$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138342e302f32322d3232203d3e2034383136.roa File: 34352e3235302e3138342e302f32322d3232203d3e2034383136.roa (raw, json) Hash identifier: RI+idagZL3rCO8K59vR3lwVwbOqjyorKRH3k++Z9FWE= Subject key identifier: E1:91:02:BF:17:82:BB:AB:64:47:1A:8A:B9:60:68:42:7B:A9:04:26 Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 559BEC1F3F0DEE830B1FAC998C17C7BBF7528CFB Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138342e302f32322d3232203d3e2034383136.roa Signing time: Thu 16 Apr 2026 04:04:30 +0000 ROA not before: Thu 16 Apr 2026 03:59:30 +0000 ROA not after: Thu 15 Apr 2027 04:04:30 +0000 asID: 4816 IP address blocks: 45.250.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:9b:ec:1f:3f:0d:ee:83:0b:1f:ac:99:8c:17:c7:bb:f7:52:8c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 16 03:59:30 2026 GMT Not After : Apr 15 04:04:30 2027 GMT Subject: CN=E19102BF1782BBAB64471A8AB96068427BA90426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ed:63:c3:35:aa:df:f3:d5:48:9c:54:2f:8d: e2:fe:52:e9:e7:e3:e8:1d:04:7c:14:50:9d:90:18: 3a:29:74:c4:36:23:d2:99:c5:f2:7d:2a:66:94:5a: 69:c2:24:54:78:33:13:18:b0:0a:44:92:03:50:f7: e5:c7:3c:7d:2d:9d:b7:35:66:b8:20:e8:3a:8f:7b: bd:17:ae:76:b2:b4:b2:26:c1:a4:df:65:6e:fc:7a: f3:a4:38:76:d5:8b:d2:46:d2:3f:e4:c3:55:4b:8e: 41:ff:91:de:25:f8:4d:e5:bf:6a:aa:34:e4:dc:a3: 26:0a:53:ef:8f:03:6f:8b:4b:7b:6a:e4:6f:3c:cd: 8f:83:df:f2:6e:50:12:52:24:80:4b:a7:9a:35:a1: 8f:8f:ba:a3:0f:d3:b6:01:d1:cd:16:ce:55:d4:1e: 03:7b:94:e0:22:04:91:71:b8:cf:dd:fe:da:ed:11: c0:7c:b2:0c:cb:43:dc:ee:c1:fb:54:1a:38:93:c9: 7b:2a:93:2a:71:81:fd:fb:5e:5a:7a:a1:fd:d6:4c: 3d:94:c9:58:7b:aa:d7:e0:5c:1a:a9:5e:5b:9e:34: 66:f0:3f:89:d1:76:e0:36:92:c9:d9:7c:3a:6f:3b: 8f:4a:ee:16:4a:d7:ab:c5:82:8c:1f:18:2e:02:99: dd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:91:02:BF:17:82:BB:AB:64:47:1A:8A:B9:60:68:42:7B:A9:04:26 X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3235302e3138342e302f32322d3232203d3e2034383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.250.184.0/22 Signature Algorithm: sha256WithRSAEncryption 67:70:8f:ef:18:85:04:1d:cd:8a:3b:c2:ea:19:58:80:c6:0d: 8c:bb:fb:8e:2f:6e:93:72:7c:ee:5f:f2:8f:40:12:5f:3d:c1: 7e:57:76:5a:b1:fb:60:e7:cd:27:b5:d6:21:5c:85:31:b9:b9: 8d:cd:8f:b1:56:75:c8:d3:ee:12:28:02:ba:11:16:bb:b8:06: 03:85:06:59:71:58:a7:f5:fc:91:8c:07:26:b9:3d:d7:a3:87: 42:6a:bc:0e:e6:a7:ee:28:fb:28:35:25:55:19:08:53:ae:b9: 22:1f:44:39:aa:a8:88:3e:59:61:30:59:e7:2b:fc:8e:78:08: 95:78:a5:1a:a3:fe:94:5f:de:0a:8e:67:ee:65:05:81:9f:d9: 9e:79:ed:47:1f:18:84:c9:2d:d5:52:14:c3:f1:e3:0d:7e:2a: 74:43:66:f1:3f:98:ec:b0:d9:a8:13:12:70:f9:e4:a9:24:99: 18:e4:6f:8a:fc:0c:e5:87:31:91:de:d6:48:5a:ec:cc:65:51: f2:c4:95:e1:b3:04:f1:2a:68:d6:8e:3f:1e:a4:3d:19:2b:03: b8:4f:2a:9b:c4:05:f2:3a:e5:25:3c:28:99:c1:39:51:86:51: b5:33:e3:31:44:78:35:38:5e:03:e2:22:50:b0:c2:56:ff:b0: bd:64:9e:77 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUVZvsHz8N7oMLH6yZjBfHu/dSjPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MTYwMzU5MzBaFw0yNzA0MTUwNDA0MzBaMDMxMTAvBgNV BAMTKEUxOTEwMkJGMTc4MkJCQUI2NDQ3MUE4QUI5NjA2ODQyN0JBOTA0MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE7WPDNarf89VInFQvjeL+Uunn 4+gdBHwUUJ2QGDopdMQ2I9KZxfJ9KmaUWmnCJFR4MxMYsApEkgNQ9+XHPH0tnbc1 Zrgg6DqPe70XrnaytLImwaTfZW78evOkOHbVi9JG0j/kw1VLjkH/kd4l+E3lv2qq NOTcoyYKU++PA2+LS3tq5G88zY+D3/JuUBJSJIBLp5o1oY+PuqMP07YB0c0WzlXU HgN7lOAiBJFxuM/d/trtEcB8sgzLQ9zuwftUGjiTyXsqkypxgf37Xlp6of3WTD2U yVh7qtfgXBqpXlueNGbwP4nRduA2ksnZfDpvO49K7hZK16vFgowfGC4Cmd2NAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU4ZECvxeCu6tkRxqKuWBoQnupBCYwHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDIwMjg5LzAvMzQzNTJlMzIzNTMw MmUzMTM4MzQyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAi36uDANBgkqhkiG9w0BAQsFAAOCAQEAZ3CP7xiFBB3NijvC6hlYgMYNjLv7 ji9uk3J87l/yj0ASXz3Bfld2WrH7YOfNJ7XWIVyFMbm5jc2PsVZ1yNPuEigCuhEW u7gGA4UGWXFYp/X8kYwHJrk916OHQmq8Duan7ij7KDUlVRkIU665Ih9EOaqoiD5Z YTBZ5yv8jngIlXilGqP+lF/eCo5n7mUFgZ/ZnnntRx8YhMkt1VIUw/HjDX4qdENm 8T+Y7LDZqBMScPnkqSSZGORvivwM5Ycxkd7WSFrszGVR8sSV4bME8Spo1o4/HqQ9 GSsDuE8qm8QF8jrlJTwomcE5UYZRtTPjMUR4NTheA+IiULDCVv+wvWSedw== -----END CERTIFICATE-----Generated at Sat Apr 18 06:06:27 2026 by rpki-client