$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230302e302f32322d3232203d3e203536303436.roa File: 34332e3234382e3230302e302f32322d3232203d3e203536303436.roa (raw, json) Hash identifier: cmK21zSNq3BcLosW2x3v8gjHFFGPf3UyXuqd7h7vG+E= Subject key identifier: 2F:C8:48:77:56:F8:3E:E0:82:63:0C:30:C8:D9:6C:1A:25:3E:32:C4 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 638AED9F331FFB4DB2EE7684E93038F17DC1CC94 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230302e302f32322d3232203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:39:55 +0000 ROA not before: Tue 14 Apr 2026 07:34:55 +0000 ROA not after: Tue 13 Apr 2027 07:39:55 +0000 asID: 56046 IP address blocks: 43.248.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:8a:ed:9f:33:1f:fb:4d:b2:ee:76:84:e9:30:38:f1:7d:c1:cc:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:34:55 2026 GMT Not After : Apr 13 07:39:55 2027 GMT Subject: CN=2FC8487756F83EE082630C30C8D96C1A253E32C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2e:0d:cc:6b:a0:3f:fe:d9:32:0a:9c:bd:ee: b9:2e:15:d6:1f:af:3d:84:44:78:e8:2f:0d:2d:d1: 97:c2:13:4e:44:c6:dd:40:56:89:42:42:22:1b:0b: 01:9b:75:1d:8d:67:b9:d6:b5:cd:9d:e7:45:ab:80: 29:a6:17:6a:67:52:c9:b9:01:62:66:1f:a7:cf:cc: 68:8a:2e:aa:59:d5:10:e6:c0:67:35:a1:87:00:08: 16:f6:b5:aa:b3:97:d8:19:25:74:b1:29:ef:f7:61: 17:68:ed:fd:7a:ba:63:6d:b2:f6:d1:e0:7e:39:30: 20:36:69:29:cc:e4:14:33:53:76:51:53:23:8a:6d: e8:23:18:4e:23:0d:b5:24:9f:fd:59:cd:8b:fe:c0: 06:e8:e9:26:b6:d5:1d:de:ff:e3:f0:eb:32:38:eb: 78:fc:a1:ca:8a:5b:83:14:6a:5a:8f:2e:8f:f7:95: 76:ec:75:69:3b:b4:c5:74:e6:f6:4a:c1:50:69:ef: df:3d:42:86:08:15:7a:ea:9a:71:a5:04:d8:68:e8: 5a:fc:fd:72:8a:a5:6a:22:15:df:e0:da:f2:de:82: 27:72:de:7a:c4:d5:e1:5c:1c:fa:f1:eb:45:15:8e: c9:59:01:a6:16:b8:72:5f:3e:f3:13:95:08:66:8b: a9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C8:48:77:56:F8:3E:E0:82:63:0C:30:C8:D9:6C:1A:25:3E:32:C4 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230302e302f32322d3232203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.200.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:aa:41:71:47:62:2b:8f:2d:aa:ae:10:bc:3f:9e:19:f3:f0: 35:82:1e:ab:b2:1e:00:e0:67:8b:b8:31:9b:f7:31:fd:66:aa: c3:c9:ef:f0:3c:48:cb:bf:4c:86:c5:04:16:a4:99:35:12:96: 2c:cc:75:ae:22:f1:7d:b6:ef:8c:f6:0f:74:3c:da:b5:94:dc: b2:c2:4d:22:06:15:1e:d0:87:d9:b4:43:53:b2:db:fe:39:2e: 41:23:0f:31:af:a2:6f:d3:a7:f4:4a:68:1f:4e:a8:5d:6d:4d: 36:d9:3e:87:13:0f:20:19:a2:f3:dc:cc:37:d1:70:e1:9a:82: c9:55:bb:86:00:b9:dd:5d:58:cf:ed:b7:d6:62:2c:da:67:2f: 85:fc:8d:30:e8:50:9a:b4:1b:14:56:7e:a7:9b:e4:fe:e5:f5: c2:e8:d5:89:62:4e:0d:0a:25:30:f6:9d:ae:47:11:c4:60:a4: dc:71:97:ec:0a:c0:5f:f9:8b:eb:0d:cf:38:90:b3:8d:b6:3f: ec:61:36:03:7f:b6:6b:a1:44:6a:bd:ba:63:24:d3:86:c4:68: 5c:e1:cd:fc:24:2b:38:ca:95:2a:1f:dd:2e:5a:49:df:e3:9d: bf:83:29:b0:1f:4b:ec:6b:90:c2:b9:6f:cf:a2:45:33:2a:8a: 9a:41:f5:09 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUY4rtnzMf+02y7naE6TA48X3BzJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzM0NTVaFw0yNzA0MTMwNzM5NTVaMDMxMTAvBgNV BAMTKDJGQzg0ODc3NTZGODNFRTA4MjYzMEMzMEM4RDk2QzFBMjUzRTMyQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzLg3Ma6A//tkyCpy97rkuFdYf rz2ERHjoLw0t0ZfCE05Ext1AVolCQiIbCwGbdR2NZ7nWtc2d50WrgCmmF2pnUsm5 AWJmH6fPzGiKLqpZ1RDmwGc1oYcACBb2taqzl9gZJXSxKe/3YRdo7f16umNtsvbR 4H45MCA2aSnM5BQzU3ZRUyOKbegjGE4jDbUkn/1ZzYv+wAbo6Sa21R3e/+Pw6zI4 63j8ocqKW4MUalqPLo/3lXbsdWk7tMV05vZKwVBp7989QoYIFXrqmnGlBNho6Fr8 /XKKpWoiFd/g2vLegidy3nrE1eFcHPrx60UVjslZAaYWuHJfPvMTlQhmi6mbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUL8hId1b4PuCCYwwwyNlsGiU+MsQwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDc4NTc5NS8wLzM0MzMyZTMyMzQz ODJlMzIzMDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv4yDANBgkqhkiG9w0BAQsFAAOCAQEAGqpBcUdiK48tqq4QvD+eGfPw NYIeq7IeAOBni7gxm/cx/Waqw8nv8DxIy79MhsUEFqSZNRKWLMx1riLxfbbvjPYP dDzatZTcssJNIgYVHtCH2bRDU7Lb/jkuQSMPMa+ib9On9EpoH06oXW1NNtk+hxMP IBmi89zMN9Fw4ZqCyVW7hgC53V1Yz+231mIs2mcvhfyNMOhQmrQbFFZ+p5vk/uX1 wujViWJODQolMPadrkcRxGCk3HGX7ArAX/mL6w3POJCzjbY/7GE2A3+2a6FEar26 YyTThsRoXOHN/CQrOMqVKh/dLlpJ3+Odv4MpsB9L7GuQwrlvz6JFMyqKmkH1CQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:24:26 2026 by rpki-client