$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e203233363530.roa File: 34332e3232372e35362e302f32312d3234203d3e203233363530.roa (raw, json) Hash identifier: cuhkk4YF2ikIkrPOY4+6xsKzeMa+hM1SpRbIkFYtBSA= Subject key identifier: C1:EC:56:60:FF:F9:9E:E2:54:63:85:59:2D:D9:11:CE:46:C3:19:81 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 51DF50B61C529050461CA0BD3F801ACA34152122 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:50:07 +0000 ROA not before: Mon 20 Apr 2026 06:45:07 +0000 ROA not after: Mon 19 Apr 2027 06:50:07 +0000 asID: 23650 IP address blocks: 43.227.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:df:50:b6:1c:52:90:50:46:1c:a0:bd:3f:80:1a:ca:34:15:21:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:45:07 2026 GMT Not After : Apr 19 06:50:07 2027 GMT Subject: CN=C1EC5660FFF99EE2546385592DD911CE46C31981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8b:47:4d:39:d7:36:c1:ea:b9:f3:e2:f5:b6: d7:9a:77:11:39:0b:9b:35:a8:28:cb:a2:1d:44:80: 20:6f:a2:ca:c3:c5:be:ee:74:d5:00:ff:67:2e:43: 9a:6d:21:07:0f:b8:08:0c:ab:92:20:28:9c:e2:ff: d3:73:53:b1:d8:30:5d:3f:62:38:dc:33:e1:50:12: 65:dd:6f:f6:4d:4e:7e:38:c8:08:7b:4f:d7:05:53: 97:30:68:1d:35:7e:2b:4f:fe:84:b4:f2:38:28:20: c2:d2:b2:9f:9b:75:c2:40:7c:fe:6c:81:c5:70:2d: a8:6a:1c:de:a3:a8:98:db:53:7c:30:71:fb:b0:dd: b2:5d:d4:34:8e:a3:5f:43:0e:8e:bc:cc:c4:f4:b1: d1:02:0b:c0:f1:d9:17:ad:cd:33:4c:8e:ee:f0:65: c6:1b:d5:29:78:f7:90:8c:89:b0:64:5c:21:86:92: 34:9d:a5:72:55:8a:aa:d0:23:7c:43:bc:e2:87:a6: 4a:7c:52:fb:df:fa:61:ab:c1:0b:0d:ef:2a:86:96: 48:55:7b:fe:eb:8f:bc:ec:c5:89:cb:61:02:b4:0f: 00:9d:fb:1d:28:64:00:48:ae:6e:75:6b:0e:c1:d9: 0f:e2:30:a0:c2:f2:a8:53:07:96:f2:49:b9:39:50: 2c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:EC:56:60:FF:F9:9E:E2:54:63:85:59:2D:D9:11:CE:46:C3:19:81 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.56.0/21 Signature Algorithm: sha256WithRSAEncryption 2d:ad:ac:95:28:22:fd:f1:66:21:d0:cc:4e:df:4f:0f:e2:da: 51:f3:50:43:6b:1d:11:c3:bc:60:77:5e:70:f3:f5:bb:fe:94: b6:75:b0:76:3f:27:19:9a:43:28:52:aa:79:47:f7:92:91:71: 80:8c:d7:e9:0a:51:b3:44:83:9b:bc:7c:79:f2:84:56:12:57: 91:f5:a6:40:3c:4b:e2:91:e8:20:2e:05:6a:9b:55:a4:b2:8b: cd:1b:d8:f9:99:e9:66:90:ac:c6:a3:ce:e1:8e:9a:4d:51:17: b4:6a:ff:a7:3a:6f:82:60:4d:ea:a6:78:70:df:eb:e9:1a:1f: e8:12:3e:5a:49:5b:2e:dd:05:ed:e9:c6:e0:80:04:1e:e5:27: 1e:a5:1a:d5:d6:a8:ec:1b:36:59:3b:89:7f:ba:7f:f5:77:76: 98:19:5b:2c:19:ac:b8:bf:ac:df:a7:d2:b2:40:d6:77:0b:6c: 3f:ec:a3:de:66:af:92:cd:0f:5c:fb:5b:1b:61:d7:00:fb:8b: 97:40:a6:6a:77:9c:63:e6:ba:87:c5:bb:06:83:20:d9:e5:4e: 04:b4:e2:a1:a0:15:28:9d:4d:40:a8:0a:f9:39:c7:4e:72:1e: c6:2e:0d:f2:0b:fa:73:0b:9c:c3:b6:7d:5d:f4:c2:24:90:1d: cc:14:87:a2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUUd9QthxSkFBGHKC9P4AayjQVISIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQ1MDdaFw0yNzA0MTkwNjUwMDdaMDMxMTAvBgNV BAMTKEMxRUM1NjYwRkZGOTlFRTI1NDYzODU1OTJERDkxMUNFNDZDMzE5ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCni0dNOdc2weq58+L1tteadxE5 C5s1qCjLoh1EgCBvosrDxb7udNUA/2cuQ5ptIQcPuAgMq5IgKJzi/9NzU7HYMF0/ YjjcM+FQEmXdb/ZNTn44yAh7T9cFU5cwaB01fitP/oS08jgoIMLSsp+bdcJAfP5s gcVwLahqHN6jqJjbU3wwcfuw3bJd1DSOo19DDo68zMT0sdECC8Dx2RetzTNMju7w ZcYb1Sl495CMibBkXCGGkjSdpXJViqrQI3xDvOKHpkp8Uvvf+mGrwQsN7yqGlkhV e/7rj7zsxYnLYQK0DwCd+x0oZABIrm51aw7B2Q/iMKDC8qhTB5bySbk5UCyvAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUwexWYP/5nuJUY4VZLdkRzkbDGYEwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM3 MmUzNTM2MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyvjODANBgkqhkiG9w0BAQsFAAOCAQEALa2slSgi/fFmIdDMTt9PD+LaUfNQ Q2sdEcO8YHdecPP1u/6UtnWwdj8nGZpDKFKqeUf3kpFxgIzX6QpRs0SDm7x8efKE VhJXkfWmQDxL4pHoIC4FaptVpLKLzRvY+ZnpZpCsxqPO4Y6aTVEXtGr/pzpvgmBN 6qZ4cN/r6Rof6BI+WklbLt0F7enG4IAEHuUnHqUa1dao7Bs2WTuJf7p/9Xd2mBlb LBmsuL+s36fSskDWdwtsP+yj3mavks0PXPtbG2HXAPuLl0CmanecY+a6h8W7BoMg 2eVOBLTioaAVKJ1NQKgK+TnHTnIexi4N8gv6cwucw7Z9XfTCJJAdzBSHog== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:58 2026 by rpki-client