$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e20313533393131.roa File: 34332e3234382e3134342e302f32322d3234203d3e20313533393131.roa (raw, json) Hash identifier: G4sj36yHy5qUaGstjjQ/MeWaimVTuARa/7OoSLJLtlk= Subject key identifier: 34:CB:7A:6A:58:FA:21:3B:E3:69:2F:24:38:C5:6A:DE:24:FC:C0:5C Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 1ED9D78FC38ED723267BBC8199A7751626CB5FB6 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e20313533393131.roa Signing time: Mon 20 Apr 2026 06:40:58 +0000 ROA not before: Mon 20 Apr 2026 06:35:58 +0000 ROA not after: Mon 19 Apr 2027 06:40:58 +0000 asID: 153911 IP address blocks: 43.248.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d9:d7:8f:c3:8e:d7:23:26:7b:bc:81:99:a7:75:16:26:cb:5f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:35:58 2026 GMT Not After : Apr 19 06:40:58 2027 GMT Subject: CN=34CB7A6A58FA213BE3692F2438C56ADE24FCC05C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c5:bc:d3:42:eb:82:fe:41:a6:7a:50:4f:9d: 16:57:01:73:84:b0:c9:a8:96:a8:fb:b4:94:dc:44: 30:28:43:d3:b3:17:4d:f1:3b:f1:2e:c0:c5:f2:17: f1:b6:50:d8:a2:5e:ad:cf:bb:b1:74:78:94:32:ad: dc:6d:46:cf:9e:f6:f9:bc:09:2a:25:cd:c1:22:13: f5:fd:b9:60:44:4a:d3:a9:5d:72:61:26:a0:15:49: 5a:11:1e:6d:9b:98:62:80:20:d6:e1:39:4f:77:06: a5:33:be:97:2a:43:81:e6:c0:d8:74:fa:7a:c3:d3: 17:c1:37:c7:35:33:d6:3c:21:b8:11:05:c9:6f:51: ea:ad:b5:de:9b:f0:ab:98:d5:d6:34:f6:91:b2:c0: f9:63:96:2f:48:59:11:34:c9:79:1b:b4:26:61:b9: 17:8b:d1:1e:e8:d8:9f:29:6c:35:04:06:46:83:00: 31:4c:12:f4:58:06:e6:f9:b4:b7:ac:7c:c4:e2:03: 22:cf:d2:8f:f0:b0:a2:ad:de:4a:28:00:ab:64:e3: f2:59:b1:c1:2a:2d:34:7c:da:53:1b:ae:99:0d:ab: 2c:22:14:9e:c3:87:29:93:48:e1:e6:5d:7e:7e:3f: 63:17:c8:9a:11:d9:92:24:5b:e0:d1:f4:1a:a9:41: cc:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:CB:7A:6A:58:FA:21:3B:E3:69:2F:24:38:C5:6A:DE:24:FC:C0:5C X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e20313533393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.144.0/22 Signature Algorithm: sha256WithRSAEncryption 77:0d:b3:e0:92:20:7e:4b:5b:da:87:4f:87:c7:b7:86:84:48: 9d:8e:8c:e8:1a:4e:e7:37:7a:0d:5b:28:b4:5e:48:8d:7e:63: c0:98:59:10:c7:76:1d:a7:14:23:a6:37:cf:8f:4c:d3:2b:26: 0c:01:5a:2c:5c:11:92:65:4f:f5:5e:9a:ef:ba:7b:1e:81:81: 9f:cd:5e:e9:29:28:e4:c7:91:34:78:a8:92:69:c2:03:06:12: 86:ac:34:59:de:a0:71:2c:86:bf:b0:fd:11:fd:b0:bd:17:24: bb:bd:b8:25:d3:1e:71:44:3b:96:9c:3a:c6:5f:0c:69:33:f1: 5a:17:5e:f3:d8:2c:28:0f:0c:b9:52:6c:f0:c2:8c:f5:87:34: 5c:33:4f:a1:c3:db:cc:77:f9:6a:ff:ea:2b:19:3d:66:c7:fe: b8:ca:fe:3f:58:95:b8:42:59:4d:01:18:8c:a0:0c:bf:8d:d1: 07:0b:9f:bc:3b:73:c6:27:ea:72:d9:10:63:fa:af:b5:30:e3: 2f:f6:4e:5d:9a:fb:a0:ad:0f:fe:8f:49:81:28:ea:bc:96:1b: 92:e6:c9:5a:06:bd:3b:98:db:3e:2e:e7:3f:bf:a7:1a:ef:56: 6d:bf:20:a1:1a:ed:a9:09:af:79:ef:ae:fa:04:78:ed:f2:f9: d2:f7:b0:18 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUHtnXj8OO1yMme7yBmad1FibLX7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM1NThaFw0yNzA0MTkwNjQwNThaMDMxMTAvBgNV BAMTKDM0Q0I3QTZBNThGQTIxM0JFMzY5MkYyNDM4QzU2QURFMjRGQ0MwNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3xbzTQuuC/kGmelBPnRZXAXOE sMmolqj7tJTcRDAoQ9OzF03xO/EuwMXyF/G2UNiiXq3Pu7F0eJQyrdxtRs+e9vm8 CSolzcEiE/X9uWBEStOpXXJhJqAVSVoRHm2bmGKAINbhOU93BqUzvpcqQ4HmwNh0 +nrD0xfBN8c1M9Y8IbgRBclvUeqttd6b8KuY1dY09pGywPljli9IWRE0yXkbtCZh uReL0R7o2J8pbDUEBkaDADFMEvRYBub5tLesfMTiAyLP0o/wsKKt3kooAKtk4/JZ scEqLTR82lMbrpkNqywiFJ7DhymTSOHmXX5+P2MXyJoR2ZIkW+DR9BqpQczzAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUNMt6alj6ITvjaS8kOMVq3iT8wFwwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTg0OTA0OTY2MTcwMjE0NDIvMC8zNDMzMmUzMjM0 MzgyZTMxMzQzNDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzUzMzM5MzEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAiv4kDANBgkqhkiG9w0BAQsFAAOCAQEAdw2z4JIgfktb2odPh8e3 hoRInY6M6BpO5zd6DVsotF5IjX5jwJhZEMd2HacUI6Y3z49M0ysmDAFaLFwRkmVP 9V6a77p7HoGBn81e6Sko5MeRNHiokmnCAwYShqw0Wd6gcSyGv7D9Ef2wvRcku724 JdMecUQ7lpw6xl8MaTPxWhde89gsKA8MuVJs8MKM9Yc0XDNPocPbzHf5av/qKxk9 Zsf+uMr+P1iVuEJZTQEYjKAMv43RBwufvDtzxifqctkQY/qvtTDjL/ZOXZr7oK0P /o9JgSjqvJYbkubJWga9O5jbPi7nP7+nGu9Wbb8goRrtqQmvee+u+gR47fL50vew GA== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:09 2026 by rpki-client