$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313531333030.roa File: 34332e3232372e36392e302f32342d3234203d3e20313531333030.roa (raw, json) Hash identifier: 6I7QTc/nAJp1UKn8ElfD7o5QSC6VMtoPnL9UeR4sh3U= Subject key identifier: 37:84:34:C8:D9:AD:89:71:2F:FA:2B:4B:FB:24:69:14:40:F5:A9:2B Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 78D238500158C6D11F247018E0F98A67CD753A58 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313531333030.roa Signing time: Mon 20 Apr 2026 06:43:00 +0000 ROA not before: Mon 20 Apr 2026 06:38:00 +0000 ROA not after: Mon 19 Apr 2027 06:43:00 +0000 asID: 151300 IP address blocks: 43.227.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:d2:38:50:01:58:c6:d1:1f:24:70:18:e0:f9:8a:67:cd:75:3a:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:38:00 2026 GMT Not After : Apr 19 06:43:00 2027 GMT Subject: CN=378434C8D9AD89712FFA2B4BFB24691440F5A92B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b5:36:f8:9c:85:d1:f2:86:46:db:a7:55:ad: 20:f1:e0:60:b6:0d:ad:b9:b0:61:1b:f7:0e:29:28: b0:7a:c6:2f:2a:e6:77:5f:bd:9a:5a:e9:f6:55:3f: 7d:c4:f2:05:dc:65:1b:a1:49:95:71:d6:24:d4:77: f0:50:09:a8:9b:93:2c:cd:91:6b:7b:08:34:9f:70: ca:1f:91:bd:ce:14:00:12:2e:70:3d:67:0d:62:57: e0:64:4d:44:ef:fc:7d:a2:86:2c:48:1f:46:b7:c1: 42:ee:8d:7e:52:d9:24:cb:73:2f:6e:75:78:7b:41: d1:1c:3a:c7:ed:3b:90:40:e7:ef:dd:f7:6e:3c:c7: 72:61:b3:3c:d1:ee:25:08:6d:8a:66:ec:2a:6b:44: 51:b4:41:e4:21:a8:6d:07:08:26:29:11:d6:e3:16: 89:54:50:1b:d1:22:17:47:c0:94:42:41:29:53:a9: e4:61:4a:b5:c9:64:ec:d3:22:30:3e:6d:52:11:31: b7:8d:85:c3:59:95:67:40:0b:5a:5e:ef:fa:58:d5: 0b:7c:e4:fe:46:43:87:c1:03:5a:c1:44:7f:4f:7b: 0d:ec:00:d8:b8:03:e7:7c:37:43:84:2a:4f:ce:fe: c0:69:92:df:db:42:47:39:f1:4e:51:f1:86:c2:df: f5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:84:34:C8:D9:AD:89:71:2F:FA:2B:4B:FB:24:69:14:40:F5:A9:2B X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313531333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.69.0/24 Signature Algorithm: sha256WithRSAEncryption 80:d1:cf:d2:56:de:95:7d:7b:93:64:d5:2a:71:03:c5:12:cb: 81:50:4d:ab:36:02:e2:79:c0:71:ac:97:00:99:2b:5e:3b:f8: 84:a7:e3:53:f3:09:6a:1f:ad:02:c4:fb:b0:d8:15:d7:fe:01: ce:29:09:87:35:67:7c:a0:fc:cc:93:72:58:88:12:9e:9a:92: 71:8b:f1:23:fd:3a:7e:5b:90:bf:35:5d:bb:11:a8:f3:83:d3: da:7f:b6:4c:e7:02:38:e1:d4:56:ac:44:53:74:fb:f7:6e:60: 05:60:20:c8:29:a6:af:30:1d:fa:c8:08:99:de:94:eb:52:eb: 76:ec:99:b1:1e:69:8d:bd:11:93:75:9d:b5:05:44:33:76:6d: 2f:da:8b:c9:79:3f:de:33:05:99:68:17:54:18:9f:35:30:e2: 4e:bc:8d:1d:9c:c4:cc:a1:4d:a6:39:44:1a:a7:b4:1c:4b:2b: 80:40:aa:5d:3d:9a:82:b6:b7:f6:a9:dd:9c:48:07:c8:87:f3: 7a:b7:52:39:16:19:85:d3:d9:04:83:ef:4c:fe:6c:8f:44:b5: 52:e1:f8:dd:b5:27:ec:1a:e1:05:41:a3:6e:ce:aa:c5:e3:54: 81:73:97:bc:c5:83:6d:88:94:1e:6a:59:e1:a6:96:0f:cb:5a: 6c:a3:de:ec -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUeNI4UAFYxtEfJHAY4PmKZ811OlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM4MDBaFw0yNzA0MTkwNjQzMDBaMDMxMTAvBgNV BAMTKDM3ODQzNEM4RDlBRDg5NzEyRkZBMkI0QkZCMjQ2OTE0NDBGNUE5MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCltTb4nIXR8oZG26dVrSDx4GC2 Da25sGEb9w4pKLB6xi8q5ndfvZpa6fZVP33E8gXcZRuhSZVx1iTUd/BQCaibkyzN kWt7CDSfcMofkb3OFAASLnA9Zw1iV+BkTUTv/H2ihixIH0a3wULujX5S2STLcy9u dXh7QdEcOsftO5BA5+/d9248x3JhszzR7iUIbYpm7CprRFG0QeQhqG0HCCYpEdbj FolUUBvRIhdHwJRCQSlTqeRhSrXJZOzTIjA+bVIRMbeNhcNZlWdAC1pe7/pY1Qt8 5P5GQ4fBA1rBRH9Pew3sANi4A+d8N0OEKk/O/sBpkt/bQkc58U5R8YbC3/WNAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUN4Q0yNmtiXEv+itL+yRpFED1qSswHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NzJlMzYzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvjRTANBgkqhkiG9w0BAQsFAAOCAQEAgNHP0lbelX17k2TVKnEDxRLL gVBNqzYC4nnAcayXAJkrXjv4hKfjU/MJah+tAsT7sNgV1/4BzikJhzVnfKD8zJNy WIgSnpqScYvxI/06fluQvzVduxGo84PT2n+2TOcCOOHUVqxEU3T7925gBWAgyCmm rzAd+sgImd6U61LrduyZsR5pjb0Rk3WdtQVEM3ZtL9qLyXk/3jMFmWgXVBifNTDi TryNHZzEzKFNpjlEGqe0HEsrgECqXT2agra39qndnEgHyIfzerdSORYZhdPZBIPv TP5sj0S1UuH43bUn7BrhBUGjbs6qxeNUgXOXvMWDbYiUHmpZ4aaWD8tabKPe7A== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:13 2026 by rpki-client