$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e203536303436.roa File: 34332e3232372e37302e302f32332d3234203d3e203536303436.roa (raw, json) Hash identifier: JLw4KZzejqaFKL6x1C/brXeL1WBl2GAL90EOZFD4544= Subject key identifier: 7C:39:17:BD:C4:CC:5A:43:04:8A:EE:C6:D0:75:E8:BA:41:BD:C8:25 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 0309D45BF0108BDD8D5D383995EFDDD3603D2A26 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 06:43:50 +0000 ROA not before: Mon 20 Apr 2026 06:38:50 +0000 ROA not after: Mon 19 Apr 2027 06:43:50 +0000 asID: 56046 IP address blocks: 43.227.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:09:d4:5b:f0:10:8b:dd:8d:5d:38:39:95:ef:dd:d3:60:3d:2a:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:38:50 2026 GMT Not After : Apr 19 06:43:50 2027 GMT Subject: CN=7C3917BDC4CC5A43048AEEC6D075E8BA41BDC825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fe:3f:69:05:39:db:0a:6e:ad:36:3d:ef:ec: dc:39:4a:72:ff:83:6f:f2:b5:c6:2f:cf:b3:cf:7b: 31:cf:22:5e:72:9e:56:dd:96:05:0c:a4:a4:9c:b1: 81:cf:32:bc:60:8e:42:09:21:ec:e2:77:20:2e:de: 54:ae:42:eb:84:a0:5e:22:6f:9c:61:d9:aa:59:ff: 18:00:8e:c9:3c:38:df:f6:52:91:70:fd:29:7c:d9: 4d:5f:42:79:d9:ee:34:0e:b4:90:a9:1f:e0:41:86: c2:7c:89:29:89:08:a6:45:03:c1:25:b1:bf:7f:b0: 34:f2:e6:66:20:55:42:f6:e1:d2:82:01:0a:0c:4a: ef:e9:0e:28:37:52:29:63:56:d4:0b:4a:b9:80:2c: 93:f1:68:8d:cc:d4:27:a6:4a:84:ee:a3:68:00:ee: 4c:54:65:4d:f3:c4:ed:a8:48:2a:35:55:26:be:db: 77:b2:b6:19:15:03:cf:25:49:1d:62:aa:3d:b6:af: a9:1d:b4:11:08:ad:8f:87:69:cc:02:ad:5f:9f:27: 8d:a7:c4:dc:98:65:80:ec:26:84:b5:8a:63:b1:22: 60:b6:a4:e4:8b:49:16:2c:d2:cb:5d:71:d9:1e:6a: 3b:75:ed:9b:d4:1a:aa:39:17:54:e9:89:fe:8b:00: 4c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:39:17:BD:C4:CC:5A:43:04:8A:EE:C6:D0:75:E8:BA:41:BD:C8:25 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3232372e37302e302f32332d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.70.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:bb:a1:0c:f1:c0:54:68:5a:a0:8f:df:9d:21:b1:63:4c:40: 25:c5:98:6e:1d:ac:5e:9f:39:1d:5f:58:81:e2:f8:e2:1e:01: 34:61:ee:21:5a:21:5a:96:7a:5c:a8:b4:9d:47:7c:ff:b8:f3: 17:a0:7b:fd:c0:9d:df:9a:24:a3:3c:3d:77:f3:fe:3d:a5:8a: d9:6a:e6:cf:a1:31:4f:6e:06:13:4f:64:33:95:2b:86:4e:9f: ba:88:3c:9e:52:d4:bf:54:3b:5c:14:04:59:60:50:ec:d9:36: 0b:70:be:bd:e3:65:29:e5:c7:14:08:8f:63:cb:19:9f:1e:10: b2:39:e7:89:a1:3c:c5:31:5c:5f:ac:c8:88:8e:88:86:67:4d: d2:b1:a8:df:b4:2f:a0:dc:45:30:3c:80:58:f7:28:57:ba:69: 84:a5:e2:e5:7f:7a:b2:20:fb:0f:84:34:5d:66:9d:f1:86:30: e8:cb:07:fb:a3:a2:73:ea:8c:4d:b9:01:e3:4f:7e:62:0c:5c: 9a:b5:5a:43:9b:58:cc:3f:b7:45:6d:23:58:63:a7:ab:33:9f: 24:ae:79:6b:1a:1f:ce:5e:06:a9:0b:27:ac:30:9f:8a:80:7c: d6:f1:a8:54:c9:8b:47:fa:f8:b8:9a:38:b3:a4:79:0f:5c:ac: 5a:49:bf:4d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUAwnUW/AQi92NXTg5le/d02A9KiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM4NTBaFw0yNzA0MTkwNjQzNTBaMDMxMTAvBgNV BAMTKDdDMzkxN0JEQzRDQzVBNDMwNDhBRUVDNkQwNzVFOEJBNDFCREM4MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH/j9pBTnbCm6tNj3v7Nw5SnL/ g2/ytcYvz7PPezHPIl5ynlbdlgUMpKScsYHPMrxgjkIJIezidyAu3lSuQuuEoF4i b5xh2apZ/xgAjsk8ON/2UpFw/Sl82U1fQnnZ7jQOtJCpH+BBhsJ8iSmJCKZFA8El sb9/sDTy5mYgVUL24dKCAQoMSu/pDig3UiljVtQLSrmALJPxaI3M1CemSoTuo2gA 7kxUZU3zxO2oSCo1VSa+23eythkVA88lSR1iqj22r6kdtBEIrY+HacwCrV+fJ42n xNyYZYDsJoS1imOxImC2pOSLSRYs0stdcdkeajt17ZvUGqo5F1Tpif6LAEyBAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUfDkXvcTMWkMEiu7G0HXoukG9yCUwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzMjM3 MmUzNzMwMmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEASvjRjANBgkqhkiG9w0BAQsFAAOCAQEAKruhDPHAVGhaoI/fnSGxY0xAJcWY bh2sXp85HV9YgeL44h4BNGHuIVohWpZ6XKi0nUd8/7jzF6B7/cCd35okozw9d/P+ PaWK2Wrmz6ExT24GE09kM5Urhk6fuog8nlLUv1Q7XBQEWWBQ7Nk2C3C+veNlKeXH FAiPY8sZnx4QsjnniaE8xTFcX6zIiI6IhmdN0rGo37QvoNxFMDyAWPcoV7pphKXi 5X96siD7D4Q0XWad8YYw6MsH+6Oic+qMTbkB409+YgxcmrVaQ5tYzD+3RW0jWGOn qzOfJK55axofzl4GqQsnrDCfioB81vGoVMmLR/r4uJo4s6R5D1ysWkm/TQ== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:31 2026 by rpki-client