$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e203233363530.roa File: 34332e3234382e3130342e302f32322d3234203d3e203233363530.roa (raw, json) Hash identifier: LYK1nr3O/+iL/Q3Dd7eYFbjDMpTtTzieJFfmpoohe0o= Subject key identifier: 9D:0A:C9:C4:0A:7B:D4:54:4E:12:50:AE:4D:D9:76:E1:47:87:21:1D Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 19E7904C06520E47DA45C9515F22CF58B0EFC80F Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:35:31 +0000 ROA not before: Mon 20 Apr 2026 06:30:31 +0000 ROA not after: Mon 19 Apr 2027 06:35:31 +0000 asID: 23650 IP address blocks: 43.248.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:e7:90:4c:06:52:0e:47:da:45:c9:51:5f:22:cf:58:b0:ef:c8:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:30:31 2026 GMT Not After : Apr 19 06:35:31 2027 GMT Subject: CN=9D0AC9C40A7BD4544E1250AE4DD976E14787211D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:18:7f:83:ee:33:c1:8d:6d:2c:30:1a:b2:b4: 3e:19:40:4a:e7:38:72:cc:62:01:25:de:33:b6:81: f4:a2:5f:36:45:7b:18:00:94:28:3b:9d:0b:4c:46: 25:de:27:db:e5:99:3f:c2:c9:cd:e9:82:26:b4:ba: be:14:5c:68:97:e1:93:10:d6:56:58:b4:7e:b1:dc: dd:21:b4:61:1a:d5:21:f2:03:d5:ba:05:b0:78:60: a6:22:37:82:fe:aa:2f:5b:9d:2a:14:6f:f1:a7:5b: 27:93:1b:a6:a4:c0:54:ef:b4:32:c7:2e:c1:40:b3: 13:48:59:3f:a7:16:37:9a:d5:7d:b7:bc:5c:5b:b3: 76:98:8d:fc:60:2f:90:a2:2b:4c:66:89:8e:0b:e7: 58:28:bb:2f:ac:27:65:35:eb:39:5e:d6:6d:81:74: 09:3e:5e:4e:1d:ec:4f:a6:a1:d9:05:2b:a6:2b:dd: 78:6d:22:e3:17:ac:21:a5:09:85:df:87:b1:83:43: ae:e6:fe:f2:6a:e9:36:a4:7c:5d:4d:f2:8e:90:74: a8:cc:ee:93:bb:b4:d9:f7:3c:87:30:3f:cc:5f:51: 68:e7:09:ae:f5:ad:25:16:11:fa:12:b0:4f:3c:b2: 0d:9b:2c:d7:bc:0b:63:d2:b7:f0:f9:90:41:1b:4e: de:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:0A:C9:C4:0A:7B:D4:54:4E:12:50:AE:4D:D9:76:E1:47:87:21:1D X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.104.0/22 Signature Algorithm: sha256WithRSAEncryption 78:67:4a:1d:3a:84:9c:c8:57:94:9b:cc:8e:2e:e2:46:0e:2f: e0:ff:28:ad:d6:d7:42:d3:25:5d:e8:57:74:59:fb:f9:50:8e: c6:39:cc:04:0a:a3:56:33:d6:22:d8:9a:4b:67:4c:fd:41:e1: 9d:0d:9f:ff:1d:57:3e:05:d6:f7:95:6d:4f:3e:13:43:c6:ab: 38:fa:5b:06:a4:09:56:bd:65:68:6c:7f:d7:44:83:f8:96:1d: 70:2e:7e:be:77:0d:cd:20:5c:8d:31:c4:55:41:94:41:34:7d: 61:f6:b1:0a:de:3a:8a:68:b6:04:f2:3a:3b:99:6d:4d:d6:b6: b2:70:f8:bf:9f:f3:92:b7:29:f6:8b:f2:32:ee:b4:7e:be:6d: f8:7e:bf:48:cf:78:6c:08:ad:c9:84:36:27:a8:90:4f:52:15: ad:df:c1:53:20:be:ce:da:05:a3:d7:4f:38:1d:c2:91:24:4f: a5:51:cb:d4:8b:cd:1c:91:a4:27:a7:0e:d9:64:63:8c:c7:81: 3c:36:30:fe:be:d5:ab:2e:c7:2c:d1:d9:07:45:40:15:9b:25: 55:de:65:fa:26:0b:d2:b9:72:6e:e6:cf:c9:bb:8b:72:0d:fe: 63:63:a5:ad:9e:7a:67:1b:23:e1:3d:df:b1:2c:30:be:f8:7a: b0:4a:8b:db -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUGeeQTAZSDkfaRclRXyLPWLDvyA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjMwMzFaFw0yNzA0MTkwNjM1MzFaMDMxMTAvBgNV BAMTKDlEMEFDOUM0MEE3QkQ0NTQ0RTEyNTBBRTRERDk3NkUxNDc4NzIxMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcGH+D7jPBjW0sMBqytD4ZQErn OHLMYgEl3jO2gfSiXzZFexgAlCg7nQtMRiXeJ9vlmT/Cyc3pgia0ur4UXGiX4ZMQ 1lZYtH6x3N0htGEa1SHyA9W6BbB4YKYiN4L+qi9bnSoUb/GnWyeTG6akwFTvtDLH LsFAsxNIWT+nFjea1X23vFxbs3aYjfxgL5CiK0xmiY4L51gouy+sJ2U16zle1m2B dAk+Xk4d7E+modkFK6Yr3XhtIuMXrCGlCYXfh7GDQ67m/vJq6TakfF1N8o6QdKjM 7pO7tNn3PIcwP8xfUWjnCa71rSUWEfoSsE88sg2bLNe8C2PSt/D5kEEbTt7fAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUnQrJxAp71FROElCuTdl24UeHIR0wHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzQz ODJlMzEzMDM0MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv4aDANBgkqhkiG9w0BAQsFAAOCAQEAeGdKHTqEnMhXlJvMji7iRg4v 4P8ordbXQtMlXehXdFn7+VCOxjnMBAqjVjPWItiaS2dM/UHhnQ2f/x1XPgXW95Vt Tz4TQ8arOPpbBqQJVr1laGx/10SD+JYdcC5+vncNzSBcjTHEVUGUQTR9YfaxCt46 imi2BPI6O5ltTda2snD4v5/zkrcp9ovyMu60fr5t+H6/SM94bAityYQ2J6iQT1IV rd/BUyC+ztoFo9dPOB3CkSRPpVHL1IvNHJGkJ6cO2WRjjMeBPDYw/r7Vqy7HLNHZ B0VAFZslVd5l+iYL0rlybubPybuLcg3+Y2OlrZ56Zxsj4T3fsSwwvvh6sEqL2w== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:14 2026 by rpki-client