$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3132302e302f32312d3234203d3e203536303436.roa File: 34332e3234382e3132302e302f32312d3234203d3e203536303436.roa (raw, json) Hash identifier: Qc8+YF5t4xexYUsA688iB0OnuK+SWnhfhkgBjDHtdCo= Subject key identifier: 8B:46:5E:1F:BE:9F:5B:53:C5:32:51:54:71:5F:18:A4:67:C2:D3:C7 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 3E8487D43E4B8A33D88D059961CA725EBFD52CFA Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3132302e302f32312d3234203d3e203536303436.roa Signing time: Mon 20 Apr 2026 06:37:22 +0000 ROA not before: Mon 20 Apr 2026 06:32:22 +0000 ROA not after: Mon 19 Apr 2027 06:37:22 +0000 asID: 56046 IP address blocks: 43.248.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:84:87:d4:3e:4b:8a:33:d8:8d:05:99:61:ca:72:5e:bf:d5:2c:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:32:22 2026 GMT Not After : Apr 19 06:37:22 2027 GMT Subject: CN=8B465E1FBE9F5B53C5325154715F18A467C2D3C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:57:3e:a2:23:6c:4c:61:10:54:a1:21:7f:84: 06:86:30:c9:69:e8:4b:d6:a7:10:08:e6:10:06:d2: ac:46:16:ff:e4:4a:46:bd:fe:64:6f:69:2a:b8:47: 57:cf:69:11:36:96:4f:da:6f:bb:61:f8:3c:8a:8e: c3:d5:dc:6a:db:83:5e:f8:a0:87:33:53:59:66:12: c1:90:66:5f:f1:bf:d5:19:0a:44:72:a1:f2:34:93: eb:38:f2:d1:1a:35:99:f6:23:8d:cb:2c:03:89:34: 9b:91:10:5e:f3:d6:cb:68:88:31:76:05:1d:c1:07: 82:9a:2d:64:86:97:d3:03:16:3d:49:2f:96:ad:e5: 70:d4:a7:fe:09:7e:f9:7d:6a:bb:d6:a3:88:8f:c7: 7c:cd:13:c4:9e:36:8a:16:14:56:17:62:c7:72:70: 0a:98:28:d4:ad:e1:34:3e:a7:64:f5:22:a0:e9:36: 3b:99:8a:0d:7f:a7:5f:95:e9:1f:e8:45:2c:77:a6: bd:6b:a4:c6:65:10:4f:b6:ca:95:26:01:a4:fe:95: b7:73:71:92:94:ea:60:88:96:f4:09:77:5c:ce:d3: 55:27:05:f0:c1:f1:d0:0f:c3:79:f4:97:c9:3a:93: 97:8d:9f:2d:0b:27:ba:8d:4e:0e:b8:18:88:48:1a: b8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:46:5E:1F:BE:9F:5B:53:C5:32:51:54:71:5F:18:A4:67:C2:D3:C7 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3132302e302f32312d3234203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.120.0/21 Signature Algorithm: sha256WithRSAEncryption 56:1d:a6:7f:f3:27:0f:7f:ed:86:09:7c:3d:6d:c4:77:fc:9f: 8a:18:54:27:68:b9:b9:3a:5e:4a:01:91:71:f7:7e:11:17:34: b2:66:a1:e8:b3:10:44:6d:74:e2:18:2f:61:67:67:64:f7:cf: bc:eb:09:a8:5a:dc:b8:e3:47:65:79:70:c2:be:38:a2:a9:c4: 3f:5f:e3:5c:d1:c2:c7:85:fa:50:53:1c:1d:cc:04:9b:e0:81: 77:7a:94:0e:92:fc:0f:19:a6:7f:67:5e:5f:b3:ec:6c:6f:ec: 92:71:00:8d:44:a5:fe:81:0a:a1:79:f5:30:58:da:13:8e:f9: 1f:ef:5e:34:b9:b4:54:99:ec:9b:fa:2d:84:29:11:6b:a2:8e: 6b:24:a6:13:d7:9d:77:26:17:4c:6b:42:a6:94:ec:00:27:7c: fb:c3:2c:e3:e9:88:8e:a9:cd:99:e7:dd:48:51:86:fb:83:99: 21:6b:0f:48:1f:9b:88:c4:0d:b8:df:61:b7:ad:a5:8b:f7:c2: 81:72:5e:84:dd:3e:af:9b:6a:53:76:cc:54:14:f5:e1:69:ba: eb:78:28:2b:bc:91:73:b5:f8:ec:93:6c:17:2c:e4:f4:77:3a: b1:2c:5a:b8:3e:c2:21:55:bd:6b:f2:eb:52:e1:20:8e:2e:4b: 2c:9c:5f:40 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPoSH1D5LijPYjQWZYcpyXr/VLPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjMyMjJaFw0yNzA0MTkwNjM3MjJaMDMxMTAvBgNV BAMTKDhCNDY1RTFGQkU5RjVCNTNDNTMyNTE1NDcxNUYxOEE0NjdDMkQzQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Vz6iI2xMYRBUoSF/hAaGMMlp 6EvWpxAI5hAG0qxGFv/kSka9/mRvaSq4R1fPaRE2lk/ab7th+DyKjsPV3Grbg174 oIczU1lmEsGQZl/xv9UZCkRyofI0k+s48tEaNZn2I43LLAOJNJuREF7z1stoiDF2 BR3BB4KaLWSGl9MDFj1JL5at5XDUp/4Jfvl9arvWo4iPx3zNE8SeNooWFFYXYsdy cAqYKNSt4TQ+p2T1IqDpNjuZig1/p1+V6R/oRSx3pr1rpMZlEE+2ypUmAaT+lbdz cZKU6mCIlvQJd1zO01UnBfDB8dAPw3n0l8k6k5eNny0LJ7qNTg64GIhIGrhfAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUi0ZeH76fW1PFMlFUcV8YpGfC08cwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzQz ODJlMzEzMjMwMmUzMDJmMzIzMTJkMzIzNDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAyv4eDANBgkqhkiG9w0BAQsFAAOCAQEAVh2mf/MnD3/thgl8PW3Ed/yf ihhUJ2i5uTpeSgGRcfd+ERc0smah6LMQRG104hgvYWdnZPfPvOsJqFrcuONHZXlw wr44oqnEP1/jXNHCx4X6UFMcHcwEm+CBd3qUDpL8Dxmmf2deX7PsbG/sknEAjUSl /oEKoXn1MFjaE475H+9eNLm0VJnsm/othCkRa6KOaySmE9eddyYXTGtCppTsACd8 +8Ms4+mIjqnNmefdSFGG+4OZIWsPSB+biMQNuN9ht62li/fCgXJehN0+r5tqU3bM VBT14Wm663goK7yRc7X47JNsFyzk9Hc6sSxauD7CIVW9a/LrUuEgji5LLJxfQA== -----END CERTIFICATE-----Generated at Tue Apr 21 22:52:26 2026 by rpki-client