$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/0/34332e3234372e34342e302f32322d3234203d3e2030.roa File: 34332e3234372e34342e302f32322d3234203d3e2030.roa (raw, json) Hash identifier: AWidrKnWZiyzazh3/ieeCPUgJB0k7d4FncMTVSSfyNg= Subject key identifier: 35:AA:73:42:E2:1F:3F:37:BF:A3:21:20:C9:0D:6B:35:97:31:BB:8D Certificate issuer: /CN=A51408E97010BDB44146281B8A78BCFA4E0E4C5E Certificate serial: 1589A4A1D41EC02907B3109A1A897BFB0FEB4D49 Authority key identifier: A5:14:08:E9:70:10:BD:B4:41:46:28:1B:8A:78:BC:FA:4E:0E:4C:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/34332e3234372e34342e302f32322d3234203d3e2030.roa Signing time: Thu 16 Apr 2026 07:16:32 +0000 ROA not before: Thu 16 Apr 2026 07:11:32 +0000 ROA not after: Thu 15 Apr 2027 07:16:32 +0000 asID: 0 IP address blocks: 43.247.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 08:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:89:a4:a1:d4:1e:c0:29:07:b3:10:9a:1a:89:7b:fb:0f:eb:4d:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51408E97010BDB44146281B8A78BCFA4E0E4C5E Validity Not Before: Apr 16 07:11:32 2026 GMT Not After : Apr 15 07:16:32 2027 GMT Subject: CN=35AA7342E21F3F37BFA32120C90D6B359731BB8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1d:4e:75:69:9c:26:d1:1d:8a:bf:ef:0d:ac: 8f:4f:9d:f6:83:22:42:29:20:9b:91:fd:02:d3:e8: 92:62:59:5f:8d:0b:e5:09:88:80:2b:f8:92:4b:b5: fa:b8:63:00:89:91:dd:aa:8d:f7:b8:30:d6:ad:df: 03:9e:2a:59:e6:d4:07:a5:00:af:9a:2d:11:f1:43: d7:30:ce:57:41:77:da:01:03:ef:f3:3f:95:a9:d1: 7c:df:e3:0c:a3:ae:87:21:b4:2f:ba:2d:c6:3c:bc: 33:4b:c8:75:83:96:e6:df:af:4a:ec:78:ab:38:e6: 9f:0d:e0:cc:d3:bb:01:93:18:56:a8:c3:01:fa:81: 32:e1:6b:00:7d:15:93:af:90:a3:2d:fb:7c:1e:bf: eb:8a:73:5f:1f:da:dc:18:62:bf:b9:60:b7:04:e7: 05:f0:ed:7c:62:6b:b2:30:e6:4b:86:1d:24:a8:aa: 4e:fd:43:49:7b:bb:23:f7:26:ff:ef:69:fd:10:5a: de:12:80:a3:44:23:2e:94:59:9c:dd:ca:d3:55:ac: 3f:ba:4c:c8:9e:63:0d:93:49:ec:d6:30:09:01:e9: 14:b5:1d:a3:69:87:77:c3:18:2b:0e:e8:e5:03:f4: b4:e4:40:66:4d:79:5e:6e:df:df:44:18:ce:d4:89: 12:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AA:73:42:E2:1F:3F:37:BF:A3:21:20:C9:0D:6B:35:97:31:BB:8D X509v3 Authority Key Identifier: keyid:A5:14:08:E9:70:10:BD:B4:41:46:28:1B:8A:78:BC:FA:4E:0E:4C:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/34332e3234372e34342e302f32322d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.44.0/22 Signature Algorithm: sha256WithRSAEncryption 