$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e203536303436.roa File: 34332e3232362e37382e302f32332d3234203d3e203536303436.roa (raw, json) Hash identifier: KfC9y8cQyjZnIFmM+9+RESmExWFWMRY/baekIjDByvQ= Subject key identifier: 23:DC:F3:89:C3:9E:9C:55:3A:AD:A1:A8:DD:56:EF:1A:2F:E8:89:A7 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 2224EFE254BB197B88AE187C3639CA9076616F41 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 06:44:39 +0000 ROA not before: Mon 20 Apr 2026 06:39:39 +0000 ROA not after: Mon 19 Apr 2027 06:44:39 +0000 asID: 56046 IP address blocks: 43.226.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:24:ef:e2:54:bb:19:7b:88:ae:18:7c:36:39:ca:90:76:61:6f:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:39:39 2026 GMT Not After : Apr 19 06:44:39 2027 GMT Subject: CN=23DCF389C39E9C553AADA1A8DD56EF1A2FE889A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:65:59:3a:e2:da:28:90:2b:7f:f4:05:d6:10: 64:50:8b:3b:75:f7:2a:f2:b4:a6:97:6c:75:2d:f6: e5:02:05:87:f8:0f:b0:9d:00:35:5a:11:49:02:2f: 67:51:a5:74:a2:96:44:f0:d3:69:21:ad:ad:7c:3b: db:61:da:f6:4e:9c:c7:cb:eb:6a:fc:dd:47:da:4c: 35:12:73:ee:e9:e2:09:95:be:27:94:27:4a:08:91: 4a:50:4c:db:23:0d:13:cb:ec:80:ed:56:06:3b:47: 36:23:80:79:d8:29:83:fd:2b:e0:80:ea:ba:3b:16: 28:7d:5c:c6:f3:06:8d:2a:fe:eb:37:c5:7a:5e:93: 23:77:6d:1e:47:1d:9c:a2:90:e6:06:04:cd:75:f9: 40:9d:cf:ad:0e:25:f1:89:b7:0e:29:13:f5:99:23: 3a:f8:41:ad:42:35:dd:a3:b2:db:f2:b1:aa:9a:8d: 2e:60:de:4f:90:c7:37:81:51:72:45:c7:f3:6c:61: b5:fb:45:78:c4:04:b2:df:90:6a:05:7d:e2:be:e6: 10:cd:af:7f:25:37:98:1c:ee:43:83:37:35:7d:d6: 5d:57:9a:80:c3:2b:c1:d6:81:87:78:82:39:f5:0e: 4f:07:2d:7d:83:4f:35:30:6d:e2:4d:3b:71:8a:b2: 4e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:DC:F3:89:C3:9E:9C:55:3A:AD:A1:A8:DD:56:EF:1A:2F:E8:89:A7 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232362e37382e302f32332d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.78.0/23 Signature Algorithm: sha256WithRSAEncryption a5:4e:45:8f:f4:ef:c2:6e:71:ff:a4:ac:3b:2b:59:cf:25:40: 20:0a:f0:cd:dc:88:93:ff:38:fc:f9:69:fd:d9:31:c5:2e:cb: 03:02:6f:0f:93:3b:c6:4c:74:74:55:fd:8b:15:26:13:cb:d2: 7f:04:64:94:03:8e:e6:cb:cd:cb:34:73:d2:0c:5c:e4:7e:f7: b5:46:c1:24:e2:26:69:19:bf:af:5f:84:62:12:8f:ab:81:21: e0:58:83:76:73:98:0a:f7:dd:ac:74:e6:fb:11:c3:8d:b8:fb: cb:bd:91:fa:4b:f1:ed:9b:ed:80:85:2e:8f:84:23:29:0a:a1: 44:fc:df:f0:d6:b2:b9:23:d6:99:88:91:74:a6:84:0a:de:90: 4d:77:36:59:bc:cb:46:8d:cb:a9:d8:14:19:f7:24:4a:a7:57: 06:35:d2:66:d2:f8:f0:0c:59:a3:6e:b2:d7:88:3e:c0:38:fb: 45:76:43:60:c9:51:fa:a0:bc:01:29:44:c3:be:8c:d2:4c:86: 25:8e:47:0e:a3:91:99:9c:5e:de:45:b9:8c:db:01:0a:49:a9: a9:8b:34:3a:f0:a7:e3:0c:f3:c9:1b:bb:f0:45:17:b3:df:77: 43:18:df:8a:85:73:72:1e:18:e6:58:90:be:9f:0b:9e:2b:b2: 48:c7:fe:a8 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUIiTv4lS7GXuIrhh8NjnKkHZhb0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM5MzlaFw0yNzA0MTkwNjQ0MzlaMDMxMTAvBgNV BAMTKDIzRENGMzg5QzM5RTlDNTUzQUFEQTFBOERENTZFRjFBMkZFODg5QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ZVk64tookCt/9AXWEGRQizt1 9yrytKaXbHUt9uUCBYf4D7CdADVaEUkCL2dRpXSilkTw02khra18O9th2vZOnMfL 62r83UfaTDUSc+7p4gmVvieUJ0oIkUpQTNsjDRPL7IDtVgY7RzYjgHnYKYP9K+CA 6ro7Fih9XMbzBo0q/us3xXpekyN3bR5HHZyikOYGBM11+UCdz60OJfGJtw4pE/WZ Izr4Qa1CNd2jstvysaqajS5g3k+QxzeBUXJFx/NsYbX7RXjEBLLfkGoFfeK+5hDN r38lN5gc7kODNzV91l1XmoDDK8HWgYd4gjn1Dk8HLX2DTzUwbeJNO3GKsk63AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUI9zzicOenFU6raGo3VbvGi/oiacwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM2 MmUzNzM4MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEASviTjANBgkqhkiG9w0BAQsFAAOCAQEApU5Fj/Tvwm5x/6SsOytZzyVAIArw zdyIk/84/Plp/dkxxS7LAwJvD5M7xkx0dFX9ixUmE8vSfwRklAOO5svNyzRz0gxc 5H73tUbBJOImaRm/r1+EYhKPq4Eh4FiDdnOYCvfdrHTm+xHDjbj7y72R+kvx7Zvt gIUuj4QjKQqhRPzf8NayuSPWmYiRdKaECt6QTXc2WbzLRo3LqdgUGfckSqdXBjXS ZtL48AxZo26y14g+wDj7RXZDYMlR+qC8ASlEw76M0kyGJY5HDqORmZxe3kW5jNsB CkmpqYs0OvCn4wzzyRu78EUXs993QxjfioVzch4Y5liQvp8LniuySMf+qA== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:30 2026 by rpki-client