$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233362e302f32342d3234203d3e20313332383833.roa File: 34332e3235312e3233362e302f32342d3234203d3e20313332383833.roa (raw, json) Hash identifier: mykK8in4gkNBTc8c/xTtkT3MIICTpH8yR5T2MvvUOPo= Subject key identifier: B3:E7:0A:01:C0:DF:29:F9:6C:89:F7:A7:88:D1:E9:E4:70:C9:7C:F5 Certificate issuer: /CN=727F645FC8FE158EB2755D7F914A4325882E78A0 Certificate serial: 5312E7DC2E0EDE738BDBC7D4F751B546540DDEA9 Authority key identifier: 72:7F:64:5F:C8:FE:15:8E:B2:75:5D:7F:91:4A:43:25:88:2E:78:A0 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233362e302f32342d3234203d3e20313332383833.roa Signing time: Wed 08 Apr 2026 05:59:10 +0000 ROA not before: Wed 08 Apr 2026 05:54:10 +0000 ROA not after: Wed 07 Apr 2027 05:59:10 +0000 asID: 132883 IP address blocks: 43.251.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.crl rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:12:e7:dc:2e:0e:de:73:8b:db:c7:d4:f7:51:b5:46:54:0d:de:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=727F645FC8FE158EB2755D7F914A4325882E78A0 Validity Not Before: Apr 8 05:54:10 2026 GMT Not After : Apr 7 05:59:10 2027 GMT Subject: CN=B3E70A01C0DF29F96C89F7A788D1E9E470C97CF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fc:f4:cb:ec:3b:db:59:5c:04:03:18:25:f8: 65:f8:0b:c9:05:d0:71:ec:3b:57:85:73:80:b6:f2: 43:87:8c:b9:e0:0d:81:e4:41:94:62:6c:0b:d8:a2: b6:83:6f:b2:da:6a:79:e9:79:5e:15:35:e7:f6:f1: c7:82:5b:01:e6:20:4e:4b:68:fb:ba:94:37:72:c3: 07:7e:65:af:1f:37:f8:fd:93:ad:77:1a:3b:25:74: ef:c8:27:f3:9d:e4:81:7d:68:5e:99:6f:1b:05:61: df:26:a1:8a:9a:7f:18:61:27:9f:6d:a0:18:1f:77: 0e:35:0a:30:d5:09:ce:dc:0c:6f:ed:f2:cc:ef:5b: 21:c4:48:d1:04:a2:06:63:a4:b3:fb:40:51:88:28: 2e:16:15:eb:17:0f:76:32:8e:7d:0f:13:66:fa:5d: fe:e5:b5:ce:7f:55:49:25:16:67:ac:de:c0:6c:52: 1a:17:12:97:90:f6:bd:d5:c6:2f:4d:d8:28:5c:c6: 4a:22:1f:a5:4b:ef:a8:4c:4f:ad:a2:fa:c6:bf:0a: 52:de:b9:92:47:17:d0:27:50:b0:7f:56:94:3b:10: db:1f:35:c5:4f:23:36:11:93:42:7d:42:f0:77:d4: 71:76:cc:cb:e3:a2:da:0f:09:9c:52:28:56:48:6b: d2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E7:0A:01:C0:DF:29:F9:6C:89:F7:A7:88:D1:E9:E4:70:C9:7C:F5 X509v3 Authority Key Identifier: keyid:72:7F:64:5F:C8:FE:15:8E:B2:75:5D:7F:91:4A:43:25:88:2E:78:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233362e302f32342d3234203d3e20313332383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.251.236.0/24 Signature Algorithm: sha256WithRSAEncryption 33:1e:0a:48:6c:33:6e:72:60:8f:71:14:db:cb:a0:24:28:bf: 