$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3234392e302f32342d3234203d3e203435313130.roa File: 34332e3235342e3234392e302f32342d3234203d3e203435313130.roa (raw, json) Hash identifier: LZGwqVNIjARepvmoSmztKTMwocq78+AN03ZC8WNpqgY= Subject key identifier: 69:5B:C6:E9:9F:00:A9:D0:7B:3E:FD:87:45:C9:06:8C:3B:C9:4B:9C Certificate issuer: /CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Certificate serial: 6529782BC755773898BA1127177EEE2D48281BD1 Authority key identifier: 8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3234392e302f32342d3234203d3e203435313130.roa Signing time: Fri 17 Apr 2026 10:26:26 +0000 ROA not before: Fri 17 Apr 2026 10:21:26 +0000 ROA not after: Fri 16 Apr 2027 10:26:26 +0000 asID: 45110 IP address blocks: 43.254.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:29:78:2b:c7:55:77:38:98:ba:11:27:17:7e:ee:2d:48:28:1b:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE Validity Not Before: Apr 17 10:21:26 2026 GMT Not After : Apr 16 10:26:26 2027 GMT Subject: CN=695BC6E99F00A9D07B3EFD8745C9068C3BC94B9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:36:f2:a1:cd:5c:0b:3c:cd:61:45:f1:0a:eb: a9:e0:93:0d:4b:cc:44:8e:ac:da:f4:ab:ad:6b:58: fb:39:74:c0:49:22:ab:1d:24:10:09:74:cf:c2:31: de:9c:2a:7f:57:5b:8b:e3:51:34:80:bb:d7:56:d3: ed:df:ac:55:35:4d:57:0b:26:6b:96:e3:22:6e:87: 7d:fc:09:3d:32:67:3f:b7:57:9f:3a:07:06:98:86: d9:fc:81:40:96:35:03:9d:15:f1:ac:51:18:ab:7f: a8:4a:1b:01:86:18:d0:86:8b:a8:0a:95:b3:b2:aa: 66:34:a2:54:8a:14:7c:fd:e5:01:b5:28:ca:81:09: 46:19:44:b4:62:df:ac:75:cc:a0:e6:a9:4c:ed:15: 59:c5:1b:dd:a8:91:fd:bd:e3:3d:ec:d0:68:01:a9: b7:3d:52:9e:69:52:72:65:44:79:27:d7:b2:25:b3: ee:b0:32:3d:7b:63:50:92:83:6b:fc:7d:e4:0c:4c: 58:2a:3d:e8:45:4a:9b:e0:a4:f6:25:e3:08:9d:47: 6a:8f:f7:d4:cf:c1:b6:9f:69:bd:bf:57:a1:de:85: 5c:87:4d:41:ad:43:64:7b:76:32:91:ee:f7:12:d0: 7a:8b:e1:59:92:b2:8f:46:9e:bf:f4:ed:ce:ce:3a: 6e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5B:C6:E9:9F:00:A9:D0:7B:3E:FD:87:45:C9:06:8C:3B:C9:4B:9C X509v3 Authority Key Identifier: keyid:8D:47:3B:7B:41:E3:D6:22:DF:B3:B6:0D:5E:B9:46:99:8F:BE:7E:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8D473B7B41E3D622DFB3B60D5EB946998FBE7EAE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723372179458/0/34332e3235342e3234392e302f32342d3234203d3e203435313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.249.0/24 Signature Algorithm: sha256WithRSAEncryption 24:bd:a5:55:46:28:7a:da:49:d0:3f:3c:15:d7:d9:c5:aa:98: 