$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313533393131.roa File: 34332e3232362e35362e302f32312d3234203d3e20313533393131.roa (raw, json) Hash identifier: ruFNPMBvwyXkF7EEJtR1vvwO3yKpBmSFkcvLluG7gmY= Subject key identifier: 84:30:39:1E:28:5C:65:53:34:DB:C8:0B:4F:34:A9:CE:41:78:98:E3 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 039A7139A87DE682A6F7DA534C5ED3E91A5386F4 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313533393131.roa Signing time: Mon 20 Apr 2026 06:46:26 +0000 ROA not before: Mon 20 Apr 2026 06:41:26 +0000 ROA not after: Mon 19 Apr 2027 06:46:26 +0000 asID: 153911 IP address blocks: 43.226.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:9a:71:39:a8:7d:e6:82:a6:f7:da:53:4c:5e:d3:e9:1a:53:86:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:41:26 2026 GMT Not After : Apr 19 06:46:26 2027 GMT Subject: CN=8430391E285C655334DBC80B4F34A9CE417898E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c0:16:7d:cb:b2:50:02:6a:fe:6c:d9:1f:ca: 0a:f3:3a:b1:66:87:55:09:d0:3e:0b:4a:0d:4c:e6: 69:71:b4:58:90:dc:9f:67:70:6e:0a:27:f5:88:db: 67:87:a7:7f:33:86:2b:3b:79:0a:4e:f3:f0:9f:f6: d7:9e:5d:91:c4:f4:2f:c6:c3:1d:94:fc:1a:5a:d9: 7f:4d:14:eb:19:a1:8a:fe:48:a5:b6:4f:82:37:da: 4d:c3:8b:e6:84:85:9a:05:be:04:0f:77:40:d8:4b: bb:ec:42:0e:a4:95:29:d3:58:bc:6c:e0:23:44:69: 69:1e:d6:0e:26:3c:a7:78:5a:b8:8d:3e:fb:a3:b4: ce:b9:c8:69:69:6a:df:ef:3a:d2:25:24:4b:d5:cd: be:04:05:10:ad:b2:54:f1:ab:4e:0c:fd:20:3a:ab: e7:db:a4:a7:b3:ad:ee:cc:b5:58:37:68:87:1a:d5: 36:35:c0:28:c1:68:62:1a:5a:a9:93:41:87:b3:b7: 8e:93:07:95:a9:10:5a:61:13:ce:e6:27:54:28:7b: 37:0d:1c:39:0d:5a:05:eb:bc:36:02:1a:7b:46:c2: eb:93:84:b5:7c:fa:5f:e2:52:f6:06:41:22:5b:6d: bf:1a:5e:12:81:73:6a:71:d9:34:d0:9b:80:79:b6: f4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:30:39:1E:28:5C:65:53:34:DB:C8:0B:4F:34:A9:CE:41:78:98:E3 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e20313533393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.56.0/21 Signature Algorithm: sha256WithRSAEncryption 83:86:22:5a:11:7d:5f:a8:e5:72:ea:15:d8:de:ab:31:02:15: 7e:d1:79:56:11:5e:d4:c8:32:09:57:18:a8:8b:7d:f0:77:b0: 60:41:f2:bf:3f:b7:f9:a6:cc:01:2e:96:78:83:42:54:fc:51: f5:15:42:87:56:31:fb:c2:c7:a4:1e:19:9a:57:29:98:69:61: 38:6e:d1:21:80:de:95:ea:8e:e0:d2:fe:ea:4a:61:86:2a:c4: a3:61:41:c4:24:6f:81:39:71:c0:16:c3:59:e3:f2:30:b4:ec: da:1e:e1:45:e0:35:83:9c:30:d2:c1:09:9f:00:34:f7:a2:75: 59:8a:6c:04:90:e1:e6:86:c1:4b:cf:66:e0:e3:b4:12:2b:57: 1e:02:21:c1:f4:61:d9:62:bc:49:6c:2a:58:8d:96:0e:3e:94: 1d:5d:30:18:2e:2b:44:6b:cf:77:9f:1d:98:86:d3:26:c8:f4: 6a:ad:47:36:1a:7f:90:f4:6b:25:5d:71:e6:6a:4c:59:6c:f1: 36:a3:b5:b6:d2:f4:0c:7e:c4:e0:0a:db:ad:b4:08:97:27:fa: 36:cd:11:c6:36:5d:b8:ba:95:d5:75:e3:6f:f9:86:49:df:14: 92:c5:6f:75:9c:4b:9e:1e:29:68:cb:72:8f:82:d1:5b:78:94: 6d:25:a7:22 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUA5pxOah95oKm99pTTF7T6RpThvQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQxMjZaFw0yNzA0MTkwNjQ2MjZaMDMxMTAvBgNV BAMTKDg0MzAzOTFFMjg1QzY1NTMzNERCQzgwQjRGMzRBOUNFNDE3ODk4RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUwBZ9y7JQAmr+bNkfygrzOrFm h1UJ0D4LSg1M5mlxtFiQ3J9ncG4KJ/WI22eHp38zhis7eQpO8/Cf9teeXZHE9C/G wx2U/Bpa2X9NFOsZoYr+SKW2T4I32k3Di+aEhZoFvgQPd0DYS7vsQg6klSnTWLxs 4CNEaWke1g4mPKd4WriNPvujtM65yGlpat/vOtIlJEvVzb4EBRCtslTxq04M/SA6 q+fbpKezre7MtVg3aIca1TY1wCjBaGIaWqmTQYezt46TB5WpEFphE87mJ1QoezcN HDkNWgXrvDYCGntGwuuThLV8+l/iUvYGQSJbbb8aXhKBc2px2TTQm4B5tvTRAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUhDA5HihcZVM028gLTzSpzkF4mOMwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzUzNjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzUzMzM5MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyviODANBgkqhkiG9w0BAQsFAAOCAQEAg4YiWhF9X6jlcuoV2N6rMQIV ftF5VhFe1MgyCVcYqIt98HewYEHyvz+3+abMAS6WeINCVPxR9RVCh1Yx+8LHpB4Z mlcpmGlhOG7RIYDeleqO4NL+6kphhirEo2FBxCRvgTlxwBbDWePyMLTs2h7hReA1 g5ww0sEJnwA096J1WYpsBJDh5obBS89m4OO0EitXHgIhwfRh2WK8SWwqWI2WDj6U HV0wGC4rRGvPd58dmIbTJsj0aq1HNhp/kPRrJV1x5mpMWWzxNqO1ttL0DH7E4Arb rbQIlyf6Ns0RxjZduLqV1XXjb/mGSd8UksVvdZxLnh4paMtyj4LRW3iUbSWnIg== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:55 2026 by rpki-client