$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3139322e302f32302d3230203d3e203536303436.roa File: 34332e3234382e3139322e302f32302d3230203d3e203536303436.roa (raw, json) Hash identifier: Q4CjG7GPt1pGJWWaWTTuwSqKQBLYRQ04zw/rFu6Gzig= Subject key identifier: A7:C5:1A:B1:D7:90:7B:C7:A9:91:F4:F1:9D:21:4A:69:A2:42:0F:ED Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 4ED19BD8473F3F93B5AB28A331AAC263B26362D4 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3139322e302f32302d3230203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:39:54 +0000 ROA not before: Tue 14 Apr 2026 07:34:54 +0000 ROA not after: Tue 13 Apr 2027 07:39:54 +0000 asID: 56046 IP address blocks: 43.248.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 15:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d1:9b:d8:47:3f:3f:93:b5:ab:28:a3:31:aa:c2:63:b2:63:62:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:34:54 2026 GMT Not After : Apr 13 07:39:54 2027 GMT Subject: CN=A7C51AB1D7907BC7A991F4F19D214A69A2420FED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0c:85:4c:c5:a0:d0:5b:3b:18:3d:5c:ce:6a: 2c:c3:9c:c5:bb:8e:20:0d:b1:ee:f4:f9:ae:6d:ec: 64:78:db:0b:ae:ee:f1:65:ff:95:22:0f:88:ba:8b: 96:4b:6a:4f:3e:13:93:fb:aa:5c:b5:a2:8d:6e:17: 68:bc:94:01:0a:bf:b5:61:71:27:41:ce:1a:08:81: 1e:ff:7f:70:c7:e1:e7:aa:1c:7f:f1:c6:9c:4e:df: 7b:84:89:22:d6:ae:a2:27:92:71:95:e5:35:21:b3: de:98:0e:76:f0:1d:6d:e4:7d:c6:48:81:41:ac:3a: 62:6e:8a:b3:6f:97:60:29:45:46:e9:d7:5d:c1:80: 63:41:d3:6e:ed:e5:80:36:64:62:d6:d9:fa:8e:e5: e9:45:a2:67:7a:ec:6e:0f:b3:20:44:80:e7:3b:2d: 75:1e:5d:42:64:ce:e9:fb:12:b8:fd:23:85:8d:80: 7d:7f:2b:9d:62:d0:c9:1d:6e:58:c9:98:fb:62:1c: 17:95:f1:df:95:49:80:b8:86:08:95:83:6e:ad:ef: 67:b4:b0:78:b5:bb:00:49:b8:a4:70:55:9a:c7:0e: b5:93:5f:f2:f8:02:bf:e0:1b:9f:a9:3b:50:8b:79: df:db:cc:9e:b2:08:51:27:2e:32:f5:ea:24:fc:20: 38:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C5:1A:B1:D7:90:7B:C7:A9:91:F4:F1:9D:21:4A:69:A2:42:0F:ED X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3139322e302f32302d3230203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.192.0/20 Signature Algorithm: sha256WithRSAEncryption b7:a3:77:83:c5:54:9c:a2:5a:17:fd:3b:61:d1:84:62:bc:ce: eb:0b:3b:c9:32:8f:fd:72:58:c0:0a:a3:54:14:ee:0f:2f:67: 5b:a8:e8:af:07:55:35:4f:5c:5b:98:45:54:80:5a:37:30:d3: c5:46:45:e2:9d:8a:28:ed:c8:42:fb:8f:2c:6f:d6:bf:ec:9a: c5:9a:7e:f2:41:64:ed:a6:70:7f:72:0f:10:74:77:3c:03:a5: f1:30:46:5b:66:40:dd:fa:1f:16:94:a1:81:30:64:72:af:ed: c9:18:1f:af:a8:bb:8d:c5:3b:b2:ff:c9:43:55:64:48:a0:14: b9:f9:8e:f9:69:a9:5e:bd:f9:82:40:77:8f:fc:83:47:a6:27: 00:bc:14:90:1e:5c:10:64:41:01:51:fc:1b:bd:cb:42:92:21: fa:88:44:1c:5d:e5:cd:31:cf:b6:72:f5:93:39:99:ba:7d:97: 5a:55:57:04:b5:3c:02:ac:ef:1d:a3:e0:d0:41:1b:2c:0c:e4: 87:59:eb:f7:95:2e:46:da:10:6d:f8:d1:fa:49:6c:28:f3:76: c5:fe:65:ca:3f:8b:63:1e:52:46:98:94:7d:b8:82:d5:8b:1d: 32:1c:48:cd:6b:68:d8:45:36:e3:ed:59:de:a4:b4:c0:d7:ca: ec:c9:44:02 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUTtGb2Ec/P5O1qyijMarCY7JjYtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzM0NTRaFw0yNzA0MTMwNzM5NTRaMDMxMTAvBgNV BAMTKEE3QzUxQUIxRDc5MDdCQzdBOTkxRjRGMTlEMjE0QTY5QTI0MjBGRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYDIVMxaDQWzsYPVzOaizDnMW7 jiANse70+a5t7GR42wuu7vFl/5UiD4i6i5ZLak8+E5P7qly1oo1uF2i8lAEKv7Vh cSdBzhoIgR7/f3DH4eeqHH/xxpxO33uEiSLWrqInknGV5TUhs96YDnbwHW3kfcZI gUGsOmJuirNvl2ApRUbp113BgGNB027t5YA2ZGLW2fqO5elFomd67G4PsyBEgOc7 LXUeXUJkzun7Erj9I4WNgH1/K51i0MkdbljJmPtiHBeV8d+VSYC4hgiVg26t72e0 sHi1uwBJuKRwVZrHDrWTX/L4Ar/gG5+pO1CLed/bzJ6yCFEnLjL16iT8IDjtAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUp8UasdeQe8epkfTxnSFKaaJCD+0wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDc4NTc5NS8wLzM0MzMyZTMyMzQz ODJlMzEzOTMyMmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBCv4wDANBgkqhkiG9w0BAQsFAAOCAQEAt6N3g8VUnKJaF/07YdGEYrzO 6ws7yTKP/XJYwAqjVBTuDy9nW6jorwdVNU9cW5hFVIBaNzDTxUZF4p2KKO3IQvuP LG/Wv+yaxZp+8kFk7aZwf3IPEHR3PAOl8TBGW2ZA3fofFpShgTBkcq/tyRgfr6i7 jcU7sv/JQ1VkSKAUufmO+WmpXr35gkB3j/yDR6YnALwUkB5cEGRBAVH8G73LQpIh +ohEHF3lzTHPtnL1kzmZun2XWlVXBLU8AqzvHaPg0EEbLAzkh1nr95UuRtoQbfjR +klsKPN2xf5lyj+LYx5SRpiUfbiC1YsdMhxIzWto2EU24+1Z3qS0wNfK7MlEAg== -----END CERTIFICATE-----Generated at Fri Apr 17 01:49:19 2026 by rpki-client