$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3230382e302f32322d3234203d3e203233363530.roa File: 34332e3234382e3230382e302f32322d3234203d3e203233363530.roa (raw, json) Hash identifier: IgPufiZNKKNk9WvQ7GIMIsksv2dkoO/qiLyiaSwk2OE= Subject key identifier: 98:2B:30:BF:33:80:56:9D:95:1D:84:A2:46:C3:6E:9B:01:C6:26:46 Certificate issuer: /CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Certificate serial: 7FB554FE4EE4F4A265C8066ADFD50C3EE064ACAB Authority key identifier: 53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3230382e302f32322d3234203d3e203233363530.roa Signing time: Mon 20 Apr 2026 06:41:39 +0000 ROA not before: Mon 20 Apr 2026 06:36:39 +0000 ROA not after: Mon 19 Apr 2027 06:41:39 +0000 asID: 23650 IP address blocks: 43.248.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b5:54:fe:4e:e4:f4:a2:65:c8:06:6a:df:d5:0c:3e:e0:64:ac:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532EC95D9EE276D965620B7E40CA50B4AB8FCB0B Validity Not Before: Apr 20 06:36:39 2026 GMT Not After : Apr 19 06:41:39 2027 GMT Subject: CN=982B30BF3380569D951D84A246C36E9B01C62646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9f:2b:99:8b:46:bc:0a:e3:ca:20:04:a2:23: 0e:96:3a:08:79:49:4d:82:5a:2d:a2:41:05:03:73: f7:60:af:fd:a9:45:35:a8:ea:c0:f0:6a:9a:5f:8d: e9:cf:20:11:72:ef:75:ef:52:69:63:1c:74:92:29: ca:85:49:20:fd:63:08:a4:12:45:c7:ed:ec:e3:dc: 12:51:f4:29:eb:d4:15:9a:49:6c:9a:2a:22:58:e8: e3:2c:c9:10:89:74:4b:d0:94:78:df:55:a6:95:bb: 7d:3f:8b:d0:ae:6d:80:61:51:bc:9c:06:a8:0d:1a: 62:07:37:9f:2e:29:42:f9:c5:92:c4:9e:59:17:c2: 32:ff:2e:ed:86:b2:0f:75:71:f2:bf:38:c2:fe:85: 92:3c:fd:c7:e7:bc:63:0a:c2:72:d5:ba:56:a1:97: 6d:5e:2a:83:08:e5:bf:46:5a:41:9e:b4:a4:0b:aa: ff:18:1e:87:2e:f2:4c:8a:37:9c:6f:0c:72:00:59: 58:04:2f:6a:2a:41:08:46:3e:2c:52:19:80:c4:0d: 84:87:e9:6a:63:62:0b:a6:c5:0e:a5:85:5b:32:55: a6:e8:fd:74:0c:24:ea:cd:b7:26:63:ef:cd:c8:4e: c5:33:d1:c5:f2:e1:9a:bd:1f:2f:58:41:0a:3d:10: 4d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2B:30:BF:33:80:56:9D:95:1D:84:A2:46:C3:6E:9B:01:C6:26:46 X509v3 Authority Key Identifier: keyid:53:2E:C9:5D:9E:E2:76:D9:65:62:0B:7E:40:CA:50:B4:AB:8F:CB:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/532EC95D9EE276D965620B7E40CA50B4AB8FCB0B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098490496617021442/0/34332e3234382e3230382e302f32322d3234203d3e203233363530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.208.