$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35352e302f32342d3234203d3e20313331343833.roa File: 34332e3232362e35352e302f32342d3234203d3e20313331343833.roa (raw, json) Hash identifier: ohZG3goUsPfqm0hV6CQF4PJW1C9AbNHLuDBIg4u4Tx8= Subject key identifier: 9C:B6:26:56:32:FB:E8:2F:8C:48:BC:5D:97:76:66:29:AA:C0:98:BD Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 50C6F96432461597809501D7C08FEA46A1DA0F0D Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35352e302f32342d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 09:10:50 +0000 ROA not before: Mon 20 Apr 2026 09:05:50 +0000 ROA not after: Mon 19 Apr 2027 09:10:50 +0000 asID: 131483 IP address blocks: 43.226.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:c6:f9:64:32:46:15:97:80:95:01:d7:c0:8f:ea:46:a1:da:0f:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 09:05:50 2026 GMT Not After : Apr 19 09:10:50 2027 GMT Subject: CN=9CB6265632FBE82F8C48BC5D97766629AAC098BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:39:7d:11:e7:4a:a5:5a:2e:4d:d3:42:da: be:53:4e:32:b2:0d:e1:62:b5:92:35:ab:cf:68:b6: eb:dd:34:c5:1a:51:5e:29:8e:4d:2d:3e:88:52:52: eb:c9:71:9a:cb:00:d8:9d:1e:56:ec:1a:ea:df:c0: 78:7a:95:d3:77:89:98:cc:12:46:95:95:ea:7b:d8: f7:ec:ee:34:88:9f:ee:31:96:66:c7:14:d9:db:9b: c0:1d:97:40:39:ef:4a:f3:35:0a:d6:34:67:6b:c2: 73:10:6e:1a:48:5b:2f:d5:05:f5:a1:44:28:e2:5b: 54:3c:e5:a4:63:68:df:56:12:7e:bd:6b:b5:2b:2a: a9:ea:58:4a:76:02:1e:c5:e7:6c:eb:7b:18:3a:b6: 1a:c6:fe:b8:11:99:4d:f1:b5:2b:e0:80:59:fd:69: c5:fe:87:1a:37:2e:60:2f:62:8f:66:87:76:cd:1c: cf:76:31:68:f1:81:d3:d8:a9:34:94:e8:89:1d:86: 3f:47:26:cf:be:b9:c2:c2:9e:99:a2:c6:27:af:29: 88:48:df:83:7f:29:31:12:c1:a7:9c:ea:e9:d7:8d: 28:ed:40:5c:94:95:2e:d9:cb:27:9e:67:4a:e0:9b: 6f:f1:2c:3d:40:98:bf:56:53:9a:90:3e:e4:47:27: 41:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B6:26:56:32:FB:E8:2F:8C:48:BC:5D:97:76:66:29:AA:C0:98:BD X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35352e302f32342d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.55.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:78:e3:9e:a8:57:bb:e9:28:37:ba:6c:c7:bd:0d:d4:d7:25: a8:c0:3a:e2:b3:ad:68:ba:6d:4b:5c:48:b8:07:79:09:97:0f: df:25:66:54:b3:57:fd:92:25:82:0f:6e:a6:cb:4a:44:7b:c3: 72:96:e6:c5:b8:22:0e:ea:dd:be:e1:d0:7c:88:cd:e5:2e:3e: c0:c8:37:d1:e3:39:fb:ae:4c:8a:85:97:73:a1:2c:8b:64:48: be:2c:6f:fa:15:8f:fd:4a:87:66:7a:65:b6:42:8d:ab:7c:d2: 5e:00:73:08:24:54:21:b9:1f:26:f6:b1:3b:7e:14:89:26:14: 54:27:7d:24:47:8b:8a:e6:85:80:a2:e8:dc:f1:27:7c:49:71: e9:62:60:8a:03:73:f3:9a:a9:3a:76:2c:a4:0f:63:3c:bc:9c: 8b:a7:46:ff:04:3f:9e:41:71:5e:f1:5f:3b:e9:fd:db:87:aa: bf:7d:9c:e3:6b:3a:f9:2c:4f:40:be:01:03:e7:79:23:7a:41: 08:87:d2:8e:05:2d:06:5b:ba:3f:c9:35:5d:b5:d0:66:d3:5a: 44:43:88:2d:00:fe:1c:c5:34:1c:d0:fc:9e:3c:ca:87:e8:ef: 61:cd:64:44:9e:46:7a:22:06:4e:14:4b:77:4d:7f:a8:88:91: 8f:2b:e1:a3 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUUMb5ZDJGFZeAlQHXwI/qRqHaDw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwOTA1NTBaFw0yNzA0MTkwOTEwNTBaMDMxMTAvBgNV BAMTKDlDQjYyNjU2MzJGQkU4MkY4QzQ4QkM1RDk3NzY2NjI5QUFDMDk4QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyCzl9EedKpVouTdNC2r5TTjKy DeFitZI1q89otuvdNMUaUV4pjk0tPohSUuvJcZrLANidHlbsGurfwHh6ldN3iZjM EkaVlep72Pfs7jSIn+4xlmbHFNnbm8Adl0A570rzNQrWNGdrwnMQbhpIWy/VBfWh RCjiW1Q85aRjaN9WEn69a7UrKqnqWEp2Ah7F52zrexg6thrG/rgRmU3xtSvggFn9 acX+hxo3LmAvYo9mh3bNHM92MWjxgdPYqTSU6Ikdhj9HJs++ucLCnpmixievKYhI 34N/KTESwaec6unXjSjtQFyUlS7ZyyeeZ0rgm2/xLD1AmL9WU5qQPuRHJ0FHAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUnLYmVjL76C+MSLxdl3ZmKarAmL0wHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzUzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACviNzANBgkqhkiG9w0BAQsFAAOCAQEAPXjjnqhXu+koN7psx70N1Ncl qMA64rOtaLptS1xIuAd5CZcP3yVmVLNX/ZIlgg9upstKRHvDcpbmxbgiDurdvuHQ fIjN5S4+wMg30eM5+65MioWXc6Esi2RIvixv+hWP/UqHZnpltkKNq3zSXgBzCCRU IbkfJvaxO34UiSYUVCd9JEeLiuaFgKLo3PEnfElx6WJgigNz85qpOnYspA9jPLyc i6dG/wQ/nkFxXvFfO+n924eqv32c42s6+SxPQL4BA+d5I3pBCIfSjgUtBlu6P8k1 XbXQZtNaREOILQD+HMU0HND8njzKh+jvYc1kRJ5GeiIGThRLd01/qIiRjyvhow== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:53 2026 by rpki-client