$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230302e302f32332d3233203d3e203536303436.roa File: 34332e3234382e3230302e302f32332d3233203d3e203536303436.roa (raw, json) Hash identifier: I4mVCYIZZSxI8AOSjR0J9wC8mIsUMI5/kNIXYAaJkow= Subject key identifier: 3D:49:50:84:C4:F0:14:41:D5:F4:B4:03:C9:2E:F3:94:AA:02:2D:7D Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 4ADDD91B82D980F88A16D82C2ED1A62E1191CC9A Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230302e302f32332d3233203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:39:55 +0000 ROA not before: Tue 14 Apr 2026 07:34:55 +0000 ROA not after: Tue 13 Apr 2027 07:39:55 +0000 asID: 56046 IP address blocks: 43.248.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:dd:d9:1b:82:d9:80:f8:8a:16:d8:2c:2e:d1:a6:2e:11:91:cc:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:34:55 2026 GMT Not After : Apr 13 07:39:55 2027 GMT Subject: CN=3D495084C4F01441D5F4B403C92EF394AA022D7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d4:ae:b9:6c:70:f3:df:c7:a3:56:a1:18:bb: 67:d7:e8:e6:7d:be:04:54:65:b9:fe:2f:84:0d:2c: e1:9a:7a:0e:b2:9d:fd:cf:bd:24:38:1c:4e:88:ec: d1:eb:96:67:86:bf:11:ac:7c:3d:97:95:1a:64:0b: 06:9b:45:2a:1d:80:45:19:21:59:8a:0e:08:85:e6: 3c:11:d9:f3:bf:88:f8:d8:7c:94:17:ae:fe:e4:f4: fc:e8:df:58:59:9c:5e:52:73:71:76:36:ec:83:17: 65:24:e9:3d:c8:fc:a4:48:ab:ca:6c:69:99:7e:02: 4d:ee:02:4a:9f:6c:69:a3:f8:35:4a:dd:a8:d6:52: 98:6e:6f:69:c6:0f:e4:72:3c:c7:e1:f9:1d:6a:38: c0:99:c4:3b:5d:d2:c9:a6:2d:23:03:65:b5:ec:11: 40:74:de:34:3d:0a:23:94:a6:51:19:ac:d4:28:bd: 88:ae:ed:f7:f6:10:2d:aa:35:8f:4f:2e:e6:12:bb: 74:54:9e:31:3d:e9:5e:3d:35:14:11:2f:c9:57:f3: 7d:8d:84:a0:7d:fd:7c:89:3d:48:d5:4e:bc:96:0f: 01:94:4b:6f:90:24:a7:49:9d:44:f4:7b:c5:c0:59: 55:7f:cd:08:69:be:07:44:b5:de:1b:e4:61:d8:ce: 46:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:49:50:84:C4:F0:14:41:D5:F4:B4:03:C9:2E:F3:94:AA:02:2D:7D X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230302e302f32332d3233203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.200.0/23 Signature Algorithm: sha256WithRSAEncryption 61:8a:d9:ef:4b:1c:95:48:e6:4f:43:af:f4:da:d3:11:d0:e3: ed:6b:cb:bb:03:71:d4:38:a9:05:87:32:77:30:f7:71:26:a9: 00:37:40:22:9c:3f:f5:58:58:2e:94:6c:71:c6:09:e5:fa:79: 89:75:2e:1a:4b:35:d9:cd:71:e0:0e:c5:ec:4b:eb:bd:e5:ae: d9:32:07:46:58:a7:7d:21:df:7d:23:65:1f:a1:b2:9d:2f:66: 54:b9:5c:64:84:09:89:87:6e:b3:9f:ca:61:85:ea:7c:5f:af: b2:85:c2:b3:90:d5:77:b1:36:c9:11:00:8f:c3:98:df:b2:23: d3:d1:23:ca:e0:e3:4b:2b:e5:b5:7c:0f:ce:85:28:60:94:fc: 3b:06:c0:73:53:7c:f8:cd:50:91:28:6c:96:27:c2:c7:04:2a: f6:8e:31:05:48:a0:2b:ca:9d:be:c6:b7:3d:43:ab:e2:c9:d2: d0:ab:39:c5:bf:d4:69:5f:bf:a2:9c:90:26:81:d9:c8:60:bf: 84:03:b0:b9:12:f2:b7:01:c1:69:7f:2b:1a:53:97:52:81:ab: 78:0e:74:57:7d:6c:4a:1b:6d:1f:7c:e8:8b:7f:32:e4:62:50: 66:96:7f:3b:12:e6:25:29:60:33:61:30:0d:53:27:89:58:ff: be:a5:b4:76 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUSt3ZG4LZgPiKFtgsLtGmLhGRzJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzM0NTVaFw0yNzA0MTMwNzM5NTVaMDMxMTAvBgNV BAMTKDNENDk1MDg0QzRGMDE0NDFENUY0QjQwM0M5MkVGMzk0QUEwMjJEN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs1K65bHDz38ejVqEYu2fX6OZ9 vgRUZbn+L4QNLOGaeg6ynf3PvSQ4HE6I7NHrlmeGvxGsfD2XlRpkCwabRSodgEUZ IVmKDgiF5jwR2fO/iPjYfJQXrv7k9Pzo31hZnF5Sc3F2NuyDF2Uk6T3I/KRIq8ps aZl+Ak3uAkqfbGmj+DVK3ajWUphub2nGD+RyPMfh+R1qOMCZxDtd0smmLSMDZbXs EUB03jQ9CiOUplEZrNQovYiu7ff2EC2qNY9PLuYSu3RUnjE96V49NRQRL8lX832N hKB9/XyJPUjVTryWDwGUS2+QJKdJnUT0e8XAWVV/zQhpvgdEtd4b5GHYzkaHAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUPUlQhMTwFEHV9LQDyS7zlKoCLX0wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDc4NTc5NS8wLzM0MzMyZTMyMzQz ODJlMzIzMDMwMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASv4yDANBgkqhkiG9w0BAQsFAAOCAQEAYYrZ70sclUjmT0Ov9NrTEdDj 7WvLuwNx1DipBYcydzD3cSapADdAIpw/9VhYLpRsccYJ5fp5iXUuGks12c1x4A7F 7EvrveWu2TIHRlinfSHffSNlH6GynS9mVLlcZIQJiYdus5/KYYXqfF+vsoXCs5DV d7E2yREAj8OY37Ij09EjyuDjSyvltXwPzoUoYJT8OwbAc1N8+M1QkShslifCxwQq 9o4xBUigK8qdvsa3PUOr4snS0Ks5xb/UaV+/opyQJoHZyGC/hAOwuRLytwHBaX8r GlOXUoGreA50V31sShttH3zoi38y5GJQZpZ/OxLmJSlgM2EwDVMniVj/vqW0dg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:37:31 2026 by rpki-client