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:1c:23:8a:27:6a:ce:12:93:27:fe:17:43:a2:95:0f:51:25: f8:b5:ce:50:5e:d7:fe:81:de:e2:be:7c:b5:93:f6:3b:c5:85: 9c:3d:64:d9:2f:78:ef:26:90:ae:f6:7e:ae:db:8f:ef:dd:f6: fe:7c:1c:15:ce:13:3d:8a:71:02:2b:90:70:07:86:f9:50:3e: 80:18:78:90:0c:88:bb:db:04:91:19:9f:5a:dd:1b:69:ee:55: be:a7:2b:3c:00:2c:db:12:19:ec:0b:60:e9:59:5b:ee:9b:50: fd:de:be:15:77:ca:f0:82:0a:3e:85:d5:94:65:85:53:fc:84: f7:ee:27:4d:c9:0c:cf:39:6d:34:d6:de:74:82:8b:a1:f9:c2: 86:dd:f9:98:da:68:58:12:7b:b5:88:86:30:b0:10:1b:4b:b6: 65:57:b4:e2:10:c9:37:83:6a:8c:3d:43:93:8e:ef:df:70:cd: 8a:6c:ef:42:32:0b:f0:22:7f:d4:c5:fb:38:44:b1:40:26:0a: 7d:30:9a:7d:c3:db:76:c6:1a:e0:e8:fe:80:82:37:e4:c6:11: f6:0d:59:eb:be:a7:aa:1c:5a:81:46:d2:8e:6c:2d:df:f0:9b: 10:17:f2:46:80:b8:0e:3a:c6:83:24:06:84:e4:ee:ea:12:8e: a0:b1:91:e2 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUf7VU/k7k9KJlyAZq39UMPuBkrKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRB QjhGQ0IwQjAeFw0yNjA0MjAwNjM2MzlaFw0yNzA0MTkwNjQxMzlaMDMxMTAvBgNV BAMTKDk4MkIzMEJGMzM4MDU2OUQ5NTFEODRBMjQ2QzM2RTlCMDFDNjI2NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZnyuZi0a8CuPKIASiIw6WOgh5 SU2CWi2iQQUDc/dgr/2pRTWo6sDwappfjenPIBFy73XvUmljHHSSKcqFSSD9Ywik EkXH7ezj3BJR9Cnr1BWaSWyaKiJY6OMsyRCJdEvQlHjfVaaVu30/i9CubYBhUbyc BqgNGmIHN58uKUL5xZLEnlkXwjL/Lu2Gsg91cfK/OML+hZI8/cfnvGMKwnLVulah l21eKoMI5b9GWkGetKQLqv8YHocu8kyKN5xvDHIAWVgEL2oqQQhGPixSGYDEDYSH 6WpjYgumxQ6lhVsyVabo/XQMJOrNtyZj783ITsUz0cXy4Zq9Hy9YQQo9EE25AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUmCswvzOAVp2VHYSiRsNumwHGJkYwHwYDVR0j BBgwFoAUUy7JXZ7idtllYgt+QMpQtKuPywswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzUzMkVDOTVEOUVFMjc2RDk2NTYyMEI3RTQwQ0E1 MEI0QUI4RkNCMEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTMyRUM5NUQ5RUUyNzZEOTY1NjIwQjdFNDBDQTUwQjRBQjhGQ0IwQi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5ODQ5MDQ5NjYxNzAyMTQ0Mi8wLzM0MzMyZTMyMzQz ODJlMzIzMDM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMzM2MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv40DANBgkqhkiG9w0BAQsFAAOCAQEAHhwjiidqzhKTJ/4XQ6KVD1El +LXOUF7X/oHe4r58tZP2O8WFnD1k2S947yaQrvZ+rtuP7932/nwcFc4TPYpxAiuQ cAeG+VA+gBh4kAyIu9sEkRmfWt0bae5VvqcrPAAs2xIZ7Atg6Vlb7ptQ/d6+FXfK 8IIKPoXVlGWFU/yE9+4nTckMzzltNNbedIKLofnCht35mNpoWBJ7tYiGMLAQG0u2 ZVe04hDJN4NqjD1Dk47v33DNimzvQjIL8CJ/1MX7OESxQCYKfTCafcPbdsYa4Oj+ gII35MYR9g1Z676nqhxagUbSjmwt3/CbEBfyRoC4DjrGgyQGhOTu6hKOoLGR4g== -----END CERTIFICATE-----Generated at Wed Apr 22 04:05:13 2026 by rpki-client