$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3132302e302f32312d3234203d3e2034383337.roa File: 34332e3234382e3132302e302f32312d3234203d3e2034383337.roa (raw, json) Hash identifier: 0Ajdx7+BG8rik+aAX2g2Q38oNaN1X+jgErYR1jpr7zE= Subject key identifier: 25:76:90:7C:C4:33:8C:7E:BB:85:4F:B4:03:59:E5:2E:7E:41:2E:C6 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 196717BA5646C6CC0EEDD5238B2232D148EC5901 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3132302e302f32312d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 06:37:22 +0000 ROA not before: Mon 20 Apr 2026 06:32:22 +0000 ROA not after: Mon 19 Apr 2027 06:37:22 +0000 asID: 4837 IP address blocks: 43.248.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:67:17:ba:56:46:c6:cc:0e:ed:d5:23:8b:22:32:d1:48:ec:59:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:32:22 2026 GMT Not After : Apr 19 06:37:22 2027 GMT Subject: CN=2576907CC4338C7EBB854FB40359E52E7E412EC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:de:3d:d4:be:52:89:d8:80:4e:fc:62:66:0a: 2f:43:96:83:33:dd:5a:cb:72:77:e6:84:93:50:67: 69:9d:54:d4:df:3c:8a:da:8c:e9:93:da:67:e1:ec: be:f8:af:a2:23:b6:1e:15:71:69:c0:63:69:b5:3f: f1:58:8f:f0:f0:80:c0:2c:fb:3c:8e:1d:88:bc:d2: a9:b3:70:af:1b:80:41:e3:4b:cc:3d:f9:a5:e4:01: 33:d8:c0:54:88:17:41:2e:09:53:6e:e5:bf:ba:a0: 0e:92:2a:79:cc:74:9f:e4:33:0d:4e:b1:e4:23:4c: af:b3:0a:a5:6f:af:14:69:78:38:ea:7c:50:cc:27: 79:79:eb:8c:18:ea:00:fc:15:10:a0:77:95:e0:4d: 85:d6:c9:06:1f:35:3a:33:bb:af:58:65:2d:2f:c2: 21:ba:56:a1:1d:57:01:ec:a8:25:18:9a:15:f8:5d: 5d:31:04:08:9b:4a:9e:20:ab:ab:1d:87:0b:a9:1d: f4:80:0c:a0:20:83:db:84:bb:d9:12:34:e5:25:da: 5f:a3:9e:ae:6d:f0:bd:6d:86:4d:98:4d:28:d4:c8: c2:2f:a7:ec:76:96:5f:7c:67:39:56:bf:0a:2d:51: 3a:ee:6e:bb:f9:e5:02:f2:74:dd:1c:96:67:20:d5: cf:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:76:90:7C:C4:33:8C:7E:BB:85:4F:B4:03:59:E5:2E:7E:41:2E:C6 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3132302e302f32312d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.120.0/21 Signature Algorithm: sha256WithRSAEncryption 67:c9:0d:22:80:de:c4:c6:08:f8:45:df:39:53:90:a0:37:d7: e1:23:5e:19:4c:71:d6:91:75:b1:d3:ae:ec:19:57:55:0a:c9: 21:80:41:c0:2f:df:d6:93:91:03:8c:4f:2c:47:3c:e1:49:61: 12:33:e1:f8:13:bc:71:4b:2e:ba:6b:2c:a9:52:84:19:86:bf: b6:49:ff:53:e0:e4:fc:bd:d1:4a:53:b8:e7:9e:16:1d:2f:5d: 21:33:4d:c9:c9:b7:70:95:31:16:7a:7d:01:7c:c2:6a:15:32: a4:5f:dd:90:be:4e:ed:17:6a:13:eb:10:7e:1f:83:b3:b2:5a: 97:3f:8b:33:48:04:99:fe:e0:3a:28:8d:a0:eb:89:e7:76:26: a9:c3:8e:4e:5c:f8:73:42:23:92:6f:95:df:0a:28:16:69:6f: 90:8a:56:a1:db:d3:23:5e:31:a3:d9:f8:9d:9f:93:c1:dc:ad: 71:d0:7e:a3:1e:c8:bd:8a:2a:85:ab:a9:cb:52:6e:75:5f:6a: bf:a4:ee:86:77:07:80:58:11:91:35:22:66:5f:9e:71:31:b1: 89:cb:b3:f2:68:ab:06:72:8e:43:7f:c6:64:d8:13:f0:df:b6: 15:2f:ef:25:e4:d9:10:dc:2a:10:36:f8:d9:0c:39:27:86:c7: 2d:00:bf:1d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUGWcXulZGxswO7dUjiyIy0UjsWQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjMyMjJaFw0yNzA0MTkwNjM3MjJaMDMxMTAvBgNV BAMTKDI1NzY5MDdDQzQzMzhDN0VCQjg1NEZCNDAzNTlFNTJFN0U0MTJFQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo3j3UvlKJ2IBO/GJmCi9DloMz 3VrLcnfmhJNQZ2mdVNTfPIrajOmT2mfh7L74r6Ijth4VcWnAY2m1P/FYj/DwgMAs +zyOHYi80qmzcK8bgEHjS8w9+aXkATPYwFSIF0EuCVNu5b+6oA6SKnnMdJ/kMw1O seQjTK+zCqVvrxRpeDjqfFDMJ3l564wY6gD8FRCgd5XgTYXWyQYfNTozu69YZS0v wiG6VqEdVwHsqCUYmhX4XV0xBAibSp4gq6sdhwupHfSADKAgg9uEu9kSNOUl2l+j nq5t8L1thk2YTSjUyMIvp+x2ll98ZzlWvwotUTrubrv55QLydN0clmcg1c+HAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUJXaQfMQzjH67hU+0A1nlLn5BLsYwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzNDM4 MmUzMTMyMzAyZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzNDM4MzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyv4eDANBgkqhkiG9w0BAQsFAAOCAQEAZ8kNIoDexMYI+EXfOVOQoDfX4SNe GUxx1pF1sdOu7BlXVQrJIYBBwC/f1pORA4xPLEc84UlhEjPh+BO8cUsuumssqVKE GYa/tkn/U+Dk/L3RSlO4554WHS9dITNNycm3cJUxFnp9AXzCahUypF/dkL5O7Rdq E+sQfh+Ds7Jalz+LM0gEmf7gOiiNoOuJ53YmqcOOTlz4c0Ijkm+V3wooFmlvkIpW odvTI14xo9n4nZ+TwdytcdB+ox7IvYoqhaupy1JudV9qv6TuhncHgFgRkTUiZl+e cTGxicuz8mirBnKOQ3/GZNgT8N+2FS/vJeTZENwqEDb42Qw5J4bHLQC/HQ== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:58 2026 by rpki-client