$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233392e302f32342d3234203d3e20313332383833.roa File: 34332e3235312e3233392e302f32342d3234203d3e20313332383833.roa (raw, json) Hash identifier: fMUQM/+CpcOFdrcqDjYJfrTT7Jhon7Kh0D2jc0fdqRs= Subject key identifier: F5:78:BE:45:98:95:FD:0E:D0:F4:7E:C5:00:EA:D1:09:CE:EF:68:6A Certificate issuer: /CN=727F645FC8FE158EB2755D7F914A4325882E78A0 Certificate serial: 0FD3721F091EF72C90E0A2D9802CFDD100C43B50 Authority key identifier: 72:7F:64:5F:C8:FE:15:8E:B2:75:5D:7F:91:4A:43:25:88:2E:78:A0 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233392e302f32342d3234203d3e20313332383833.roa Signing time: Wed 08 Apr 2026 05:59:10 +0000 ROA not before: Wed 08 Apr 2026 05:54:10 +0000 ROA not after: Wed 07 Apr 2027 05:59:10 +0000 asID: 132883 IP address blocks: 43.251.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.crl rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d3:72:1f:09:1e:f7:2c:90:e0:a2:d9:80:2c:fd:d1:00:c4:3b:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=727F645FC8FE158EB2755D7F914A4325882E78A0 Validity Not Before: Apr 8 05:54:10 2026 GMT Not After : Apr 7 05:59:10 2027 GMT Subject: CN=F578BE459895FD0ED0F47EC500EAD109CEEF686A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ea:64:46:c1:f8:18:82:25:b3:a5:19:42:ed: 2f:1d:9f:a9:a2:c9:72:ea:81:f9:f7:f0:bc:19:1f: bb:6e:2b:fa:f1:65:45:98:d2:fb:04:68:db:4b:6f: a3:da:68:11:96:85:78:86:b0:df:25:aa:4a:14:29: ce:62:d5:30:65:1d:49:bb:46:3b:ee:e0:43:15:52: 16:ea:3c:75:cd:a8:ff:a5:78:f8:a5:db:16:bc:1a: cc:fe:eb:98:bc:f4:e6:18:f8:5a:c3:73:c0:a9:37: 85:72:c5:82:c4:7a:65:90:3d:02:47:2f:7e:89:34: d2:48:c6:7d:a1:39:1c:3a:b3:a9:5f:36:47:19:59: 5a:75:a5:51:f0:25:96:de:8b:52:e8:34:6f:cb:9f: 20:93:25:e6:6a:bd:ad:c5:a1:19:95:03:ee:d7:6d: 2f:3e:0e:c1:ad:97:2f:ae:5d:26:eb:ac:5e:47:e2: 00:e4:b8:73:11:d1:01:b0:84:3a:9d:0c:da:66:ac: df:6a:7e:79:42:03:77:82:8a:2b:68:31:88:f3:63: 96:ec:47:11:2b:6c:47:06:1e:52:21:ee:a8:66:91: cd:1d:d5:e6:d5:22:3e:41:d6:38:40:7e:1f:fd:57: 1a:c9:e2:21:a9:dd:54:0e:17:da:05:31:99:bb:57: 30:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:78:BE:45:98:95:FD:0E:D0:F4:7E:C5:00:EA:D1:09:CE:EF:68:6A X509v3 Authority Key Identifier: keyid:72:7F:64:5F:C8:FE:15:8E:B2:75:5D:7F:91:4A:43:25:88:2E:78:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/727F645FC8FE158EB2755D7F914A4325882E78A0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/727F645FC8FE158EB2755D7F914A4325882E78A0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588993548288002/0/34332e3235312e3233392e302f32342d3234203d3e20313332383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.251.239.