$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e20313531333030.roa File: 34332e3234382e3134342e302f32322d3234203d3e20313531333030.roa (raw, json) Hash identifier: paSbUHSr6NbAQ1URLSIMHcSzBVgFf/gzVbsjaqW1tmI= Subject key identifier: 2A:B4:9E:23:8D:7D:FA:9E:43:C2:13:A6:4A:B1:40:C0:FE:52:56:65 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 07294AA348DC490233D88DD6F4957DA3B53BF268 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e20313531333030.roa Signing time: Mon 20 Apr 2026 06:40:58 +0000 ROA not before: Mon 20 Apr 2026 06:35:58 +0000 ROA not after: Mon 19 Apr 2027 06:40:58 +0000 asID: 151300 IP address blocks: 43.248.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:29:4a:a3:48:dc:49:02:33:d8:8d:d6:f4:95:7d:a3:b5:3b:f2:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:35:58 2026 GMT Not After : Apr 19 06:40:58 2027 GMT Subject: CN=2AB49E238D7DFA9E43C213A64AB140C0FE525665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:62:71:21:ee:66:c1:b3:aa:c9:bf:63:32:22: df:fc:d5:c2:15:f2:c1:c2:81:cc:e7:42:f4:a7:af: 8a:4e:27:b1:b4:2a:da:00:c2:93:ed:84:87:25:80: bb:57:26:25:b9:46:dd:be:42:06:f2:eb:79:62:f2: b0:96:5e:9a:30:1e:be:93:40:4d:fb:bd:92:12:bc: e3:b4:5a:e1:91:8d:4d:9d:cb:bf:25:1b:52:e1:a4: 66:ef:01:e3:42:f6:2a:2c:6c:cd:33:82:82:d6:f7: 41:89:76:20:e2:27:2b:8e:b8:07:ec:e9:cc:40:4d: c5:92:d1:32:2b:4e:f3:3f:06:fa:d1:6d:1d:8a:a0: 27:29:24:65:6d:17:10:ee:8d:d6:e5:3a:7a:79:17: b6:06:32:d3:0b:20:5e:66:97:99:9f:1b:e7:c6:74: b3:66:b1:29:c2:76:68:03:c3:42:b3:7a:38:f3:f1: cd:3c:9e:a6:39:5d:be:f6:c9:ee:e1:06:06:2c:a4: d6:97:4d:f7:6e:73:d6:d8:69:ef:c5:45:ec:45:e0: 6e:57:2b:e2:4d:72:c4:cd:8a:3e:d0:28:f8:a4:cd: 2d:7c:90:c5:4f:d1:24:b5:d0:9c:b6:7d:cc:cb:d8: 7e:6c:4e:3f:09:e2:db:0f:b6:d3:59:c8:26:d6:98: 6b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B4:9E:23:8D:7D:FA:9E:43:C2:13:A6:4A:B1:40:C0:FE:52:56:65 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e20313531333030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.144.0/22 Signature Algorithm: sha256WithRSAEncryption 65:f7:ae:b3:95:cf:a2:c9:6c:36:9b:2b:bf:55:a0:e3:e6:fb: eb:37:e7:61:4c:37:00:79:14:00:f0:ef:27:84:47:f2:52:58: e3:1b:26:41:7c:9a:73:f8:71:e9:4b:43:55:90:d0:07:0b:08: 69:f7:65:90:45:d0:89:f9:9a:a7:4a:17:a0:3c:e1:64:0a:3e: 13:2b:56:bc:82:49:0f:d3:3c:ec:6a:29:90:34:f6:c4:80:62: 71:cc:13:07:16:8e:69:74:56:6f:4a:84:84:29:9f:d8:b3:65: d4:fd:16:09:4a:e8:49:de:b9:9a:5c:9d:79:82:06:27:79:5c: 04:43:a7:a0:e8:c4:7c:9d:c1:73:e0:81:7c:f5:7a:fa:ee:b6: 7a:27:0e:fc:54:ea:97:ae:cf:d7:a6:d3:94:ef:f5:16:0e:33: 9e:4e:50:d2:36:59:59:40:99:46:f0:a0:b3:e2:d2:f8:22:70: 37:6c:7a:60:f5:70:f3:27:b0:71:57:96:20:bd:52:51:c5:d7: 4a:e5:44:37:64:15:a4:01:ff:08:c1:7e:4d:e5:f2:74:9b:91: e5:0c:fd:82:50:83:5a:79:85:ef:14:23:8a:a3:15:68:3f:af: 66:b3:a6:6c:2d:64:65:44:df:15:29:cd:20:5b:c2:7a:5a:8a: f3:11:67:57 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUBylKo0jcSQIz2I3W9JV9o7U78mgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM1NThaFw0yNzA0MTkwNjQwNThaMDMxMTAvBgNV BAMTKDJBQjQ5RTIzOEQ3REZBOUU0M0MyMTNBNjRBQjE0MEMwRkU1MjU2NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjYnEh7mbBs6rJv2MyIt/81cIV 8sHCgcznQvSnr4pOJ7G0KtoAwpPthIclgLtXJiW5Rt2+Qgby63li8rCWXpowHr6T QE37vZISvOO0WuGRjU2dy78lG1LhpGbvAeNC9iosbM0zgoLW90GJdiDiJyuOuAfs 6cxATcWS0TIrTvM/BvrRbR2KoCcpJGVtFxDujdblOnp5F7YGMtMLIF5ml5mfG+fG dLNmsSnCdmgDw0Kzejjz8c08nqY5Xb72ye7hBgYspNaXTfduc9bYae/FRexF4G5X K+JNcsTNij7QKPikzS18kMVP0SS10Jy2fczL2H5sTj8J4tsPttNZyCbWmGthAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUKrSeI419+p5DwhOmSrFAwP5SVmUwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTg0OTA0OTY2MTcwMjE0NDIvMC8zNDMzMmUzMjM0 MzgyZTMxMzQzNDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzUzMTMzMzAzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAiv4kDANBgkqhkiG9w0BAQsFAAOCAQEAZfeus5XPoslsNpsrv1Wg 4+b76zfnYUw3AHkUAPDvJ4RH8lJY4xsmQXyac/hx6UtDVZDQBwsIafdlkEXQifma p0oXoDzhZAo+EytWvIJJD9M87GopkDT2xIBiccwTBxaOaXRWb0qEhCmf2LNl1P0W CUroSd65mlydeYIGJ3lcBEOnoOjEfJ3Bc+CBfPV6+u62eicO/FTql67P16bTlO/1 Fg4znk5Q0jZZWUCZRvCgs+LS+CJwN2x6YPVw8yewcVeWIL1SUcXXSuVEN2QVpAH/ CMF+TeXydJuR5Qz9glCDWnmF7xQjiqMVaD+vZrOmbC1kZUTfFSnNIFvCelqK8xFn Vw== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:06 2026 by rpki-client