$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099216366411448321/0/34332e3234372e36382e302f32322d3232203d3e2034383136.roa File: 34332e3234372e36382e302f32322d3232203d3e2034383136.roa (raw, json) Hash identifier: RgvI0XhO3XacBu3wOvzmrHKrZIWSkSXKoEV6lCdxrrM= Subject key identifier: 2D:C5:A0:CB:BF:FD:B5:CF:82:39:6C:B0:62:7D:9A:46:89:4D:43:FA Certificate issuer: /CN=158B95F55D548B072B42C2C2820ACE7D9908E60F Certificate serial: 78948AE029F93754741E33F8807CEBFF5CF96140 Authority key identifier: 15:8B:95:F5:5D:54:8B:07:2B:42:C2:C2:82:0A:CE:7D:99:08:E6:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/34332e3234372e36382e302f32322d3232203d3e2034383136.roa Signing time: Wed 22 Apr 2026 06:18:51 +0000 ROA not before: Wed 22 Apr 2026 06:13:51 +0000 ROA not after: Wed 21 Apr 2027 06:18:51 +0000 asID: 4816 IP address blocks: 43.247.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.crl rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 21:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:94:8a:e0:29:f9:37:54:74:1e:33:f8:80:7c:eb:ff:5c:f9:61:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=158B95F55D548B072B42C2C2820ACE7D9908E60F Validity Not Before: Apr 22 06:13:51 2026 GMT Not After : Apr 21 06:18:51 2027 GMT Subject: CN=2DC5A0CBBFFDB5CF82396CB0627D9A46894D43FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:70:c4:ed:d4:f2:d0:6f:97:5f:ec:cc:b6:18: 23:65:ef:2c:ff:20:5e:48:8f:99:05:c9:b4:6e:a8: 97:d7:5c:7c:f9:84:46:19:c5:7f:c3:ba:af:a0:5e: eb:f2:1e:a2:37:6a:3c:25:35:cd:b1:29:d5:29:55: b9:e9:20:a4:94:96:05:7c:30:82:95:b9:c7:69:b9: 1b:cf:7d:03:81:d4:57:94:78:53:3a:54:55:2f:fa: f5:99:6a:c6:4f:14:c5:ca:46:dd:ac:09:39:7f:c3: ad:76:d4:a1:3c:c3:1e:58:d9:4b:ed:8e:8c:4e:d9: 1b:2a:8c:d0:91:19:ce:82:56:0b:9a:1e:48:ca:0e: 2d:c6:da:86:71:22:1a:60:ed:36:15:f1:62:b6:6b: cc:8d:61:f4:7d:8c:86:38:8e:99:b9:a4:b2:68:f3: 5e:81:6b:e0:27:0f:48:8e:2e:08:cd:e2:e5:c5:01: 68:49:70:88:9d:7a:e1:6f:e6:26:db:e5:dd:1c:52: 6d:43:09:51:bb:7c:52:11:8f:20:9a:4d:b0:ee:7b: b3:1c:9f:86:14:20:3c:75:46:13:29:d6:4f:69:cb: e8:ef:ff:3b:f5:28:aa:03:42:87:1d:65:59:1f:ee: 87:1b:ba:91:18:bc:06:cc:1e:27:51:22:8f:97:5d: 73:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C5:A0:CB:BF:FD:B5:CF:82:39:6C:B0:62:7D:9A:46:89:4D:43:FA X509v3 Authority Key Identifier: keyid:15:8B:95:F5:5D:54:8B:07:2B:42:C2:C2:82:0A:CE:7D:99:08:E6:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/34332e3234372e36382e302f32322d3232203d3e2034383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.68.0/22 Signature Algorithm: