$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e203233363530.roa File: 34332e3232372e37302e302f32332d3234203d3e203233363530.roa (raw, json) Hash identifier: We2HGZPCCiNl46K6XSAzCIQmhStGS9U1wjHL1ZlZn88= Subject key identifier: A9:26:3F:9F:9A:C8:E5:88:6F:B8:F0:BF:CB:73:0C:24:75:DD:7C:A8 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 6BA7C182700ED3E8B4153D11E45006CC2B470459 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:43:50 +0000 ROA not before: Mon 20 Apr 2026 06:38:50 +0000 ROA not after: Mon 19 Apr 2027 06:43:50 +0000 asID: 23650 IP address blocks: 43.227.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:a7:c1:82:70:0e:d3:e8:b4:15:3d:11:e4:50:06:cc:2b:47:04:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:38:50 2026 GMT Not After : Apr 19 06:43:50 2027 GMT Subject: CN=A9263F9F9AC8E5886FB8F0BFCB730C2475DD7CA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:57:cc:6f:b9:fc:2a:38:5f:78:94:f7:6d:8d: 44:21:7b:5e:2d:e9:11:3b:05:18:2f:16:d2:3f:6b: 57:7f:bf:30:ee:59:c4:f5:00:23:06:81:31:29:56: 44:30:9d:83:65:94:ad:7e:81:8d:8d:5d:c8:ee:e3: cd:b3:85:fb:23:64:48:09:b8:cf:2b:eb:7e:0b:b4: c4:1e:41:ea:96:9c:f5:eb:1f:b7:25:0d:8a:a6:d2: 93:f9:f8:38:4c:08:32:29:b2:a4:65:e9:8b:ca:52: 42:a1:41:c0:87:65:d6:f8:9f:bd:d6:b9:6b:bf:fd: 32:9c:ab:2d:b0:f4:fa:c7:29:97:ad:80:41:46:ba: 91:d0:75:fc:a0:d7:a0:66:03:97:4e:29:c8:f0:3f: d2:c4:84:49:e9:d8:d2:98:67:c4:7a:c5:1c:9c:63: 8e:f4:41:b9:64:61:7c:b7:99:e5:8a:e8:27:9a:a6: 54:7b:68:44:a4:55:df:8c:1a:f1:c7:9d:60:b1:a2: 9f:66:01:32:42:11:6e:72:1a:e3:bf:a3:1e:49:a4: d8:16:15:2d:af:2a:74:27:74:cd:e3:02:ce:ae:cc: 97:d7:96:0b:8d:8b:fe:8f:a0:bb:4d:4f:04:a3:d8: 8a:e4:dc:1a:a2:44:7e:b2:76:93:cd:37:98:8c:0d: 64:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:26:3F:9F:9A:C8:E5:88:6F:B8:F0:BF:CB:73:0C:24:75:DD:7C:A8 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.70.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:b2:18:c2:d7:23:1a:fc:d6:3e:74:91:d8:c8:19:3a:eb:52: 2b:a9:b5:06:0d:9d:49:57:31:07:da:d0:21:ef:9e:7b:e6:f5: 91:66:70:20:a8:35:31:48:9c:5e:a3:14:a4:65:22:97:66:eb: ad:b0:08:d6:d0:93:73:ab:de:48:fd:94:57:64:25:ae:1e:fb: 90:4b:87:64:56:67:4d:a4:9c:5f:e6:1d:06:c5:7e:26:fe:5b: 13:9c:73:81:d6:8b:9a:f6:1b:b1:c3:da:7b:c1:f7:81:f8:f1: f4:05:08:bf:2b:f0:b3:66:80:c8:57:27:0f:50:8b:6c:6d:6a: e3:73:ef:e5:f8:db:4f:cf:45:56:92:75:ca:b4:3f:dd:64:f8: 2d:f1:49:c2:51:dc:26:60:8b:75:f0:c3:ed:60:ed:5b:4d:c8: 56:ea:3f:84:ff:c3:3b:ae:07:5c:e4:7e:e5:60:bb:b8:02:63: bd:a9:02:1b:4c:a4:0b:fe:fb:36:4f:8f:05:b2:70:67:f2:22: ed:40:39:9e:85:2c:2b:b8:b0:6b:04:22:5c:e0:70:1e:c4:63: 27:d5:ca:c0:aa:81:a8:cd:19:0a:8b:6e:3a:b7:c0:22:a2:de: ee:60:0b:40:b9:f1:0b:0f:db:72:1e:91:6d:31:89:02:91:db: 08:2c:a5:d6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUa6fBgnAO0+i0FT0R5FAGzCtHBFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM4NTBaFw0yNzA0MTkwNjQzNTBaMDMxMTAvBgNV BAMTKEE5MjYzRjlGOUFDOEU1ODg2RkI4RjBCRkNCNzMwQzI0NzVERDdDQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYV8xvufwqOF94lPdtjUQhe14t 6RE7BRgvFtI/a1d/vzDuWcT1ACMGgTEpVkQwnYNllK1+gY2NXcju482zhfsjZEgJ uM8r634LtMQeQeqWnPXrH7clDYqm0pP5+DhMCDIpsqRl6YvKUkKhQcCHZdb4n73W uWu//TKcqy2w9PrHKZetgEFGupHQdfyg16BmA5dOKcjwP9LEhEnp2NKYZ8R6xRyc Y470QblkYXy3meWK6CeaplR7aESkVd+MGvHHnWCxop9mATJCEW5yGuO/ox5JpNgW FS2vKnQndM3jAs6uzJfXlguNi/6PoLtNTwSj2Irk3BqiRH6ydpPNN5iMDWS/AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUqSY/n5rI5YhvuPC/y3MMJHXdfKgwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM3 MmUzNzMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEASvjRjANBgkqhkiG9w0BAQsFAAOCAQEAW7IYwtcjGvzWPnSR2MgZOutSK6m1 Bg2dSVcxB9rQIe+ee+b1kWZwIKg1MUicXqMUpGUil2brrbAI1tCTc6veSP2UV2Ql rh77kEuHZFZnTaScX+YdBsV+Jv5bE5xzgdaLmvYbscPae8H3gfjx9AUIvyvws2aA yFcnD1CLbG1q43Pv5fjbT89FVpJ1yrQ/3WT4LfFJwlHcJmCLdfDD7WDtW03IVuo/ hP/DO64HXOR+5WC7uAJjvakCG0ykC/77Nk+PBbJwZ/Ii7UA5noUsK7iwawQiXOBw HsRjJ9XKwKqBqM0ZCotuOrfAIqLe7mALQLnxCw/bch6RbTGJApHbCCyl1g== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:00 2026 by rpki-client