$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313531333030.roa File: 34332e3232362e35362e302f32312d3234203d3e20313531333030.roa (raw, json) Hash identifier: p8wyHMgyTAEa023q+H3149TR9sN+ABylfJAi68A1lfw= Subject key identifier: D2:E4:31:C7:52:96:0E:8C:41:ED:39:4D:F5:71:6D:81:BE:02:39:20 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 70C5A693DD069672CF220AD095AE70DB87FBAA6E Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313531333030.roa Signing time: Mon 20 Apr 2026 06:46:26 +0000 ROA not before: Mon 20 Apr 2026 06:41:26 +0000 ROA not after: Mon 19 Apr 2027 06:46:26 +0000 asID: 151300 IP address blocks: 43.226.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:c5:a6:93:dd:06:96:72:cf:22:0a:d0:95:ae:70:db:87:fb:aa:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:41:26 2026 GMT Not After : Apr 19 06:46:26 2027 GMT Subject: CN=D2E431C752960E8C41ED394DF5716D81BE023920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:64:23:d5:29:bd:df:6b:97:48:8e:57:d3:c8: ad:d5:f2:b6:13:a7:41:9b:fd:1e:ac:43:36:91:e3: f1:be:49:e6:b6:94:2d:97:44:57:63:6e:2c:0a:3a: 4f:22:1c:06:bd:e9:29:ae:75:76:1a:2f:dc:20:22: f7:4a:6e:ef:8b:31:f4:b2:fb:b6:5d:7f:77:e5:d4: 06:e6:a1:ea:56:ad:38:11:34:1b:5e:14:ec:d3:a9: b8:7d:42:48:03:2b:b2:3d:da:df:00:0b:e8:4a:3e: 50:99:96:b4:bf:17:a2:cc:25:b6:87:b7:e3:9a:b3: cc:54:24:a0:55:91:44:d7:f2:ad:f5:0f:87:ac:36: fd:c6:f0:2c:40:4b:d6:59:e8:ae:47:2a:5f:cc:41: 8a:a7:eb:8d:a7:9f:56:ca:51:73:a3:8f:78:6a:67: 4e:7a:76:61:e9:77:96:0a:ba:2f:a4:58:09:6c:50: ef:1f:de:8b:33:fb:67:f5:b0:9d:79:24:14:f8:ad: a8:6a:b6:d4:d7:fa:0e:ff:30:35:b6:33:77:83:47: 26:5a:4e:8c:a7:4e:08:62:46:2a:05:cc:6c:79:69: 32:5f:2a:54:15:b0:38:b9:b1:3e:0a:c1:a7:91:72: 05:57:79:17:62:06:3e:59:d0:8f:3a:b8:7b:25:b3: b1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E4:31:C7:52:96:0E:8C:41:ED:39:4D:F5:71:6D:81:BE:02:39:20 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313531333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.56.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:03:46:93:7f:f1:58:7e:33:12:94:01:5b:7b:b8:6e:a4:01: 38:f2:a3:93:35:c3:55:b2:92:5c:9e:4f:b5:2a:39:b8:62:7a: be:6e:2a:44:ae:2d:fe:91:75:1a:9b:fd:48:04:60:ab:5d:f7: 1e:17:9e:28:0a:df:e0:fb:4e:d4:08:df:db:82:98:fc:59:d6: f8:cb:c4:b8:aa:30:46:3f:70:47:33:68:62:e7:4b:4a:2c:10: 09:7d:1a:38:8b:c1:3f:71:9c:c8:98:2a:92:b7:ea:6e:ff:74: b0:3e:71:b0:64:cd:c8:3b:6f:78:de:87:78:92:2a:5d:71:49: 42:4a:80:68:3e:18:d8:9b:33:3f:f3:a0:10:7c:81:bb:c5:12: ff:a5:01:f0:bf:68:62:2f:db:b6:30:09:48:35:18:a0:ee:a1: f4:dd:8a:82:68:e7:00:71:22:a0:d7:e5:e9:88:0e:99:d3:22: 5b:31:c9:da:f6:c2:3a:61:7c:f2:76:ca:c3:ee:0a:0e:81:ce: 96:35:fb:c5:f7:dd:e2:6d:5d:af:2f:20:96:87:8a:34:19:21: 8f:93:25:87:52:f3:11:89:7b:b3:75:d5:2f:b3:5d:58:18:ec: a4:7f:a6:48:aa:a7:10:df:78:05:55:1e:f6:e4:eb:13:94:a6: d5:50:55:ea -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUcMWmk90GlnLPIgrQla5w24f7qm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQxMjZaFw0yNzA0MTkwNjQ2MjZaMDMxMTAvBgNV BAMTKEQyRTQzMUM3NTI5NjBFOEM0MUVEMzk0REY1NzE2RDgxQkUwMjM5MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ZCPVKb3fa5dIjlfTyK3V8rYT p0Gb/R6sQzaR4/G+Sea2lC2XRFdjbiwKOk8iHAa96SmudXYaL9wgIvdKbu+LMfSy +7Zdf3fl1AbmoepWrTgRNBteFOzTqbh9QkgDK7I92t8AC+hKPlCZlrS/F6LMJbaH t+Oas8xUJKBVkUTX8q31D4esNv3G8CxAS9ZZ6K5HKl/MQYqn642nn1bKUXOjj3hq Z056dmHpd5YKui+kWAlsUO8f3osz+2f1sJ15JBT4rahqttTX+g7/MDW2M3eDRyZa ToynTghiRioFzGx5aTJfKlQVsDi5sT4KwaeRcgVXeRdiBj5Z0I86uHsls7GpAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU0uQxx1KWDoxB7TlN9XFtgb4COSAwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzUzNjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyviODANBgkqhkiG9w0BAQsFAAOCAQEATQNGk3/xWH4zEpQBW3u4bqQB OPKjkzXDVbKSXJ5PtSo5uGJ6vm4qRK4t/pF1Gpv9SARgq133HheeKArf4PtO1Ajf 24KY/FnW+MvEuKowRj9wRzNoYudLSiwQCX0aOIvBP3GcyJgqkrfqbv90sD5xsGTN yDtveN6HeJIqXXFJQkqAaD4Y2JszP/OgEHyBu8US/6UB8L9oYi/btjAJSDUYoO6h 9N2KgmjnAHEioNfl6YgOmdMiWzHJ2vbCOmF88nbKw+4KDoHOljX7xffd4m1dry8g loeKNBkhj5Mlh1LzEYl7s3XVL7NdWBjspH+mSKqnEN94BVUe9uTrE5Sm1VBV6g== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:13 2026 by rpki-client