$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e20313531333030.roa File: 34332e3232372e37302e302f32332d3234203d3e20313531333030.roa (raw, json) Hash identifier: jqBi6SIezy1EB6UqIOIdrJiLtGUio/jDh0mOSvqj5k8= Subject key identifier: 1E:9C:01:60:D1:13:6B:D0:6A:12:93:65:4D:E2:A0:7F:06:8D:4E:80 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 1F40558CBA8C1CB3210A645C3532B7E41BB0B697 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e20313531333030.roa Signing time: Mon 20 Apr 2026 06:43:49 +0000 ROA not before: Mon 20 Apr 2026 06:38:49 +0000 ROA not after: Mon 19 Apr 2027 06:43:49 +0000 asID: 151300 IP address blocks: 43.227.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:40:55:8c:ba:8c:1c:b3:21:0a:64:5c:35:32:b7:e4:1b:b0:b6:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:38:49 2026 GMT Not After : Apr 19 06:43:49 2027 GMT Subject: CN=1E9C0160D1136BD06A1293654DE2A07F068D4E80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d2:fa:3d:fb:fd:1d:7c:77:68:f5:ac:39:35: fa:0b:b1:d3:49:75:f2:b9:ec:dc:70:bc:13:ab:c8: 9a:9d:fb:91:79:b3:35:ef:61:95:08:63:e6:ac:ba: 7e:7c:78:5a:2d:a1:49:cf:6d:ae:59:a0:61:42:63: 89:10:96:ad:8b:23:f9:30:64:d3:1a:8e:f9:75:1e: ec:66:42:fe:94:fd:ae:d2:91:05:a8:e5:e5:68:63: 3f:18:8d:6b:d3:9b:8e:12:31:6b:3c:ee:d5:ac:cf: 74:f8:99:01:d4:db:1b:e1:da:49:2a:51:da:51:64: 95:d8:4e:93:ca:9b:a8:f0:59:19:49:ca:20:b9:66: e0:cc:f4:7c:5b:cd:8f:d6:3a:d2:47:d3:5b:11:3e: 4d:36:69:27:6b:48:d8:6a:0d:70:9c:a1:66:12:88: de:3f:04:3f:0f:84:69:7a:45:56:8e:95:b5:2a:27: 58:f9:a9:eb:10:8e:ab:26:e7:86:7f:72:e3:8d:55: bf:97:10:43:d5:9f:ff:b2:9e:e6:26:db:b6:e1:c8: 98:8b:f3:06:0d:2e:fb:13:d7:db:1a:45:b9:b8:e0: 09:ea:7f:54:8d:6a:78:af:d9:b9:7b:7b:88:7a:00: 1b:07:2e:20:2f:04:73:4c:d9:3c:28:2f:26:d1:a4: d0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9C:01:60:D1:13:6B:D0:6A:12:93:65:4D:E2:A0:7F:06:8D:4E:80 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e20313531333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.70.0/23 Signature Algorithm: sha256WithRSAEncryption 41:d4:fd:17:0f:09:b6:db:3e:a3:cc:31:9e:fc:17:bd:7d:e8: 84:95:11:73:99:05:43:9c:59:f3:4d:a0:c5:66:8e:f6:12:df: 9a:a1:43:aa:d7:09:52:50:ff:70:5b:0d:f2:b6:68:d4:aa:b7: 2d:3f:57:f1:fe:03:e9:f2:b0:b0:bb:14:41:37:f3:ba:46:9b: ae:6d:ec:d0:da:ec:01:36:85:83:26:b8:d7:a0:51:24:92:7b: 58:bb:79:a0:35:38:d0:56:0f:3b:cd:e1:3b:39:89:0c:14:88: a4:40:cc:61:30:06:df:1c:3e:38:60:54:c0:b6:d1:42:bb:40: b8:df:00:3b:66:72:14:11:8a:b4:c8:eb:5f:6c:a1:5c:95:dd: 10:b2:9d:db:dc:79:ce:89:6a:3b:ff:e7:da:7f:b3:12:fe:0e: 77:c8:4c:35:ea:93:e4:22:4a:03:85:b8:7f:26:0e:48:59:3d: 1c:d5:1b:ce:b7:3b:cb:7a:65:62:db:a9:28:c6:bc:17:21:b4: 0f:1b:f5:59:05:5c:3d:16:7d:7d:ec:c2:3f:fd:10:eb:9f:bf: 42:a0:fc:5d:0f:4a:0b:03:b2:7e:4e:51:ce:8b:0d:99:53:a0: dc:f1:ab:6e:74:46:30:4e:95:98:1d:0d:c6:20:9c:ae:15:27: 7c:39:ec:c3 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUH0BVjLqMHLMhCmRcNTK35BuwtpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM4NDlaFw0yNzA0MTkwNjQzNDlaMDMxMTAvBgNV BAMTKDFFOUMwMTYwRDExMzZCRDA2QTEyOTM2NTRERTJBMDdGMDY4RDRFODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh0vo9+/0dfHdo9aw5NfoLsdNJ dfK57NxwvBOryJqd+5F5szXvYZUIY+asun58eFotoUnPba5ZoGFCY4kQlq2LI/kw ZNMajvl1HuxmQv6U/a7SkQWo5eVoYz8YjWvTm44SMWs87tWsz3T4mQHU2xvh2kkq UdpRZJXYTpPKm6jwWRlJyiC5ZuDM9HxbzY/WOtJH01sRPk02aSdrSNhqDXCcoWYS iN4/BD8PhGl6RVaOlbUqJ1j5qesQjqsm54Z/cuONVb+XEEPVn/+ynuYm27bhyJiL 8wYNLvsT19saRbm44Anqf1SNaniv2bl7e4h6ABsHLiAvBHNM2TwoLybRpNC/AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUHpwBYNETa9BqEpNlTeKgfwaNToAwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzIz NzJlMzczMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASvjRjANBgkqhkiG9w0BAQsFAAOCAQEAQdT9Fw8Jtts+o8wxnvwXvX3o hJURc5kFQ5xZ802gxWaO9hLfmqFDqtcJUlD/cFsN8rZo1Kq3LT9X8f4D6fKwsLsU QTfzukabrm3s0NrsATaFgya416BRJJJ7WLt5oDU40FYPO83hOzmJDBSIpEDMYTAG 3xw+OGBUwLbRQrtAuN8AO2ZyFBGKtMjrX2yhXJXdELKd29x5zolqO//n2n+zEv4O d8hMNeqT5CJKA4W4fyYOSFk9HNUbzrc7y3plYtupKMa8FyG0Dxv1WQVcPRZ9fezC P/0Q65+/QqD8XQ9KCwOyfk5RzosNmVOg3PGrbnRGME6VmB0NxiCcrhUnfDnsww== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:53 2026 by rpki-client