$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e203233363530.roa File: 34332e3232362e35322e302f32342d3234203d3e203233363530.roa (raw, json) Hash identifier: jnkVVNxw9rguSjtv5PdSQrQrjxBoD1t6o9I+nQseDY4= Subject key identifier: 1C:9B:36:10:94:03:EA:F1:C6:92:0E:98:0B:3E:D9:5A:03:03:0E:7A Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 6BF697063C15F2CC9276F879A1A2B74AF318E4CC Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:47:29 +0000 ROA not before: Mon 20 Apr 2026 06:42:29 +0000 ROA not after: Mon 19 Apr 2027 06:47:29 +0000 asID: 23650 IP address blocks: 43.226.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:f6:97:06:3c:15:f2:cc:92:76:f8:79:a1:a2:b7:4a:f3:18:e4:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:42:29 2026 GMT Not After : Apr 19 06:47:29 2027 GMT Subject: CN=1C9B36109403EAF1C6920E980B3ED95A03030E7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:11:82:b0:6d:3f:d9:f6:a1:00:2d:c9:f4:4f: 49:be:92:0e:f9:ea:9b:1b:42:0b:92:2a:9f:e2:b8: 84:6c:cc:09:5a:71:c7:d1:58:63:3c:0d:9c:72:83: 3e:1a:dc:c3:8d:f8:2d:00:dd:8c:df:e7:32:fa:e5: 5c:24:43:b3:0d:1e:da:fe:5a:73:e3:21:7a:a3:86: 71:e0:29:ba:f2:14:e3:4f:1f:f4:c0:f7:bd:c7:c4: 4e:78:69:8a:df:6d:ed:1e:22:c5:1c:68:fc:38:6e: a0:27:5c:de:8a:46:eb:63:b1:5e:94:77:23:e1:2e: 72:89:a3:25:7b:55:2c:fc:05:be:bd:7b:f4:77:33: 3e:0a:c2:8f:3f:d6:47:4c:77:ea:71:82:7d:54:6d: be:f4:1d:47:fc:42:5d:2e:9d:be:a5:36:be:55:25: da:47:5f:d2:89:d5:44:a3:2f:0b:1f:f2:74:e2:aa: c1:17:f8:26:2b:91:34:a8:8c:81:4b:e1:37:08:d0: 6f:8d:ca:79:ea:41:6d:29:68:09:c1:be:8a:44:02: 65:f1:66:9f:7a:a1:a5:21:b4:85:ad:e1:f4:b8:92: 81:2f:ab:c4:0a:7c:0a:5c:44:f6:51:62:07:73:fc: c4:78:c4:c6:cf:06:9c:9a:7d:44:85:ca:d2:b1:56: 6a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:9B:36:10:94:03:EA:F1:C6:92:0E:98:0B:3E:D9:5A:03:03:0E:7A X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35322e302f32342d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.52.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:91:e2:46:3a:41:45:71:cd:0c:9d:ca:4e:40:04:86:bc:4b: 0f:3e:65:85:ba:81:05:60:cc:b6:d5:65:3a:29:30:0d:1f:4b: 71:d2:ed:79:4a:e3:4b:cc:de:c8:5e:82:d6:4f:d9:ca:d8:02: 04:65:73:e1:f0:1c:12:a8:05:03:22:0e:e0:72:97:ea:c3:1f: 9e:c4:2d:30:1c:7d:36:12:9b:6a:f6:f5:ac:34:ca:fa:61:02: 31:21:f2:8f:75:8a:ee:80:b5:bf:3c:fb:84:54:1d:d1:8b:e9: ee:9c:b8:4d:23:75:06:24:c6:c0:28:69:ea:9b:b5:8c:a9:45: 70:60:2e:f2:5e:a0:69:45:f8:c0:56:97:b5:93:3c:4f:e0:b8: 29:bd:aa:fb:79:e7:39:c2:e0:cd:00:9d:81:5f:de:6e:5a:6e: da:49:27:5e:49:7a:05:8a:cb:cb:6f:05:b0:48:a8:8e:e8:a3: 96:5e:65:c5:4e:f3:7d:6b:4b:04:eb:86:22:1b:fd:34:6d:35: eb:8b:af:42:da:3a:27:35:aa:f5:c3:27:e7:89:1a:b2:d8:88: ed:80:91:83:08:8b:70:22:21:e3:ff:fb:8a:fd:1c:98:16:f8: ab:b9:2d:75:be:b9:48:16:82:1e:05:ea:b6:54:99:ba:7f:bd: 6a:b0:75:f3 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUa/aXBjwV8sySdvh5oaK3SvMY5MwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQyMjlaFw0yNzA0MTkwNjQ3MjlaMDMxMTAvBgNV BAMTKDFDOUIzNjEwOTQwM0VBRjFDNjkyMEU5ODBCM0VEOTVBMDMwMzBFN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiEYKwbT/Z9qEALcn0T0m+kg75 6psbQguSKp/iuIRszAlaccfRWGM8DZxygz4a3MON+C0A3Yzf5zL65VwkQ7MNHtr+ WnPjIXqjhnHgKbryFONPH/TA973HxE54aYrfbe0eIsUcaPw4bqAnXN6KRutjsV6U dyPhLnKJoyV7VSz8Bb69e/R3Mz4Kwo8/1kdMd+pxgn1Ubb70HUf8Ql0unb6lNr5V JdpHX9KJ1USjLwsf8nTiqsEX+CYrkTSojIFL4TcI0G+NynnqQW0paAnBvopEAmXx Zp96oaUhtIWt4fS4koEvq8QKfApcRPZRYgdz/MR4xMbPBpyafUSFytKxVmqjAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUHJs2EJQD6vHGkg6YCz7ZWgMDDnowHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM2 MmUzNTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACviNDANBgkqhkiG9w0BAQsFAAOCAQEAXJHiRjpBRXHNDJ3KTkAEhrxLDz5l hbqBBWDMttVlOikwDR9LcdLteUrjS8zeyF6C1k/ZytgCBGVz4fAcEqgFAyIO4HKX 6sMfnsQtMBx9NhKbavb1rDTK+mECMSHyj3WK7oC1vzz7hFQd0Yvp7py4TSN1BiTG wChp6pu1jKlFcGAu8l6gaUX4wFaXtZM8T+C4Kb2q+3nnOcLgzQCdgV/eblpu2kkn Xkl6BYrLy28FsEiojuijll5lxU7zfWtLBOuGIhv9NG0164uvQto6JzWq9cMn54ka stiI7YCRgwiLcCIh4//7iv0cmBb4q7ktdb65SBaCHgXqtlSZun+9arB18w== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:54 2026 by rpki-client