$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313533393131.roa File: 34332e3232372e36392e302f32342d3234203d3e20313533393131.roa (raw, json) Hash identifier: 5mYVFc1T35j8dlb9TV2JlkOYd+yFMttEsy+ICctesCk= Subject key identifier: 51:CF:70:91:78:16:28:BD:56:AB:E1:DD:20:C6:00:B1:E0:98:47:8D Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 1C5317FB3DA62D87011524AF8C435CAD2365A9EE Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313533393131.roa Signing time: Mon 20 Apr 2026 06:43:01 +0000 ROA not before: Mon 20 Apr 2026 06:38:01 +0000 ROA not after: Mon 19 Apr 2027 06:43:01 +0000 asID: 153911 IP address blocks: 43.227.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:53:17:fb:3d:a6:2d:87:01:15:24:af:8c:43:5c:ad:23:65:a9:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:38:01 2026 GMT Not After : Apr 19 06:43:01 2027 GMT Subject: CN=51CF7091781628BD56ABE1DD20C600B1E098478D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:21:21:e9:80:c6:d9:45:d6:f9:34:a2:3b:eb: 94:0a:bf:fb:ce:aa:62:0a:70:8e:c5:66:81:a5:20: 78:f9:ef:75:40:46:33:75:ec:85:df:29:38:b6:3b: 45:79:4f:22:68:30:ce:86:ef:f7:ea:68:da:45:c5: 77:3a:96:f3:24:46:66:1b:af:9a:6e:c0:6f:95:4c: 99:65:f9:89:d4:12:62:50:35:7b:fc:7c:e4:47:85: b7:79:cf:62:2c:4a:3b:cb:73:c7:b5:22:a7:4e:ef: c7:fa:d9:93:32:1b:c6:5c:c0:20:a3:3d:f4:03:f1: 25:40:05:d0:ed:ac:06:4d:e6:fc:0b:58:c4:81:03: e5:51:7a:a3:cf:40:f5:27:0a:e1:7c:57:05:9c:ae: 02:1e:56:ee:37:8e:22:51:03:45:55:fe:bc:7f:de: f7:7b:cc:2d:f0:9f:84:5e:0e:ad:f1:05:cd:64:ae: 6e:d6:52:bb:bb:95:db:ca:2b:cd:0d:4b:b4:07:76: 52:81:f0:34:91:1e:38:fa:b0:ea:98:fa:bb:74:ab: 86:b9:07:bd:a5:2b:97:e2:4f:10:31:40:93:be:d4: 4f:73:bd:08:81:5f:8a:2e:d4:2f:76:c9:f0:01:99: 60:2c:c4:68:9b:51:43:07:ad:1c:5a:47:2c:d6:7d: f1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CF:70:91:78:16:28:BD:56:AB:E1:DD:20:C6:00:B1:E0:98:47:8D X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e20313533393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.69.0/24 Signature Algorithm: sha256WithRSAEncryption 15:4b:fe:9d:a1:b3:02:f6:f3:fe:0c:04:c4:48:e5:3b:2d:37: d6:88:b6:26:e0:ba:0f:23:09:77:9a:34:7e:fd:5e:c9:df:b6: 32:bf:2c:ff:23:43:74:20:9b:d1:95:41:54:b7:92:25:be:38: b1:8a:de:86:d1:12:c6:e8:4e:93:11:52:6b:72:f4:6e:f8:75: a6:67:60:d7:7d:11:f3:50:0f:43:e2:ed:88:a2:dd:ac:64:df: 45:94:a8:d9:57:e9:6b:53:de:e1:b5:31:a3:3d:2f:ed:f8:ce: 3d:32:53:79:ec:2a:7b:59:5c:04:e0:4c:aa:05:82:83:6a:72: d2:fd:40:63:9e:e0:79:6f:3e:5e:30:9c:79:00:8c:fe:88:e4: 31:ed:06:f1:bb:a9:1e:d0:d9:35:40:e5:b4:14:a3:b7:80:4d: 2e:18:b1:3e:52:f5:83:bf:8d:d0:90:a5:f0:2e:1d:1e:95:a5: e1:25:4c:b2:8a:ec:7c:69:04:df:8b:93:42:15:07:50:25:82: 72:69:b1:95:1f:e1:c9:69:65:23:48:70:fa:69:e2:6a:bf:0a: 86:97:9c:2e:38:ed:ba:17:9b:45:b4:2c:de:ec:f7:60:8d:a3: 46:96:f4:ac:00:1b:eb:a8:b7:39:5d:bf:a3:53:f1:f6:17:e5: 37:1b:2b:11 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUHFMX+z2mLYcBFSSvjENcrSNlqe4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM4MDFaFw0yNzA0MTkwNjQzMDFaMDMxMTAvBgNV BAMTKDUxQ0Y3MDkxNzgxNjI4QkQ1NkFCRTFERDIwQzYwMEIxRTA5ODQ3OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ISHpgMbZRdb5NKI765QKv/vO qmIKcI7FZoGlIHj573VARjN17IXfKTi2O0V5TyJoMM6G7/fqaNpFxXc6lvMkRmYb r5puwG+VTJll+YnUEmJQNXv8fORHhbd5z2IsSjvLc8e1IqdO78f62ZMyG8ZcwCCj PfQD8SVABdDtrAZN5vwLWMSBA+VReqPPQPUnCuF8VwWcrgIeVu43jiJRA0VV/rx/ 3vd7zC3wn4ReDq3xBc1krm7WUru7ldvKK80NS7QHdlKB8DSRHjj6sOqY+rt0q4a5 B72lK5fiTxAxQJO+1E9zvQiBX4ou1C92yfABmWAsxGibUUMHrRxaRyzWffEtAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUUc9wkXgWKL1Wq+HdIMYAseCYR40wHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NzJlMzYzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMzM5MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvjRTANBgkqhkiG9w0BAQsFAAOCAQEAFUv+naGzAvbz/gwExEjlOy03 1oi2JuC6DyMJd5o0fv1eyd+2Mr8s/yNDdCCb0ZVBVLeSJb44sYrehtESxuhOkxFS a3L0bvh1pmdg130R81APQ+LtiKLdrGTfRZSo2Vfpa1Pe4bUxoz0v7fjOPTJTeewq e1lcBOBMqgWCg2py0v1AY57geW8+XjCceQCM/ojkMe0G8bupHtDZNUDltBSjt4BN LhixPlL1g7+N0JCl8C4dHpWl4SVMsorsfGkE34uTQhUHUCWCcmmxlR/hyWllI0hw +mniar8KhpecLjjtuhebRbQs3uz3YI2jRpb0rAAb66i3OV2/o1Px9hflNxsrEQ== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:54 2026 by rpki-client