75:03:f1:0d:6e:5b:f3:00:9e:34:ef:bd:d8:a0:7b:74:4d:77: f9:55:bc:c1:ed:d6:6a:c3:65:2a:b6:a2:66:b8:1c:3b:59:c1: 04:a2:55:a7:db:81:82:c4:cc:24:41:4c:eb:da:6f:14:ac:34: 21:08:aa:56:d8:f5:d1:37:ff:a1:4d:28:5b:39:b6:4a:f8:08: 56:13:09:60:a5:46:fd:19:1b:0a:32:a9:5f:53:40:00:7b:2d: da:16:75:6a:df:be:49:79:c2:be:72:3c:53:0b:0f:a9:79:10: 64:67:b1:11:a2:71:d9:09:a0:8a:cd:ef:62:95:bd:f6:42:f8: 4f:33:5f:43:12:f7:ca:03:4e:58:cc:35:19:04:2e:84:39:50: 6f:c1:9e:67:e9:03:1c:c3:fc:f6:8e:65:23:8e:37:5e:1a:ed: 45:58:ca:40:2d:f9:fd:5b:cc:8c:e9:36:63:68:80:39:2c:cb: 16:5a:51:e7:d2:9c:d2:ce:ab:0c:28:9c:31:5e:0d:e4:04:2c: 03:7b:02:02:ee:c4:26:cc:80:e9:10:1a:86:2a:e4:af:39:03: c7:dd:38:d6:6a:c8:a0:b1:11:82:da:7d:89:46:b7:d7:12:95: 4e:34:14:52:e1:40:3c:f1:ec:ad:d5:14:bf:b3:1d:5b:85:89: 3b:ba:78:c7 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUFYmkodQewCkHsxCaGol7+w/rTUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxNDA4RTk3MDEwQkRCNDQxNDYyODFCOEE3OEJDRkE0 RTBFNEM1RTAeFw0yNjA0MTYwNzExMzJaFw0yNzA0MTUwNzE2MzJaMDMxMTAvBgNV BAMTKDM1QUE3MzQyRTIxRjNGMzdCRkEzMjEyMEM5MEQ2QjM1OTczMUJCOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HU51aZwm0R2Kv+8NrI9PnfaD IkIpIJuR/QLT6JJiWV+NC+UJiIAr+JJLtfq4YwCJkd2qjfe4MNat3wOeKlnm1Ael AK+aLRHxQ9cwzldBd9oBA+/zP5Wp0Xzf4wyjrochtC+6LcY8vDNLyHWDlubfr0rs eKs45p8N4MzTuwGTGFaowwH6gTLhawB9FZOvkKMt+3wev+uKc18f2twYYr+5YLcE 5wXw7Xxia7Iw5kuGHSSoqk79Q0l7uyP3Jv/vaf0QWt4SgKNEIy6UWZzdytNVrD+6 TMieYw2TSezWMAkB6RS1HaNph3fDGCsO6OUD9LTkQGZNeV5u399EGM7UiRKlAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUNapzQuIfPze/oyEgyQ1rNZcxu40wHwYDVR0j BBgwFoAUpRQI6XAQvbRBRigbini8+k4OTF4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8wL0E1MTQwOEU5NzAxMEJEQjQ0MTQ2MjgxQjhBNzhC Q0ZBNEUwRTRDNUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTUxNDA4RTk3MDEwQkRCNDQxNDYyODFCOEE3OEJDRkE0RTBFNEM1RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MjcxNjE5LzAvMzQzMzJlMzIzNDM3 MmUzNDM0MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr9yww DQYJKoZIhvcNAQELBQADggEBAHUD8Q1uW/MAnjTvvdige3RNd/lVvMHt1mrDZSq2 oma4HDtZwQSiVafbgYLEzCRBTOvabxSsNCEIqlbY9dE3/6FNKFs5tkr4CFYTCWCl Rv0ZGwoyqV9TQAB7LdoWdWrfvkl5wr5yPFMLD6l5EGRnsRGicdkJoIrN72KVvfZC +E8zX0MS98oDTljMNRkELoQ5UG/BnmfpAxzD/PaOZSOON14a7UVYykAt+f1bzIzp NmNogDksyxZaUefSnNLOqwwonDFeDeQELAN7AgLuxCbMgOkQGoYq5K85A8fdONZq yKCxEYLafYlGt9cSlU40FFLhQDzx7K3VFL+zHVuFiTu6eMc= -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:40 2026 by rpki-client