$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233382e302f32342d3234203d3e20313332383833.roa File: 34332e3235312e3233382e302f32342d3234203d3e20313332383833.roa (raw, json) Hash identifier: /Rx6e3CvoxQocrTNIXHYHjqGpVbwOniUCq31GunObTQ= Subject key identifier: BF:08:B5:4F:5A:91:61:C2:70:53:87:42:35:98:E1:93:E1:CC:D9:66 Certificate issuer: /CN=727F645FC8FE158EB2755D7F914A4325882E78A0 Certificate serial: 3071BE2F6C9AF9646E47E109AF4F067959A75760 Authority key identifier: 72:7F:64:5F:C8:FE:15:8E:B2:75:5D:7F:91:4A:43:25:88:2E:78:A0 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233382e302f32342d3234203d3e20313332383833.roa Signing time: Wed 08 Apr 2026 05:59:10 +0000 ROA not before: Wed 08 Apr 2026 05:54:10 +0000 ROA not after: Wed 07 Apr 2027 05:59:10 +0000 asID: 132883 IP address blocks: 43.251.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.crl rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:71:be:2f:6c:9a:f9:64:6e:47:e1:09:af:4f:06:79:59:a7:57:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=727F645FC8FE158EB2755D7F914A4325882E78A0 Validity Not Before: Apr 8 05:54:10 2026 GMT Not After : Apr 7 05:59:10 2027 GMT Subject: CN=BF08B54F5A9161C2705387423598E193E1CCD966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6a:80:74:75:d3:21:23:55:85:65:29:09:e2: c5:36:95:29:b5:42:d1:3e:42:4c:bc:7f:92:21:58: 51:76:2a:dd:18:68:75:33:20:9e:f9:c7:0f:f9:1e: f5:85:79:c4:b1:2f:e8:58:16:a9:f4:ef:67:51:11: d1:22:23:c6:99:ae:c2:b1:2d:36:9d:88:bf:62:1b: 10:53:91:30:21:46:72:25:0d:3d:6f:0b:0e:4e:82: 8f:19:27:51:17:f5:42:f7:b1:0d:a9:b6:92:84:79: 85:2f:94:db:aa:40:2d:0d:1f:aa:a4:7e:fa:bd:0a: ed:0d:fb:f6:f9:2a:86:86:21:d1:26:40:6a:99:c5: e2:83:b6:95:eb:d6:57:97:08:a2:64:25:cc:5d:63: f3:66:23:8e:de:5a:e3:df:9e:20:f7:4f:f9:33:ac: 92:f3:2c:dd:4f:07:1e:c0:e2:07:20:45:33:a7:b7: f1:f3:f3:4b:f4:e5:c8:b0:30:be:07:9e:fa:47:0d: cf:e4:ef:a5:5e:16:c0:cf:86:29:55:51:5d:0f:b2: 53:da:f8:96:a2:8b:35:e0:26:a7:4c:ef:61:8a:4e: 0e:31:5c:2c:e9:71:4f:8c:51:b8:58:cd:1b:ca:7a: 2a:4a:65:c8:de:62:0e:7c:87:1f:e5:e9:45:a6:96: 4b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:08:B5:4F:5A:91:61:C2:70:53:87:42:35:98:E1:93:E1:CC:D9:66 X509v3 Authority Key Identifier: keyid:72:7F:64:5F:C8:FE:15:8E:B2:75:5D:7F:91:4A:43:25:88:2E:78:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233382e302f32342d3234203d3e20313332383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.251.238.0/24 Signature Algorithm: sha256WithRSAEncryption 61:1a:12:b7:bc:97:7a:7d:24:a7:ef:7b:43:6c:bc:94:2b:91: 