$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e203536303436.roa File: 34332e3232362e35362e302f32312d3234203d3e203536303436.roa (raw, json) Hash identifier: z80sWYevgK3Vb4ShBdn9UMhdf2FV6el7umMR7bD/pt4= Subject key identifier: 69:BE:A4:17:6A:9B:61:52:73:EE:B6:06:5F:EF:E6:CF:DE:DC:90:06 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 5AC2F1E6976434C7CE3E5E557050AB9C04E02E39 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 06:46:26 +0000 ROA not before: Mon 20 Apr 2026 06:41:26 +0000 ROA not after: Mon 19 Apr 2027 06:46:26 +0000 asID: 56046 IP address blocks: 43.226.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:c2:f1:e6:97:64:34:c7:ce:3e:5e:55:70:50:ab:9c:04:e0:2e:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:41:26 2026 GMT Not After : Apr 19 06:46:26 2027 GMT Subject: CN=69BEA4176A9B615273EEB6065FEFE6CFDEDC9006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9a:c9:f9:47:e1:40:ea:81:68:a1:3d:1d:83: 98:33:44:ba:b8:15:7a:d5:27:2f:bc:4f:40:58:2f: c0:23:b5:d7:09:b3:e2:ae:38:8e:e0:09:3b:81:4b: 25:fa:8e:bc:2b:97:ab:0b:1c:16:d6:12:60:37:c6: c4:d0:e5:24:e4:2b:30:f2:e1:f8:65:37:fc:97:61: b3:fc:79:48:2d:79:b8:84:2a:c7:a6:99:9c:a9:a9: e2:5c:bb:b4:e1:04:b4:36:97:e2:b5:2e:56:fb:1b: c2:c9:5d:0c:73:42:25:70:25:73:2d:f2:73:8b:82: 76:5a:5e:a6:77:51:e0:7c:e1:27:34:34:89:39:81: f2:fb:a5:d7:75:03:fe:7b:c5:e3:21:5b:5b:eb:70: 2a:64:17:c1:7e:ec:55:98:81:27:3b:88:cc:5c:9c: db:18:9c:a7:9d:2f:a9:27:f0:31:57:98:e0:3e:d6: ad:7e:0f:c2:86:76:03:aa:86:f6:cc:d7:27:c4:a7: 1f:2d:92:63:7d:9e:7f:b6:fb:32:fd:97:7e:ea:dd: 2b:b6:1a:5b:b5:6b:33:12:9a:1e:81:46:20:43:34: a5:b1:b4:41:52:6c:9a:6b:38:f0:a7:ad:eb:82:07: 1c:0c:58:ba:1b:48:b6:19:65:f0:33:02:c9:5e:9a: fd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BE:A4:17:6A:9B:61:52:73:EE:B6:06:5F:EF:E6:CF:DE:DC:90:06 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e35362e302f32312d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.56.0/21 Signature Algorithm: sha256WithRSAEncryption 50:b8:07:34:ea:a6:40:06:33:89:b5:a8:93:c4:5d:3e:f1:94: 5d:9d:1d:14:b5:07:ce:2d:8d:08:3a:54:23:3e:c1:0e:57:1b: f1:26:72:e2:c2:2a:a7:c0:45:85:de:c1:9b:31:86:d0:b1:be: da:7b:4d:f7:b3:70:d5:51:29:3e:e5:c2:2b:49:29:40:ad:4b: 45:ce:31:e3:1d:fe:04:8f:60:79:f5:85:8f:ab:ed:f3:15:2e: 50:53:d6:cf:c9:7b:48:0a:27:3c:27:0a:65:b1:0f:90:9b:51: 28:3d:38:58:30:e8:46:21:d0:a9:9a:9a:3a:e1:c8:c0:d4:d4: 81:df:36:41:8e:ac:e5:04:05:20:66:9c:95:41:dc:10:d9:0a: 0d:a4:8e:4d:ac:43:97:d8:72:94:8a:64:82:7b:ce:c6:18:ca: 31:61:21:b9:29:ed:b7:ae:5c:ab:e1:75:6f:49:ea:12:4c:13: ab:2f:5c:da:fa:35:50:08:30:b1:6a:04:7d:db:43:6d:72:3e: 1f:a6:88:80:9b:d1:11:a1:c2:ad:81:02:4e:20:1d:b9:0a:90: 9d:6e:b2:f1:96:c4:d5:5d:0c:87:13:ab:57:e2:03:88:db:b3: e9:a3:d9:e4:7b:da:c6:51:90:d1:cf:e1:bf:1e:ee:17:d5:af: 90:2e:a6:36 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUWsLx5pdkNMfOPl5VcFCrnATgLjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQxMjZaFw0yNzA0MTkwNjQ2MjZaMDMxMTAvBgNV BAMTKDY5QkVBNDE3NkE5QjYxNTI3M0VFQjYwNjVGRUZFNkNGREVEQzkwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCimsn5R+FA6oFooT0dg5gzRLq4 FXrVJy+8T0BYL8AjtdcJs+KuOI7gCTuBSyX6jrwrl6sLHBbWEmA3xsTQ5STkKzDy 4fhlN/yXYbP8eUgtebiEKsemmZypqeJcu7ThBLQ2l+K1Llb7G8LJXQxzQiVwJXMt 8nOLgnZaXqZ3UeB84Sc0NIk5gfL7pdd1A/57xeMhW1vrcCpkF8F+7FWYgSc7iMxc nNsYnKedL6kn8DFXmOA+1q1+D8KGdgOqhvbM1yfEpx8tkmN9nn+2+zL9l37q3Su2 Glu1azMSmh6BRiBDNKWxtEFSbJprOPCnreuCBxwMWLobSLYZZfAzAslemv0RAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUab6kF2qbYVJz7rYGX+/mz97ckAYwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM2 MmUzNTM2MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyviODANBgkqhkiG9w0BAQsFAAOCAQEAULgHNOqmQAYzibWok8RdPvGUXZ0d FLUHzi2NCDpUIz7BDlcb8SZy4sIqp8BFhd7BmzGG0LG+2ntN97Nw1VEpPuXCK0kp QK1LRc4x4x3+BI9gefWFj6vt8xUuUFPWz8l7SAonPCcKZbEPkJtRKD04WDDoRiHQ qZqaOuHIwNTUgd82QY6s5QQFIGaclUHcENkKDaSOTaxDl9hylIpkgnvOxhjKMWEh uSntt65cq+F1b0nqEkwTqy9c2vo1UAgwsWoEfdtDbXI+H6aIgJvREaHCrYECTiAd uQqQnW6y8ZbE1V0MhxOrV+IDiNuz6aPZ5HvaxlGQ0c/hvx7uF9WvkC6mNg== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:29 2026 by rpki-client