$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313331343833.roa File: 34332e3232372e36392e302f32342d3234203d3e20313331343833.roa (raw, json) Hash identifier: XhD/z6cbZmlEMCfZF5zpC2aquUUO5WFSuEagWiX5+NE= Subject key identifier: BE:7A:8F:F5:44:1D:BB:97:43:86:C3:E8:A5:3B:C9:EB:0F:61:1A:32 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 126962F75809A0BC559E17AC2ED57EE0792DADB2 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 09:10:49 +0000 ROA not before: Mon 20 Apr 2026 09:05:49 +0000 ROA not after: Mon 19 Apr 2027 09:10:49 +0000 asID: 131483 IP address blocks: 43.227.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:69:62:f7:58:09:a0:bc:55:9e:17:ac:2e:d5:7e:e0:79:2d:ad:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 09:05:49 2026 GMT Not After : Apr 19 09:10:49 2027 GMT Subject: CN=BE7A8FF5441DBB974386C3E8A53BC9EB0F611A32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b8:e2:08:24:14:3a:a4:e2:35:3f:33:dc:1f: 81:d9:12:02:de:4a:28:6a:0f:b6:27:87:93:5f:a4: 3c:de:d4:56:45:42:b1:07:c5:be:76:33:d5:2e:f9: 31:f7:e1:00:fa:53:69:ce:82:d4:38:a1:df:23:b0: 53:ac:50:02:a5:a7:50:f9:7b:72:b7:25:bc:a1:89: c6:2b:c8:01:78:8a:25:51:d8:3b:a7:f2:eb:16:af: cf:da:db:bd:ba:c8:a6:ac:91:1d:d7:29:77:3a:f0: 83:93:71:39:44:21:2d:5f:4a:ae:82:b1:d8:f7:04: a8:2d:38:3b:b0:b9:3d:94:1b:b5:44:de:95:3a:9f: f2:b0:66:35:8e:42:8a:8b:b6:8b:3a:e4:74:49:6b: 73:37:1a:b2:57:0f:66:c2:29:9a:e9:a0:5c:9d:66: b4:65:5a:65:00:36:59:4d:d9:39:19:64:57:a6:2c: 0d:c4:3a:ae:d9:e0:f8:9c:4d:a2:27:d0:73:8e:2b: 01:83:53:9b:b7:d9:df:36:b7:18:57:dd:3b:93:09: 3a:bc:f1:8f:7a:71:71:6f:14:5b:76:85:d0:e0:21: 65:56:28:bd:e8:6b:e1:b3:95:3b:2b:71:6f:78:e6: da:78:8e:fa:f9:c8:2e:fd:9f:8c:cb:c3:7c:de:49: 5c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:7A:8F:F5:44:1D:BB:97:43:86:C3:E8:A5:3B:C9:EB:0F:61:1A:32 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.69.0/24 Signature Algorithm: sha256WithRSAEncryption 78:ed:43:af:05:78:93:c6:ea:8e:fa:e5:45:e7:53:56:2c:83: 82:ea:75:49:40:9f:bf:dc:17:4f:cc:88:16:a8:20:f3:d2:31: db:e0:c9:59:2a:1d:4a:3e:b5:9d:03:38:00:9e:2f:a2:e3:94: 24:8e:95:7f:86:43:24:ff:de:81:d8:41:ef:c1:d3:7e:ea:9a: c7:24:ae:35:a0:2c:a2:9b:28:fd:60:e5:07:2d:05:34:e4:c7: f6:ce:b7:89:b9:71:92:fd:95:7d:93:38:4d:ae:10:23:c7:38: 03:4a:ca:92:72:95:89:7f:d4:2b:54:89:71:4e:22:41:84:76: 61:35:76:cb:4f:8e:51:7c:b0:13:93:60:14:84:54:c5:ed:6d: 34:b2:54:45:f6:d5:30:97:ee:19:9f:15:06:59:d0:a3:22:5e: 27:05:51:ba:58:d3:64:08:c4:dc:20:1b:eb:ac:a8:2d:65:72: 10:d5:8c:8f:41:ac:4e:68:3a:15:e9:0e:16:06:b5:b1:bd:f5: ec:d3:b3:75:1e:91:7d:f9:73:69:9d:0e:e5:08:2a:d0:aa:3c: a1:98:fa:5a:d5:ab:5c:9c:dc:8f:5a:42:50:0d:54:37:92:e9: 72:f3:88:5c:86:78:69:5d:4e:fd:6d:9a:f2:5e:e4:d6:c4:4b: f6:61:45:1e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUEmli91gJoLxVnhesLtV+4HktrbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwOTA1NDlaFw0yNzA0MTkwOTEwNDlaMDMxMTAvBgNV BAMTKEJFN0E4RkY1NDQxREJCOTc0Mzg2QzNFOEE1M0JDOUVCMEY2MTFBMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzuOIIJBQ6pOI1PzPcH4HZEgLe SihqD7Ynh5NfpDze1FZFQrEHxb52M9Uu+TH34QD6U2nOgtQ4od8jsFOsUAKlp1D5 e3K3JbyhicYryAF4iiVR2Dun8usWr8/a2726yKaskR3XKXc68IOTcTlEIS1fSq6C sdj3BKgtODuwuT2UG7VE3pU6n/KwZjWOQoqLtos65HRJa3M3GrJXD2bCKZrpoFyd ZrRlWmUANllN2TkZZFemLA3EOq7Z4PicTaIn0HOOKwGDU5u32d82txhX3TuTCTq8 8Y96cXFvFFt2hdDgIWVWKL3oa+GzlTsrcW945tp4jvr5yC79n4zLw3zeSVydAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUvnqP9UQdu5dDhsPopTvJ6w9hGjIwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NzJlMzYzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM0MzgzMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvjRTANBgkqhkiG9w0BAQsFAAOCAQEAeO1DrwV4k8bqjvrlRedTViyD gup1SUCfv9wXT8yIFqgg89Ix2+DJWSodSj61nQM4AJ4vouOUJI6Vf4ZDJP/egdhB 78HTfuqaxySuNaAsopso/WDlBy0FNOTH9s63iblxkv2VfZM4Ta4QI8c4A0rKknKV iX/UK1SJcU4iQYR2YTV2y0+OUXywE5NgFIRUxe1tNLJURfbVMJfuGZ8VBlnQoyJe JwVRuljTZAjE3CAb66yoLWVyENWMj0GsTmg6FekOFga1sb317NOzdR6RfflzaZ0O 5Qgq0Ko8oZj6WtWrXJzcj1pCUA1UN5LpcvOIXIZ4aV1O/W2a8l7k1sRL9mFFHg== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:52 2026 by rpki-client