96:5b:4b:27:29:98:18:d2:19:ca:88:f1:80:b8:3c:f7:0c:91: 50:6c:31:7d:42:0f:39:b5:cf:3c:a2:42:e0:70:8e:13:24:36: bd:96:9d:b6:b3:2e:ff:2d:28:b4:a1:53:ff:96:a0:e6:4c:e6: 33:0c:e3:f6:1c:23:4b:41:7d:f3:69:d9:22:9c:2b:66:5f:0c: fa:77:53:98:0a:87:ea:88:99:58:b5:64:99:9a:e6:df:0c:79: 9b:f7:cf:c4:18:50:cd:20:66:43:8d:7f:98:c6:6c:0c:17:89: 76:10:c4:d9:ff:3a:df:f7:3e:ae:17:05:0b:3e:57:f4:b0:1a: 6d:2f:3a:17:0d:ae:4b:3f:f8:19:de:82:95:f9:c7:0e:35:09: 77:44:ed:e4:7c:5d:37:2d:ca:62:99:0b:46:8d:cf:78:01:01: 5c:22:81:bb:00:f6:e4:af:d6:42:90:9f:0f:30:92:73:94:d5: f9:fc:10:38:b1:aa:bf:57:f9:64:8f:eb:20:7f:8d:d0:ef:14: 5b:67:05:9f:f4:07:23:bd:7e:72:85:ba:1f:a9:e5:8c:cf:1c: 12:c9:b1:ef:5d:dc:64:7a:b3:7e:44:4e:a5:57:b3:74:b9:7e: 9e:1e:1c:cc -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUZSl4K8dVdziYuhEnF37uLUgoG9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4 RkJFN0VBRTAeFw0yNjA0MTcxMDIxMjZaFw0yNzA0MTYxMDI2MjZaMDMxMTAvBgNV BAMTKDY5NUJDNkU5OUYwMEE5RDA3QjNFRkQ4NzQ1QzkwNjhDM0JDOTRCOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrNvKhzVwLPM1hRfEK66ngkw1L zESOrNr0q61rWPs5dMBJIqsdJBAJdM/CMd6cKn9XW4vjUTSAu9dW0+3frFU1TVcL JmuW4yJuh338CT0yZz+3V586BwaYhtn8gUCWNQOdFfGsURirf6hKGwGGGNCGi6gK lbOyqmY0olSKFHz95QG1KMqBCUYZRLRi36x1zKDmqUztFVnFG92okf294z3s0GgB qbc9Up5pUnJlRHkn17Ils+6wMj17Y1CSg2v8feQMTFgqPehFSpvgpPYl4widR2qP 99TPwbafab2/V6HehVyHTUGtQ2R7djKR7vcS0HqL4VmSso9Gnr/07c7OOm7DAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUaVvG6Z8AqdB7Pv2HRckGjDvJS5wwHwYDVR0j BBgwFoAUjUc7e0Hj1iLfs7YNXrlGmY++fq4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MjE3OTQ1OC8wLzhENDczQjdCNDFFM0Q2MjJERkIzQjYwRDVFQjk0 Njk5OEZCRTdFQUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEQ0NzNCN0I0MUUzRDYyMkRGQjNCNjBENUVCOTQ2OTk4RkJFN0VBRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NjcyMzM3MjE3OTQ1OC8wLzM0MzMyZTMyMzUz NDJlMzIzNDM5MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzQzNTMxMzEzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACv++TANBgkqhkiG9w0BAQsFAAOCAQEAJL2lVUYoetpJ0D88FdfZxaqY lltLJymYGNIZyojxgLg89wyRUGwxfUIPObXPPKJC4HCOEyQ2vZadtrMu/y0otKFT /5ag5kzmMwzj9hwjS0F982nZIpwrZl8M+ndTmAqH6oiZWLVkmZrm3wx5m/fPxBhQ zSBmQ41/mMZsDBeJdhDE2f863/c+rhcFCz5X9LAabS86Fw2uSz/4Gd6ClfnHDjUJ d0Tt5HxdNy3KYpkLRo3PeAEBXCKBuwD25K/WQpCfDzCSc5TV+fwQOLGqv1f5ZI/r IH+N0O8UW2cFn/QHI71+coW6H6nljM8cEsmx713cZHqzfkROpVezdLl+nh4czA== -----END CERTIFICATE-----Generated at Sat Apr 18 00:22:16 2026 by rpki-client