57:41:86:72:3a:a8:25:9a:ec:f4:ad:e0:5d:58:d4:89:a6:ca: ab:d8:36:41:84:e6:3b:3e:f3:12:f2:55:2f:85:be:07:02:78: 88:ad:5a:4a:79:87:ee:91:d9:c3:15:b5:41:98:89:4e:d7:80: 2e:29:72:95:8f:ad:aa:11:3a:43:52:a6:aa:95:3e:26:06:05: 4d:6a:36:ca:9c:87:62:70:49:ad:e4:88:13:9e:02:69:4c:89: 04:37:fb:83:31:be:9d:38:ea:a6:25:b8:64:20:e2:ac:ad:f0: 0a:88:17:75:32:b8:eb:70:7f:b3:a6:ef:79:0a:bc:7b:56:d9: c2:2c:ff:75:d0:72:13:ef:c5:74:2f:88:ec:72:d1:99:00:45: 5a:62:4f:50:1c:22:06:74:c9:49:72:95:84:e6:6c:28:11:2a: 48:5f:56:c1:ed:ef:21:cc:5b:e9:15:3e:90:96:44:a3:b1:e0: 12:e6:7e:c5:68:5b:2e:26:e3:09:71:52:fc:07:02:06:6c:46: 57:bf:4c:a4:47:46:20:3e:6b:05:78:44:e2:69:ba:0c:3e:84: ab:8b:5d:29:1d:9c:d5:7b:4c:e7:81:b7:6c:45:fe:35:5e:fa: 73:85:d6:5c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUUxLn3C4O3nOL28fU91G1RlQN3qkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI3RjY0NUZDOEZFMTU4RUIyNzU1RDdGOTE0QTQzMjU4 ODJFNzhBMDAeFw0yNjA0MDgwNTU0MTBaFw0yNzA0MDcwNTU5MTBaMDMxMTAvBgNV BAMTKEIzRTcwQTAxQzBERjI5Rjk2Qzg5RjdBNzg4RDFFOUU0NzBDOTdDRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz/PTL7DvbWVwEAxgl+GX4C8kF 0HHsO1eFc4C28kOHjLngDYHkQZRibAvYoraDb7LaannpeV4VNef28ceCWwHmIE5L aPu6lDdywwd+Za8fN/j9k613GjsldO/IJ/Od5IF9aF6ZbxsFYd8moYqafxhhJ59t oBgfdw41CjDVCc7cDG/t8szvWyHESNEEogZjpLP7QFGIKC4WFesXD3Yyjn0PE2b6 Xf7ltc5/VUklFmes3sBsUhoXEpeQ9r3Vxi9N2ChcxkoiH6VL76hMT62i+sa/ClLe uZJHF9AnULB/VpQ7ENsfNcVPIzYRk0J9QvB31HF2zMvjotoPCZxSKFZIa9I5AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUs+cKAcDfKflsifeniNHp5HDJfPUwHwYDVR0j BBgwFoAUcn9kX8j+FY6ydV1/kUpDJYgueKAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODk5MzU0ODI4ODAwMi8wLzcyN0Y2NDVGQzhGRTE1OEVCMjc1NUQ3RjkxNEE0 MzI1ODgyRTc4QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzI3RjY0NUZDOEZFMTU4RUIyNzU1RDdGOTE0QTQzMjU4ODJFNzhBMC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg5OTM1NDgyODgwMDIvMC8zNDMzMmUzMjM1 MzEyZTMyMzMzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMjM4MzgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv77DANBgkqhkiG9w0BAQsFAAOCAQEAMx4KSGwzbnJgj3EU28ug JCi/V0GGcjqoJZrs9K3gXVjUiabKq9g2QYTmOz7zEvJVL4W+BwJ4iK1aSnmH7pHZ wxW1QZiJTteALilylY+tqhE6Q1KmqpU+JgYFTWo2ypyHYnBJreSIE54CaUyJBDf7 gzG+nTjqpiW4ZCDirK3wCogXdTK463B/s6bveQq8e1bZwiz/ddByE+/FdC+I7HLR mQBFWmJPUBwiBnTJSXKVhOZsKBEqSF9Wwe3vIcxb6RU+kJZEo7HgEuZ+xWhbLibj CXFS/AcCBmxGV79MpEdGID5rBXhE4mm6DD6Eq4tdKR2c1XtM54G3bEX+NV76c4XW XA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:42:29 2026 by rpki-client