$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e203233363530.roa File: 34332e3234382e3134342e302f32322d3234203d3e203233363530.roa (raw, json) Hash identifier: /9+7pL0X6dlzI/rElLnpKVnqaeacls2nMliYsoP/nf0= Subject key identifier: 70:42:DF:D9:83:CB:E1:58:46:50:20:C2:EC:9F:DC:7C:C9:F1:23:84 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 441071B1FA47B3C4C0E715F3CB46CF84FE66CE06 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:40:58 +0000 ROA not before: Mon 20 Apr 2026 06:35:58 +0000 ROA not after: Mon 19 Apr 2027 06:40:58 +0000 asID: 23650 IP address blocks: 43.248.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:10:71:b1:fa:47:b3:c4:c0:e7:15:f3:cb:46:cf:84:fe:66:ce:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:35:58 2026 GMT Not After : Apr 19 06:40:58 2027 GMT Subject: CN=7042DFD983CBE158465020C2EC9FDC7CC9F12384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:73:b9:ae:18:b9:91:d2:cc:17:e7:10:9a:e8: e4:86:6a:3e:3e:72:7a:7d:a0:14:00:be:c5:01:ec: e7:18:a8:34:62:5d:c2:e7:97:95:84:6d:e7:e3:c2: 5d:4f:33:7e:37:79:e0:81:e4:87:ee:df:79:4f:a1: 2b:84:43:1d:1b:9b:3a:fc:1c:35:79:3c:52:0e:a2: 2e:dd:31:61:33:fc:fb:65:bf:0b:c2:38:69:c1:6f: b3:6c:02:1f:b7:dc:27:2d:83:32:5e:ec:64:b1:47: 8b:f4:75:0a:f8:3b:8d:8b:f6:fb:cc:dc:9e:73:3b: c8:64:35:08:cc:8a:84:8c:0a:fa:b4:79:96:a5:85: de:2a:1b:cf:05:86:df:6d:a9:54:7f:1d:bb:ef:97: 0c:b9:ff:21:cf:ca:21:af:85:a4:19:d4:f2:0b:96: 80:b6:cb:2e:e4:26:05:1c:ca:ef:6e:24:42:0f:a9: 35:91:c9:6b:ce:7f:93:ae:fa:88:55:9e:c0:a4:32: c0:b5:14:b2:3a:80:97:1a:c5:a0:17:2e:44:35:e4: 54:b3:8a:39:c7:13:8a:e5:3d:a0:d4:64:78:5a:b0: e2:57:e6:b3:c7:9e:5b:53:16:0c:13:71:76:d9:1d: 4f:77:cb:10:d1:31:15:2d:88:31:36:19:02:11:7d: 90:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:42:DF:D9:83:CB:E1:58:46:50:20:C2:EC:9F:DC:7C:C9:F1:23:84 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.144.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:59:2c:52:ce:f8:fc:ff:a2:c1:9a:01:90:0e:bd:7f:2c:8a: f4:1d:a9:1c:d0:cb:f8:e3:5f:1c:7c:fc:8c:de:ae:d8:9f:24: 70:5b:af:3e:a1:a5:90:5c:e7:62:19:1b:62:d5:fd:03:27:56: c5:9c:b5:43:d9:3d:53:51:5c:8d:8d:c8:e2:75:45:2e:b6:81: 2d:bc:ba:55:52:0b:e3:53:7a:00:6e:5e:d1:5a:0b:8d:94:36: 2a:d6:fd:8a:a9:68:67:75:e8:5b:02:c5:bc:16:c7:1d:a4:18: 2e:48:ad:8e:81:58:8e:ae:04:73:c3:93:c4:fe:c1:82:e0:d9: 40:08:8d:87:ac:86:8e:85:f7:9e:43:0f:01:24:3d:ae:b8:4a: db:df:ea:4c:06:3b:c0:7e:29:f9:1a:7b:57:3d:72:51:e9:ef: 1f:cb:a7:86:b1:99:7b:3d:06:ba:12:b2:6b:98:88:fc:e2:ab: f7:fb:b0:4b:c4:da:6b:a4:f3:3c:43:2d:46:7d:b1:5f:06:f7: 7a:8b:0e:96:a9:fc:2c:3d:13:bf:3c:8e:4e:78:42:e0:57:66: ec:21:bf:a9:12:b1:5a:76:a5:53:d1:75:b8:55:81:21:4a:81: 05:4b:0c:4b:14:86:f5:d3:f8:b6:87:a1:f3:fa:59:dc:7a:33: 85:f0:02:e5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIURBBxsfpHs8TA5xXzy0bPhP5mzgYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM1NThaFw0yNzA0MTkwNjQwNThaMDMxMTAvBgNV BAMTKDcwNDJERkQ5ODNDQkUxNTg0NjUwMjBDMkVDOUZEQzdDQzlGMTIzODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbc7muGLmR0swX5xCa6OSGaj4+ cnp9oBQAvsUB7OcYqDRiXcLnl5WEbefjwl1PM343eeCB5Ifu33lPoSuEQx0bmzr8 HDV5PFIOoi7dMWEz/PtlvwvCOGnBb7NsAh+33CctgzJe7GSxR4v0dQr4O42L9vvM 3J5zO8hkNQjMioSMCvq0eZalhd4qG88Fht9tqVR/Hbvvlwy5/yHPyiGvhaQZ1PIL loC2yy7kJgUcyu9uJEIPqTWRyWvOf5Ou+ohVnsCkMsC1FLI6gJcaxaAXLkQ15FSz ijnHE4rlPaDUZHhasOJX5rPHnltTFgwTcXbZHU93yxDRMRUtiDE2GQIRfZCrAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUcELf2YPL4VhGUCDC7J/cfMnxI4QwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzQz ODJlMzEzNDM0MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv4kDANBgkqhkiG9w0BAQsFAAOCAQEAT1ksUs74/P+iwZoBkA69fyyK 9B2pHNDL+ONfHHz8jN6u2J8kcFuvPqGlkFznYhkbYtX9AydWxZy1Q9k9U1FcjY3I 4nVFLraBLby6VVIL41N6AG5e0VoLjZQ2Ktb9iqloZ3XoWwLFvBbHHaQYLkitjoFY jq4Ec8OTxP7BguDZQAiNh6yGjoX3nkMPASQ9rrhK29/qTAY7wH4p+Rp7Vz1yUenv H8unhrGZez0GuhKya5iI/OKr9/uwS8Taa6TzPEMtRn2xXwb3eosOlqn8LD0TvzyO TnhC4Fdm7CG/qRKxWnalU9F1uFWBIUqBBUsMSxSG9dP4toeh8/pZ3HozhfAC5Q== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:10 2026 by rpki-client