$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233322e302f32322d3234203d3e203435313130.roa File: 34332e3235342e3233322e302f32322d3234203d3e203435313130.roa (raw, json) Hash identifier: VX9CBNTg69BukdOCUc+amVnWDpogPwUbxQChMyCP6sU= Subject key identifier: 07:85:C9:51:60:8C:CF:DD:07:5C:E8:E0:3E:DA:28:D2:BB:F5:CD:DD Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 0865A5351DD1C9266824CB0C1394B3DE25AFBFD8 Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233322e302f32322d3234203d3e203435313130.roa Signing time: Fri 17 Apr 2026 11:33:54 +0000 ROA not before: Fri 17 Apr 2026 11:28:54 +0000 ROA not after: Fri 16 Apr 2027 11:33:54 +0000 asID: 45110 IP address blocks: 43.254.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:65:a5:35:1d:d1:c9:26:68:24:cb:0c:13:94:b3:de:25:af:bf:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 11:28:54 2026 GMT Not After : Apr 16 11:33:54 2027 GMT Subject: CN=0785C951608CCFDD075CE8E03EDA28D2BBF5CDDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b8:81:e3:52:db:2e:5f:57:0e:60:00:bc:ed: ce:ab:1f:c5:95:52:bd:ca:03:b2:bc:bf:33:8e:d5: da:4f:3b:6c:21:e8:02:25:bb:58:e1:20:5f:84:11: 89:21:9c:65:63:e0:c8:3f:08:72:7c:24:2c:b1:35: 79:2d:55:e3:d9:20:11:c9:71:a8:2a:27:97:e8:c8: 3b:7c:17:0d:85:91:19:b3:a0:4e:ea:e2:f7:e2:ca: 38:3f:87:a6:74:03:8f:29:2a:8a:bf:00:cb:bf:1b: 23:5d:56:f3:c1:ae:59:b8:cc:1e:07:42:48:f8:3a: ae:67:68:1f:b7:7d:ff:96:c4:8b:1c:20:60:1b:6c: 09:50:97:08:23:40:43:9a:2e:ab:73:e3:e4:b1:17: f5:f3:39:6a:9e:f4:97:8a:e4:76:a5:25:04:10:30: dd:fc:62:5a:d5:70:e2:59:9e:88:cb:a8:0a:84:f9: 6f:a1:b9:a9:d0:1e:e5:29:4b:10:22:0a:ca:6f:b4: f3:84:bb:f5:37:3e:2d:2a:93:17:af:53:10:91:e9: ff:58:68:d0:30:d1:d0:45:4b:65:1e:d2:f9:88:da: c1:f7:65:1b:21:29:d7:4b:22:6a:2b:85:ae:a7:d9: de:51:44:3e:56:55:db:8e:0f:2b:4c:2e:7e:d4:97: 71:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:85:C9:51:60:8C:CF:DD:07:5C:E8:E0:3E:DA:28:D2:BB:F5:CD:DD X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233322e302f32322d3234203d3e203435313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.232.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:d1:3d:3f:ad:53:5b:a3:98:65:f9:6c:70:d4:7b:ae:59:fa: 23:7a:2e:01:c9:3c:5f:3a:b4:71:04:63:18:37:fb:30:93:ac: 86:9b:14:3f:46:4a:b6:66:51:16:d0:a3:f2:57:a8:18:8b:b2: 6f:8f:80:dc:15:e7:05:20:bd:a1:7d:9d:8c:c7:24:20:b0:79: c5:d6:b7:61:88:b3:70:58:89:eb:73:83:f8:41:69:a3:97:7b: a8:ea:84:27:d0:f8:68:45:f9:49:e0:89:f0:8b:46:13:50:ff: 05:5f:50:cf:c3:37:39:06:ee:dc:e8:ea:89:44:ec:ff:0b:a9: 8c:db:07:6b:17:97:da:f0:05:11:54:65:1d:95:fa:2c:62:a4: 09:f5:df:7e:ed:39:95:21:7b:5a:69:74:65:04:5d:85:d9:17: 69:b4:44:28:d4:42:bf:e2:6a:58:53:5f:45:3f:c3:8d:8b:5b: c5:19:bc:aa:72:a1:9c:c0:39:e7:a6:09:96:cb:c1:88:f3:a6: 99:88:63:7f:d7:63:f3:84:ce:34:b4:8f:9f:66:e7:b8:17:ed: 8a:06:7d:4e:1a:ac:f3:85:68:5b:0d:a9:8d:25:6b:50:9c:6c: fa:d4:25:3e:51:a3:e9:a2:62:e5:a5:14:ad:a6:d8:1d:11:55: ca:76:90:bf -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUCGWlNR3RySZoJMsME5Sz3iWvv9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcxMTI4NTRaFw0yNzA0MTYxMTMzNTRaMDMxMTAvBgNV BAMTKDA3ODVDOTUxNjA4Q0NGREQwNzVDRThFMDNFREEyOEQyQkJGNUNEREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSuIHjUtsuX1cOYAC87c6rH8WV Ur3KA7K8vzOO1dpPO2wh6AIlu1jhIF+EEYkhnGVj4Mg/CHJ8JCyxNXktVePZIBHJ cagqJ5foyDt8Fw2FkRmzoE7q4vfiyjg/h6Z0A48pKoq/AMu/GyNdVvPBrlm4zB4H Qkj4Oq5naB+3ff+WxIscIGAbbAlQlwgjQEOaLqtz4+SxF/XzOWqe9JeK5HalJQQQ MN38YlrVcOJZnojLqAqE+W+huanQHuUpSxAiCspvtPOEu/U3Pi0qkxevUxCR6f9Y aNAw0dBFS2Ue0vmI2sH3ZRshKddLImorha6n2d5RRD5WVduODytMLn7Ul3G3AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUB4XJUWCMz90HXOjgPtoo0rv1zd0wHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjE3OTQ1OC8wLzM0MzMyZTMyMzUz NDJlMzIzMzMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzNTMxMzEzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv+6DANBgkqhkiG9w0BAQsFAAOCAQEAPNE9P61TW6OYZflscNR7rln6 I3ouAck8Xzq0cQRjGDf7MJOshpsUP0ZKtmZRFtCj8leoGIuyb4+A3BXnBSC9oX2d jMckILB5xda3YYizcFiJ63OD+EFpo5d7qOqEJ9D4aEX5SeCJ8ItGE1D/BV9Qz8M3 OQbu3OjqiUTs/wupjNsHaxeX2vAFEVRlHZX6LGKkCfXffu05lSF7Wml0ZQRdhdkX abREKNRCv+JqWFNfRT/DjYtbxRm8qnKhnMA556YJlsvBiPOmmYhjf9dj84TONLSP n2bnuBftigZ9Thqs84VoWw2pjSVrUJxs+tQlPlGj6aJi5aUUrabYHRFVynaQvw== -----END CERTIFICATE-----Generated at Sat Apr 18 00:22:18 2026 by rpki-client