$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233362e302f32342d3234203d3e203435313130.roa File: 34332e3235342e3233362e302f32342d3234203d3e203435313130.roa (raw, json) Hash identifier: XVFUqpQgC4BvdjHdrGfNO3ONBB03emTggLDjyktIvWA= Subject key identifier: BB:77:25:E5:D7:B7:BC:9A:79:76:3D:13:FC:8E:C0:77:95:D1:BE:A2 Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 129ADD6D9B26BD4D942D0B9849E212731BDF6EB8 Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233362e302f32342d3234203d3e203435313130.roa Signing time: Fri 17 Apr 2026 11:33:55 +0000 ROA not before: Fri 17 Apr 2026 11:28:55 +0000 ROA not after: Fri 16 Apr 2027 11:33:55 +0000 asID: 45110 IP address blocks: 43.254.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:9a:dd:6d:9b:26:bd:4d:94:2d:0b:98:49:e2:12:73:1b:df:6e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 11:28:55 2026 GMT Not After : Apr 16 11:33:55 2027 GMT Subject: CN=BB7725E5D7B7BC9A79763D13FC8EC07795D1BEA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b9:95:1f:b0:75:35:7c:10:0e:0e:39:12:c9: aa:7b:06:9b:f7:49:83:6a:3d:80:f6:bc:0d:39:be: 80:9b:19:d3:eb:48:44:5b:de:b6:51:54:d4:8a:a0: 1c:63:d4:94:4d:7c:5f:b9:38:f7:40:ee:da:61:9a: 51:43:73:dc:b7:f4:ff:3a:b2:ad:68:06:80:f7:57: 79:58:5e:f4:ee:d2:d3:27:46:aa:23:c3:8b:9b:a4: 2f:d3:f9:b3:86:20:e3:5d:0d:a5:06:ed:29:65:60: 41:41:88:5a:c0:d8:76:8f:04:fd:23:4b:ff:02:8f: 4b:5d:4b:2d:14:ee:e3:a7:74:8b:f9:03:aa:fd:44: 18:bb:0d:c4:26:64:51:de:a6:b4:ff:92:f2:98:a2: bf:91:73:0c:26:20:6c:4e:e3:85:5d:93:db:52:d4: 68:af:46:9c:d1:34:eb:0c:a2:6e:4b:de:2f:73:d5: dc:e0:ce:7b:4e:fa:2a:7b:26:59:bd:6e:c9:b2:31: 55:8f:42:e8:73:8a:14:19:f7:fd:7a:62:79:11:76: bd:84:54:d5:cc:9a:77:a3:fd:88:10:62:76:4b:ff: 15:e5:3b:05:ce:16:85:45:b6:6b:e0:3d:ab:75:3f: 37:b8:51:74:06:65:66:a5:d7:ab:86:7c:e2:94:ca: af:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:77:25:E5:D7:B7:BC:9A:79:76:3D:13:FC:8E:C0:77:95:D1:BE:A2 X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3233362e302f32342d3234203d3e203435313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.236.0/24 Signature Algorithm: sha256WithRSAEncryption 36:1f:f9:79:1d:fc:0a:cc:2a:f1:f8:21:ee:56:39:0e:76:b8: 9f:7c:89:95:ad:53:0c:f1:a5:b0:22:0c:35:64:76:72:c3:01: 39:e2:fd:53:01:b0:31:5c:bc:ea:11:df:e4:7a:f2:0b:61:14: 13:f4:63:4f:6e:4f:bd:01:1c:73:46:67:81:bc:77:a7:2d:3f: 0b:a9:ae:4a:f3:9b:7b:c7:0a:b4:c3:d6:68:c3:25:0a:63:2e: 7d:8a:b9:04:92:d3:82:55:5c:b4:1b:da:b4:51:b1:10:e8:e4: 75:34:91:b8:bd:2b:1e:4d:f5:2f:db:b6:19:93:9b:e2:4e:a1: 3c:91:c4:39:75:66:99:03:36:7a:5f:ca:1f:d3:bb:df:57:5f: fd:b0:69:61:28:8e:0e:09:b3:b0:e5:04:1e:8f:6c:93:dc:fd: 86:0a:62:6a:65:2f:e6:2c:27:a9:0c:33:f7:db:d2:18:2b:2e: 44:1e:33:1c:a3:57:01:18:90:87:c8:b4:69:27:d8:fa:55:22: 55:9b:a3:5b:5c:4c:82:11:2a:5f:89:f1:e4:88:31:0e:a2:5c: 0e:95:b8:14:83:09:b2:9a:1c:80:0e:5c:ca:5e:6b:7b:4d:d7: d3:31:27:23:0c:09:9c:77:23:dc:17:46:8b:10:e2:a9:55:15: 7a:33:e1:a6 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUEprdbZsmvU2ULQuYSeIScxvfbrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcxMTI4NTVaFw0yNzA0MTYxMTMzNTVaMDMxMTAvBgNV BAMTKEJCNzcyNUU1RDdCN0JDOUE3OTc2M0QxM0ZDOEVDMDc3OTVEMUJFQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOuZUfsHU1fBAODjkSyap7Bpv3 SYNqPYD2vA05voCbGdPrSERb3rZRVNSKoBxj1JRNfF+5OPdA7tphmlFDc9y39P86 sq1oBoD3V3lYXvTu0tMnRqojw4ubpC/T+bOGIONdDaUG7SllYEFBiFrA2HaPBP0j S/8Cj0tdSy0U7uOndIv5A6r9RBi7DcQmZFHeprT/kvKYor+RcwwmIGxO44Vdk9tS 1GivRpzRNOsMom5L3i9z1dzgzntO+ip7Jlm9bsmyMVWPQuhzihQZ9/16YnkRdr2E VNXMmnej/YgQYnZL/xXlOwXOFoVFtmvgPat1Pze4UXQGZWal16uGfOKUyq+nAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUu3cl5de3vJp5dj0T/I7Ad5XRvqIwHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjE3OTQ1OC8wLzM0MzMyZTMyMzUz NDJlMzIzMzM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNTMxMzEzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACv+7DANBgkqhkiG9w0BAQsFAAOCAQEANh/5eR38Cswq8fgh7lY5Dna4 n3yJla1TDPGlsCIMNWR2csMBOeL9UwGwMVy86hHf5HryC2EUE/RjT25PvQEcc0Zn gbx3py0/C6muSvObe8cKtMPWaMMlCmMufYq5BJLTglVctBvatFGxEOjkdTSRuL0r Hk31L9u2GZOb4k6hPJHEOXVmmQM2el/KH9O731df/bBpYSiODgmzsOUEHo9sk9z9 hgpiamUv5iwnqQwz99vSGCsuRB4zHKNXARiQh8i0aSfY+lUiVZujW1xMghEqX4nx 5IgxDqJcDpW4FIMJspocgA5cyl5re03X0zEnIwwJnHcj3BdGixDiqVUVejPhpg== -----END CERTIFICATE-----Generated at Sat Apr 18 00:22:19 2026 by rpki-client