$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/34332e3232392e34382e302f32322d3234203d3e20313331323734.roa File: 34332e3232392e34382e302f32322d3234203d3e20313331323734.roa (raw, json) Hash identifier: 8amZ2PRLj7Dlo637j3zHDKfxbNAGYV+/Wqf+yAtFGvw= Subject key identifier: F3:C1:34:4C:A5:54:46:16:FD:94:35:DA:FF:AC:EB:A4:9A:EE:71:8D Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 120B984DA44F4C373AF4060DD99730D03B647901 Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/34332e3232392e34382e302f32322d3234203d3e20313331323734.roa Signing time: Fri 17 Apr 2026 01:57:40 +0000 ROA not before: Fri 17 Apr 2026 01:52:40 +0000 ROA not after: Fri 16 Apr 2027 01:57:40 +0000 asID: 131274 IP address blocks: 43.229.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 04:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:0b:98:4d:a4:4f:4c:37:3a:f4:06:0d:d9:97:30:d0:3b:64:79:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: Apr 17 01:52:40 2026 GMT Not After : Apr 16 01:57:40 2027 GMT Subject: CN=F3C1344CA5544616FD9435DAFFACEBA49AEE718D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:88:8d:cd:20:97:37:40:e9:be:1c:c7:2f:96: 3a:1e:b5:3c:79:e9:d1:83:5d:f3:c0:5e:7b:85:1a: 54:ba:1e:24:c0:f7:fa:13:5e:25:df:fe:5e:fd:58: 87:c5:10:2a:40:3e:10:dc:ee:ec:52:94:ca:03:49: d5:a2:cc:d0:0a:b7:86:b9:2d:82:bc:c0:7e:fd:1c: e2:8d:c8:02:24:2e:63:37:85:03:06:22:b9:f5:42: 57:9a:45:13:a1:8d:64:3c:a7:61:9c:33:1f:c2:1c: cb:7a:fe:6c:06:0a:12:b8:e2:55:34:10:a0:fe:56: bc:3f:3e:b2:5d:ab:38:56:c6:d4:3a:66:38:b6:12: 92:50:af:22:df:33:ff:10:b7:f1:a2:1a:31:68:be: cf:21:22:57:8e:f4:43:61:0c:66:f5:73:74:5d:b7: 4d:42:cb:2a:f9:e3:ba:d5:a3:fb:04:a1:82:ce:9a: 60:7b:cc:e3:bb:e6:0d:9a:30:d3:1c:13:93:d8:66: 88:b2:d2:d1:cd:0d:38:0b:5a:f7:8d:07:0f:bc:0c: a1:92:fe:9a:f3:a5:22:6d:81:a4:77:1a:b2:78:ad: fd:88:ab:dc:1c:74:18:15:89:e5:e8:0a:98:fa:ea: d3:82:e6:d3:e3:36:3b:d0:ee:f4:34:7c:6f:0e:54: e9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C1:34:4C:A5:54:46:16:FD:94:35:DA:FF:AC:EB:A4:9A:EE:71:8D X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/34332e3232392e34382e302f32322d3234203d3e20313331323734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.48.0/22 Signature Algorithm: sha256WithRSAEncryption 45:9c:1c:33:56:4c:d0:b9:d3:dc:ce:9a:fa:ef:86:0f:1a:f4: c2:e3:2b:0b:13:f0:6a:c5:e5:92:b3:da:a4:74:41:7c:90:c8: 5a:3d:d0:1d:8e:35:41:b1:d4:50:ed:93:cd:ac:84:39:99:c5: 02:4f:2b:8c:03:db:4a:bb:4e:3a:d9:ef:41:0b:8f:fe:5a:34: 27:de:79:63:3b:4b:6a:0e:e2:a3:f5:e2:53:bc:7e:39:8d:db: 29:ca:6f:0c:6f:0d:03:63:f5:f3:e9:0d:46:87:b9:4c:11:99: 1a:ae:36:79:07:d1:2c:e1:64:f1:65:4a:af:8c:55:b5:1f:af: 3e:06:24:98:a3:dc:e9:ef:ef:49:96:62:d5:c5:24:ed:f9:ca: dd:f6:cb:45:5d:e9:71:67:e7:95:22:df:22:cf:4e:2c:03:fa: 55:b0:d5:f0:50:3b:61:24:bc:7d:f4:98:04:22:3c:44:16:1e: 3f:51:0a:ba:64:79:95:41:13:b6:26:bf:b9:2d:73:69:af:16: d1:48:0a:82:5d:19:3d:1a:4f:d7:74:c5:76:44:05:ab:19:53: 01:88:cc:0b:7b:6b:fe:98:0f:0c:c3:42:35:e0:34:77:ed:b4: a4:fa:aa:33:24:5d:1d:71:f5:46:84:17:3d:4e:8a:85:d0:4a: 31:4b:f3:27 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUEguYTaRPTDc69AYN2Zcw0DtkeQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA0MTcwMTUyNDBaFw0yNzA0MTYwMTU3NDBaMDMxMTAvBgNV BAMTKEYzQzEzNDRDQTU1NDQ2MTZGRDk0MzVEQUZGQUNFQkE0OUFFRTcxOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDiI3NIJc3QOm+HMcvljoetTx5 6dGDXfPAXnuFGlS6HiTA9/oTXiXf/l79WIfFECpAPhDc7uxSlMoDSdWizNAKt4a5 LYK8wH79HOKNyAIkLmM3hQMGIrn1QleaRROhjWQ8p2GcMx/CHMt6/mwGChK44lU0 EKD+Vrw/PrJdqzhWxtQ6Zji2EpJQryLfM/8Qt/GiGjFovs8hIleO9ENhDGb1c3Rd t01Cyyr547rVo/sEoYLOmmB7zOO75g2aMNMcE5PYZoiy0tHNDTgLWveNBw+8DKGS /przpSJtgaR3GrJ4rf2Iq9wcdBgVieXoCpj66tOC5tPjNjvQ7vQ0fG8OVOkNAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU88E0TKVURhb9lDXa/6zrpJrucY0wHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NzI0MTk0NzYwMjk0NS8wLzM0MzMyZTMyMzIz OTJlMzQzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzMzMTMyMzczNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivlMDANBgkqhkiG9w0BAQsFAAOCAQEARZwcM1ZM0LnT3M6a+u+GDxr0 wuMrCxPwasXlkrPapHRBfJDIWj3QHY41QbHUUO2TzayEOZnFAk8rjAPbSrtOOtnv QQuP/lo0J955YztLag7io/XiU7x+OY3bKcpvDG8NA2P18+kNRoe5TBGZGq42eQfR LOFk8WVKr4xVtR+vPgYkmKPc6e/vSZZi1cUk7fnK3fbLRV3pcWfnlSLfIs9OLAP6 VbDV8FA7YSS8ffSYBCI8RBYeP1EKumR5lUETtia/uS1zaa8W0UgKgl0ZPRpP13TF dkQFqxlTAYjMC3tr/pgPDMNCNeA0d+20pPqqMyRdHXH1RoQXPU6KhdBKMUvzJw== -----END CERTIFICATE-----Generated at Fri Apr 17 17:20:04 2026 by rpki-client