$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e2034383337.roa File: 34332e3232372e37302e302f32332d3234203d3e2034383337.roa (raw, json) Hash identifier: 4ZQRPouBxIA3P/wNQl37RqQLT2N+LJa0+7OeVzbk2es= Subject key identifier: CA:6F:D3:AB:3F:54:25:9F:C0:10:DA:60:93:B0:4C:C2:5C:BE:5F:9D Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 103B7A805FF4230AFA4791D5A18F9A6BA86DFF6E Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 06:43:50 +0000 ROA not before: Mon 20 Apr 2026 06:38:50 +0000 ROA not after: Mon 19 Apr 2027 06:43:50 +0000 asID: 4837 IP address blocks: 43.227.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 19:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:3b:7a:80:5f:f4:23:0a:fa:47:91:d5:a1:8f:9a:6b:a8:6d:ff:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:38:50 2026 GMT Not After : Apr 19 06:43:50 2027 GMT Subject: CN=CA6FD3AB3F54259FC010DA6093B04CC25CBE5F9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f8:46:2d:9b:7a:88:34:04:31:94:0f:f7:97: 48:66:68:6d:dc:4f:c8:34:c4:21:cd:86:a3:c7:eb: 2b:67:9a:fa:d3:1a:98:4e:a7:0b:ce:25:63:8e:91: f8:ea:a5:e3:e9:f9:77:39:8c:fa:8f:9f:fa:af:bd: 12:e3:65:04:00:e7:8d:e6:bd:6d:7f:6e:96:0b:bc: 12:00:c7:cf:f0:b6:ed:56:ec:61:d1:ff:b6:c6:73: 57:a0:73:0c:1b:22:50:43:4a:dc:d2:99:26:0c:c8: b1:c9:66:0a:8f:d8:a6:9f:52:af:2f:df:d6:0c:a7: 86:f1:43:c7:d8:94:9f:8b:09:ab:9e:37:8a:2a:32: 1a:08:30:c0:1c:18:93:d5:65:5b:48:08:9b:a1:c7: ac:c3:3b:40:ba:1e:98:6b:53:62:02:2f:ac:db:87: b0:f9:f0:36:34:89:db:13:a4:e6:72:f9:e5:6d:cf: af:9f:f6:75:1f:c1:98:73:ba:0b:1b:d4:99:6b:55: 0a:bd:e9:d6:32:9e:b0:4d:a1:01:81:ca:e4:dc:c5: 51:ae:a5:11:f1:c3:51:43:58:ad:f3:05:4b:bb:18: 05:9b:c1:97:13:95:31:69:68:56:fb:59:28:35:e5: 24:1a:b0:8b:89:29:81:ca:31:e2:b0:de:b7:84:3f: 6a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6F:D3:AB:3F:54:25:9F:C0:10:DA:60:93:B0:4C:C2:5C:BE:5F:9D X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.70.0/23 Signature Algorithm: sha256WithRSAEncryption 54:c8:23:6b:e1:3a:53:cf:ef:ba:2f:ea:bc:79:97:c7:2d:0d: c6:e2:70:89:a0:69:8d:80:4e:ad:0f:83:98:cc:db:e7:66:55: 7e:06:eb:53:2d:28:9d:4f:02:ac:4b:09:c6:c4:9a:99:d8:3f: 4a:f8:82:e0:a4:22:78:c1:e9:ce:a9:d4:00:de:d6:79:d1:19: 53:d1:c7:02:1d:a8:df:49:79:96:5d:30:61:86:2d:12:8f:de: 0d:52:82:1d:1b:17:0b:42:da:8f:8e:9d:4e:86:c9:95:3c:44: e9:e6:6a:06:fa:49:d3:5b:d3:0c:5b:d2:73:38:78:83:66:61: 8a:ce:1d:74:fb:a7:a9:c2:8f:d0:ce:8e:be:68:c6:99:65:06: ec:69:44:ca:f2:fd:e4:d9:30:9c:16:5e:9f:3c:1b:9b:79:6d: ce:e0:ed:35:7c:59:f5:a2:14:7e:89:c7:46:6a:e6:9b:44:43: e3:c0:88:6d:59:a1:51:8d:d7:bf:91:e1:d0:f1:3a:06:88:ef: 11:ad:d2:25:33:c7:b9:91:1c:d9:cf:f0:1b:17:6b:8a:20:89: f8:df:d4:70:3d:50:96:5f:dc:b8:c4:70:96:c9:ff:c1:2e:5c: 54:0b:5f:a3:86:65:78:76:3d:d9:be:95:10:44:a6:a7:84:c0: 45:6a:00:dc -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUEDt6gF/0Iwr6R5HVoY+aa6ht/24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM4NTBaFw0yNzA0MTkwNjQzNTBaMDMxMTAvBgNV BAMTKENBNkZEM0FCM0Y1NDI1OUZDMDEwREE2MDkzQjA0Q0MyNUNCRTVGOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh+EYtm3qINAQxlA/3l0hmaG3c T8g0xCHNhqPH6ytnmvrTGphOpwvOJWOOkfjqpePp+Xc5jPqPn/qvvRLjZQQA543m vW1/bpYLvBIAx8/wtu1W7GHR/7bGc1egcwwbIlBDStzSmSYMyLHJZgqP2KafUq8v 39YMp4bxQ8fYlJ+LCaueN4oqMhoIMMAcGJPVZVtICJuhx6zDO0C6HphrU2ICL6zb h7D58DY0idsTpOZy+eVtz6+f9nUfwZhzugsb1JlrVQq96dYynrBNoQGByuTcxVGu pRHxw1FDWK3zBUu7GAWbwZcTlTFpaFb7WSg15SQasIuJKYHKMeKw3reEP2qdAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUym/Tqz9UJZ/AENpgk7BMwly+X50wHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM3 MmUzNzMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEr40YwDQYJKoZIhvcNAQELBQADggEBAFTII2vhOlPP77ov6rx5l8ctDcbicImg aY2ATq0Pg5jM2+dmVX4G61MtKJ1PAqxLCcbEmpnYP0r4guCkInjB6c6p1ADe1nnR GVPRxwIdqN9JeZZdMGGGLRKP3g1Sgh0bFwtC2o+OnU6GyZU8ROnmagb6SdNb0wxb 0nM4eINmYYrOHXT7p6nCj9DOjr5oxpllBuxpRMry/eTZMJwWXp88G5t5bc7g7TV8 WfWiFH6Jx0Zq5ptEQ+PAiG1ZoVGN17+R4dDxOgaI7xGt0iUzx7mRHNnP8BsXa4og ifjf1HA9UJZf3LjEcJbJ/8EuXFQLX6OGZXh2Pdm+lRBEpqeEwEVqANw= -----END CERTIFICATE-----Generated at Wed Apr 22 05:10:08 2026 by rpki-client