$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230342e302f32322d3232203d3e203536303436.roa File: 34332e3234382e3230342e302f32322d3232203d3e203536303436.roa (raw, json) Hash identifier: hfLWE3pmBIPO4iePf4YysUC4G/rGVJVd/H0E8jMWJO4= Subject key identifier: A2:CB:E0:61:64:A2:9A:27:9D:F2:BF:28:5F:88:9B:66:B0:7B:5A:B3 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 3EE73D6D031A55E7EC31D32E06E50310BB5838F7 Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230342e302f32322d3232203d3e203536303436.roa Signing time: Tue 14 Apr 2026 07:41:14 +0000 ROA not before: Tue 14 Apr 2026 07:36:14 +0000 ROA not after: Tue 13 Apr 2027 07:41:14 +0000 asID: 56046 IP address blocks: 43.248.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e7:3d:6d:03:1a:55:e7:ec:31:d3:2e:06:e5:03:10:bb:58:38:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 14 07:36:14 2026 GMT Not After : Apr 13 07:41:14 2027 GMT Subject: CN=A2CBE06164A29A279DF2BF285F889B66B07B5AB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:34:46:00:bd:2f:b0:2e:6c:94:09:dd:45:d2: 1f:2d:24:6c:97:80:aa:a6:86:ee:6f:70:5f:e7:fd: a2:8c:20:9e:e4:77:5b:b6:b9:2d:25:1b:f0:a0:11: 1b:92:49:a6:7c:22:3a:e3:00:c4:77:a7:0e:db:11: 4d:c0:f4:5a:b8:5f:26:5a:01:95:5c:ef:d6:9e:f8: dc:6f:e1:8f:78:1e:ce:da:19:89:a8:e2:89:8f:77: a3:19:2f:cb:61:e9:54:21:a2:66:9c:65:a2:79:1c: fd:24:8c:79:d9:69:45:75:9a:8f:eb:f9:d1:03:95: 67:6d:51:41:a4:a2:0a:ff:84:34:e5:ad:8e:66:ce: 89:92:04:08:bc:f1:6f:2f:5a:25:b9:d8:72:af:90: 27:4b:20:3b:41:25:81:52:ed:71:07:db:31:5f:43: e4:dc:8f:16:9d:e6:93:e1:0b:15:8b:70:ca:a3:4e: 04:86:c4:37:0f:6a:e7:fc:88:ec:4a:f0:56:bd:3c: 56:a8:90:8f:66:f1:aa:90:51:91:3d:34:17:32:69: b7:d3:7a:63:64:e5:b6:c7:69:c8:f4:b6:40:4a:7d: 5d:95:22:81:40:fe:f7:d2:b8:18:c8:cb:a1:b7:90: 88:be:e6:3f:ac:4a:e5:4d:79:39:93:fc:ff:19:51: 16:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CB:E0:61:64:A2:9A:27:9D:F2:BF:28:5F:88:9B:66:B0:7B:5A:B3 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/34332e3234382e3230342e302f32322d3232203d3e203536303436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.248.204.0/22 Signature Algorithm: sha256WithRSAEncryption 95:9f:a6:0e:7d:2c:1f:28:64:88:ae:70:eb:bf:11:94:bf:a8: 6c:49:ae:37:8e:33:6a:9a:3c:fa:b2:ef:0f:73:76:1f:34:c5: c9:b1:72:67:83:d7:58:cf:e4:b7:38:d1:84:ab:7b:70:11:69: 90:8c:09:36:58:49:77:cb:7b:f5:6d:0b:aa:57:32:e5:a8:a8: a1:ed:7e:ef:6c:94:a1:ff:32:30:8b:5e:bb:fa:1e:6a:9a:3c: 79:14:3e:45:f8:8f:ba:cc:cb:79:0b:9d:3a:24:39:b1:4b:c9: 89:ab:8f:6e:2d:22:cb:19:d1:0c:4a:9b:8b:f5:c5:29:1d:a6: 31:43:74:b5:be:d0:dd:29:89:cd:cb:c9:8c:60:8f:f1:9c:c2: a3:17:77:a3:35:f4:d6:d9:02:7a:d1:10:15:a7:ec:46:de:df: 30:ff:16:1f:e3:03:7b:4f:ac:81:da:80:77:63:b1:f3:dc:85: 7e:c3:c2:2e:10:42:47:a8:a2:e4:d5:5e:80:32:93:5e:9c:6e: 49:84:dd:9e:dc:31:25:cd:84:9f:9a:5c:9e:b9:de:e1:ee:1a: 28:ad:e0:03:9d:b7:b0:fb:a6:c8:fe:22:b9:9d:25:e7:74:a5: b8:3d:85:d8:11:f3:aa:28:16:31:30:76:cb:10:80:3f:fc:0e: 13:5f:ca:f0 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPuc9bQMaVefsMdMuBuUDELtYOPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTQwNzM2MTRaFw0yNzA0MTMwNzQxMTRaMDMxMTAvBgNV BAMTKEEyQ0JFMDYxNjRBMjlBMjc5REYyQkYyODVGODg5QjY2QjA3QjVBQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdNEYAvS+wLmyUCd1F0h8tJGyX gKqmhu5vcF/n/aKMIJ7kd1u2uS0lG/CgERuSSaZ8IjrjAMR3pw7bEU3A9Fq4XyZa AZVc79ae+Nxv4Y94Hs7aGYmo4omPd6MZL8th6VQhomacZaJ5HP0kjHnZaUV1mo/r +dEDlWdtUUGkogr/hDTlrY5mzomSBAi88W8vWiW52HKvkCdLIDtBJYFS7XEH2zFf Q+Tcjxad5pPhCxWLcMqjTgSGxDcPauf8iOxK8Fa9PFaokI9m8aqQUZE9NBcyabfT emNk5bbHacj0tkBKfV2VIoFA/vfSuBjIy6G3kIi+5j+sSuVNeTmT/P8ZURadAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUosvgYWSimied8r8oX4ibZrB7WrMwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTUzNDM5NDc4NTc5NS8wLzM0MzMyZTMyMzQz ODJlMzIzMDM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzNjMwMzQzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv4zDANBgkqhkiG9w0BAQsFAAOCAQEAlZ+mDn0sHyhkiK5w678RlL+o bEmuN44zapo8+rLvD3N2HzTFybFyZ4PXWM/ktzjRhKt7cBFpkIwJNlhJd8t79W0L qlcy5aiooe1+72yUof8yMIteu/oeapo8eRQ+RfiPuszLeQudOiQ5sUvJiauPbi0i yxnRDEqbi/XFKR2mMUN0tb7Q3SmJzcvJjGCP8ZzCoxd3ozX01tkCetEQFafsRt7f MP8WH+MDe0+sgdqAd2Ox89yFfsPCLhBCR6ii5NVegDKTXpxuSYTdntwxJc2En5pc nrne4e4aKK3gA523sPumyP4iuZ0l53SluD2F2BHzqigWMTB2yxCAP/wOE1/K8A== -----END CERTIFICATE-----Generated at Fri Apr 17 20:25:50 2026 by rpki-client