$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e203233363530.roa File: 34332e3232362e35362e302f32312d3234203d3e203233363530.roa (raw, json) Hash identifier: ZO0Yl52jra9D/fs4sI7JabPEUZRpBsr5Jj9TYvdnP1w= Subject key identifier: FC:E7:C1:8A:EA:5B:B2:02:CF:CC:5F:57:4F:29:AD:D9:60:D3:4E:7E Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 7EF84AFEA19167BF6A98501DC6EA14A27C435A11 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:46:26 +0000 ROA not before: Mon 20 Apr 2026 06:41:26 +0000 ROA not after: Mon 19 Apr 2027 06:46:26 +0000 asID: 23650 IP address blocks: 43.226.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:f8:4a:fe:a1:91:67:bf:6a:98:50:1d:c6:ea:14:a2:7c:43:5a:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:41:26 2026 GMT Not After : Apr 19 06:46:26 2027 GMT Subject: CN=FCE7C18AEA5BB202CFCC5F574F29ADD960D34E7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8f:69:a1:cf:c9:25:e4:ca:93:00:ec:77:6f: ef:01:fe:45:3d:28:36:a4:0b:10:5f:f4:ab:9b:8a: 8d:0a:c4:03:e0:46:47:0b:5e:3e:ff:d4:06:c1:41: 15:fc:94:e6:b1:f1:1d:da:71:2c:3d:88:8c:cc:9a: cd:14:b5:e2:44:95:f0:6b:6f:32:d7:73:44:e6:89: df:a6:31:16:79:97:e5:fa:72:da:96:de:79:e9:8e: da:e7:59:c9:61:62:1f:82:b6:73:9f:bc:6d:f7:46: aa:82:e2:9f:04:08:8a:fb:7e:b9:8f:61:32:d0:f4: 3c:71:a3:41:7f:40:0b:6f:32:0a:c8:ce:df:15:8c: 49:84:95:7a:0c:30:ca:c6:43:27:94:da:ad:e3:14: 28:e9:89:cf:39:2d:0e:b5:ee:a7:91:ea:4c:35:57: 6c:9f:32:9c:6b:63:fd:ed:c8:53:dc:2e:dc:24:90: 12:53:b7:5c:66:58:9b:21:41:87:d7:a8:ed:72:d5: ac:41:27:17:99:58:98:a8:5f:89:ed:5a:54:ba:51: c4:42:e6:5f:a4:4a:98:36:02:bb:56:63:48:01:bb: b0:e4:48:ed:8b:a0:0c:a3:84:17:b3:98:4d:3d:54: 9c:de:b7:5a:f6:5f:fe:ea:2b:58:8b:26:52:6c:07: 7e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E7:C1:8A:EA:5B:B2:02:CF:CC:5F:57:4F:29:AD:D9:60:D3:4E:7E X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.56.0/21 Signature Algorithm: sha256WithRSAEncryption 2a:68:b7:7a:13:c0:00:ea:a2:52:57:9a:15:e7:d1:60:73:71: 75:ef:64:af:03:a2:6e:85:0a:35:6a:02:cf:eb:00:26:33:3f: d6:6a:15:4c:d2:27:cb:d4:19:29:16:c8:f3:93:36:aa:79:db: 8d:37:e6:07:bd:ec:a0:c9:db:c6:1e:dd:c3:24:4a:27:5e:0e: ae:68:f7:04:65:2f:fe:38:fd:78:2c:ce:c1:8d:42:32:60:e2: 33:2c:9e:c9:84:a6:ea:f5:ae:e4:08:5e:11:92:20:0e:7d:99: 8d:2f:dd:a0:2b:9f:a1:09:48:55:e9:62:06:45:bf:c6:40:6d: 18:ef:41:c0:29:a5:d4:dc:1f:de:57:96:22:87:06:25:e6:0e: 41:fa:2b:90:a7:5f:ef:06:2f:b7:20:e9:1d:c7:a7:c5:00:e1: 23:7b:34:d1:13:7d:b7:51:d4:78:1c:2f:d7:77:ae:88:a1:7f: cf:9b:d9:4c:02:0b:87:a5:3f:5f:c6:94:cd:c0:ad:e1:e9:6f: b1:e1:76:36:46:f6:e4:dd:00:36:1a:3c:8c:b9:76:3b:84:ed: e0:9a:65:3f:9f:d6:89:70:cb:2b:9f:78:70:51:87:f3:df:35: 0d:c2:45:de:9a:87:7d:9a:fc:8c:10:1d:45:ed:7a:6c:8f:49: 52:40:2f:ac -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUfvhK/qGRZ79qmFAdxuoUonxDWhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQxMjZaFw0yNzA0MTkwNjQ2MjZaMDMxMTAvBgNV BAMTKEZDRTdDMThBRUE1QkIyMDJDRkNDNUY1NzRGMjlBREQ5NjBEMzRFN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrj2mhz8kl5MqTAOx3b+8B/kU9 KDakCxBf9Kubio0KxAPgRkcLXj7/1AbBQRX8lOax8R3acSw9iIzMms0UteJElfBr bzLXc0Tmid+mMRZ5l+X6ctqW3nnpjtrnWclhYh+CtnOfvG33RqqC4p8ECIr7frmP YTLQ9Dxxo0F/QAtvMgrIzt8VjEmElXoMMMrGQyeU2q3jFCjpic85LQ617qeR6kw1 V2yfMpxrY/3tyFPcLtwkkBJTt1xmWJshQYfXqO1y1axBJxeZWJioX4ntWlS6UcRC 5l+kSpg2ArtWY0gBu7DkSO2LoAyjhBezmE09VJzet1r2X/7qK1iLJlJsB36lAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU/OfBiupbsgLPzF9XTymt2WDTTn4wHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM2 MmUzNTM2MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyviODANBgkqhkiG9w0BAQsFAAOCAQEAKmi3ehPAAOqiUleaFefRYHNxde9k rwOiboUKNWoCz+sAJjM/1moVTNIny9QZKRbI85M2qnnbjTfmB73soMnbxh7dwyRK J14Ormj3BGUv/jj9eCzOwY1CMmDiMyyeyYSm6vWu5AheEZIgDn2ZjS/doCufoQlI VeliBkW/xkBtGO9BwCml1Nwf3leWIocGJeYOQforkKdf7wYvtyDpHcenxQDhI3s0 0RN9t1HUeBwv13euiKF/z5vZTAILh6U/X8aUzcCt4elvseF2Nkb25N0ANho8jLl2 O4Tt4JplP5/WiXDLK594cFGH8981DcJF3pqHfZr8jBAdRe16bI9JUkAvrA== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:57 2026 by rpki-client