$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313331343833.roa File: 34332e3232362e35362e302f32312d3234203d3e20313331343833.roa (raw, json) Hash identifier: dSyBBqLPnmNBUfghLJ9+d4fIykIx/p+DZd6Uu965Hx4= Subject key identifier: CB:68:D6:28:11:87:36:0E:73:61:5A:71:33:2F:A6:09:B9:1A:67:57 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 64D04CA82129A5A5CDF55D6BF933E5B3B59E9B8A Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 09:10:50 +0000 ROA not before: Mon 20 Apr 2026 09:05:50 +0000 ROA not after: Mon 19 Apr 2027 09:10:50 +0000 asID: 131483 IP address blocks: 43.226.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:d0:4c:a8:21:29:a5:a5:cd:f5:5d:6b:f9:33:e5:b3:b5:9e:9b:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 09:05:50 2026 GMT Not After : Apr 19 09:10:50 2027 GMT Subject: CN=CB68D6281187360E73615A71332FA609B91A6757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9a:85:d9:0f:b3:ec:1a:e8:41:dd:9a:85:f7: f3:08:64:5f:ca:bb:14:72:4c:1e:9e:6f:ad:32:99: ba:61:c0:3d:eb:7a:63:74:54:0b:90:e2:ff:60:a1: 76:ef:31:5b:39:2c:d1:cd:a3:26:ed:38:41:78:54: db:77:5a:5d:59:c8:7d:c4:04:7d:7b:02:74:01:93: 85:74:f8:90:c2:b5:a9:86:b6:9e:a2:fd:36:29:2a: 96:29:d9:d8:e1:e4:f7:52:93:1f:81:33:d4:2d:17: c2:f6:a1:2b:63:12:4f:15:88:97:0b:1d:18:33:60: 1d:02:b5:2c:6d:d0:8f:d4:b8:20:ba:1e:9b:31:58: 26:70:6f:c7:09:a5:56:9d:08:d9:46:8d:2b:77:11: 9b:88:54:47:c8:e6:9b:3a:1a:df:64:b4:ea:8f:11: 7b:3b:84:91:a6:ed:18:f1:05:0b:45:48:01:8d:05: 7a:05:9a:8c:72:1a:bd:c9:a8:14:60:0a:23:23:7f: eb:80:b1:ba:ed:ed:a2:38:f8:eb:66:ec:39:68:d8: 87:5c:04:a1:04:5a:6c:c5:30:d1:6d:19:2f:a9:a9: 0a:6e:f5:86:f3:36:d8:04:e5:78:c4:99:5e:65:27: c4:27:3c:87:29:70:42:99:25:7d:cc:cf:1e:34:77: 84:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:68:D6:28:11:87:36:0E:73:61:5A:71:33:2F:A6:09:B9:1A:67:57 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.56.0/21 Signature Algorithm: sha256WithRSAEncryption a2:1f:f3:d4:06:79:ab:77:00:5b:ee:72:6e:00:b9:77:a8:f3: fd:8a:5b:ff:30:b3:51:65:c8:bd:70:46:10:ad:04:7b:05:03: f2:c1:cc:ae:a8:5b:48:0b:16:97:6b:02:62:9f:08:f5:21:07: 6b:ba:44:46:bd:73:85:89:d4:fb:8b:69:37:3f:d0:3e:e5:aa: 73:e1:be:03:fc:e6:ee:61:8d:49:63:97:2e:f2:12:87:c6:57: 64:5e:d1:75:a9:5b:5d:a0:eb:dc:8c:3d:25:79:b3:3f:be:81: 8d:77:34:24:62:3e:b3:c6:5b:e6:b5:ba:a5:88:44:ec:30:81: 96:cc:ca:6b:2a:31:d3:83:a3:fd:dd:26:bd:0a:36:20:65:29: 2f:ba:9e:67:62:ab:85:c4:e2:16:91:d9:76:3f:a0:51:d1:34: 44:00:6c:35:cf:a9:31:78:34:cf:42:34:e3:1a:e8:7c:34:4d: 9a:2f:68:da:1b:9e:49:7f:fb:17:e1:9a:23:77:4a:a9:de:76: 56:d3:f8:4f:29:f3:04:7a:36:a8:16:25:3e:a6:59:e7:d4:1d: ad:28:92:39:0b:0a:d0:37:20:8b:b3:50:df:92:ca:99:c7:08: 7f:75:9d:83:a1:b0:9d:2b:47:dc:b1:29:a8:1c:f7:2e:12:46: 9f:a3:e9:2c -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUZNBMqCEppaXN9V1r+TPls7Wem4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwOTA1NTBaFw0yNzA0MTkwOTEwNTBaMDMxMTAvBgNV BAMTKENCNjhENjI4MTE4NzM2MEU3MzYxNUE3MTMzMkZBNjA5QjkxQTY3NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEmoXZD7PsGuhB3ZqF9/MIZF/K uxRyTB6eb60ymbphwD3remN0VAuQ4v9goXbvMVs5LNHNoybtOEF4VNt3Wl1ZyH3E BH17AnQBk4V0+JDCtamGtp6i/TYpKpYp2djh5PdSkx+BM9QtF8L2oStjEk8ViJcL HRgzYB0CtSxt0I/UuCC6HpsxWCZwb8cJpVadCNlGjSt3EZuIVEfI5ps6Gt9ktOqP EXs7hJGm7RjxBQtFSAGNBXoFmoxyGr3JqBRgCiMjf+uAsbrt7aI4+Otm7Dlo2Idc BKEEWmzFMNFtGS+pqQpu9YbzNtgE5XjEmV5lJ8QnPIcpcEKZJX3Mzx40d4QrAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUy2jWKBGHNg5zYVpxMy+mCbkaZ1cwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzUzNjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyviODANBgkqhkiG9w0BAQsFAAOCAQEAoh/z1AZ5q3cAW+5ybgC5d6jz /Ypb/zCzUWXIvXBGEK0EewUD8sHMrqhbSAsWl2sCYp8I9SEHa7pERr1zhYnU+4tp Nz/QPuWqc+G+A/zm7mGNSWOXLvISh8ZXZF7RdalbXaDr3Iw9JXmzP76BjXc0JGI+ s8Zb5rW6pYhE7DCBlszKayox04Oj/d0mvQo2IGUpL7qeZ2KrhcTiFpHZdj+gUdE0 RABsNc+pMXg0z0I04xrofDRNmi9o2hueSX/7F+GaI3dKqd52VtP4TynzBHo2qBYl PqZZ59QdrSiSOQsK0Dcgi7NQ35LKmccIf3Wdg6GwnStH3LEpqBz3LhJGn6PpLA== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:53 2026 by rpki-client