$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3234302e302f32322d3234203d3e203435313130.roa File: 34332e3235342e3234302e302f32322d3234203d3e203435313130.roa (raw, json) Hash identifier: Xe9dwCLsxu8w5NCGgjmn5wfjXBgno2Nt4yID10l/fEA= Subject key identifier: 6A:41:78:DC:28:62:D2:B1:20:F1:03:58:02:B5:78:AC:2F:31:6F:0E Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 7B7FCEF87276C966E45D3187A113D74A70E3D5AB Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3234302e302f32322d3234203d3e203435313130.roa Signing time: Fri 17 Apr 2026 11:50:28 +0000 ROA not before: Fri 17 Apr 2026 11:45:28 +0000 ROA not after: Fri 16 Apr 2027 11:50:28 +0000 asID: 45110 IP address blocks: 43.254.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:7f:ce:f8:72:76:c9:66:e4:5d:31:87:a1:13:d7:4a:70:e3:d5:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 11:45:28 2026 GMT Not After : Apr 16 11:50:28 2027 GMT Subject: CN=6A4178DC2862D2B120F1035802B578AC2F316F0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:bb:f1:31:5a:61:f9:a0:bf:3c:56:1e:a2:c7: 53:e2:bc:26:de:c9:05:96:02:36:32:df:58:88:9a: 52:79:75:c1:f9:bd:13:80:35:fe:59:e6:55:2c:68: b1:a9:e0:c8:ae:34:a0:27:83:f3:4d:61:53:05:9a: c6:89:99:cf:48:b0:7f:ab:89:8a:1e:8d:5e:7f:f2: a6:91:60:60:2a:ad:72:c4:33:d6:88:2d:9c:3d:c1: b1:8b:65:33:ed:e0:40:2e:df:1b:73:24:17:2b:00: a9:73:5c:4a:d2:7f:f9:61:45:4e:7a:cb:80:72:b0: 71:d5:98:bc:0e:c6:15:56:6e:35:1c:d8:fe:a3:dd: 1a:58:62:a8:53:f6:10:3a:ac:c6:84:b7:4a:e9:e5: 73:0e:2f:51:7a:8f:ad:5d:b1:af:eb:42:32:34:29: 3f:68:d9:67:59:f9:c7:20:11:6e:ec:23:35:af:e5: d0:5f:20:05:56:82:fe:cd:59:74:38:c3:f6:10:07: eb:20:69:62:88:9f:87:9d:51:a4:ef:3d:3a:b8:e7: b7:d3:fa:ca:22:87:e6:6d:80:ac:1d:e0:c6:e9:eb: 22:99:50:4a:c9:80:7d:82:1d:4e:e9:ad:5d:37:00: 42:e2:58:15:7e:46:3a:c2:2e:14:1c:ff:b8:19:d6: a6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:41:78:DC:28:62:D2:B1:20:F1:03:58:02:B5:78:AC:2F:31:6F:0E X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3234302e302f32322d3234203d3e203435313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.240.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:bd:d7:93:b7:12:6e:33:64:00:d9:45:f4:51:9e:e4:50:aa: 71:b0:db:4d:c0:6f:c7:65:bd:3a:4f:a6:d6:f6:e1:0a:a5:66: be:66:ca:ca:0c:c8:5d:4c:cc:74:08:11:36:e8:45:e0:57:09: bb:f4:af:ab:62:c6:a9:d5:3c:89:9f:fe:9d:43:05:48:95:6f: 85:8f:4f:a1:93:c9:64:62:64:fd:d8:ef:48:3a:3d:ca:5a:e1: a1:ff:93:7e:35:84:c5:11:ee:93:c9:e3:0f:2f:47:47:7f:e6: 15:16:c3:ae:7e:be:16:8a:44:b9:22:57:02:14:c2:e1:f5:39: f1:60:5d:aa:eb:e9:5b:8b:c9:1e:88:42:64:08:88:68:1e:cc: 3a:df:b8:61:e2:a7:65:c6:60:75:53:84:8c:ac:e8:10:6e:0f: 16:36:3d:46:93:42:2d:84:98:eb:fa:0b:54:6e:ba:e5:b5:44: 43:3d:86:b2:b7:4c:87:b3:63:ad:2b:95:53:02:b5:cc:7b:e6: ac:ef:f8:95:3f:6f:53:50:a6:53:8c:9f:e1:14:9f:36:fd:96: 74:c9:df:e8:61:6d:21:a1:bc:8e:e0:de:f9:62:80:1b:37:8e: b8:d6:60:2a:9a:70:b3:14:bb:dc:ed:36:7c:16:62:31:09:5d: 6a:25:85:a5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUe3/O+HJ2yWbkXTGHoRPXSnDj1aswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcxMTQ1MjhaFw0yNzA0MTYxMTUwMjhaMDMxMTAvBgNV BAMTKDZBNDE3OERDMjg2MkQyQjEyMEYxMDM1ODAyQjU3OEFDMkYzMTZGMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVu/ExWmH5oL88Vh6ix1PivCbe yQWWAjYy31iImlJ5dcH5vROANf5Z5lUsaLGp4MiuNKAng/NNYVMFmsaJmc9IsH+r iYoejV5/8qaRYGAqrXLEM9aILZw9wbGLZTPt4EAu3xtzJBcrAKlzXErSf/lhRU56 y4BysHHVmLwOxhVWbjUc2P6j3RpYYqhT9hA6rMaEt0rp5XMOL1F6j61dsa/rQjI0 KT9o2WdZ+ccgEW7sIzWv5dBfIAVWgv7NWXQ4w/YQB+sgaWKIn4edUaTvPTq457fT +soih+ZtgKwd4Mbp6yKZUErJgH2CHU7prV03AELiWBV+RjrCLhQc/7gZ1qYlAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUakF43Chi0rEg8QNYArV4rC8xbw4wHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjE3OTQ1OC8wLzM0MzMyZTMyMzUz NDJlMzIzNDMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzNTMxMzEzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv+8DANBgkqhkiG9w0BAQsFAAOCAQEATb3Xk7cSbjNkANlF9FGe5FCq cbDbTcBvx2W9Ok+m1vbhCqVmvmbKygzIXUzMdAgRNuhF4FcJu/Svq2LGqdU8iZ/+ nUMFSJVvhY9PoZPJZGJk/djvSDo9ylrhof+TfjWExRHuk8njDy9HR3/mFRbDrn6+ FopEuSJXAhTC4fU58WBdquvpW4vJHohCZAiIaB7MOt+4YeKnZcZgdVOEjKzoEG4P FjY9RpNCLYSY6/oLVG665bVEQz2GsrdMh7NjrSuVUwK1zHvmrO/4lT9vU1CmU4yf 4RSfNv2WdMnf6GFtIaG8juDe+WKAGzeOuNZgKppwsxS73O02fBZiMQldaiWFpQ== -----END CERTIFICATE-----Generated at Sat Apr 18 00:22:17 2026 by rpki-client