$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234312e34382e302f32322d3234203d3e2034383337.roa File: 34332e3234312e34382e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: 8K7e4uTmUy1h6Eo3cd2yjZE8Yt9jRiO+kEKcb2bHgVc= Subject key identifier: 47:53:8D:97:52:BC:81:5E:D5:31:36:75:0A:7B:53:32:F0:A5:55:A1 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 50F7535994539BB90DE994F96647809B68470C38 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234312e34382e302f32322d3234203d3e2034383337.roa Signing time: Fri 17 Apr 2026 01:38:15 +0000 ROA not before: Fri 17 Apr 2026 01:33:15 +0000 ROA not after: Fri 16 Apr 2027 01:38:15 +0000 asID: 4837 IP address blocks: 43.241.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:f7:53:59:94:53:9b:b9:0d:e9:94:f9:66:47:80:9b:68:47:0c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 17 01:33:15 2026 GMT Not After : Apr 16 01:38:15 2027 GMT Subject: CN=47538D9752BC815ED53136750A7B5332F0A555A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3d:17:3b:fc:b7:08:a2:fb:06:e0:37:56:5c: a6:08:9e:d0:ca:6f:27:26:61:c6:aa:72:71:71:72: 55:72:f4:4b:07:a0:74:9f:06:35:77:2d:37:56:45: 57:ca:96:fd:a3:a9:b2:cd:38:91:25:38:e5:94:01: ab:c7:00:36:92:87:7d:21:b1:33:04:f1:3f:6d:9c: 21:be:21:60:ca:9a:94:a6:42:7e:e8:bb:71:58:36: 4c:c0:0e:84:f5:e1:d5:93:f5:38:37:ac:1c:d0:95: b8:c3:65:7b:db:9a:f9:14:c9:08:9b:1e:f5:a0:5a: ca:1a:33:f4:34:ac:23:eb:9c:e2:86:b0:e8:3c:40: 53:52:7a:b6:71:15:f9:0a:14:c0:c4:cf:11:c7:e6: 1e:7b:cd:56:f8:dd:fd:21:b1:d4:ec:5a:a9:83:e8: 6e:40:cc:79:8c:69:a4:c2:ee:d5:26:15:b8:b9:01: 30:eb:ef:9f:e5:19:50:7d:74:f7:ec:96:37:8d:37: 7e:54:16:9c:84:dd:fd:8f:3e:d1:1b:47:b1:d7:eb: d5:f8:95:89:37:b7:fa:a1:31:bd:42:8a:5a:2e:22: 34:48:9e:6f:29:85:d5:8c:7c:28:e4:3d:94:a4:1e: 7f:59:7a:b9:9b:3c:b5:4c:1d:71:7f:3f:fe:00:a8: b5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:53:8D:97:52:BC:81:5E:D5:31:36:75:0A:7B:53:32:F0:A5:55:A1 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234312e34382e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.241.48.0/22 Signature Algorithm: sha256WithRSAEncryption 40:94:23:22:a8:e8:7a:f0:d0:a3:b1:34:ac:14:0a:43:ef:d0: 48:fc:7e:12:32:34:0c:ab:4a:09:02:39:e9:1d:67:64:5a:66: 55:f5:59:f9:26:fc:41:49:2b:15:9f:3b:50:9a:61:6e:82:17: 42:81:56:a0:1f:46:c2:d2:2b:8c:61:dc:87:e5:49:9d:3c:a7: ee:d7:db:aa:05:c4:b6:52:8a:f0:2d:b8:ff:e0:67:7c:b1:2d: 16:ac:97:22:9b:cc:25:9c:8c:7c:38:b4:3f:c0:e4:3c:4c:33: 1f:8a:79:d5:55:22:a8:02:1e:31:4c:90:93:b6:a6:d2:7a:b6: 32:bb:69:dd:a3:a0:39:63:99:15:1f:54:98:d5:ea:5a:e5:03: f8:92:b2:f5:a4:e4:9c:ec:6e:86:22:c4:93:07:5d:a8:c3:35: b0:c9:7f:83:30:5f:a9:ea:fe:c0:05:46:ab:7a:f1:e7:a8:a6: 56:6f:5c:88:10:59:69:81:57:98:5f:f0:52:db:ca:52:ca:58: 1f:dd:07:85:fe:28:cd:2e:3b:66:ee:c1:f7:95:4e:07:06:05: 41:12:b4:f6:61:c6:7f:2a:3d:8a:75:73:f2:7b:e5:37:34:fa: 57:ae:f4:64:db:8c:ae:21:11:3b:90:96:9f:f7:82:65:59:0b: 25:ea:0d:07 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUUPdTWZRTm7kN6ZT5ZkeAm2hHDDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTcwMTMzMTVaFw0yNzA0MTYwMTM4MTVaMDMxMTAvBgNV BAMTKDQ3NTM4RDk3NTJCQzgxNUVENTMxMzY3NTBBN0I1MzMyRjBBNTU1QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgPRc7/LcIovsG4DdWXKYIntDK bycmYcaqcnFxclVy9EsHoHSfBjV3LTdWRVfKlv2jqbLNOJElOOWUAavHADaSh30h sTME8T9tnCG+IWDKmpSmQn7ou3FYNkzADoT14dWT9Tg3rBzQlbjDZXvbmvkUyQib HvWgWsoaM/Q0rCPrnOKGsOg8QFNSerZxFfkKFMDEzxHH5h57zVb43f0hsdTsWqmD 6G5AzHmMaaTC7tUmFbi5ATDr75/lGVB9dPfsljeNN35UFpyE3f2PPtEbR7HX69X4 lYk3t/qhMb1CilouIjRInm8phdWMfCjkPZSkHn9ZermbPLVMHXF/P/4AqLWHAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUR1ONl1K8gV7VMTZ1CntTMvClVaEwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDMx MmUzNDM4MmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr8TAwDQYJKoZIhvcNAQELBQADggEBAECUIyKo6Hrw0KOxNKwUCkPv0Ej8fhIy NAyrSgkCOekdZ2RaZlX1Wfkm/EFJKxWfO1CaYW6CF0KBVqAfRsLSK4xh3IflSZ08 p+7X26oFxLZSivAtuP/gZ3yxLRaslyKbzCWcjHw4tD/A5DxMMx+KedVVIqgCHjFM kJO2ptJ6tjK7ad2joDljmRUfVJjV6lrlA/iSsvWk5JzsboYixJMHXajDNbDJf4Mw X6nq/sAFRqt68eeoplZvXIgQWWmBV5hf8FLbylLKWB/dB4X+KM0uO2buwfeVTgcG BUEStPZhxn8qPYp1c/J75Tc0+leu9GTbjK4hETuQlp/3gmVZCyXqDQc= -----END CERTIFICATE-----Generated at Fri Apr 17 18:23:07 2026 by rpki-client