83:a9:cc:4c: a1:6b:67:6c:4b:86:3d:ee:80:79:eb:23:c8:37:61: 25:45:31:45:6b:cb:50:37:57:44:87:37:d3:12:6f: ea:36:ea:2c:e7:ea:92:a2:43:52:fd:13:fa:c4:ae: b1:39:19:0b:6a:e4:67:01:4c:2d:b6:63:a0:5d:aa: 92:17:3d:98:19:52:70:7b:11:f5:35:03:19:9a:5e: f1:8a:35:be:1b:49:39:02:3f:fa:f2:e3:f4:65:9b: 2c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:89:AC:D1:85:FC:BD:4E:91:55:1D:A5:E4:C7:E5:D4:B8:CC:29:C9 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e20313533393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.52.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:92:cd:fe:8d:ac:30:83:6b:20:6a:4d:51:50:a3:63:c1:b0: b5:4a:c4:60:9f:b2:cd:67:3c:56:25:19:bf:55:fe:1d:9f:27: f1:a9:2a:68:fd:63:44:bb:a4:8e:ba:2f:da:c1:61:61:db:ad: 87:be:9b:0b:a0:b1:b8:e2:79:be:98:45:d5:d1:95:41:ed:20: 81:0e:18:2f:cf:42:29:5c:a8:ed:cd:ae:ed:cf:b8:49:b0:03: 5e:ad:4e:4d:b4:47:35:d0:0a:0f:0f:0b:d6:08:f7:03:bc:c5: af:ae:49:0b:ab:23:11:70:1d:4d:58:5f:d9:3c:f6:14:26:4f: ba:e6:25:58:1e:7c:eb:30:4b:31:68:be:0a:8b:22:37:9f:c9: 99:b7:10:14:42:cb:9e:09:69:a2:38:90:6a:d1:11:bb:3a:9c: 08:9e:d2:f8:21:a5:78:28:4b:7b:e4:a5:dc:f4:b1:c9:52:05: e3:ad:28:72:c4:12:a1:1e:d6:02:00:14:9f:96:e1:2f:48:38: 65:1a:41:34:87:d7:b5:d9:98:0c:d0:cf:d4:50:0b:4e:d0:99: 5c:64:2e:6e:18:39:70:14:c7:31:5a:d3:f0:09:02:dc:6e:0a: 5b:46:84:77:97:1f:87:f0:63:28:ad:fb:e6:9f:89:4c:58:31: 9a:ef:bc:40 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUAcikTZmd2IP3KDC/yKosbp64ejIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQyMjlaFw0yNzA0MTkwNjQ3MjlaMDMxMTAvBgNV BAMTKEI3ODlBQ0QxODVGQ0JENEU5MTU1MURBNUU0QzdFNUQ0QjhDQzI5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJb9oDMvztMZPZPkxk9Pq7baNJ ZrpTl2yJ5fb2pNuv0oABaqSscZ3TIx6YpoDnFVMwIyntC9AKBKlKDdqcRIOy6o4Y yUK8nKkE5+TAy9FUHHvfrs+fBrhj+ZjEMK4T/mcbxBlrIcrSLRBUnp6cFUx2Ukv1 A9UfQzanF1l+Z9hT/DQhiNhPnWXtiZ2tuJ3lOG+zFcJQGt0qPEISX+MWLrhug6nM TKFrZ2xLhj3ugHnrI8g3YSVFMUVry1A3V0SHN9MSb+o26izn6pKiQ1L9E/rErrE5 GQtq5GcBTC22Y6BdqpIXPZgZUnB7EfU1AxmaXvGKNb4bSTkCP/ry4/RlmyyjAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUt4ms0YX8vU6RVR2l5Mfl1LjMKckwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMzM5MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACviNDANBgkqhkiG9w0BAQsFAAOCAQEAHpLN/o2sMINrIGpNUVCjY8Gw tUrEYJ+yzWc8ViUZv1X+HZ8n8akqaP1jRLukjrov2sFhYduth76bC6CxuOJ5vphF 1dGVQe0ggQ4YL89CKVyo7c2u7c+4SbADXq1OTbRHNdAKDw8L1gj3A7zFr65JC6sj EXAdTVhf2Tz2FCZPuuYlWB586zBLMWi+CosiN5/JmbcQFELLnglpojiQatERuzqc CJ7S+CGleChLe+Sl3PSxyVIF460ocsQSoR7WAgAUn5bhL0g4ZRpBNIfXtdmYDNDP 1FALTtCZXGQubhg5cBTHMVrT8AkC3G4KW0aEd5cfh/BjKK375p+JTFgxmu+8QA== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:52 2026 by rpki-client