$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e2034383337.roa File: 34332e3232372e36392e302f32342d3234203d3e2034383337.roa (raw, json) Hash identifier: FWtRLaAiWstpqQEwbakuraAJgOyJ4SRepH1FadwIQJE= Subject key identifier: 4D:2E:F6:BE:9B:9D:93:6D:F9:4E:56:E7:0E:1C:85:79:F9:80:05:55 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 3EFDFC448863B6A5E5DC01189A8780EFBF6F8B8F Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 06:43:01 +0000 ROA not before: Mon 20 Apr 2026 06:38:01 +0000 ROA not after: Mon 19 Apr 2027 06:43:01 +0000 asID: 4837 IP address blocks: 43.227.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:fd:fc:44:88:63:b6:a5:e5:dc:01:18:9a:87:80:ef:bf:6f:8b:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:38:01 2026 GMT Not After : Apr 19 06:43:01 2027 GMT Subject: CN=4D2EF6BE9B9D936DF94E56E70E1C8579F9800555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8a:ae:5a:ff:7b:5d:a9:98:8e:21:10:2a:72: 9d:5d:10:02:41:cb:6f:69:1a:5b:b5:93:b1:68:56: 68:2a:ec:e2:21:5b:b4:b2:1c:4a:54:90:84:5f:94: a9:ab:70:8a:17:17:1f:ef:3f:1c:66:0b:fd:28:03: 81:00:8f:d4:3a:25:da:78:4d:ba:aa:32:e9:20:9e: 65:5f:48:ce:aa:5e:d7:28:17:d3:e8:84:07:84:a1: a5:fe:08:96:ce:e4:28:ef:26:7d:e2:15:c8:e1:6f: 1c:36:6b:bd:7c:7e:c3:b0:e2:bf:94:ab:c1:97:18: 8b:b0:38:ff:84:42:f1:e8:c5:72:b9:fa:11:b7:72: 5f:c4:04:26:ff:76:ea:4d:c4:4e:cd:33:2b:9a:5e: 78:9b:d4:bd:6f:05:c2:02:fa:73:7a:24:1d:d6:94: 0a:df:7e:80:3e:d4:5f:5d:14:59:07:58:15:91:93: 6b:bd:25:ac:47:4b:70:5b:32:d4:2d:1e:7b:72:55: 2d:50:f3:c0:77:7b:94:0e:99:77:44:c1:f0:1f:29: 59:59:cb:14:37:24:89:66:b4:87:95:c4:18:db:34: 35:bf:ed:f7:d3:94:6f:16:4b:29:49:87:bf:3c:2a: 78:00:f2:48:8a:1c:7d:f5:50:22:6a:e6:f0:08:cd: e2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2E:F6:BE:9B:9D:93:6D:F9:4E:56:E7:0E:1C:85:79:F9:80:05:55 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e36392e302f32342d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.69.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:dd:a2:54:88:59:8c:a4:d3:7f:c9:e4:1d:80:fe:c8:a1:d2: 20:e3:98:a4:30:14:84:9a:17:b8:0a:ba:d2:a2:0c:3f:e0:49: 1c:4a:4c:61:18:b5:73:3e:f1:62:81:fb:27:1e:44:89:b0:4e: 92:35:d8:64:1d:53:47:c9:a9:15:66:36:34:64:8a:ec:d0:9c: 68:1b:1b:36:30:fd:aa:6c:37:99:e0:48:2b:a3:2a:9e:3a:15: 4b:01:3e:d7:45:19:39:7f:ea:29:60:2d:1d:cc:3f:fb:b9:61: 2d:2e:61:d8:c5:7d:b7:5c:b0:ae:36:43:bd:e2:54:c3:ee:f8: 8b:75:e4:9b:d9:4d:dd:88:03:3f:32:59:c8:da:b3:2b:49:fc: 83:28:ff:fc:77:5b:ad:68:4f:f4:9e:af:7f:1d:06:74:92:eb: 0b:80:cb:1b:89:ad:bd:ec:8a:27:b0:3c:f5:6d:d3:e3:1a:5c: 10:36:9f:ed:d8:30:77:f6:e1:5b:0e:9f:86:b0:9f:a9:08:03: 8d:9c:6e:ab:4d:62:75:1f:b1:62:e0:7d:05:93:04:11:3b:9d: 9e:06:35:00:7c:d0:b6:0b:c8:33:20:a6:aa:d3:d5:82:8f:8b: 57:ba:03:0e:3f:d2:3c:b3:25:40:fd:e6:4f:32:65:96:1b:74: 1c:58:6b:7f -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUPv38RIhjtqXl3AEYmoeA779vi48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM4MDFaFw0yNzA0MTkwNjQzMDFaMDMxMTAvBgNV BAMTKDREMkVGNkJFOUI5RDkzNkRGOTRFNTZFNzBFMUM4NTc5Rjk4MDA1NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9iq5a/3tdqZiOIRAqcp1dEAJB y29pGlu1k7FoVmgq7OIhW7SyHEpUkIRflKmrcIoXFx/vPxxmC/0oA4EAj9Q6Jdp4 TbqqMukgnmVfSM6qXtcoF9PohAeEoaX+CJbO5CjvJn3iFcjhbxw2a718fsOw4r+U q8GXGIuwOP+EQvHoxXK5+hG3cl/EBCb/dupNxE7NMyuaXnib1L1vBcIC+nN6JB3W lArffoA+1F9dFFkHWBWRk2u9JaxHS3BbMtQtHntyVS1Q88B3e5QOmXdEwfAfKVlZ yxQ3JIlmtIeVxBjbNDW/7ffTlG8WSylJh788KngA8kiKHH31UCJq5vAIzeL7AgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUTS72vpudk235TlbnDhyFefmABVUwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM3 MmUzNjM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAr40UwDQYJKoZIhvcNAQELBQADggEBAGvdolSIWYyk03/J5B2A/sih0iDjmKQw FISaF7gKutKiDD/gSRxKTGEYtXM+8WKB+yceRImwTpI12GQdU0fJqRVmNjRkiuzQ nGgbGzYw/apsN5ngSCujKp46FUsBPtdFGTl/6ilgLR3MP/u5YS0uYdjFfbdcsK42 Q73iVMPu+It15JvZTd2IAz8yWcjasytJ/IMo//x3W61oT/Ser38dBnSS6wuAyxuJ rb3siiewPPVt0+MaXBA2n+3YMHf24VsOn4awn6kIA42cbqtNYnUfsWLgfQWTBBE7 nZ4GNQB80LYLyDMgpqrT1YKPi1e6Aw4/0jyzJUD95k8yZZYbdBxYa38= -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:03 2026 by rpki-client