$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099216366411448321/0/34332e3235342e3135362e302f32322d3232203d3e203539303732.roa File: 34332e3235342e3135362e302f32322d3232203d3e203539303732.roa (raw, json) Hash identifier: 6gR0ZPFuNC294r5LAsw0olROZtYwrJv5AXDoSLqwLXc= Subject key identifier: 1B:E7:DC:C6:FF:5E:9A:6F:28:82:3F:FD:22:91:AD:F4:9B:A1:C4:C1 Certificate issuer: /CN=158B95F55D548B072B42C2C2820ACE7D9908E60F Certificate serial: 6D47AAB6C8A04D7B701046E67EE0CA26C9B2BAC1 Authority key identifier: 15:8B:95:F5:5D:54:8B:07:2B:42:C2:C2:82:0A:CE:7D:99:08:E6:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/34332e3235342e3135362e302f32322d3232203d3e203539303732.roa Signing time: Wed 22 Apr 2026 06:18:51 +0000 ROA not before: Wed 22 Apr 2026 06:13:51 +0000 ROA not after: Wed 21 Apr 2027 06:18:51 +0000 asID: 59072 IP address blocks: 43.254.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.crl rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 11:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:47:aa:b6:c8:a0:4d:7b:70:10:46:e6:7e:e0:ca:26:c9:b2:ba:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=158B95F55D548B072B42C2C2820ACE7D9908E60F Validity Not Before: Apr 22 06:13:51 2026 GMT Not After : Apr 21 06:18:51 2027 GMT Subject: CN=1BE7DCC6FF5E9A6F28823FFD2291ADF49BA1C4C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:98:86:b4:15:a9:a5:12:44:75:33:1f:49:44: 9b:9b:0b:44:fa:16:ab:03:e9:e3:4c:c9:a2:36:09: c3:7f:a5:30:1f:7a:52:e3:a1:2d:ce:5b:13:df:c8: 13:83:25:3c:b3:96:1a:06:29:1c:f6:1a:49:fb:f8: 3f:f7:e8:72:a2:b3:da:a3:99:b8:c8:7d:a0:0e:4d: f1:16:6b:b9:b7:c0:f3:4f:ea:a8:64:36:a3:4a:83: b9:a9:08:bf:40:51:0d:d2:47:e9:04:7e:96:1e:d0: 83:3e:a8:88:68:08:c1:e4:02:d0:5a:43:a9:72:05: 9a:9f:e0:d5:f2:c0:ad:1f:7e:c0:09:fc:1b:a0:0c: 68:6e:d3:1d:d8:62:bc:61:1a:dc:a8:e2:2d:81:cc: 08:b9:24:69:68:a8:1e:ed:cd:77:7c:79:f1:91:14: 37:d8:0e:92:90:37:8c:0f:5d:2a:05:02:15:b3:25: 09:d3:62:b7:41:15:68:d1:64:7f:25:f6:28:d9:69: bc:52:c0:24:5f:98:fc:44:28:a3:4a:b0:a3:b4:e3: a8:9e:0a:90:7c:30:f2:c1:5a:eb:00:f6:f4:19:5a: 49:5d:3d:07:db:2e:a9:90:c1:53:dd:6e:be:eb:2d: b7:a0:49:90:39:0e:3d:c4:f5:54:0f:ed:2a:44:59: 89:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E7:DC:C6:FF:5E:9A:6F:28:82:3F:FD:22:91:AD:F4:9B:A1:C4:C1 X509v3 Authority Key Identifier: keyid:15:8B:95:F5:5D:54:8B:07:2B:42:C2:C2:82:0A:CE:7D:99:08:E6:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/158B95F55D548B072B42C2C2820ACE7D9908E60F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/158B95F55D548B072B42C2C2820ACE7D9908E60F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099216366411448321/0/34332e3235342e3135362e302f32322d3232203d3e203539303732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.156.0/22 