$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e20313531333030.roa File: 34332e3232362e37382e302f32332d3234203d3e20313531333030.roa (raw, json) Hash identifier: naGwSFXOxIF9NjcHHx+MNnEenf0tkzSSrx3msUx9LE0= Subject key identifier: 7F:04:26:76:84:0A:9F:C7:D2:76:2E:CA:9B:91:D6:6C:3D:6A:85:5B Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 6DA3B3BAC73E7AE1D38D8AEFD7268CC72D78F2D2 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e20313531333030.roa Signing time: Mon 20 Apr 2026 06:44:39 +0000 ROA not before: Mon 20 Apr 2026 06:39:39 +0000 ROA not after: Mon 19 Apr 2027 06:44:39 +0000 asID: 151300 IP address blocks: 43.226.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a3:b3:ba:c7:3e:7a:e1:d3:8d:8a:ef:d7:26:8c:c7:2d:78:f2:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:39:39 2026 GMT Not After : Apr 19 06:44:39 2027 GMT Subject: CN=7F042676840A9FC7D2762ECA9B91D66C3D6A855B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b6:9d:c6:8b:ec:d1:0c:8c:d5:50:86:4e:a6: 4c:ef:13:c0:aa:fc:1f:c6:9c:4e:0e:8d:d9:69:cd: 3d:31:b2:97:12:c2:07:2b:ff:ec:6b:03:da:86:44: bc:f2:d9:a0:bd:5b:c1:cd:53:38:de:f1:a9:77:b3: 69:0c:0c:87:f9:a2:cc:9b:9a:d8:81:ca:cf:86:2a: bd:0a:f1:da:33:57:1b:82:b6:58:cc:3b:25:e0:46: 84:27:58:b6:1b:3d:c8:9c:6c:11:b1:df:2b:90:e3: 08:31:35:f1:36:4d:24:71:64:21:a5:83:0f:14:4a: 38:22:fd:85:6a:29:8e:4e:94:5b:53:86:a1:e6:4e: e3:b2:1c:b6:3e:b5:57:ec:e1:8a:16:31:37:d1:3a: ef:1c:26:4b:d3:00:9f:bf:19:64:ec:d0:4f:0a:08: a0:cb:7d:d9:41:08:88:a8:90:f3:52:ee:5c:e5:5c: 88:14:8a:02:96:a1:51:8c:4d:fd:a4:ef:a7:9a:1c: 12:dc:16:3c:10:85:c1:4e:17:c9:6d:eb:4a:eb:55: f1:e3:90:fc:a2:71:f7:a0:49:2b:7e:65:de:31:b0: 9f:e7:fc:40:25:41:f7:4a:02:07:6c:9a:02:f3:f5: 56:49:7f:ad:b2:d5:e4:06:59:00:47:71:77:c9:43: d5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:04:26:76:84:0A:9F:C7:D2:76:2E:CA:9B:91:D6:6C:3D:6A:85:5B X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e20313531333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.78.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:c2:a3:35:ea:50:d0:7f:0b:f7:da:63:64:07:e0:0e:4b:e4: 01:ea:b4:fe:7f:fc:47:ec:a4:ab:7a:6e:4a:24:71:42:07:f9: 2f:82:43:6d:6e:03:92:f2:ca:02:b8:17:7e:50:83:8e:5e:47: fd:45:cc:3c:35:c8:4b:66:15:55:39:88:fc:4c:b5:ea:fa:d4: ef:84:e5:4b:29:30:68:c9:d6:86:58:74:7f:e4:af:62:a8:ec: b4:c2:e5:b3:51:9c:69:4e:1f:f8:51:70:be:20:58:88:90:06: d5:e8:16:84:06:30:cd:15:34:ef:aa:60:ff:05:96:a3:b2:81: 3e:77:81:7c:ad:1f:df:c5:ae:7b:1a:b5:b5:0a:8d:cb:7a:fb: 24:99:9b:6c:06:62:2f:aa:2d:4e:f3:db:80:d1:35:0c:5d:d4: 72:65:68:b1:b1:56:cb:29:d9:40:fb:07:b2:8f:cd:97:e4:dd: c8:1f:cf:61:d0:80:42:3f:5d:be:82:c8:16:25:05:3f:b9:fd: 7f:81:7f:27:0e:4c:57:c1:dd:7d:80:cc:cf:86:c8:b3:df:33: d2:ce:bd:9f:ea:c0:e1:75:e0:f6:15:27:d6:da:54:88:58:6c: da:d8:40:8e:86:c0:45:35:a8:15:20:ff:98:c3:e4:09:e2:b6: 44:95:2c:19 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUbaOzusc+euHTjYrv1yaMxy148tIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM5MzlaFw0yNzA0MTkwNjQ0MzlaMDMxMTAvBgNV BAMTKDdGMDQyNjc2ODQwQTlGQzdEMjc2MkVDQTlCOTFENjZDM0Q2QTg1NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCftp3Gi+zRDIzVUIZOpkzvE8Cq /B/GnE4OjdlpzT0xspcSwgcr/+xrA9qGRLzy2aC9W8HNUzje8al3s2kMDIf5osyb mtiBys+GKr0K8dozVxuCtljMOyXgRoQnWLYbPcicbBGx3yuQ4wgxNfE2TSRxZCGl gw8USjgi/YVqKY5OlFtThqHmTuOyHLY+tVfs4YoWMTfROu8cJkvTAJ+/GWTs0E8K CKDLfdlBCIiokPNS7lzlXIgUigKWoVGMTf2k76eaHBLcFjwQhcFOF8lt60rrVfHj kPyicfegSSt+Zd4xsJ/n/EAlQfdKAgdsmgLz9VZJf62y1eQGWQBHcXfJQ9XlAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUfwQmdoQKn8fSdi7Km5HWbD1qhVswHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NjJlMzczODJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASviTjANBgkqhkiG9w0BAQsFAAOCAQEAC8KjNepQ0H8L99pjZAfgDkvk Aeq0/n/8R+ykq3puSiRxQgf5L4JDbW4DkvLKArgXflCDjl5H/UXMPDXIS2YVVTmI /Ey16vrU74TlSykwaMnWhlh0f+SvYqjstMLls1GcaU4f+FFwviBYiJAG1egWhAYw zRU076pg/wWWo7KBPneBfK0f38Wuexq1tQqNy3r7JJmbbAZiL6otTvPbgNE1DF3U cmVosbFWyynZQPsHso/Nl+TdyB/PYdCAQj9dvoLIFiUFP7n9f4F/Jw5MV8HdfYDM z4bIs98z0s69n+rA4XXg9hUn1tpUiFhs2thAjobARTWoFSD/mMPkCeK2RJUsGQ== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:14 2026 by rpki-client