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:81:df:7a:91:95:db:94:52:c2:d5:06:1d:f5:53:dd:92:43: 03:06:51:61:74:1a:87:0a:2d:32:91:fe:c2:cd:dd:0a:49:a2: 52:e8:7d:83:9b:83:18:e4:f7:cd:e9:4b:06:8b:cd:f7:12:f9: 3f:7f:e6:35:cc:f3:cb:00:f3:bc:ed:81:50:93:57:f7:e7:75: a0:4d:88:63:df:c5:b2:b0:cf:18:68:7a:74:f5:4b:ad:c9:ff: 91:61:5e:73:bf:51:6a:a6:bf:b9:88:1d:c1:21:15:04:70:83: be:c6:92:d8:89:f8:f6:4b:16:1d:ac:48:67:5e:59:67:02:ea: 05:77:37:c5:39:e7:a9:57:64:97:7d:f0:58:c4:55:9a:13:c1: af:55:36:d2:07:96:32:cc:c2:e1:e3:72:e6:00:5e:a2:df:c9: 48:f2:10:34:6b:6f:d9:d6:bd:40:97:1e:b6:ce:b9:b2:fd:fb: 15:d1:07:b7:b2:59:ff:41:28:98:06:c7:68:47:b3:f5:d4:34: 6f:59:de:31:a4:2d:a0:20:dd:77:56:e6:df:91:8d:50:ad:fe: 4e:b1:2b:36:f2:3f:e1:13:c5:74:c1:90:21:bd:b7:83:51:35: cd:b0:fb:13:29:97:9e:ea:10:c8:71:5c:c6:bb:d5:1a:32:38: 03:d7:46:f0 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUD9NyHwke9yyQ4KLZgCz90QDEO1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI3RjY0NUZDOEZFMTU4RUIyNzU1RDdGOTE0QTQzMjU4 ODJFNzhBMDAeFw0yNjA0MDgwNTU0MTBaFw0yNzA0MDcwNTU5MTBaMDMxMTAvBgNV BAMTKEY1NzhCRTQ1OTg5NUZEMEVEMEY0N0VDNTAwRUFEMTA5Q0VFRjY4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd6mRGwfgYgiWzpRlC7S8dn6mi yXLqgfn38LwZH7tuK/rxZUWY0vsEaNtLb6PaaBGWhXiGsN8lqkoUKc5i1TBlHUm7 Rjvu4EMVUhbqPHXNqP+lePil2xa8Gsz+65i89OYY+FrDc8CpN4VyxYLEemWQPQJH L36JNNJIxn2hORw6s6lfNkcZWVp1pVHwJZbei1LoNG/LnyCTJeZqva3FoRmVA+7X bS8+DsGtly+uXSbrrF5H4gDkuHMR0QGwhDqdDNpmrN9qfnlCA3eCiitoMYjzY5bs RxErbEcGHlIh7qhmkc0d1ebVIj5B1jhAfh/9VxrJ4iGp3VQOF9oFMZm7VzBpAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU9Xi+RZiV/Q7Q9H7FAOrRCc7vaGowHwYDVR0j BBgwFoAUcn9kX8j+FY6ydV1/kUpDJYgueKAwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODk5MzU0ODI4ODAwMi8wLzcyN0Y2NDVGQzhGRTE1OEVCMjc1NUQ3RjkxNEE0 MzI1ODgyRTc4QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzI3RjY0NUZDOEZFMTU4RUIyNzU1RDdGOTE0QTQzMjU4ODJFNzhBMC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODg5OTM1NDgyODgwMDIvMC8zNDMzMmUzMjM1 MzEyZTMyMzMzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMjM4MzgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv77zANBgkqhkiG9w0BAQsFAAOCAQEAfYHfepGV25RSwtUGHfVT 3ZJDAwZRYXQahwotMpH+ws3dCkmiUuh9g5uDGOT3zelLBovN9xL5P3/mNczzywDz vO2BUJNX9+d1oE2IY9/FsrDPGGh6dPVLrcn/kWFec79Raqa/uYgdwSEVBHCDvsaS 2In49ksWHaxIZ15ZZwLqBXc3xTnnqVdkl33wWMRVmhPBr1U20geWMszC4eNy5gBe ot/JSPIQNGtv2da9QJcets65sv37FdEHt7JZ/0EomAbHaEez9dQ0b1neMaQtoCDd d1bm35GNUK3+TrErNvI/4RPFdMGQIb23g1E1zbD7EymXnuoQyHFcxrvVGjI4A9dG 8A== -----END CERTIFICATE-----Generated at Fri Apr 17 18:23:29 2026 by rpki-client