$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234372e39322e302f32322d3232203d3e2030.roa File: 34332e3234372e39322e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: 4lB+sO5mWwd+/5vEhAuGeUsOHGlGW/cj3THbNsFai1k= Subject key identifier: 27:8E:09:8D:95:3C:39:9B:C9:2B:16:21:05:7F:48:07:6A:AF:69:EB Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 7140BA749B916D67E68CC7FF169ABBE3B58673A5 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234372e39322e302f32322d3232203d3e2030.roa Signing time: Tue 14 Apr 2026 07:10:33 +0000 ROA not before: Tue 14 Apr 2026 07:05:33 +0000 ROA not after: Tue 13 Apr 2027 07:10:33 +0000 asID: 0 IP address blocks: 43.247.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 15:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:40:ba:74:9b:91:6d:67:e6:8c:c7:ff:16:9a:bb:e3:b5:86:73:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:05:33 2026 GMT Not After : Apr 13 07:10:33 2027 GMT Subject: CN=278E098D953C399BC92B1621057F48076AAF69EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:21:95:96:e9:a5:15:07:6b:cc:57:db:fe:d6: 73:d1:1d:06:bf:06:cd:dc:4a:ad:3b:54:71:20:b4: 55:51:a1:e0:31:db:fd:94:54:6d:b0:d5:1f:67:bf: 22:da:98:97:ff:66:f3:7d:d6:dc:96:ec:fa:b4:14: cf:ed:91:05:c4:1b:f1:64:a4:f0:7c:d3:75:89:e9: 2a:7e:d4:9c:38:1f:24:d7:6c:14:fd:2e:61:09:ce: 6f:a9:cf:63:f4:34:67:d1:57:dc:55:e9:72:83:5b: 97:f0:07:56:71:30:b1:09:5f:fa:d8:c8:4a:cd:d0: 76:39:6a:63:57:b0:22:c1:9e:ba:8d:69:01:0c:82: 47:a2:16:a1:1e:7e:03:6f:7a:5a:ce:91:cb:7a:ca: 99:f2:cb:21:ae:20:82:38:7b:97:ed:b4:77:05:e6: 6c:f8:09:11:c4:86:6c:99:1b:79:e7:b9:dd:c8:d4: 47:39:0d:16:7e:64:93:9c:53:91:71:25:15:7e:80: c2:fd:7d:14:ae:a7:88:5d:4a:0b:fd:b7:3e:35:19: 17:1b:31:2b:19:49:4a:98:e3:05:23:a7:78:f3:47: 4e:40:9b:64:b1:89:f1:40:24:66:a8:0a:1b:20:9b: 68:01:02:ee:d9:86:79:72:3f:54:21:df:80:a2:a0: 0b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8E:09:8D:95:3C:39:9B:C9:2B:16:21:05:7F:48:07:6A:AF:69:EB X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234372e39322e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.92.0/22 Signature Algorithm: sha256WithRSAEncryption 52:70:79:74:48:24:9e:02:5d:ce:32:f4:55:64:a9:a1:bc:90: 6e:d9:e5:67:1d:af:c8:c6:a5:73:14:80:81:6e:25:0d:88:2d: 39:a4:52:52:6d:90:72:4a:e3:65:7d:6b:ad:e6:2d:ca:3b:7c: 2f:ee:d7:6b:84:7e:08:4a:db:12:00:df:06:44:1b:65:51:98: 8f:90:80:0d:1f:ee:79:c7:dd:b9:d9:ff:a3:60:5f:85:3f:70: 4d:6b:77:3e:19:cc:7e:7f:c4:a7:a0:17:92:bf:06:b8:fc:2c: cd:17:a4:e9:84:af:ba:8b:67:2c:6c:a4:8f:7d:f8:79:17:33: a3:ba:1a:6b:ba:6b:01:fd:f4:ba:9b:b4:13:d2:e8:50:92:ec: 6c:a2:de:2d:80:0b:cf:48:79:e8:aa:58:4d:c2:9c:78:2d:03: 45:ac:e1:f1:d8:46:e7:eb:ee:7e:78:2a:d4:ca:39:ce:c7:8a: 7f:2e:53:99:eb:c6:4f:cb:e2:54:0e:57:58:a7:28:cd:b2:e3: aa:01:b8:68:eb:e9:cd:14:94:0d:66:03:82:d1:1f:5a:1b:05: 1a:5f:da:07:da:15:3b:7f:31:93:ab:57:62:8c:88:b9:77:76: cd:9f:26:68:cb:83:44:d8:8a:ae:b4:8a:42:28:7a:f2:e9:5b: 70:68:09:5d -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUcUC6dJuRbWfmjMf/Fpq747WGc6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzA1MzNaFw0yNzA0MTMwNzEwMzNaMDMxMTAvBgNV BAMTKDI3OEUwOThEOTUzQzM5OUJDOTJCMTYyMTA1N0Y0ODA3NkFBRjY5RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPIZWW6aUVB2vMV9v+1nPRHQa/ Bs3cSq07VHEgtFVRoeAx2/2UVG2w1R9nvyLamJf/ZvN91tyW7Pq0FM/tkQXEG/Fk pPB803WJ6Sp+1Jw4HyTXbBT9LmEJzm+pz2P0NGfRV9xV6XKDW5fwB1ZxMLEJX/rY yErN0HY5amNXsCLBnrqNaQEMgkeiFqEefgNvelrOkct6ypnyyyGuIII4e5fttHcF 5mz4CRHEhmyZG3nnud3I1Ec5DRZ+ZJOcU5FxJRV+gML9fRSup4hdSgv9tz41GRcb MSsZSUqY4wUjp3jzR05Am2SxifFAJGaoChsgm2gBAu7ZhnlyP1Qh34CioAsPAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQUJ44JjZU8OZvJKxYhBX9IB2qvaeswHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzQzMzJlMzIzNDM3 MmUzOTMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr91ww DQYJKoZIhvcNAQELBQADggEBAFJweXRIJJ4CXc4y9FVkqaG8kG7Z5Wcdr8jGpXMU gIFuJQ2ILTmkUlJtkHJK42V9a63mLco7fC/u12uEfghK2xIA3wZEG2VRmI+QgA0f 7nnH3bnZ/6NgX4U/cE1rdz4ZzH5/xKegF5K/Brj8LM0XpOmEr7qLZyxspI99+HkX M6O6Gmu6awH99LqbtBPS6FCS7Gyi3i2AC89IeeiqWE3CnHgtA0Ws4fHYRufr7n54 KtTKOc7Hin8uU5nrxk/L4lQOV1inKM2y46oBuGjr6c0UlA1mA4LRH1obBRpf2gfa FTt/MZOrV2KMiLl3ds2fJmjLg0TYiq60ikIoevLpW3BoCV0= -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:28 2026 by rpki-client