$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e2034383337.roa File: 34332e3232362e37382e302f32332d3234203d3e2034383337.roa (raw, json) Hash identifier: +/9a18qO+hElyyESWjC50XR0p2T0H/EKSdp9sq7N+NQ= Subject key identifier: E5:37:CA:FA:FE:78:FE:12:1D:91:F0:7E:26:95:E1:2E:E5:4B:CA:B6 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 59130588F1E866C76EB0E72EB5B8C2E9A52F8717 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 06:44:39 +0000 ROA not before: Mon 20 Apr 2026 06:39:39 +0000 ROA not after: Mon 19 Apr 2027 06:44:39 +0000 asID: 4837 IP address blocks: 43.226.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:13:05:88:f1:e8:66:c7:6e:b0:e7:2e:b5:b8:c2:e9:a5:2f:87:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:39:39 2026 GMT Not After : Apr 19 06:44:39 2027 GMT Subject: CN=E537CAFAFE78FE121D91F07E2695E12EE54BCAB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:92:81:23:f2:3a:58:9f:e6:3c:b1:a0:23:8d: c1:80:a5:60:96:72:b2:c4:5b:ed:54:ce:1d:c8:48: ac:7c:f4:94:fa:a7:45:ae:9f:2b:22:fb:bb:03:18: 1b:bf:e8:60:91:6e:f5:a3:45:db:06:7d:7f:05:e9: 0f:15:95:2b:8a:10:4b:fb:ee:5e:c3:3b:81:8d:eb: ef:02:a1:57:d4:9d:35:3e:8c:c3:70:9f:81:7f:db: a7:79:f6:20:0b:b3:2d:86:9e:cd:d3:9b:63:01:94: 5c:8b:74:82:7d:cd:c7:b3:4e:68:f2:55:41:3c:74: bb:b5:46:f0:a1:4e:9f:52:18:d8:21:ba:4f:0e:77: 7a:e5:0d:7a:e4:58:af:73:6f:91:8a:41:7e:43:c6: ad:46:1b:64:07:3e:2c:2a:c9:e6:7a:6f:1e:9b:7f: cf:fd:75:60:fb:d5:05:af:4f:77:f7:92:9c:d4:6a: b0:5b:4c:81:43:17:e4:8a:e5:b3:91:dc:e7:24:a7: 40:29:c3:4c:fd:5d:10:63:5a:ec:5b:1d:32:f5:08: 98:5b:e7:68:01:bc:dd:c7:f8:15:7d:52:be:fb:31: 48:8e:02:53:22:5a:a9:64:d7:9d:e6:4f:b6:16:0d: 82:52:54:b3:d8:2c:78:63:5b:a4:f6:24:d2:21:62: ee:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:37:CA:FA:FE:78:FE:12:1D:91:F0:7E:26:95:E1:2E:E5:4B:CA:B6 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.78.0/23 Signature Algorithm: sha256WithRSAEncryption 72:2f:85:79:1e:66:aa:98:27:63:c3:32:25:55:07:19:9b:19: 02:ab:89:bd:28:7e:60:5a:73:fe:c4:78:4b:de:91:b9:cb:fd: a7:39:c9:5a:68:fd:d1:0a:98:42:d6:09:53:88:45:9d:b1:97: fd:b2:9e:48:45:65:93:b1:9b:b8:70:0b:c2:d2:e4:61:be:8c: 52:5a:a3:04:41:e9:3f:97:81:56:90:31:c0:03:2f:61:fe:bc: 0c:d1:19:30:7b:19:16:5f:c0:90:ff:f7:88:72:1f:a2:23:7e: 76:4b:a9:65:82:cb:c1:20:c9:5d:94:05:93:1b:95:36:0d:e8: 75:c0:3f:8a:7f:ad:e5:ae:b1:16:79:5d:0c:84:fc:c6:d6:40: 23:8c:65:7f:56:fc:52:d8:ea:79:c5:e3:0a:ca:9e:b4:dd:4a: ee:5b:fc:55:83:3f:8e:da:cc:e2:48:0a:c5:42:d8:48:ac:74: 85:83:7e:3a:8c:64:7a:ef:04:40:18:dc:c0:72:53:54:d1:ff: 7b:a7:68:0c:bf:f6:61:1c:50:f5:cc:4c:ec:e2:39:19:20:2b: aa:94:f6:5c:4e:9a:3c:bd:12:9d:62:86:af:ba:02:ac:f0:5a: c5:4a:ed:1c:2e:83:d4:8f:72:83:03:3c:cf:d4:eb:32:1f:bf: 82:91:95:3a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUWRMFiPHoZsdusOcutbjC6aUvhxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM5MzlaFw0yNzA0MTkwNjQ0MzlaMDMxMTAvBgNV BAMTKEU1MzdDQUZBRkU3OEZFMTIxRDkxRjA3RTI2OTVFMTJFRTU0QkNBQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXkoEj8jpYn+Y8saAjjcGApWCW crLEW+1Uzh3ISKx89JT6p0Wunysi+7sDGBu/6GCRbvWjRdsGfX8F6Q8VlSuKEEv7 7l7DO4GN6+8CoVfUnTU+jMNwn4F/26d59iALsy2Gns3Tm2MBlFyLdIJ9zcezTmjy VUE8dLu1RvChTp9SGNghuk8Od3rlDXrkWK9zb5GKQX5Dxq1GG2QHPiwqyeZ6bx6b f8/9dWD71QWvT3f3kpzUarBbTIFDF+SK5bOR3Ockp0Apw0z9XRBjWuxbHTL1CJhb 52gBvN3H+BV9Ur77MUiOAlMiWqlk153mT7YWDYJSVLPYLHhjW6T2JNIhYu7LAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU5TfK+v54/hIdkfB+JpXhLuVLyrYwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM2 MmUzNzM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEr4k4wDQYJKoZIhvcNAQELBQADggEBAHIvhXkeZqqYJ2PDMiVVBxmbGQKrib0o fmBac/7EeEvekbnL/ac5yVpo/dEKmELWCVOIRZ2xl/2ynkhFZZOxm7hwC8LS5GG+ jFJaowRB6T+XgVaQMcADL2H+vAzRGTB7GRZfwJD/94hyH6IjfnZLqWWCy8EgyV2U BZMblTYN6HXAP4p/reWusRZ5XQyE/MbWQCOMZX9W/FLY6nnF4wrKnrTdSu5b/FWD P47azOJICsVC2EisdIWDfjqMZHrvBEAY3MByU1TR/3unaAy/9mEcUPXMTOziORkg K6qU9lxOmjy9Ep1ihq+6AqzwWsVK7Rwug9SPcoMDPM/U6zIfv4KRlTo= -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:04 2026 by rpki-client