Signature Algorithm: sha256WithRSAEncryption 08:fa:c4:d5:75:34:db:68:57:f3:63:33:76:de:9e:19:21:a3: 7f:87:a3:46:f2:97:7d:ca:e7:3c:dd:77:ac:d0:6b:8b:9f:56: ce:ba:55:94:cc:f3:15:7d:f3:09:4a:ad:b6:8e:10:81:61:6a: 4b:c8:ef:e3:60:5f:27:34:83:ad:93:62:51:4a:c8:5b:93:a0: a2:83:4c:7a:58:2d:ba:6e:c1:8b:01:03:df:35:b7:24:f8:75: 17:7a:63:33:16:6b:fc:6a:00:76:4d:bc:b0:77:a0:e2:89:90: 68:b8:a0:fc:47:91:fb:fc:a2:61:70:34:4e:a1:27:2b:bd:dc: ee:95:24:bf:fb:6e:93:69:ea:3e:62:b3:21:2a:3f:95:6f:6c: 6b:ca:ec:19:8b:eb:11:44:d3:67:be:91:28:5a:88:53:bf:46: c4:98:a4:5a:d8:48:c7:cf:7d:85:59:39:54:9a:ca:d8:3a:49: dc:d4:a0:9c:ed:02:9c:a7:3d:1c:19:95:69:77:db:7a:0c:43: d2:c9:b0:4d:a9:89:f0:5e:a6:d3:91:4b:94:96:89:ef:ec:e4: 02:ff:97:ae:56:04:2c:32:67:e0:bc:3c:f9:9d:9a:06:df:c4: 9b:8e:9e:d1:c0:d0:b1:7c:53:a1:45:c7:07:77:c9:7e:72:97: 14:6c:ac:d2 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUbUeqtsigTXtwEEbmfuDKJsmyusEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU4Qjk1RjU1RDU0OEIwNzJCNDJDMkMyODIwQUNFN0Q5 OTA4RTYwRjAeFw0yNjA0MjIwNjEzNTFaFw0yNzA0MjEwNjE4NTFaMDMxMTAvBgNV BAMTKDFCRTdEQ0M2RkY1RTlBNkYyODgyM0ZGRDIyOTFBREY0OUJBMUM0QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvmIa0FamlEkR1Mx9JRJubC0T6 FqsD6eNMyaI2CcN/pTAfelLjoS3OWxPfyBODJTyzlhoGKRz2Gkn7+D/36HKis9qj mbjIfaAOTfEWa7m3wPNP6qhkNqNKg7mpCL9AUQ3SR+kEfpYe0IM+qIhoCMHkAtBa Q6lyBZqf4NXywK0ffsAJ/BugDGhu0x3YYrxhGtyo4i2BzAi5JGloqB7tzXd8efGR FDfYDpKQN4wPXSoFAhWzJQnTYrdBFWjRZH8l9ijZabxSwCRfmPxEKKNKsKO046ie CpB8MPLBWusA9vQZWkldPQfbLqmQwVPdbr7rLbegSZA5Dj3E9VQP7SpEWYmVAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUG+fcxv9emm8ogj/9IpGt9JuhxMEwHwYDVR0j BBgwFoAUFYuV9V1UiwcrQsLCggrOfZkI5g8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTIxNjM2NjQxMTQ0ODMyMS8wLzE1OEI5NUY1NUQ1NDhCMDcyQjQyQzJDMjgyMEFD RTdEOTkwOEU2MEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTU4Qjk1RjU1RDU0OEIwNzJCNDJDMkMyODIwQUNFN0Q5OTA4RTYwRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5OTIxNjM2NjQxMTQ0ODMyMS8wLzM0MzMyZTMyMzUz NDJlMzEzNTM2MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzOTMwMzczMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv+nDANBgkqhkiG9w0BAQsFAAOCAQEACPrE1XU022hX82Mzdt6eGSGj f4ejRvKXfcrnPN13rNBri59WzrpVlMzzFX3zCUqtto4QgWFqS8jv42BfJzSDrZNi UUrIW5OgooNMelgtum7BiwED3zW3JPh1F3pjMxZr/GoAdk28sHeg4omQaLig/EeR +/yiYXA0TqEnK73c7pUkv/tuk2nqPmKzISo/lW9sa8rsGYvrEUTTZ76RKFqIU79G xJikWthIx899hVk5VJrK2DpJ3NSgnO0CnKc9HBmVaXfbegxD0smwTamJ8F6m05FL lJaJ7+zkAv+XrlYELDJn4Lw8+Z2aBt/Em46e0cDQsXxToUXHB3fJfnKXFGys0g== -----END CERTIFICATE-----Generated at Mon Apr 27 19:27:14 2026 by rpki-client