$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e203536303436.roa File: 34332e3232372e35362e302f32312d3234203d3e203536303436.roa (raw, json) Hash identifier: dvnhpti9JSTURvMvu36bUGeihoxN/8evOQsNa46GnAY= Subject key identifier: E7:28:B1:7E:DA:B6:48:B2:4D:2D:D7:95:31:4F:8D:64:79:F5:50:1C Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 308A1067A108B35FAD0F56C67BDE73E703DB7AB6 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 06:50:07 +0000 ROA not before: Mon 20 Apr 2026 06:45:07 +0000 ROA not after: Mon 19 Apr 2027 06:50:07 +0000 asID: 56046 IP address blocks: 43.227.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:8a:10:67:a1:08:b3:5f:ad:0f:56:c6:7b:de:73:e7:03:db:7a:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:45:07 2026 GMT Not After : Apr 19 06:50:07 2027 GMT Subject: CN=E728B17EDAB648B24D2DD795314F8D6479F5501C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a1:a1:33:fe:b8:9a:5e:e2:66:8d:03:42:9b: b4:42:98:0d:e3:2c:27:2c:b0:24:cc:7d:50:0b:b8: 15:31:fe:fd:aa:e9:69:b0:e3:ca:22:8c:65:99:b4: 75:72:a9:91:5b:1f:65:79:bc:0a:2a:90:6a:d3:87: 7d:9e:2a:d2:d2:b4:1a:66:cd:c6:f1:b2:00:7f:1c: 55:5f:ec:e3:25:d4:21:36:88:89:32:0a:75:48:50: a4:50:44:b7:ac:1a:22:2f:fc:06:4a:9c:6c:22:35: a2:1d:a5:ef:f2:61:06:03:8a:21:37:6f:28:38:dc: ea:3b:cc:dd:c8:8f:75:c7:4b:7a:fb:1c:85:1e:d0: ac:e9:dd:54:cd:56:31:58:a4:da:01:b0:91:51:55: 3c:8b:e4:3f:18:e1:78:90:e7:3c:7a:30:4f:3c:8f: 74:9e:93:1b:a9:a0:55:2a:d6:3a:44:9b:35:33:20: 14:99:63:f4:ec:e7:57:d0:59:c5:6b:c8:0f:57:8c: 9d:15:f5:06:a0:d1:b8:55:3c:85:75:05:23:1e:92: c6:7e:de:c8:a9:8f:08:a3:3d:a9:b8:db:22:b5:84: f8:a4:a9:ed:52:2b:fa:69:68:b3:ca:d6:9e:f9:5b: 06:61:21:bc:5b:fa:ce:26:86:63:b5:b8:0d:df:ef: 8c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:28:B1:7E:DA:B6:48:B2:4D:2D:D7:95:31:4F:8D:64:79:F5:50:1C X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e35362e302f32312d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.56.0/21 Signature Algorithm: sha256WithRSAEncryption 50:56:a9:46:08:a9:89:bd:49:66:2f:2e:c6:d4:db:9f:df:8b: 28:b6:4b:e8:48:29:1f:74:e5:bf:46:9d:85:3c:7b:c5:d5:42: 21:52:01:32:23:29:65:63:8f:35:53:68:e3:e1:d6:14:b6:3c: b9:eb:ad:b2:ce:1a:31:e5:25:f5:fe:7c:66:c0:dd:d3:49:9c: 7a:92:c7:26:23:76:02:4e:d8:72:45:fb:cd:bd:0f:87:0f:29: c8:ff:2d:52:87:1c:9d:42:53:5f:02:cd:51:77:8d:f8:ef:ad: 4e:87:ee:29:85:54:cf:98:f6:1f:74:ec:d2:b6:82:35:7f:55: 5f:46:72:c8:dd:c7:5d:62:4b:bd:6b:72:e5:be:ec:ee:85:3d: 30:59:15:b8:02:e3:40:bf:00:58:e5:e7:87:5e:02:d7:48:bd: 6e:5d:00:2d:b4:d2:1e:a7:e9:4f:1e:bb:0d:5c:71:fa:de:69: f3:70:99:86:76:66:d5:86:8c:c7:99:ed:ca:00:6f:80:da:4c: 10:d4:c7:d5:12:8f:a5:a9:7a:3a:69:67:e2:95:0d:da:9f:bd: 6b:1a:fd:20:cf:6a:ab:15:63:9b:2d:11:f2:9e:a2:32:20:73: 47:67:68:86:73:79:79:12:7d:b5:ee:74:53:5a:0f:9e:97:e3: 99:d7:10:3f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUMIoQZ6EIs1+tD1bGe95z5wPberYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjQ1MDdaFw0yNzA0MTkwNjUwMDdaMDMxMTAvBgNV BAMTKEU3MjhCMTdFREFCNjQ4QjI0RDJERDc5NTMxNEY4RDY0NzlGNTUwMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnoaEz/riaXuJmjQNCm7RCmA3j LCcssCTMfVALuBUx/v2q6Wmw48oijGWZtHVyqZFbH2V5vAoqkGrTh32eKtLStBpm zcbxsgB/HFVf7OMl1CE2iIkyCnVIUKRQRLesGiIv/AZKnGwiNaIdpe/yYQYDiiE3 byg43Oo7zN3Ij3XHS3r7HIUe0Kzp3VTNVjFYpNoBsJFRVTyL5D8Y4XiQ5zx6ME88 j3SekxupoFUq1jpEmzUzIBSZY/Ts51fQWcVryA9XjJ0V9Qag0bhVPIV1BSMeksZ+ 3sipjwijPam42yK1hPikqe1SK/ppaLPK1p75WwZhIbxb+s4mhmO1uA3f74zNAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU5yixftq2SLJNLdeVMU+NZHn1UBwwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM3 MmUzNTM2MmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyvjODANBgkqhkiG9w0BAQsFAAOCAQEAUFapRgipib1JZi8uxtTbn9+LKLZL 6EgpH3Tlv0adhTx7xdVCIVIBMiMpZWOPNVNo4+HWFLY8ueutss4aMeUl9f58ZsDd 00mcepLHJiN2Ak7YckX7zb0Phw8pyP8tUoccnUJTXwLNUXeN+O+tTofuKYVUz5j2 H3Ts0raCNX9VX0ZyyN3HXWJLvWty5b7s7oU9MFkVuALjQL8AWOXnh14C10i9bl0A LbTSHqfpTx67DVxx+t5p83CZhnZm1YaMx5ntygBvgNpMENTH1RKPpal6Omln4pUN 2p+9axr9IM9qqxVjmy0R8p6iMiBzR2dohnN5eRJ9te50U1oPnpfjmdcQPw== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:29 2026 by rpki-client