7e:c2:7d:52:bf:e8:b6:0d:e3:3e:3e:87:7f:f1:b5:80:4a:82: c9:d2:ce:ad:81:1b:d0:2c:63:61:d5:56:13:5c:a3:1b:8e:83: 29:d0:9a:a1:f2:f7:93:50:5f:19:e9:9c:a2:22:a5:5a:9d:1e: fb:8b:27:9c:8a:a3:90:36:ad:fc:d5:6c:ed:f0:40:16:b6:29: 5b:4a:a5:7f:81:95:39:18:8a:b1:49:0b:44:47:8b:4a:62:1c: 6e:99:8b:d7:3e:f0:29:48:98:99:9d:eb:74:a3:d9:37:8a:ba: b2:b7:19:46:8c:d0:34:de:56:7c:20:c3:6b:d2:fe:85:0f:f9: 33:bf:5f:a9:3e:29:18:87:48:7d:dc:26:c6:cc:30:af:82:0e: b2:ca:9e:8b:0b:6d:a2:63:cc:73:e7:6a:93:54:dc:e5:a4:86: fd:4d:54:cb:67:e0:3f:da:51:99:d4:35:a4:ad:6b:5c:5a:32: fc:0b:ca:40:df:d0:97:5e:90:2f:48:1a:e6:35:88:05:a3:37: 75:23:69:ba:bf:51:3b:d7:69:91:b8:1c:cb:ce:9a:2e:98:52: 69:b5:16:b5:25:b9:a7:a6:55:d8:ec:0e:b1:26:49:35:1f:a1: 70:c3:1d:3d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUMHG+L2ya+WRuR+EJr08GeVmnV2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI3RjY0NUZDOEZFMTU4RUIyNzU1RDdGOTE0QTQzMjU4 ODJFNzhBMDAeFw0yNjA0MDgwNTU0MTBaFw0yNzA0MDcwNTU5MTBaMDMxMTAvBgNV BAMTKEJGMDhCNTRGNUE5MTYxQzI3MDUzODc0MjM1OThFMTkzRTFDQ0Q5NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVaoB0ddMhI1WFZSkJ4sU2lSm1 QtE+Qky8f5IhWFF2Kt0YaHUzIJ75xw/5HvWFecSxL+hYFqn072dREdEiI8aZrsKx LTadiL9iGxBTkTAhRnIlDT1vCw5Ogo8ZJ1EX9UL3sQ2ptpKEeYUvlNuqQC0NH6qk fvq9Cu0N+/b5KoaGIdEmQGqZxeKDtpXr1leXCKJkJcxdY/NmI47eWuPfniD3T/kz rJLzLN1PBx7A4gcgRTOnt/Hz80v05ciwML4HnvpHDc/k76VeFsDPhilVUV0PslPa +JaiizXgJqdM72GKTg4xXCzpcU+MUbhYzRvKeipKZcjeYg58hx/l6UWmlkv1AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUvwi1T1qRYcJwU4dCNZjhk+HM2WYwHwYDVR0j BBgwFoAUcn9kX8j+FY6ydV1/kUpDJYgueKAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODk5MzU0ODI4ODAwMi8wLzcyN0Y2NDVGQzhGRTE1OEVCMjc1NUQ3RjkxNEE0 MzI1ODgyRTc4QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzI3RjY0NUZDOEZFMTU4RUIyNzU1RDdGOTE0QTQzMjU4ODJFNzhBMC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg5OTM1NDgyODgwMDIvMC8zNDMzMmUzMjM1 MzEyZTMyMzMzODJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMjM4MzgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv77jANBgkqhkiG9w0BAQsFAAOCAQEAYRoSt7yXen0kp+97Q2y8 lCuRfsJ9Ur/otg3jPj6Hf/G1gEqCydLOrYEb0CxjYdVWE1yjG46DKdCaofL3k1Bf GemcoiKlWp0e+4snnIqjkDat/NVs7fBAFrYpW0qlf4GVORiKsUkLREeLSmIcbpmL 1z7wKUiYmZ3rdKPZN4q6srcZRozQNN5WfCDDa9L+hQ/5M79fqT4pGIdIfdwmxsww r4IOssqeiwttomPMc+dqk1Tc5aSG/U1Uy2fgP9pRmdQ1pK1rXFoy/AvKQN/Ql16Q L0ga5jWIBaM3dSNpur9RO9dpkbgcy86aLphSabUWtSW5p6ZV2OwOsSZJNR+hcMMd PQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:18:05 2026 by rpki-client