$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3232362e39362e302f32302d3230203d3e2030.roa File: 34332e3232362e39362e302f32302d3230203d3e2030.roa (raw, json) Hash identifier: ojhpDhL/bHxMqdTpdzP19jiOvUzXfxv3j51bPG/1Tq8= Subject key identifier: E0:B3:C2:75:B6:80:4B:EE:62:B0:AE:AE:F2:E0:83:9A:24:7D:88:7D Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 560CB0C62D93D3752829CCC371F0169B9E03AB02 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3232362e39362e302f32302d3230203d3e2030.roa Signing time: Tue 14 Apr 2026 07:10:33 +0000 ROA not before: Tue 14 Apr 2026 07:05:33 +0000 ROA not after: Tue 13 Apr 2027 07:10:33 +0000 asID: 0 IP address blocks: 43.226.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 15:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:0c:b0:c6:2d:93:d3:75:28:29:cc:c3:71:f0:16:9b:9e:03:ab:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:05:33 2026 GMT Not After : Apr 13 07:10:33 2027 GMT Subject: CN=E0B3C275B6804BEE62B0AEAEF2E0839A247D887D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:77:5a:e8:46:2d:2e:d5:cf:14:46:98:17:86: 61:59:91:71:e1:7c:cf:9d:52:81:6e:ee:43:57:8b: b9:f1:54:c7:65:b2:ce:4b:cc:97:dc:95:dc:34:3e: 91:c6:40:d0:13:7e:a9:31:48:1b:2f:96:a1:aa:d9: 98:d7:3e:e3:ef:1c:f6:31:e2:68:2b:c5:c5:c5:51: 68:d6:13:58:6d:b4:5f:dc:7a:20:73:41:a1:c6:d7: 9b:af:65:9c:8b:e5:f8:23:6d:80:d0:ef:6a:3a:c4: b7:97:af:93:57:fd:34:b6:db:7f:4b:ce:b3:23:1e: 33:93:de:e4:cc:0a:cd:07:09:e7:72:f2:a6:91:2e: f7:1f:f4:a9:eb:3a:05:d0:ae:b5:e8:39:a1:7f:22: 05:47:23:22:5e:9b:e5:01:d0:5b:af:41:de:64:75: 9d:2d:59:7f:2e:42:fc:b8:f4:b6:2c:19:36:2f:a6: 30:7d:00:ba:dc:57:a0:d8:f6:9a:a6:82:48:b5:68: 4e:fe:a3:97:30:a8:79:f1:d8:29:7e:d1:5b:37:68: 22:6d:d1:3a:03:13:03:77:d9:2e:e0:a3:a2:7d:7e: 90:bb:6b:e6:d3:7e:aa:0f:da:32:3f:80:91:fe:7e: 75:c5:00:53:94:a4:bf:d2:f9:08:ba:7b:08:d2:91: b2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B3:C2:75:B6:80:4B:EE:62:B0:AE:AE:F2:E0:83:9A:24:7D:88:7D X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3232362e39362e302f32302d3230203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.96.0/20 Signature Algorithm: sha256WithRSAEncryption 66:34:76:9c:86:0c:b5:30:43:57:c2:62:f9:87:fe:0e:38:e1: a4:c0:eb:ae:31:b9:05:b7:9f:73:36:4a:81:c8:0b:e6:81:22: 00:48:e7:f9:bd:8c:24:b3:b8:00:87:c5:18:6a:10:4a:8c:27: 23:c8:5e:d6:9e:db:9d:a9:92:8e:80:48:c9:b6:bd:56:9d:1d: 7c:9b:45:bb:9d:34:e5:10:88:5b:f6:be:82:ad:15:6a:dd:ed: ed:69:f1:5d:56:1d:9d:72:16:04:66:a7:4a:55:52:ad:f9:e4: d9:48:11:02:6e:23:ba:b9:a8:89:c1:f0:65:75:ce:d5:bb:96: 79:e7:75:fb:2b:8d:4a:03:ce:b7:7f:90:8f:3c:8c:f3:5d:45: 2b:dc:40:c5:97:78:0f:43:ab:b2:66:67:07:1e:4b:61:c2:ff: 7e:55:09:d3:7c:37:fe:71:de:55:52:f4:57:0d:d2:20:67:8e: c8:91:a6:d1:6e:7c:41:a9:cc:35:c5:ac:17:46:ad:37:e2:86: 5a:d2:fa:6a:34:64:89:e8:97:96:18:78:be:15:dc:b7:94:28: a8:e0:a7:7d:96:8b:3c:e4:c7:db:2b:9f:e2:19:3b:36:e4:23: 6e:6b:a5:fc:0c:3c:b8:74:37:67:98:8d:7c:b3:65:11:08:65: e4:0c:71:de -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUVgywxi2T03UoKczDcfAWm54DqwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzA1MzNaFw0yNzA0MTMwNzEwMzNaMDMxMTAvBgNV BAMTKEUwQjNDMjc1QjY4MDRCRUU2MkIwQUVBRUYyRTA4MzlBMjQ3RDg4N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgd1roRi0u1c8URpgXhmFZkXHh fM+dUoFu7kNXi7nxVMdlss5LzJfcldw0PpHGQNATfqkxSBsvlqGq2ZjXPuPvHPYx 4mgrxcXFUWjWE1httF/ceiBzQaHG15uvZZyL5fgjbYDQ72o6xLeXr5NX/TS2239L zrMjHjOT3uTMCs0HCedy8qaRLvcf9KnrOgXQrrXoOaF/IgVHIyJem+UB0FuvQd5k dZ0tWX8uQvy49LYsGTYvpjB9ALrcV6DY9pqmgki1aE7+o5cwqHnx2Cl+0Vs3aCJt 0ToDEwN32S7go6J9fpC7a+bTfqoP2jI/gJH+fnXFAFOUpL/S+Qi6ewjSkbLxAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQU4LPCdbaAS+5isK6u8uCDmiR9iH0wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzMjM2 MmUzOTM2MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQr4mAw DQYJKoZIhvcNAQELBQADggEBAGY0dpyGDLUwQ1fCYvmH/g444aTA664xuQW3n3M2 SoHIC+aBIgBI5/m9jCSzuACHxRhqEEqMJyPIXtae252pko6ASMm2vVadHXybRbud NOUQiFv2voKtFWrd7e1p8V1WHZ1yFgRmp0pVUq355NlIEQJuI7q5qInB8GV1ztW7 lnnndfsrjUoDzrd/kI88jPNdRSvcQMWXeA9Dq7JmZwceS2HC/35VCdN8N/5x3lVS 9FcN0iBnjsiRptFufEGpzDXFrBdGrTfihlrS+mo0ZInol5YYeL4V3LeUKKjgp32W izzkx9srn+IZOzbkI25rpfwMPLh0N2eYjXyzZREIZeQMcd4= -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:41 2026 by rpki-client