$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230322e302f32332d3233203d3e203536303436.roa File: 34332e3234382e3230322e302f32332d3233203d3e203536303436.roa (raw, json) Hash identifier: JKdAUgTqAdgj9/P+37WnMrH3FHGHojPRmfpDCYKpHWI= Subject key identifier: A7:88:A7:15:F0:9E:26:10:C8:ED:00:6A:52:B0:16:66:6C:94:5A:6F Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 1CB22D80B017BACB0F0A477FC272EAF57A1FF5CE Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230322e302f32332d3233203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:39:54 +0000 ROA not before: Tue 14 Apr 2026 07:34:54 +0000 ROA not after: Tue 13 Apr 2027 07:39:54 +0000 asID: 56046 IP address blocks: 43.248.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b2:2d:80:b0:17:ba:cb:0f:0a:47:7f:c2:72:ea:f5:7a:1f:f5:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:34:54 2026 GMT Not After : Apr 13 07:39:54 2027 GMT Subject: CN=A788A715F09E2610C8ED006A52B016666C945A6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:be:24:78:00:5b:91:94:33:52:1e:4c:00:b4: 86:5f:67:97:79:54:f4:08:34:22:15:ec:51:48:49: fb:94:65:8b:1e:5f:80:46:b7:e0:fd:35:40:10:0a: a0:78:c2:c5:2e:9f:09:00:c8:ff:89:6d:c2:04:f0: 83:9c:71:df:64:ca:fb:37:65:9f:e9:9d:73:0b:eb: 89:62:91:f7:35:92:9e:a9:eb:d5:65:ad:af:ee:66: 48:15:6d:6e:ea:2d:70:78:cb:9c:04:7d:4b:1b:1f: d9:60:f3:20:a2:61:c1:72:b9:97:3d:de:76:50:72: e3:d0:1d:83:e6:db:a7:ad:92:e2:6a:8e:8e:8c:1f: 91:1d:43:c1:0d:b7:e4:bb:71:43:03:12:a6:a4:42: 8f:2e:b9:bf:66:28:66:8c:40:2a:f4:48:66:f5:a8: 8e:df:54:e4:04:37:49:37:a6:b1:a9:3a:79:44:8b: 84:e3:b6:51:18:81:d8:df:40:96:de:bb:6b:00:fa: 28:1a:bf:47:10:25:04:84:ca:f2:b4:3c:9f:02:a3: 59:55:d8:3b:0d:ae:35:41:42:90:f1:1c:11:ee:e9: c2:d7:2f:c6:a2:a6:1c:6d:75:3e:fd:af:87:f8:22: 7a:1a:d7:58:bd:5b:eb:8d:db:7c:ed:53:af:48:12: a6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:88:A7:15:F0:9E:26:10:C8:ED:00:6A:52:B0:16:66:6C:94:5A:6F X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230322e302f32332d3233203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.202.0/23 Signature Algorithm: sha256WithRSAEncryption 16:85:59:f8:ba:7d:30:1f:9c:c5:44:fd:05:ab:a6:eb:39:eb: 14:71:76:14:cd:62:b1:55:4a:c7:de:c4:ad:a9:85:ed:38:18: ac:48:ae:94:11:92:2c:57:bd:9c:25:35:99:8d:0c:b0:01:1c: 82:c7:8f:f7:96:d0:b0:45:d8:03:b2:6e:ab:bc:cc:f8:c8:1e: 86:85:3f:27:38:f4:76:2f:76:dc:12:31:b0:b4:21:74:70:ae: 1c:9b:c0:6e:02:dc:91:c2:d7:7f:75:d6:13:7c:fa:20:93:4f: 52:ec:f5:04:47:6b:a0:3b:ed:95:ce:93:a6:ff:dc:ff:d4:38: 17:02:dc:78:a8:3b:0a:18:aa:3a:ce:95:e1:e9:18:c6:79:1a: 44:01:cb:75:fc:2c:c0:b7:9b:f5:5a:10:68:9e:21:2d:8f:93: 50:f2:5c:e5:66:92:30:9d:4d:d5:2c:58:3b:24:80:44:82:ed: bc:28:df:9a:59:69:00:8c:cd:47:a3:29:6a:a0:12:f6:38:17: e5:15:39:11:3d:b6:9b:dd:29:da:79:45:be:8f:d0:a0:66:24: a8:ac:8f:c0:96:92:8c:d4:68:8b:6c:b5:03:7a:e6:c6:b0:31: 33:ff:92:6e:93:0e:d6:ba:2b:b3:16:c0:d5:ff:3e:42:84:cc: 42:74:3d:c2 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUHLItgLAXussPCkd/wnLq9Xof9c4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzM0NTRaFw0yNzA0MTMwNzM5NTRaMDMxMTAvBgNV BAMTKEE3ODhBNzE1RjA5RTI2MTBDOEVEMDA2QTUyQjAxNjY2NkM5NDVBNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKviR4AFuRlDNSHkwAtIZfZ5d5 VPQINCIV7FFISfuUZYseX4BGt+D9NUAQCqB4wsUunwkAyP+JbcIE8IOccd9kyvs3 ZZ/pnXML64likfc1kp6p69Vlra/uZkgVbW7qLXB4y5wEfUsbH9lg8yCiYcFyuZc9 3nZQcuPQHYPm26etkuJqjo6MH5EdQ8ENt+S7cUMDEqakQo8uub9mKGaMQCr0SGb1 qI7fVOQEN0k3prGpOnlEi4TjtlEYgdjfQJbeu2sA+igav0cQJQSEyvK0PJ8Co1lV 2DsNrjVBQpDxHBHu6cLXL8aiphxtdT79r4f4Inoa11i9W+uN23ztU69IEqblAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUp4inFfCeJhDI7QBqUrAWZmyUWm8wHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDc4NTc5NS8wLzM0MzMyZTMyMzQz ODJlMzIzMDMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASv4yjANBgkqhkiG9w0BAQsFAAOCAQEAFoVZ+Lp9MB+cxUT9Baum6znr FHF2FM1isVVKx97EramF7TgYrEiulBGSLFe9nCU1mY0MsAEcgseP95bQsEXYA7Ju q7zM+MgehoU/Jzj0di923BIxsLQhdHCuHJvAbgLckcLXf3XWE3z6IJNPUuz1BEdr oDvtlc6Tpv/c/9Q4FwLceKg7ChiqOs6V4ekYxnkaRAHLdfwswLeb9VoQaJ4hLY+T UPJc5WaSMJ1N1SxYOySARILtvCjfmllpAIzNR6MpaqAS9jgX5RU5ET22m90p2nlF vo/QoGYkqKyPwJaSjNRoi2y1A3rmxrAxM/+SbpMO1rorsxbA1f8+QoTMQnQ9wg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:25:33 2026 by rpki-client