$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138302e302f32332d3233203d3e20313436373732.roa File: 34352e3235302e3138302e302f32332d3233203d3e20313436373732.roa (raw, json) Hash identifier: +b2dhVOVKDtioYPTzWNdeYIhHzc/eT7XuKHHyYYXG4c= Subject key identifier: BF:50:82:C1:8D:F0:24:7F:B4:29:A9:59:E8:95:25:89:00:0C:D8:CA Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 3AADEBDE27BCE20F1DC8ABE6F6C13E905CDCC1E2 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138302e302f32332d3233203d3e20313436373732.roa Signing time: Thu 16 Apr 2026 04:06:43 +0000 ROA not before: Thu 16 Apr 2026 04:01:43 +0000 ROA not after: Thu 15 Apr 2027 04:06:43 +0000 asID: 146772 IP address blocks: 45.250.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ad:eb:de:27:bc:e2:0f:1d:c8:ab:e6:f6:c1:3e:90:5c:dc:c1:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 16 04:01:43 2026 GMT Not After : Apr 15 04:06:43 2027 GMT Subject: CN=BF5082C18DF0247FB429A959E8952589000CD8CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6a:ca:d4:7a:d3:51:73:77:b1:17:bd:e2:19: 1a:7f:09:7e:73:7f:51:e3:53:00:11:ea:e0:2e:1b: a4:db:24:e4:f0:de:8f:de:ca:d0:76:61:f5:a5:26: 29:36:dc:03:9f:c8:3b:09:13:66:34:26:27:7c:de: 6c:da:f5:e5:9d:30:b4:fa:51:4e:96:a4:a9:54:7f: 17:11:d5:9d:00:c5:bc:15:f0:dd:91:96:6e:9d:2e: 1e:94:b2:52:5b:c7:4c:e4:b8:11:45:98:d3:a7:57: a3:ab:07:ce:87:fa:d4:5c:57:d7:82:3e:53:d6:01: 2d:ca:19:fe:07:de:15:ca:5a:8e:41:1f:2a:e7:bb: 35:6e:03:81:e4:27:8c:c0:9e:b2:45:82:07:f8:08: 10:e2:58:ab:e9:39:81:26:b6:09:24:af:07:a9:2e: 58:87:6a:a6:88:80:90:d5:db:08:a5:e2:1e:52:81: 45:c6:a5:ea:56:27:9f:29:95:88:be:0a:fa:6d:c8: 09:e4:07:62:57:be:5d:7a:57:0c:12:88:22:c4:c2: 96:af:52:ce:6c:8f:8b:69:43:b0:81:97:a4:c7:d1: 9f:97:b8:32:45:05:6f:ce:43:aa:7a:cc:03:64:4f: 77:2c:53:32:07:0c:85:e8:e3:3b:9a:12:53:17:15: 15:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:50:82:C1:8D:F0:24:7F:B4:29:A9:59:E8:95:25:89:00:0C:D8:CA X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138302e302f32332d3233203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.250.180.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:0e:33:66:bf:6a:8b:7d:84:9b:00:d7:14:ef:f4:51:00:16: 8c:53:a6:b3:7f:5a:36:bd:83:ca:f6:c8:74:83:9c:f1:d6:4d: 93:d1:00:2c:85:ed:9a:62:89:d4:d7:eb:e6:b1:db:49:b6:03: 78:77:38:85:f2:d2:19:58:34:8a:70:a3:fd:13:00:0a:0e:82: 3e:56:e3:29:32:76:70:01:5b:5a:86:a6:65:64:49:67:1b:0b: 51:b1:91:cb:f9:c3:b7:83:bd:54:9a:5b:0c:41:63:8b:d6:76: 18:dc:5f:af:f1:57:47:fc:41:e7:1c:1e:cc:57:b7:24:2f:d4: bb:93:5c:96:59:79:25:1b:71:3b:2d:17:b6:88:51:d3:54:f0: 4d:99:79:ce:50:ae:fe:e2:f1:8b:ec:95:0b:de:41:08:91:76: 21:04:c8:82:58:5e:41:4b:a0:25:71:b9:f5:7c:05:73:74:5b: 4b:23:03:70:62:96:d6:ab:5e:45:3d:f3:27:86:7c:e2:d4:90: 26:8b:f2:d5:2c:e8:f4:c1:13:92:db:21:70:29:01:43:54:ea: e3:f2:41:c2:d2:b4:d1:24:8b:27:1e:89:ae:8e:34:a9:99:42: 30:7f:98:fb:ac:24:8e:54:ad:cf:31:d5:92:b2:fb:74:92:74: 9e:87:d9:6d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUOq3r3ie84g8dyKvm9sE+kFzcweIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MTYwNDAxNDNaFw0yNzA0MTUwNDA2NDNaMDMxMTAvBgNV BAMTKEJGNTA4MkMxOERGMDI0N0ZCNDI5QTk1OUU4OTUyNTg5MDAwQ0Q4Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLasrUetNRc3exF73iGRp/CX5z f1HjUwAR6uAuG6TbJOTw3o/eytB2YfWlJik23AOfyDsJE2Y0Jid83mza9eWdMLT6 UU6WpKlUfxcR1Z0AxbwV8N2Rlm6dLh6UslJbx0zkuBFFmNOnV6OrB86H+tRcV9eC PlPWAS3KGf4H3hXKWo5BHyrnuzVuA4HkJ4zAnrJFggf4CBDiWKvpOYEmtgkkrwep LliHaqaIgJDV2wil4h5SgUXGpepWJ58plYi+CvptyAnkB2JXvl16VwwSiCLEwpav Us5sj4tpQ7CBl6TH0Z+XuDJFBW/OQ6p6zANkT3csUzIHDIXo4zuaElMXFRWbAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUv1CCwY3wJH+0KalZ6JUliQAM2MowHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU0MjAyODkvMC8zNDM1MmUzMjM1 MzAyZTMxMzgzMDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzQzNjM3MzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAS36tDANBgkqhkiG9w0BAQsFAAOCAQEAbA4zZr9qi32EmwDXFO/0 UQAWjFOms39aNr2DyvbIdIOc8dZNk9EALIXtmmKJ1Nfr5rHbSbYDeHc4hfLSGVg0 inCj/RMACg6CPlbjKTJ2cAFbWoamZWRJZxsLUbGRy/nDt4O9VJpbDEFji9Z2GNxf r/FXR/xB5xwezFe3JC/Uu5Nclll5JRtxOy0XtohR01TwTZl5zlCu/uLxi+yVC95B CJF2IQTIglheQUugJXG59XwFc3RbSyMDcGKW1qteRT3zJ4Z84tSQJovy1Szo9MET ktshcCkBQ1Tq4/JBwtK00SSLJx6Jro40qZlCMH+Y+6wkjlStzzHVkrL7dJJ0nofZ bQ== -----END CERTIFICATE-----Generated at Sat Apr 18 01:21:20 2026 by rpki-client