$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203133333738.roa File: 34332e3234302e302e302f32322d3234203d3e203133333738.roa (raw, json) Hash identifier: 7q9hwTg2yrh0oPgRDOX8Z6KAgupqjyOgiYJ+dmy6rNY= Subject key identifier: D0:AB:A3:83:DD:6A:4C:83:F9:E2:86:09:A9:AF:C5:E8:99:C1:50:3C Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 3C21CFC3DF72DB61C5A9C0A6C176A307764CA3BA Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203133333738.roa Signing time: Fri 17 Apr 2026 01:39:19 +0000 ROA not before: Fri 17 Apr 2026 01:34:19 +0000 ROA not after: Fri 16 Apr 2027 01:39:19 +0000 asID: 13378 IP address blocks: 43.240.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:21:cf:c3:df:72:db:61:c5:a9:c0:a6:c1:76:a3:07:76:4c:a3:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 17 01:34:19 2026 GMT Not After : Apr 16 01:39:19 2027 GMT Subject: CN=D0ABA383DD6A4C83F9E28609A9AFC5E899C1503C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:02:d1:0f:0f:be:df:53:93:42:13:65:f9:cc: f5:cc:d1:93:59:69:1f:a0:52:5b:da:0c:0e:e0:db: e0:38:da:42:00:95:75:c6:dc:69:69:db:02:d3:e9: 14:b5:43:07:da:79:55:71:be:db:0f:b2:eb:d5:75: cb:ed:a3:53:35:cb:42:bc:b6:10:6f:40:65:bb:3e: 70:66:fe:d0:fa:07:7e:d0:40:c5:43:bc:14:17:b5: 3b:10:98:54:cb:d9:26:df:16:f0:1e:50:2f:4f:3f: 95:c9:70:0b:e8:00:cf:91:27:37:b3:37:54:f6:54: 0f:c9:1c:4e:45:2e:ef:34:af:37:ed:7b:81:95:a2: 97:40:86:8c:39:2a:85:22:42:5f:9f:31:73:f7:5a: 46:dd:f6:87:35:12:58:ec:50:f4:5b:c0:7e:66:33: 5d:d4:21:24:4b:0b:a2:70:d6:fe:d1:7c:87:c9:5a: 93:65:4f:c7:ff:2c:3c:dd:3d:8b:f2:9e:f9:d0:eb: 6d:32:9d:db:4a:70:81:9a:b2:5f:ac:8a:6e:98:fc: 36:dd:33:ba:13:5c:0c:74:cf:f2:81:63:18:34:0f: f0:b7:8d:2d:6a:27:bb:29:7b:c8:83:2e:8d:ac:df: 1d:bd:a2:49:29:27:9a:ca:c3:02:e4:d9:44:b7:ed: c3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:AB:A3:83:DD:6A:4C:83:F9:E2:86:09:A9:AF:C5:E8:99:C1:50:3C X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203133333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.0.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:80:2d:20:c1:11:ac:d5:69:a2:74:2b:6f:85:9e:a6:c4:6c: ab:5b:74:ee:c1:06:8b:b6:79:6e:53:76:0f:32:07:4f:c7:3b: 52:82:e4:dc:3b:50:31:75:84:a5:75:12:ee:ef:4a:90:a7:1e: 5e:81:02:29:df:7a:7e:22:a5:b5:1e:90:5e:e6:97:ed:59:b4: fa:25:26:64:17:26:6f:60:c0:33:13:fb:43:8b:c8:b2:b4:a0: da:af:4b:26:91:58:bc:00:30:3b:ef:17:03:39:4a:d1:7b:eb: af:35:24:c7:27:e0:4e:e3:ae:5e:b7:f1:d8:4e:75:0f:ed:e1: 3b:69:8a:47:ef:7d:8c:b3:85:26:6c:2c:77:46:fa:74:2f:49: c1:82:2b:00:41:57:a6:8e:66:61:63:48:77:2a:d6:16:28:da: d4:02:ae:77:4c:9d:2b:35:e8:55:7b:53:72:e2:dd:f5:bf:20: 9c:d6:7e:51:a7:a0:7e:af:85:c3:87:be:6a:4d:b5:27:cd:95: d5:17:03:c0:9b:60:3d:b2:45:85:5a:fe:7b:af:15:97:ee:dc: 29:b2:d2:0f:ae:15:67:0d:ac:43:0b:7f:ef:80:35:f3:9a:0c: fe:e7:c7:2a:7d:1e:42:3d:a0:b9:38:1b:cc:55:95:e8:68:b3: fd:e3:83:95 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUPCHPw99y22HFqcCmwXajB3ZMo7owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTcwMTM0MTlaFw0yNzA0MTYwMTM5MTlaMDMxMTAvBgNV BAMTKEQwQUJBMzgzREQ2QTRDODNGOUUyODYwOUE5QUZDNUU4OTlDMTUwM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8AtEPD77fU5NCE2X5zPXM0ZNZ aR+gUlvaDA7g2+A42kIAlXXG3Glp2wLT6RS1QwfaeVVxvtsPsuvVdcvto1M1y0K8 thBvQGW7PnBm/tD6B37QQMVDvBQXtTsQmFTL2SbfFvAeUC9PP5XJcAvoAM+RJzez N1T2VA/JHE5FLu80rzfte4GVopdAhow5KoUiQl+fMXP3Wkbd9oc1EljsUPRbwH5m M13UISRLC6Jw1v7RfIfJWpNlT8f/LDzdPYvynvnQ620yndtKcIGasl+sim6Y/Dbd M7oTXAx0z/KBYxg0D/C3jS1qJ7spe8iDLo2s3x29okkpJ5rKwwLk2US37cPXAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU0Kujg91qTIP54oYJqa/F6JnBUDwwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMw MmUzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzMzMzM3Mzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr8AAwDQYJKoZIhvcNAQELBQADggEBADuALSDBEazVaaJ0K2+FnqbEbKtbdO7B Bou2eW5Tdg8yB0/HO1KC5Nw7UDF1hKV1Eu7vSpCnHl6BAinfen4ipbUekF7ml+1Z tPolJmQXJm9gwDMT+0OLyLK0oNqvSyaRWLwAMDvvFwM5StF76681JMcn4E7jrl63 8dhOdQ/t4TtpikfvfYyzhSZsLHdG+nQvScGCKwBBV6aOZmFjSHcq1hYo2tQCrndM nSs16FV7U3Li3fW/IJzWflGnoH6vhcOHvmpNtSfNldUXA8CbYD2yRYVa/nuvFZfu 3Cmy0g+uFWcNrEMLf++ANfOaDP7nxyp9HkI9oLk4G8xVlehos/3jg5U= -----END CERTIFICATE-----Generated at Sat Apr 18 01:01:02 2026 by rpki-client