$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233322e302f32342d3234203d3e203435313130.roa File: 34332e3235342e3233322e302f32342d3234203d3e203435313130.roa (raw, json) Hash identifier: 0lXXksa65qyyQ43O7tWSpC6m7IWK/l+xY4gAHGqHmUA= Subject key identifier: A7:D5:AD:64:C1:BC:E3:24:D9:CB:5E:86:E2:F6:EC:1A:15:7E:2E:39 Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 54C27B35F84A44F5097DDA6B2989A90EB18D29AA Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233322e302f32342d3234203d3e203435313130.roa Signing time: Fri 17 Apr 2026 11:33:54 +0000 ROA not before: Fri 17 Apr 2026 11:28:54 +0000 ROA not after: Fri 16 Apr 2027 11:33:54 +0000 asID: 45110 IP address blocks: 43.254.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c2:7b:35:f8:4a:44:f5:09:7d:da:6b:29:89:a9:0e:b1:8d:29:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 11:28:54 2026 GMT Not After : Apr 16 11:33:54 2027 GMT Subject: CN=A7D5AD64C1BCE324D9CB5E86E2F6EC1A157E2E39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:33:d6:dd:dc:46:24:29:3f:74:a7:ea:2c:ad: bf:a2:db:28:fe:89:a1:43:c7:da:f3:e3:bf:d6:47: 67:3e:67:c2:dc:a0:7b:7e:7e:82:e0:9a:dd:11:8f: a9:ad:13:a6:5f:96:e3:90:e9:52:39:55:42:ae:e7: 78:bd:c4:a9:22:85:d8:65:80:22:1d:b5:f0:fd:d0: 8c:a5:f5:bc:ad:c2:c8:af:8f:1c:22:d8:d9:a8:51: 76:f3:88:82:84:52:60:b5:f6:06:40:74:42:d4:f9: 59:42:a3:52:ab:ab:df:e1:8c:bb:5a:7f:8f:94:be: a4:ab:c5:1e:a2:de:5f:af:63:18:7b:1c:08:6e:a1: 60:bb:91:65:ef:72:0b:aa:c1:01:2e:2c:27:22:85: 37:f3:da:dd:bc:53:f1:d3:3d:bd:e6:8a:5a:2e:0f: 7b:1b:c6:ad:d6:97:5b:ca:1d:bf:8f:ed:54:f0:aa: fb:87:ce:30:fc:fe:37:0c:6b:2d:79:b5:49:cd:60: 25:0d:f7:42:13:37:82:2c:93:6b:68:cd:12:87:82: c3:ab:46:91:0e:69:51:dd:29:8e:35:3b:b2:24:b1: d1:5a:48:39:b1:fd:99:3c:ab:1c:65:57:e2:31:7c: da:cb:0f:39:ff:78:4f:3f:ea:38:6b:18:dd:c8:90: 9e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D5:AD:64:C1:BC:E3:24:D9:CB:5E:86:E2:F6:EC:1A:15:7E:2E:39 X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233322e302f32342d3234203d3e203435313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.232.0/24 Signature Algorithm: sha256WithRSAEncryption cd:9e:8e:3c:39:7d:ac:6f:87:1f:8e:a1:33:29:7f:a1:56:8b: 09:04:16:7f:7c:c8:a7:bd:ac:16:94:78:25:99:8d:bc:7e:65: 5a:51:d2:0e:27:29:11:ad:77:a1:87:ad:a6:9b:99:62:2f:86: 7a:92:1e:78:7f:b4:40:75:4e:f6:ab:0f:52:49:89:a8:46:5d: 95:30:31:94:2a:97:6e:eb:fb:33:73:e5:7f:02:18:8a:b2:45: 01:66:73:0f:cd:68:c9:de:05:17:83:45:a4:58:f6:6e:eb:70: 75:e1:23:fa:6d:81:f9:14:f7:22:a1:e6:f4:4e:b7:00:b8:d7: 56:9e:88:9c:72:e4:b6:67:eb:b4:1c:3c:72:a9:ad:6b:fa:42: 47:7f:2b:d0:1e:b0:ec:d1:da:17:37:c9:1b:d1:3d:17:24:21: 13:ba:40:ec:6c:dd:a7:90:0f:b2:fe:75:dd:9c:a9:e9:b3:ed: b0:19:2a:66:c0:35:9e:a9:0f:e3:e3:8f:e4:17:48:ca:06:0a: 1a:30:09:78:44:43:e6:ef:5b:88:88:e6:14:65:21:6c:ed:4c: 10:c2:5d:4e:ad:e3:58:d8:f0:7b:9f:f3:63:b1:0e:c6:a1:b8: 92:14:cc:14:28:df:8c:2e:79:02:d9:1e:67:91:32:de:28:63: 7a:e1:c8:cc -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUVMJ7NfhKRPUJfdprKYmpDrGNKaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcxMTI4NTRaFw0yNzA0MTYxMTMzNTRaMDMxMTAvBgNV BAMTKEE3RDVBRDY0QzFCQ0UzMjREOUNCNUU4NkUyRjZFQzFBMTU3RTJFMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBM9bd3EYkKT90p+osrb+i2yj+ iaFDx9rz47/WR2c+Z8LcoHt+foLgmt0Rj6mtE6ZfluOQ6VI5VUKu53i9xKkihdhl gCIdtfD90Iyl9bytwsivjxwi2NmoUXbziIKEUmC19gZAdELU+VlCo1Krq9/hjLta f4+UvqSrxR6i3l+vYxh7HAhuoWC7kWXvcguqwQEuLCcihTfz2t28U/HTPb3milou D3sbxq3Wl1vKHb+P7VTwqvuHzjD8/jcMay15tUnNYCUN90ITN4Isk2tozRKHgsOr RpEOaVHdKY41O7IksdFaSDmx/Zk8qxxlV+IxfNrLDzn/eE8/6jhrGN3IkJ4fAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUp9WtZMG84yTZy16G4vbsGhV+LjkwHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjE3OTQ1OC8wLzM0MzMyZTMyMzUz NDJlMzIzMzMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNTMxMzEzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACv+6DANBgkqhkiG9w0BAQsFAAOCAQEAzZ6OPDl9rG+HH46hMyl/oVaL CQQWf3zIp72sFpR4JZmNvH5lWlHSDicpEa13oYetppuZYi+GepIeeH+0QHVO9qsP UkmJqEZdlTAxlCqXbuv7M3PlfwIYirJFAWZzD81oyd4FF4NFpFj2butwdeEj+m2B +RT3IqHm9E63ALjXVp6InHLktmfrtBw8cqmta/pCR38r0B6w7NHaFzfJG9E9FyQh E7pA7Gzdp5APsv513Zyp6bPtsBkqZsA1nqkP4+OP5BdIygYKGjAJeERD5u9biIjm FGUhbO1MEMJdTq3jWNjwe5/zY7EOxqG4khTMFCjfjC55AtkeZ5Ey3ihjeuHIzA== -----END CERTIFICATE-----Generated at Sat Apr 18 00:22:18 2026 by rpki-client