$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e20313331343833.roa File: 34332e3232372e35362e302f32312d3234203d3e20313331343833.roa (raw, json) Hash identifier: DUmuJCD8HCMCX0JrCVymbMJ5nVX7EoIeYSYKgpwYfuo= Subject key identifier: 43:13:6C:D9:BC:48:5F:2F:68:C7:42:07:C1:FE:37:FE:09:D2:8F:9B Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 6954DEA63504239B47C5AED001939A92B8100673 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 09:10:50 +0000 ROA not before: Mon 20 Apr 2026 09:05:50 +0000 ROA not after: Mon 19 Apr 2027 09:10:50 +0000 asID: 131483 IP address blocks: 43.227.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:54:de:a6:35:04:23:9b:47:c5:ae:d0:01:93:9a:92:b8:10:06:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 09:05:50 2026 GMT Not After : Apr 19 09:10:50 2027 GMT Subject: CN=43136CD9BC485F2F68C74207C1FE37FE09D28F9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:74:aa:8d:bc:3b:df:0a:39:23:15:95:63:b9: 3f:ce:55:ef:e6:09:07:72:85:b3:35:4a:f5:e7:9b: b4:88:a4:eb:09:04:6f:68:ae:63:17:3a:39:1c:8c: 16:4c:4c:6f:f2:e4:36:7b:1b:0c:44:72:50:31:1f: 60:c1:d9:d9:d8:f4:95:a0:69:32:59:91:e7:b5:3e: be:70:98:18:01:18:85:88:da:61:04:db:28:0f:61: 35:b7:df:69:b4:94:6a:cf:f4:e5:0a:c8:f4:8a:59: 8e:0b:c7:ba:20:07:8f:ee:5d:6e:04:47:18:8e:7e: 7a:c3:85:57:47:2c:af:ac:e1:5d:c2:d4:5d:7e:d7: 5c:43:53:64:d8:30:85:77:6b:e7:57:81:d5:e9:25: 95:a1:69:cc:33:cd:94:2b:59:82:70:2e:e6:a2:ec: 14:b3:4b:37:2d:e0:a6:47:15:55:16:a1:2c:a2:66: b4:a1:34:28:4d:74:d6:4f:ea:60:ce:fd:72:4f:4b: aa:5f:f8:85:b1:3b:32:d0:1b:ed:3a:4b:42:a4:3f: 98:b0:ee:a1:1d:b2:74:0b:55:f5:a5:44:6c:9c:3f: e7:76:cc:af:99:96:44:1d:7b:9f:75:bc:26:f3:8f: f1:70:b4:00:33:24:5e:99:07:38:e3:10:c7:69:43: 83:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:13:6C:D9:BC:48:5F:2F:68:C7:42:07:C1:FE:37:FE:09:D2:8F:9B X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.56.0/21 Signature Algorithm: sha256WithRSAEncryption 56:61:5b:30:59:90:4d:5c:b0:90:6a:c2:8e:ef:63:bb:df:02: 46:ba:4e:1d:05:b2:34:e4:4f:42:9e:d9:41:06:35:ee:17:ad: 51:16:06:c4:6d:2e:8a:72:a0:22:6e:b0:2f:3f:51:9d:90:a5: 5f:50:67:3e:e2:e4:64:92:10:78:b6:25:97:8c:03:2f:ca:cf: 4a:72:63:7c:f2:d6:f6:48:55:a0:f1:fc:32:21:7e:52:33:bf: ab:ff:05:9b:5f:f3:0f:79:80:4f:ed:32:75:54:16:d6:29:f6: 1b:82:a5:87:bc:2c:db:18:9d:b3:f2:af:c9:0b:5d:cb:f8:85: d8:46:e9:2e:bd:fd:8e:9a:c7:38:07:19:fb:d7:51:90:02:19: 27:09:ee:4c:ab:99:b5:75:30:29:3b:13:53:aa:fd:ee:78:6b: ba:2e:4d:0b:d1:c5:c2:b1:07:1b:67:9d:d7:90:2a:ea:c6:09: db:c4:03:d0:ed:24:9d:f8:37:3d:84:55:04:94:6c:75:dc:c9: 79:d3:a7:4e:f3:bc:ae:d0:74:21:12:29:a4:a3:58:d5:61:75: db:49:8f:d6:29:fb:19:e7:67:aa:4e:f5:92:c1:45:df:ec:42: 11:9e:ea:79:5a:06:6d:4c:96:f6:af:4b:1d:49:4c:15:ae:01: fb:cc:ba:61 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUaVTepjUEI5tHxa7QAZOakrgQBnMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwOTA1NTBaFw0yNzA0MTkwOTEwNTBaMDMxMTAvBgNV BAMTKDQzMTM2Q0Q5QkM0ODVGMkY2OEM3NDIwN0MxRkUzN0ZFMDlEMjhGOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNdKqNvDvfCjkjFZVjuT/OVe/m CQdyhbM1SvXnm7SIpOsJBG9ormMXOjkcjBZMTG/y5DZ7GwxEclAxH2DB2dnY9JWg aTJZkee1Pr5wmBgBGIWI2mEE2ygPYTW332m0lGrP9OUKyPSKWY4Lx7ogB4/uXW4E RxiOfnrDhVdHLK+s4V3C1F1+11xDU2TYMIV3a+dXgdXpJZWhacwzzZQrWYJwLuai 7BSzSzct4KZHFVUWoSyiZrShNChNdNZP6mDO/XJPS6pf+IWxOzLQG+06S0KkP5iw 7qEdsnQLVfWlRGycP+d2zK+ZlkQde591vCbzj/FwtAAzJF6ZBzjjEMdpQ4M5AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUQxNs2bxIXy9ox0IHwf43/gnSj5swHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NzJlMzUzNjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyvjODANBgkqhkiG9w0BAQsFAAOCAQEAVmFbMFmQTVywkGrCju9ju98C RrpOHQWyNORPQp7ZQQY17hetURYGxG0uinKgIm6wLz9RnZClX1BnPuLkZJIQeLYl l4wDL8rPSnJjfPLW9khVoPH8MiF+UjO/q/8Fm1/zD3mAT+0ydVQW1in2G4Klh7ws 2xids/KvyQtdy/iF2EbpLr39jprHOAcZ+9dRkAIZJwnuTKuZtXUwKTsTU6r97nhr ui5NC9HFwrEHG2ed15Aq6sYJ28QD0O0knfg3PYRVBJRsddzJedOnTvO8rtB0IRIp pKNY1WF120mP1in7Gednqk71ksFF3+xCEZ7qeVoGbUyW9q9LHUlMFa4B+8y6YQ== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:54 2026 by rpki-client