$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e20313531333030.roa File: 34332e3232372e35362e302f32312d3234203d3e20313531333030.roa (raw, json) Hash identifier: a7dSUrMdptoiW3xqJFIJSmtumhjop6VNLCHGec/o5Es= Subject key identifier: 65:76:B6:E2:FD:2B:CB:EF:B3:7F:69:FD:7E:A5:B9:E2:51:AB:2D:DE Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 3478460FC69613A01EAA098BCEF9067ECD7AAB9F Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e20313531333030.roa Signing time: Mon 20 Apr 2026 06:50:41 +0000 ROA not before: Mon 20 Apr 2026 06:45:41 +0000 ROA not after: Mon 19 Apr 2027 06:50:41 +0000 asID: 151300 IP address blocks: 43.227.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:78:46:0f:c6:96:13:a0:1e:aa:09:8b:ce:f9:06:7e:cd:7a:ab:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:45:41 2026 GMT Not After : Apr 19 06:50:41 2027 GMT Subject: CN=6576B6E2FD2BCBEFB37F69FD7EA5B9E251AB2DDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2c:5c:8f:ab:e7:45:84:15:31:5a:f9:31:07: 76:31:09:1e:67:bd:36:96:d4:36:a0:c8:77:c4:65: 87:13:63:32:5c:43:a7:7c:58:7a:66:df:e0:4e:3f: ef:f9:2f:5d:79:4a:5e:7e:d6:26:7d:78:4d:77:d9: bf:03:e2:20:99:27:bd:86:06:75:9a:9a:7b:58:37: 75:37:f7:4d:9f:e8:d6:2e:eb:34:ce:40:c6:d6:90: fb:ef:f1:2d:53:8c:b8:07:0c:23:3c:72:d2:ee:32: 59:a8:58:3a:df:99:a5:ca:c1:4f:29:f8:c9:f8:03: 72:d4:b3:35:4d:c6:b1:bf:7a:09:7a:50:8f:9c:af: 3c:12:64:3f:45:2b:e7:dd:a7:df:39:a8:e8:c0:3d: 0d:69:40:51:ea:9d:ff:25:6f:5c:57:f4:d2:87:1f: 3f:ed:c0:52:c1:95:88:ed:2a:60:ff:43:39:83:66: e6:80:7f:69:04:61:e9:17:f8:04:07:69:f2:90:b5: 37:f4:ea:0b:d8:31:e8:c2:57:ff:06:4d:5c:4e:f9: 75:e6:08:11:92:8c:a7:7a:b2:72:ea:3e:74:7c:0f: bd:e2:62:66:5e:7c:90:61:6a:fe:f4:6a:62:16:fe: a8:0a:f1:51:79:58:5a:52:60:b0:5c:a2:11:97:bd: 11:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:76:B6:E2:FD:2B:CB:EF:B3:7F:69:FD:7E:A5:B9:E2:51:AB:2D:DE X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e20313531333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.56.0/21 Signature Algorithm: sha256WithRSAEncryption 29:7e:ca:fb:43:c1:b7:67:5f:8e:6d:55:87:4d:67:fb:4a:a4: e0:41:e2:dc:cd:6e:81:76:86:e3:2f:1f:68:d4:00:f9:69:3d: a1:b4:23:0a:2f:7c:19:e3:b2:5e:ba:65:a8:d3:b2:0f:00:d7: 10:d7:a6:1a:09:82:b7:f3:8e:9e:31:de:fe:30:56:19:84:95: 2c:54:e9:dd:73:99:72:ad:32:be:c3:fd:e8:92:d4:63:17:eb: 98:35:05:5b:66:57:fe:0f:61:1e:05:e9:bf:ae:38:d0:88:7d: 6a:f6:a8:0f:cb:e1:eb:95:ee:db:44:08:54:f0:c1:26:2a:c5: f4:58:5f:cd:4e:95:bf:7a:70:d8:16:1e:d0:2c:50:fe:2f:ce: f9:78:78:2d:78:f1:70:c7:3b:41:25:37:f5:97:46:2a:18:32: 58:43:f6:0d:c9:6a:07:51:92:b8:b9:b7:fb:b6:4b:a4:a5:d1: 05:d3:b5:28:6f:d7:3e:59:0f:09:fd:ab:6e:ce:fd:75:5f:d7: 1a:8b:09:2a:2b:58:71:7f:38:48:99:30:95:88:98:1f:64:d0: 4e:6f:1d:ac:cd:6b:5f:16:3e:30:80:a0:21:be:03:fd:f0:db: 45:05:8a:04:9f:9b:a8:b9:a3:38:22:f2:99:9e:26:67:ef:58: a1:dd:de:f8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUNHhGD8aWE6AeqgmLzvkGfs16q58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQ1NDFaFw0yNzA0MTkwNjUwNDFaMDMxMTAvBgNV BAMTKDY1NzZCNkUyRkQyQkNCRUZCMzdGNjlGRDdFQTVCOUUyNTFBQjJEREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyLFyPq+dFhBUxWvkxB3YxCR5n vTaW1DagyHfEZYcTYzJcQ6d8WHpm3+BOP+/5L115Sl5+1iZ9eE132b8D4iCZJ72G BnWamntYN3U3902f6NYu6zTOQMbWkPvv8S1TjLgHDCM8ctLuMlmoWDrfmaXKwU8p +Mn4A3LUszVNxrG/egl6UI+crzwSZD9FK+fdp985qOjAPQ1pQFHqnf8lb1xX9NKH Hz/twFLBlYjtKmD/QzmDZuaAf2kEYekX+AQHafKQtTf06gvYMejCV/8GTVxO+XXm CBGSjKd6snLqPnR8D73iYmZefJBhav70amIW/qgK8VF5WFpSYLBcohGXvRHpAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUZXa24v0ry++zf2n9fqW54lGrLd4wHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NzJlMzUzNjJlMzAyZjMyMzEyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyvjODANBgkqhkiG9w0BAQsFAAOCAQEAKX7K+0PBt2dfjm1Vh01n+0qk 4EHi3M1ugXaG4y8faNQA+Wk9obQjCi98GeOyXrplqNOyDwDXENemGgmCt/OOnjHe /jBWGYSVLFTp3XOZcq0yvsP96JLUYxfrmDUFW2ZX/g9hHgXpv6440Ih9avaoD8vh 65Xu20QIVPDBJirF9FhfzU6Vv3pw2BYe0CxQ/i/O+Xh4LXjxcMc7QSU39ZdGKhgy WEP2DclqB1GSuLm3+7ZLpKXRBdO1KG/XPlkPCf2rbs79dV/XGosJKitYcX84SJkw lYiYH2TQTm8drM1rXxY+MICgIb4D/fDbRQWKBJ+bqLmjOCLymZ4mZ+9Yod3e+A== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:14 2026 by rpki-client