$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e20313533393131.roa File: 34332e3234382e3130342e302f32322d3234203d3e20313533393131.roa (raw, json) Hash identifier: kMGAGhRaoGMzJ2cjlmiM5AtXLq+Cd1X2jeFe7frn4Sc= Subject key identifier: A5:80:21:B0:40:F4:63:A8:D2:80:F2:61:CA:33:99:2C:AB:D6:05:4C Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 25E90B2DFB2136285A63897A4A3AB3B774CE66DD Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e20313533393131.roa Signing time: Mon 20 Apr 2026 06:35:31 +0000 ROA not before: Mon 20 Apr 2026 06:30:31 +0000 ROA not after: Mon 19 Apr 2027 06:35:31 +0000 asID: 153911 IP address blocks: 43.248.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e9:0b:2d:fb:21:36:28:5a:63:89:7a:4a:3a:b3:b7:74:ce:66:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:30:31 2026 GMT Not After : Apr 19 06:35:31 2027 GMT Subject: CN=A58021B040F463A8D280F261CA33992CABD6054C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2e:c3:7a:2d:96:3a:4a:4b:a3:21:44:54:a1: 63:d7:3f:47:fd:02:02:e2:8c:2f:97:9b:8e:c5:f0: 76:2e:df:65:ce:de:98:8a:43:38:d7:65:b7:c4:8e: f9:ae:ce:f1:ab:6e:81:e5:af:3e:99:84:68:bd:2f: b8:57:33:a9:23:45:01:9d:46:56:39:a0:5d:9b:22: 60:2e:ff:ba:2a:66:6e:db:7f:05:40:f8:7e:c0:67: c4:8f:f8:b1:f3:fd:6b:e6:c8:dd:19:3c:f7:fc:29: cb:3e:3c:c8:09:37:18:2a:3d:14:1c:c2:75:24:dd: 12:72:16:8a:20:fd:6a:e2:c6:b4:f3:02:08:51:f8: 73:06:25:63:a7:6b:5c:4e:a8:8d:60:bf:7b:48:70: 02:f2:de:51:4a:c3:d2:a1:32:e7:29:62:ad:a1:57: 90:d9:6a:77:69:8c:48:4e:27:1c:86:f5:10:52:ec: 86:e2:68:b5:2f:12:f0:8d:b3:7f:b1:e5:eb:4e:ef: ca:60:11:c5:07:61:2d:a6:a8:0c:d5:ec:5f:83:b2: e4:6d:cf:27:a0:5d:b7:64:bf:83:6e:f0:db:2a:c7: ef:c2:65:3c:c2:00:99:43:e5:93:e3:0f:7c:55:55: 68:cd:3f:bd:2b:8d:fb:6e:22:ee:ad:a8:60:22:25: e3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:80:21:B0:40:F4:63:A8:D2:80:F2:61:CA:33:99:2C:AB:D6:05:4C X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e20313533393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.104.0/22 Signature Algorithm: sha256WithRSAEncryption 82:29:73:ac:48:95:6d:3f:34:1e:36:e4:bf:e3:ba:54:e2:67: 5f:e9:d9:9e:6d:0e:00:fd:b3:0d:f1:54:7b:d7:b4:31:bc:83: 0a:bb:41:c4:68:7f:92:41:da:f2:95:43:85:ac:12:28:54:60: 7f:20:f2:28:94:ae:7b:e2:b6:5b:35:eb:2a:e9:72:8b:ff:2e: c2:b1:fd:65:b0:cf:a0:61:ca:9f:53:a3:a1:42:46:9e:90:83: e0:04:c5:fb:a3:84:c4:3e:be:7f:f9:db:e5:a6:f4:43:a7:04: 58:12:6f:d9:3c:ee:fd:64:ca:7f:2e:fa:5e:76:fd:e4:62:14: 63:cd:7a:50:e5:d9:f7:e9:fd:42:bb:75:7b:08:28:db:f8:8b: f7:b2:0b:4c:10:3d:e8:83:06:5b:30:c9:21:18:6a:3d:86:c4: 01:dc:a2:a5:47:92:b1:1c:5c:42:5e:ac:80:43:8f:76:f4:13: e8:41:2c:17:64:43:ab:fa:f2:ad:a7:37:3e:de:25:33:59:e4: e2:e7:91:6b:44:37:08:28:eb:6e:f5:9a:ec:d4:3f:a4:8d:88: 63:c7:c4:19:1d:f6:a8:c5:d2:4a:80:5c:ea:56:9a:3f:de:c4: e7:db:63:47:3a:2b:55:4b:8f:fb:44:ae:e3:df:c5:13:e0:9d: b7:21:7b:44 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJekLLfshNihaY4l6Sjqzt3TOZt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjMwMzFaFw0yNzA0MTkwNjM1MzFaMDMxMTAvBgNV BAMTKEE1ODAyMUIwNDBGNDYzQThEMjgwRjI2MUNBMzM5OTJDQUJENjA1NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/LsN6LZY6SkujIURUoWPXP0f9 AgLijC+Xm47F8HYu32XO3piKQzjXZbfEjvmuzvGrboHlrz6ZhGi9L7hXM6kjRQGd RlY5oF2bImAu/7oqZm7bfwVA+H7AZ8SP+LHz/WvmyN0ZPPf8Kcs+PMgJNxgqPRQc wnUk3RJyFoog/WrixrTzAghR+HMGJWOna1xOqI1gv3tIcALy3lFKw9KhMucpYq2h V5DZandpjEhOJxyG9RBS7IbiaLUvEvCNs3+x5etO78pgEcUHYS2mqAzV7F+DsuRt zyegXbdkv4Nu8Nsqx+/CZTzCAJlD5ZPjD3xVVWjNP70rjftuIu6tqGAiJePJAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUpYAhsED0Y6jSgPJhyjOZLKvWBUwwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTg0OTA0OTY2MTcwMjE0NDIvMC8zNDMzMmUzMjM0 MzgyZTMxMzAzNDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzUzMzM5MzEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAiv4aDANBgkqhkiG9w0BAQsFAAOCAQEAgilzrEiVbT80Hjbkv+O6 VOJnX+nZnm0OAP2zDfFUe9e0MbyDCrtBxGh/kkHa8pVDhawSKFRgfyDyKJSue+K2 WzXrKulyi/8uwrH9ZbDPoGHKn1OjoUJGnpCD4ATF+6OExD6+f/nb5ab0Q6cEWBJv 2Tzu/WTKfy76Xnb95GIUY816UOXZ9+n9Qrt1ewgo2/iL97ILTBA96IMGWzDJIRhq PYbEAdyipUeSsRxcQl6sgEOPdvQT6EEsF2RDq/ryrac3Pt4lM1nk4ueRa0Q3CCjr bvWa7NQ/pI2IY8fEGR32qMXSSoBc6laaP97E59tjRzorVUuP+0Su49/FE+CdtyF7 RA== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:12 2026 by rpki-client