$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e2034383337.roa File: 34332e3234302e302e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: yb6LNiPnBo1dkxkxZDKB0PrvMyK1I1e03+p5CJqUJNQ= Subject key identifier: 63:C8:CC:D4:F8:71:84:1E:BE:3C:35:8F:AF:F7:01:55:62:D0:AE:4A Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 7F632CB278021D037E68AE7F9B879EF9DBEA89AC Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e2034383337.roa Signing time: Fri 17 Apr 2026 01:39:19 +0000 ROA not before: Fri 17 Apr 2026 01:34:19 +0000 ROA not after: Fri 16 Apr 2027 01:39:19 +0000 asID: 4837 IP address blocks: 43.240.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:63:2c:b2:78:02:1d:03:7e:68:ae:7f:9b:87:9e:f9:db:ea:89:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 17 01:34:19 2026 GMT Not After : Apr 16 01:39:19 2027 GMT Subject: CN=63C8CCD4F871841EBE3C358FAFF7015562D0AE4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:93:e7:35:38:60:31:e3:01:d7:f7:22:d8:d3: 77:ea:d3:1a:c1:69:c8:bd:ef:93:8d:82:9d:1e:61: ec:0f:30:99:e3:a8:17:90:a8:44:64:61:45:6b:9d: 64:ce:ee:51:6b:b0:3d:0d:57:71:6a:b6:f7:63:ff: fe:c9:9a:66:a9:2e:1c:c2:45:05:ac:5b:cb:6a:19: 4f:1f:5c:28:ed:33:b1:92:bd:95:08:f5:3f:f4:cd: af:54:34:49:b9:33:01:b2:ce:e0:b9:0b:5b:a1:9f: 88:1a:11:ee:19:f1:2c:d1:35:2a:1f:cf:2f:97:c7: 41:34:17:38:f0:91:2a:fb:03:38:eb:19:2a:b1:88: 33:b8:58:85:bf:67:d6:4b:6a:21:0e:9c:91:17:ee: a7:20:c0:d6:99:7e:7a:35:6a:50:6a:4e:42:8e:e3: 60:15:76:11:51:9d:a3:37:3e:ff:42:67:21:78:97: 1e:2d:78:7a:7a:a4:b0:ea:d4:57:03:dc:c5:7c:92: 66:42:81:76:1e:bb:0d:85:28:54:7f:79:93:cd:84: d7:d9:d5:69:f1:ef:45:20:17:4b:6a:3a:ea:2f:59: c7:d1:f4:b3:dd:eb:41:bd:30:1b:17:d8:c6:44:80: 28:3a:97:ad:82:f5:ea:f1:d3:07:09:65:b3:ed:44: 84:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C8:CC:D4:F8:71:84:1E:BE:3C:35:8F:AF:F7:01:55:62:D0:AE:4A X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.0.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:62:63:a2:3a:8f:5a:a1:61:36:4d:15:95:7c:23:1d:06:0f: 89:fe:08:86:01:10:0f:16:34:a7:b3:97:8e:18:3f:17:d0:62: e8:e2:8a:1b:80:5f:3f:fd:11:45:75:82:5f:57:82:58:81:ff: 95:bc:0e:59:6e:02:87:d5:39:d4:12:e9:5c:08:ef:e2:ff:1a: 7b:f0:7d:7f:9a:42:43:d0:93:4a:b2:ba:dd:62:5e:4d:c0:85: f5:98:e0:6e:e2:09:4a:e1:b3:af:94:b3:6d:04:40:dc:96:28: a3:d2:12:1b:32:30:99:fb:77:65:1a:71:9c:43:ff:09:0c:f8: 66:39:ba:02:08:1f:b4:c6:92:76:78:62:5b:43:59:6d:ef:af: e5:f4:41:0f:d9:50:84:75:bd:27:df:30:4c:9a:d1:3e:4f:0d: 6a:5c:33:ca:0e:bb:63:34:19:3c:6e:d4:7c:61:f5:18:12:9a: 69:f0:02:8e:b8:29:3d:bd:db:1f:a5:0c:c3:19:cc:e2:92:bc: a9:b9:a2:53:06:90:be:4e:19:b0:d0:17:91:7b:66:10:4c:c3: 55:a1:5d:ce:e1:e0:da:15:df:df:c0:90:6f:e5:88:e2:74:21: c3:c9:e5:02:52:4d:ab:af:ae:15:d8:06:90:02:d3:50:93:fb: 61:cf:f8:8a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUf2MssngCHQN+aK5/m4ee+dvqiawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTcwMTM0MTlaFw0yNzA0MTYwMTM5MTlaMDMxMTAvBgNV BAMTKDYzQzhDQ0Q0Rjg3MTg0MUVCRTNDMzU4RkFGRjcwMTU1NjJEMEFFNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClk+c1OGAx4wHX9yLY03fq0xrB aci975ONgp0eYewPMJnjqBeQqERkYUVrnWTO7lFrsD0NV3Fqtvdj//7JmmapLhzC RQWsW8tqGU8fXCjtM7GSvZUI9T/0za9UNEm5MwGyzuC5C1uhn4gaEe4Z8SzRNSof zy+Xx0E0FzjwkSr7AzjrGSqxiDO4WIW/Z9ZLaiEOnJEX7qcgwNaZfno1alBqTkKO 42AVdhFRnaM3Pv9CZyF4lx4teHp6pLDq1FcD3MV8kmZCgXYeuw2FKFR/eZPNhNfZ 1Wnx70UgF0tqOuovWcfR9LPd60G9MBsX2MZEgCg6l62C9erx0wcJZbPtRIShAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUY8jM1PhxhB6+PDWPr/cBVWLQrkowHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMw MmUzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzgzMzM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC K/AAMA0GCSqGSIb3DQEBCwUAA4IBAQA7YmOiOo9aoWE2TRWVfCMdBg+J/giGARAP FjSns5eOGD8X0GLo4oobgF8//RFFdYJfV4JYgf+VvA5ZbgKH1TnUEulcCO/i/xp7 8H1/mkJD0JNKsrrdYl5NwIX1mOBu4glK4bOvlLNtBEDcliij0hIbMjCZ+3dlGnGc Q/8JDPhmOboCCB+0xpJ2eGJbQ1lt76/l9EEP2VCEdb0n3zBMmtE+Tw1qXDPKDrtj NBk8btR8YfUYEppp8AKOuCk9vdsfpQzDGczikrypuaJTBpC+Thmw0BeRe2YQTMNV oV3O4eDaFd/fwJBv5YjidCHDyeUCUk2rr64V2AaQAtNQk/thz/iK -----END CERTIFICATE-----Generated at Fri Apr 17 18:50:36 2026 by rpki-client