sha256WithRSAEncryption 33:a2:2a:39:1a:fd:12:6b:c3:ee:ed:01:26:40:18:56:43:d8: 67:da:c1:1b:8c:c2:38:f3:ea:a2:64:ba:ff:22:6b:a1:32:b7: 19:3c:11:e9:7d:c3:10:af:f6:fb:11:36:81:8a:a8:20:98:32: aa:19:25:b8:b1:81:be:9b:4c:1e:0b:41:98:78:15:e1:6b:4b: 91:20:9f:5e:da:2c:69:07:c1:4f:0f:42:f7:4b:83:6a:25:d9: ed:76:56:81:06:f0:32:15:31:5a:3b:90:a4:65:d8:72:34:c5: a3:00:b1:4a:34:90:af:48:a3:54:96:6a:7f:c8:17:8f:bb:aa: 7b:68:2e:2b:f8:c3:43:52:ba:5f:d8:55:bc:13:bb:56:02:70: 9f:d6:0b:b1:79:8a:ce:b4:f2:79:04:1b:a2:59:64:e1:2d:f9: 62:61:ec:52:ed:de:0b:ce:85:69:0f:ac:41:d3:d6:ab:49:94: da:0c:38:c6:aa:e0:25:56:b2:cc:3b:3f:05:d4:f0:81:c5:3b: dc:f9:30:62:9f:74:8c:c7:db:ca:a0:f3:d4:d9:b6:9d:fc:6d: cb:e8:17:e2:12:63:b4:5c:64:20:2e:68:5e:2e:74:98:ba:13: b2:ab:4f:94:e3:2a:1e:f9:83:bb:1f:eb:df:c0:c1:a4:cf:76: db:74:1e:61 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUeJSK4Cn5N1R0HjP4gHzr/1z5YUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU4Qjk1RjU1RDU0OEIwNzJCNDJDMkMyODIwQUNFN0Q5 OTA4RTYwRjAeFw0yNjA0MjIwNjEzNTFaFw0yNzA0MjEwNjE4NTFaMDMxMTAvBgNV BAMTKDJEQzVBMENCQkZGREI1Q0Y4MjM5NkNCMDYyN0Q5QTQ2ODk0RDQzRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8cMTt1PLQb5df7My2GCNl7yz/ IF5Ij5kFybRuqJfXXHz5hEYZxX/Duq+gXuvyHqI3ajwlNc2xKdUpVbnpIKSUlgV8 MIKVucdpuRvPfQOB1FeUeFM6VFUv+vWZasZPFMXKRt2sCTl/w6121KE8wx5Y2Uvt joxO2RsqjNCRGc6CVguaHkjKDi3G2oZxIhpg7TYV8WK2a8yNYfR9jIY4jpm5pLJo 816Ba+AnD0iOLgjN4uXFAWhJcIideuFv5ibb5d0cUm1DCVG7fFIRjyCaTbDue7Mc n4YUIDx1RhMp1k9py+jv/zv1KKoDQocdZVkf7ocbupEYvAbMHidRIo+XXXOLAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQULcWgy7/9tc+COWywYn2aRolNQ/owHwYDVR0j BBgwFoAUFYuV9V1UiwcrQsLCggrOfZkI5g8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTIxNjM2NjQxMTQ0ODMyMS8wLzE1OEI5NUY1NUQ1NDhCMDcyQjQyQzJDMjgyMEFD RTdEOTkwOEU2MEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTU4Qjk1RjU1RDU0OEIwNzJCNDJDMkMyODIwQUNFN0Q5OTA4RTYwRi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5MjE2MzY2NDExNDQ4MzIxLzAvMzQzMzJlMzIzNDM3 MmUzNjM4MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzQzODMxMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr90QwDQYJKoZIhvcNAQELBQADggEBADOiKjka/RJrw+7tASZAGFZD2GfawRuM wjjz6qJkuv8ia6Eytxk8Eel9wxCv9vsRNoGKqCCYMqoZJbixgb6bTB4LQZh4FeFr S5Egn17aLGkHwU8PQvdLg2ol2e12VoEG8DIVMVo7kKRl2HI0xaMAsUo0kK9Io1SW an/IF4+7qntoLiv4w0NSul/YVbwTu1YCcJ/WC7F5is608nkEG6JZZOEt+WJh7FLt 3gvOhWkPrEHT1qtJlNoMOMaq4CVWssw7PwXU8IHFO9z5MGKfdIzH28qg89TZtp38 bcvoF+ISY7RcZCAuaF4udJi6E7KrT5TjKh75g7sf69/AwaTPdtt0HmE= -----END CERTIFICATE-----Generated at Mon Apr 27 13:50:42 2026 by rpki-client