$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203633353637.roa File: 34332e3234302e302e302f32322d3234203d3e203633353637.roa (raw, json) Hash identifier: TabOyIABI/2dTLvVkjLrQB6usXEum0PeCPon5XCsnsk= Subject key identifier: 64:12:6F:38:67:B8:A6:2D:0C:11:A9:31:D9:EF:A9:16:91:C6:E7:70 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 28303A88E77C34B8C0EC0840E4643BDB0729E770 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203633353637.roa Signing time: Fri 17 Apr 2026 01:39:19 +0000 ROA not before: Fri 17 Apr 2026 01:34:19 +0000 ROA not after: Fri 16 Apr 2027 01:39:19 +0000 asID: 63567 IP address blocks: 43.240.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:30:3a:88:e7:7c:34:b8:c0:ec:08:40:e4:64:3b:db:07:29:e7:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 17 01:34:19 2026 GMT Not After : Apr 16 01:39:19 2027 GMT Subject: CN=64126F3867B8A62D0C11A931D9EFA91691C6E770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6c:66:1d:b7:2f:1b:bb:c5:86:49:e3:06:94: 95:fe:73:ea:c5:3f:e6:3d:19:55:c3:21:3e:6d:51: a0:6b:a1:24:90:e5:70:4e:2b:e6:94:a6:63:e6:e7: c1:96:1f:96:fe:68:88:ba:cd:75:59:f9:20:08:51: ae:ec:c3:90:9c:e2:b3:33:43:79:5e:ae:e8:ea:80: dd:22:ae:c2:57:21:20:73:df:c1:5a:eb:dc:0b:fe: 30:7c:58:2d:82:09:82:11:d6:28:01:90:2b:66:e7: 6e:d9:4c:77:99:bf:af:9a:a1:bc:f2:eb:9b:7c:4f: e9:0e:f8:b8:9a:24:09:51:6a:da:f7:e5:fc:f9:8c: 3a:aa:3a:9a:68:24:64:19:e5:63:c2:e4:64:ed:47: 45:44:e6:65:4e:fa:56:e8:e1:6a:88:1b:89:46:af: 6b:c3:66:16:33:4d:93:91:e2:0b:66:03:7c:40:8b: c3:97:02:cc:5e:6d:04:a2:78:e9:7b:f2:f8:f7:1c: 8e:2e:87:4d:a7:87:92:0d:2a:f1:ba:1e:59:32:69: ae:1a:d9:96:6c:07:a2:e0:33:26:ba:bd:2d:45:73: d2:fd:6f:77:7f:09:dd:ab:b6:2d:2b:30:dd:86:d9: 85:d0:24:e6:c6:1d:18:ca:a5:78:cf:b0:5e:f7:51: 48:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:12:6F:38:67:B8:A6:2D:0C:11:A9:31:D9:EF:A9:16:91:C6:E7:70 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234302e302e302f32322d3234203d3e203633353637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.0.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:02:3a:61:94:20:cb:3d:24:4e:b4:74:85:6f:a4:3f:5c:c8: 7b:25:c0:f4:8c:61:c3:95:9e:a2:cc:b0:4a:20:67:f7:39:f0: c4:be:c1:b7:42:3a:39:7a:f5:6f:61:ad:32:05:98:e5:0b:a4: d3:65:e9:2a:97:70:ea:73:bb:e7:c2:bc:42:24:86:18:43:2c: b9:ec:46:b5:56:28:ce:b7:b5:21:1a:27:21:96:b8:f4:8a:ce: 5f:c0:84:21:87:26:2f:46:40:d9:00:3a:37:49:94:df:7a:6b: 94:a0:12:f9:fa:af:94:16:59:6d:b2:66:b2:6b:e0:2e:5a:61: 91:f8:ee:1e:1c:4e:de:c9:4a:64:06:2c:b2:56:35:37:dd:70: b6:eb:cd:48:db:e6:ea:76:65:3e:02:fb:7a:b5:52:e2:97:87: f1:c1:76:b9:de:fa:8d:d6:f6:f2:b3:fc:e1:3c:4c:34:a2:fa: c8:50:d0:a5:ba:8c:4e:c3:35:c5:25:ec:ff:96:56:e8:1d:9c: 35:05:ba:d7:8a:b5:01:bf:18:11:8a:46:ed:a7:bb:e2:25:c1: 4d:8a:91:2c:b4:35:2b:44:fa:ff:6b:d3:70:88:b4:aa:a8:6d: 95:22:6c:b0:a6:16:f7:1f:8e:7a:6c:84:2e:8c:29:d8:b2:ff: f4:01:a3:37 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUKDA6iOd8NLjA7AhA5GQ72wcp53AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTcwMTM0MTlaFw0yNzA0MTYwMTM5MTlaMDMxMTAvBgNV BAMTKDY0MTI2RjM4NjdCOEE2MkQwQzExQTkzMUQ5RUZBOTE2OTFDNkU3NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdbGYdty8bu8WGSeMGlJX+c+rF P+Y9GVXDIT5tUaBroSSQ5XBOK+aUpmPm58GWH5b+aIi6zXVZ+SAIUa7sw5Cc4rMz Q3lerujqgN0irsJXISBz38Fa69wL/jB8WC2CCYIR1igBkCtm527ZTHeZv6+aobzy 65t8T+kO+LiaJAlRatr35fz5jDqqOppoJGQZ5WPC5GTtR0VE5mVO+lbo4WqIG4lG r2vDZhYzTZOR4gtmA3xAi8OXAsxebQSieOl78vj3HI4uh02nh5INKvG6Hlkyaa4a 2ZZsB6LgMya6vS1Fc9L9b3d/Cd2rti0rMN2G2YXQJObGHRjKpXjPsF73UUhhAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUZBJvOGe4pi0MEakx2e+pFpHG53AwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMw MmUzMDJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM2MzMzNTM2Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr8AAwDQYJKoZIhvcNAQELBQADggEBAA8COmGUIMs9JE60dIVvpD9cyHslwPSM YcOVnqLMsEogZ/c58MS+wbdCOjl69W9hrTIFmOULpNNl6SqXcOpzu+fCvEIkhhhD LLnsRrVWKM63tSEaJyGWuPSKzl/AhCGHJi9GQNkAOjdJlN96a5SgEvn6r5QWWW2y ZrJr4C5aYZH47h4cTt7JSmQGLLJWNTfdcLbrzUjb5up2ZT4C+3q1UuKXh/HBdrne +o3W9vKz/OE8TDSi+shQ0KW6jE7DNcUl7P+WVugdnDUFuteKtQG/GBGKRu2nu+Il wU2KkSy0NStE+v9r03CItKqobZUibLCmFvcfjnpshC6MKdiy//QBozc= -----END CERTIFICATE-----Generated at Fri Apr 17 18:23:34 2026 by rpki-client