$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138302e302f32332d3233203d3e2034383136.roa File: 34352e3235302e3138302e302f32332d3233203d3e2034383136.roa (raw, json) Hash identifier: h33Ywf61tukA2QkrBnvDjXYDOBhCWihy9GsVOA4UzB4= Subject key identifier: B2:74:29:1C:79:A0:CF:57:3F:35:EB:F1:34:D0:A3:9C:5C:44:DB:E2 Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 689FA7503401FBE2DAAAD22AC7BEBBBFB08345C7 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138302e302f32332d3233203d3e2034383136.roa Signing time: Thu 16 Apr 2026 04:04:30 +0000 ROA not before: Thu 16 Apr 2026 03:59:30 +0000 ROA not after: Thu 15 Apr 2027 04:04:30 +0000 asID: 4816 IP address blocks: 45.250.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:9f:a7:50:34:01:fb:e2:da:aa:d2:2a:c7:be:bb:bf:b0:83:45:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 16 03:59:30 2026 GMT Not After : Apr 15 04:04:30 2027 GMT Subject: CN=B274291C79A0CF573F35EBF134D0A39C5C44DBE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6c:8b:0b:06:70:2b:39:ae:a9:c1:d8:70:f7: 43:c5:d4:72:d1:70:eb:ec:43:6a:c3:cc:85:51:07: fe:cc:9f:23:34:83:71:b2:a4:96:44:ed:ec:5b:65: a5:1a:9e:a4:39:59:32:29:ee:b9:4d:0b:59:51:cd: 2d:e9:a5:b8:c7:e0:fb:c5:c5:c0:c0:91:29:95:ad: 4e:a3:74:13:c7:56:7e:06:55:24:b4:fb:18:5d:94: 95:38:8b:f5:58:d7:3a:22:b5:c9:34:74:e4:8d:a5: 30:38:19:48:71:4a:c5:88:e6:94:2b:85:1f:88:4c: 7d:bd:84:58:2e:8d:2c:eb:58:2f:d1:07:93:4b:82: c6:5a:25:88:47:c4:29:a7:1f:57:d3:d8:74:b1:8e: 95:09:72:4b:1d:71:aa:b2:d0:6e:bc:b6:56:40:fe: af:b1:fb:a8:b1:f0:8c:6d:0d:76:2c:76:4b:56:47: a9:3e:52:c4:c2:ef:84:cc:f4:46:b6:78:f9:07:d5: df:6e:05:2e:2b:0d:3a:16:a3:4d:9b:8e:72:d2:85: cb:55:db:07:97:d8:6a:d0:0c:48:f0:bf:d9:f8:bf: 1f:6b:28:26:b7:1d:3b:d1:12:fb:51:60:27:75:59: 14:a0:1c:cd:bc:81:21:6c:5b:d3:01:4e:6f:84:20: 50:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:74:29:1C:79:A0:CF:57:3F:35:EB:F1:34:D0:A3:9C:5C:44:DB:E2 X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138302e302f32332d3233203d3e2034383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.250.180.0/23 Signature Algorithm: sha256WithRSAEncryption 61:5b:e8:ab:3c:58:cf:93:e4:17:ef:85:8c:20:a4:d7:1c:e4: 31:12:54:a8:9a:ab:5c:70:cb:4c:67:fa:ae:c3:43:28:d1:09: 33:b5:bb:b1:38:f3:0a:30:c1:33:90:fd:3f:5b:da:05:3b:bb: 5a:ba:19:d3:22:04:ce:73:72:8c:24:d0:a2:98:11:a0:cf:43: 02:9a:13:ad:c6:64:9f:6a:d6:c5:8b:ec:af:95:9c:d5:75:bf: 0f:22:70:b7:77:80:31:8e:46:d9:92:77:f2:cf:18:8e:c5:8f: ba:0b:64:7f:5a:96:c7:81:3e:5f:b1:28:f7:a8:bd:45:cb:a1: 71:93:d3:fe:33:da:8e:b8:bd:f7:20:85:90:c2:aa:c5:0b:6c: 0a:30:e0:80:87:3b:54:8f:ec:34:70:1d:bd:52:ce:7b:bf:6f: 78:5c:0c:12:4b:66:6c:96:b8:49:75:4b:77:cc:47:81:2c:d9: 84:91:86:27:05:f2:8f:30:74:45:1e:95:d9:76:4e:d2:63:98: e3:c1:6b:0f:7a:fd:69:b7:bf:23:f0:e3:55:61:03:b7:e3:4a: 7e:a3:b5:51:0d:62:88:5d:9a:d5:63:93:5d:cf:9f:c0:2a:cd: ea:44:c2:05:ee:38:82:b8:3e:80:96:c5:8b:6c:7f:74:c0:53: 10:4d:2a:7a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUaJ+nUDQB++LaqtIqx767v7CDRccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MTYwMzU5MzBaFw0yNzA0MTUwNDA0MzBaMDMxMTAvBgNV BAMTKEIyNzQyOTFDNzlBMENGNTczRjM1RUJGMTM0RDBBMzlDNUM0NERCRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjbIsLBnArOa6pwdhw90PF1HLR cOvsQ2rDzIVRB/7MnyM0g3GypJZE7exbZaUanqQ5WTIp7rlNC1lRzS3ppbjH4PvF xcDAkSmVrU6jdBPHVn4GVSS0+xhdlJU4i/VY1zoitck0dOSNpTA4GUhxSsWI5pQr hR+ITH29hFgujSzrWC/RB5NLgsZaJYhHxCmnH1fT2HSxjpUJcksdcaqy0G68tlZA /q+x+6ix8IxtDXYsdktWR6k+UsTC74TM9Ea2ePkH1d9uBS4rDToWo02bjnLShctV 2weX2GrQDEjwv9n4vx9rKCa3HTvREvtRYCd1WRSgHM28gSFsW9MBTm+EIFDLAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUsnQpHHmgz1c/NevxNNCjnFxE2+IwHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDIwMjg5LzAvMzQzNTJlMzIzNTMw MmUzMTM4MzAyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzNDM4MzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAS36tDANBgkqhkiG9w0BAQsFAAOCAQEAYVvoqzxYz5PkF++FjCCk1xzkMRJU qJqrXHDLTGf6rsNDKNEJM7W7sTjzCjDBM5D9P1vaBTu7WroZ0yIEznNyjCTQopgR oM9DApoTrcZkn2rWxYvsr5Wc1XW/DyJwt3eAMY5G2ZJ38s8YjsWPugtkf1qWx4E+ X7Eo96i9RcuhcZPT/jPajri99yCFkMKqxQtsCjDggIc7VI/sNHAdvVLOe79veFwM EktmbJa4SXVLd8xHgSzZhJGGJwXyjzB0RR6V2XZO0mOY48FrD3r9abe/I/DjVWED t+NKfqO1UQ1iiF2a1WOTXc+fwCrN6kTCBe44grg+gJbFi2x/dMBTEE0qeg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:09:38 2026 by rpki-client