$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e2034383337.roa File: 34332e3234382e3134342e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: 5gL+4hroOneu6Qz421Nepi6TjEaCEhZ3rus8hEnuOnU= Subject key identifier: 03:3B:EA:42:4A:B3:6D:B9:E5:62:A0:E4:97:68:01:0B:FA:7B:78:FB Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 4F3CF0D4FA90B2B744E594E733AE87F848A49438 Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e2034383337.roa Signing time: Mon 20 Apr 2026 06:40:58 +0000 ROA not before: Mon 20 Apr 2026 06:35:58 +0000 ROA not after: Mon 19 Apr 2027 06:40:58 +0000 asID: 4837 IP address blocks: 43.248.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:3c:f0:d4:fa:90:b2:b7:44:e5:94:e7:33:ae:87:f8:48:a4:94:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:35:58 2026 GMT Not After : Apr 19 06:40:58 2027 GMT Subject: CN=033BEA424AB36DB9E562A0E49768010BFA7B78FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b9:69:fe:f7:76:eb:f0:5f:c0:2f:1a:9d:9c: 7e:34:96:23:64:5e:e6:91:af:b0:65:46:d8:c4:a0: 0a:d5:74:a6:96:0c:9c:57:53:eb:aa:f2:88:dc:8c: 52:cf:8a:bf:38:5d:aa:07:e8:9d:d5:cc:d9:a2:91: 6a:5d:c5:5f:22:f9:58:fb:36:57:55:b0:6d:8d:64: b8:cb:72:ae:b1:64:61:3c:5e:d0:92:16:2b:61:32: 12:3b:87:cc:7e:63:d0:c4:6f:8f:29:3a:ff:7e:7b: 7e:c0:36:17:e1:18:1e:b1:af:3e:1b:f9:70:5a:ab: 9c:fb:60:d5:00:15:30:ed:3f:38:4f:00:85:e9:3a: 80:5c:a3:3a:a9:13:66:5a:8b:c3:d9:9a:34:ec:d6: d1:73:75:e7:ac:b9:90:cf:b7:6c:a5:0c:90:01:da: cd:35:5d:bb:8d:06:32:3c:c7:de:9d:ec:bb:06:f4: c5:16:3c:4b:ce:ec:16:76:8b:6d:0d:78:9f:a5:5e: dd:c5:4f:f4:f4:c8:85:38:fe:9e:97:f6:62:93:47: 63:a9:a3:6b:ce:19:bc:78:a8:9a:2b:8c:09:36:7e: 72:79:44:70:4d:99:b8:10:82:07:f3:2a:a7:5b:22: 1f:77:ba:62:3b:27:6b:c5:cb:dd:05:72:e3:db:58: 39:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:3B:EA:42:4A:B3:6D:B9:E5:62:A0:E4:97:68:01:0B:FA:7B:78:FB X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3134342e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.144.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:e4:93:6c:1f:f3:ce:d8:c7:30:a4:b2:b2:b3:30:6b:07:e0: 0d:56:9e:bb:a9:59:ae:f4:45:ed:bc:16:62:10:52:72:25:f3: 50:e0:f6:d1:7d:55:45:3b:bf:8e:9c:9c:40:29:ce:dd:52:a5: c6:f9:10:d2:45:41:f5:2a:8c:0a:2b:ce:9c:84:0d:c6:c6:b1: 32:76:f5:a2:0b:4e:5d:56:f9:b1:af:3b:ea:35:d5:a2:fd:b1: 56:e5:09:43:b8:1a:a1:98:73:aa:8f:b7:42:2c:31:02:3f:46: be:e7:02:d8:1c:e0:d1:35:0f:83:1a:3f:7e:bc:64:76:1b:76: b2:38:9c:9d:05:ff:b2:76:6a:b6:c5:a5:29:2b:67:90:1a:44: 22:a5:5b:72:55:af:70:f9:97:fb:1e:5d:77:8c:62:89:c1:e1: a2:86:80:b0:75:b4:92:1e:56:80:60:80:7b:20:99:65:74:b0: 66:90:f0:d7:2d:ba:56:82:88:e1:fa:c3:0e:72:3d:50:72:16: 63:e5:bb:4b:a4:e4:f6:e9:1e:06:44:6a:4b:8c:07:1c:ce:34: c6:5c:23:19:cd:1a:34:33:0e:97:59:25:ff:d8:4c:00:c0:86: 15:0e:db:d2:51:7e:09:ac:e4:68:5a:6a:bb:cb:bd:1a:f1:4a: 8e:69:61:8d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUTzzw1PqQsrdE5ZTnM66H+EiklDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM1NThaFw0yNzA0MTkwNjQwNThaMDMxMTAvBgNV BAMTKDAzM0JFQTQyNEFCMzZEQjlFNTYyQTBFNDk3NjgwMTBCRkE3Qjc4RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfuWn+93br8F/ALxqdnH40liNk XuaRr7BlRtjEoArVdKaWDJxXU+uq8ojcjFLPir84XaoH6J3VzNmikWpdxV8i+Vj7 NldVsG2NZLjLcq6xZGE8XtCSFithMhI7h8x+Y9DEb48pOv9+e37ANhfhGB6xrz4b +XBaq5z7YNUAFTDtPzhPAIXpOoBcozqpE2Zai8PZmjTs1tFzdeesuZDPt2ylDJAB 2s01XbuNBjI8x96d7LsG9MUWPEvO7BZ2i20NeJ+lXt3FT/T0yIU4/p6X9mKTR2Op o2vOGbx4qJorjAk2fnJ5RHBNmbgQggfzKqdbIh93umI7J2vFy90FcuPbWDm9AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUAzvqQkqzbbnlYqDkl2gBC/p7ePswHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDkwNDk2NjE3MDIxNDQyLzAvMzQzMzJlMzIzNDM4 MmUzMTM0MzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM4MzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv4kDANBgkqhkiG9w0BAQsFAAOCAQEAbOSTbB/zztjHMKSysrMwawfgDVae u6lZrvRF7bwWYhBSciXzUOD20X1VRTu/jpycQCnO3VKlxvkQ0kVB9SqMCivOnIQN xsaxMnb1ogtOXVb5sa876jXVov2xVuUJQ7gaoZhzqo+3QiwxAj9GvucC2Bzg0TUP gxo/frxkdht2sjicnQX/snZqtsWlKStnkBpEIqVbclWvcPmX+x5dd4xiicHhooaA sHW0kh5WgGCAeyCZZXSwZpDw1y26VoKI4frDDnI9UHIWY+W7S6Tk9ukeBkRqS4wH HM40xlwjGc0aNDMOl1kl/9hMAMCGFQ7b0lF+CazkaFpqu8u9GvFKjmlhjQ== -----END CERTIFICATE-----Generated at Wed Apr 22 04:04:52 2026 by rpki-client