$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e203536303436.roa File: 34332e3234382e3130342e302f32322d3234203d3e203536303436.roa (raw, json) Hash identifier: CPfvtq1fq2j/NiSTpxr8jgdfMCQr+GwLYWGIo9BNWkw= Subject key identifier: 55:71:6C:DF:8D:24:01:CD:00:2D:49:19:24:79:EF:02:AC:63:27:B8 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 7C82C54F5DAEEC10D8A7E6BE137905EE7BE0A0E7 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 06:35:31 +0000 ROA not before: Mon 20 Apr 2026 06:30:31 +0000 ROA not after: Mon 19 Apr 2027 06:35:31 +0000 asID: 56046 IP address blocks: 43.248.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:82:c5:4f:5d:ae:ec:10:d8:a7:e6:be:13:79:05:ee:7b:e0:a0:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:30:31 2026 GMT Not After : Apr 19 06:35:31 2027 GMT Subject: CN=55716CDF8D2401CD002D49192479EF02AC6327B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cc:53:6a:8d:01:e2:27:72:51:bb:02:d5:13: d1:0d:55:4d:65:63:17:da:4c:8d:71:ca:dc:7c:7c: 64:0f:c9:42:b0:88:3d:b6:66:b3:9d:60:38:da:eb: 2a:72:97:7e:19:d0:24:9a:de:62:b1:2c:80:5d:6e: dc:c2:67:fe:e0:46:b0:08:bc:18:c4:29:73:9b:b4: f7:41:77:fe:89:a8:86:c1:42:db:d8:57:f5:01:eb: c6:7e:25:c3:0c:74:9b:9f:fd:cc:50:2b:40:db:f4: c0:83:11:ae:6f:9f:53:71:ab:03:ca:72:1d:37:5d: c8:94:78:65:57:4b:19:4c:16:1c:c5:a3:b8:08:a2: ce:39:c9:27:af:54:7a:aa:4a:a5:6b:fd:50:1c:ea: dc:54:79:c6:a0:80:b0:34:05:07:af:83:81:d0:cc: c4:15:96:08:10:a0:0f:9f:f0:5d:bf:9e:df:21:62: d4:da:61:5e:5b:75:f9:a8:71:48:48:7a:7c:e7:ff: 83:5a:90:f1:cf:84:32:82:8a:21:42:e0:70:fe:ea: 33:5e:ca:38:c5:e9:6f:63:06:29:5c:e2:4f:75:b7: 53:58:0f:cc:1b:2a:07:a2:43:4c:1a:0f:e2:b8:dc: ea:03:85:14:e0:86:cc:48:8c:af:06:7f:73:12:a6: ef:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:71:6C:DF:8D:24:01:CD:00:2D:49:19:24:79:EF:02:AC:63:27:B8 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3130342e302f32322d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.104.0/22 Signature Algorithm: sha256WithRSAEncryption 31:e5:a0:87:8d:5d:dd:07:df:7c:e6:af:a6:74:46:7f:ad:bf: 8c:cf:cf:17:dd:2e:63:ae:c4:76:86:89:62:dc:f2:26:bb:22: dc:23:d5:18:74:85:05:58:43:0f:81:1a:e3:71:1f:e1:4f:6d: bd:99:cc:0d:b3:6a:98:55:61:94:b9:73:70:4a:0e:c4:d5:f9: 8f:c6:7d:fc:90:37:72:f3:7c:af:25:58:2d:c6:87:32:43:01: 9d:e1:3f:7d:b4:05:6d:a7:9b:7c:b0:b4:c2:8c:4d:1b:c9:6c: a0:8b:42:be:4e:d4:be:18:7c:d7:f2:bb:47:60:82:ce:74:85: cf:f7:1a:d0:f2:25:d7:45:69:ed:32:af:c2:26:ce:d6:77:46: a2:3d:bf:2f:c8:22:8c:88:0d:4e:f5:1e:37:2c:ff:8f:ce:51: bf:2f:76:6f:92:f1:8f:aa:72:67:57:3d:6f:e5:a2:9c:41:81: 33:7c:85:3a:fa:b2:84:62:55:7e:9c:a1:c9:4c:d0:00:ca:9c: b6:0b:1c:18:d2:b9:32:5f:ec:87:e3:70:37:1d:75:fe:2a:14: c0:0a:69:cb:aa:83:48:aa:07:cc:55:dc:f7:f0:1a:a2:4e:2e: 34:e2:59:9c:70:37:8b:1c:5c:e4:dc:3a:13:e5:c6:e4:ff:81: 48:cb:a7:7f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUfILFT12u7BDYp+a+E3kF7nvgoOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjMwMzFaFw0yNzA0MTkwNjM1MzFaMDMxMTAvBgNV BAMTKDU1NzE2Q0RGOEQyNDAxQ0QwMDJENDkxOTI0NzlFRjAyQUM2MzI3QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXzFNqjQHiJ3JRuwLVE9ENVU1l YxfaTI1xytx8fGQPyUKwiD22ZrOdYDja6ypyl34Z0CSa3mKxLIBdbtzCZ/7gRrAI vBjEKXObtPdBd/6JqIbBQtvYV/UB68Z+JcMMdJuf/cxQK0Db9MCDEa5vn1NxqwPK ch03XciUeGVXSxlMFhzFo7gIos45ySevVHqqSqVr/VAc6txUecaggLA0BQevg4HQ zMQVlggQoA+f8F2/nt8hYtTaYV5bdfmocUhIenzn/4NakPHPhDKCiiFC4HD+6jNe yjjF6W9jBilc4k91t1NYD8wbKgeiQ0waD+K43OoDhRTghsxIjK8Gf3MSpu9NAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUVXFs340kAc0ALUkZJHnvAqxjJ7gwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzQz ODJlMzEzMDM0MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv4aDANBgkqhkiG9w0BAQsFAAOCAQEAMeWgh41d3QfffOavpnRGf62/ jM/PF90uY67EdoaJYtzyJrsi3CPVGHSFBVhDD4Ea43Ef4U9tvZnMDbNqmFVhlLlz cEoOxNX5j8Z9/JA3cvN8ryVYLcaHMkMBneE/fbQFbaebfLC0woxNG8lsoItCvk7U vhh81/K7R2CCznSFz/ca0PIl10Vp7TKvwibO1ndGoj2/L8gijIgNTvUeNyz/j85R vy92b5Lxj6pyZ1c9b+WinEGBM3yFOvqyhGJVfpyhyUzQAMqctgscGNK5Ml/sh+Nw Nx11/ioUwAppy6qDSKoHzFXc9/Aaok4uNOJZnHA3ixxc5Nw6E+XG5P+BSMunfw== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:25 2026 by rpki-client