$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1070955924073545731/0/34332e3234332e3134382e302f32332d3233203d3e203137363231.roa File: 34332e3234332e3134382e302f32332d3233203d3e203137363231.roa (raw, json) Hash identifier: jV+lUK/2NIBbbcTXuZitfW2NLiXsmg1M5TK+Q/rFMLU= Subject key identifier: 77:28:B2:61:22:93:2F:BE:C8:2E:F1:18:B5:C6:79:31:F4:8E:44:76 Certificate issuer: /CN=1B27C26F8F7ECE53972D80933F503C09222E8F9F Certificate serial: 7AAA9E94B3C5BF1438E58C4FB9930C464BF4E0F2 Authority key identifier: 1B:27:C2:6F:8F:7E:CE:53:97:2D:80:93:3F:50:3C:09:22:2E:8F:9F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/34332e3234332e3134382e302f32332d3233203d3e203137363231.roa Signing time: Wed 15 Apr 2026 04:15:18 +0000 ROA not before: Wed 15 Apr 2026 04:10:18 +0000 ROA not after: Wed 14 Apr 2027 04:15:18 +0000 asID: 17621 IP address blocks: 43.243.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.crl rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:aa:9e:94:b3:c5:bf:14:38:e5:8c:4f:b9:93:0c:46:4b:f4:e0:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B27C26F8F7ECE53972D80933F503C09222E8F9F Validity Not Before: Apr 15 04:10:18 2026 GMT Not After : Apr 14 04:15:18 2027 GMT Subject: CN=7728B26122932FBEC82EF118B5C67931F48E4476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:15:d2:8e:ca:e2:e0:f1:a7:c6:9d:8d:7b:37: ab:8e:58:19:ee:a1:90:0e:cb:d1:1b:35:51:54:ef: c6:c9:be:4b:33:56:db:3c:65:41:71:cc:02:02:38: 54:44:89:da:66:18:9a:01:6e:43:00:e2:7e:9e:65: aa:03:03:e6:65:a4:7c:ea:be:cb:78:12:9a:77:1c: 9a:01:a1:00:a1:b0:ad:b6:4b:a4:dd:bb:4c:1f:7b: af:4c:bb:43:0f:db:cf:25:29:14:e5:17:06:51:62: 4b:92:4d:07:f2:7e:5e:3a:b2:0c:b2:51:63:c4:81: 1f:6d:5a:d2:b1:71:cc:c0:e9:51:0c:5c:4b:5f:cd: 47:be:e2:96:ed:9f:74:88:5f:9e:12:5c:c8:42:85: d0:bf:16:1b:9f:57:18:2a:92:ab:43:6c:02:d6:69: 63:a8:ed:85:bf:0d:b3:32:29:1b:a5:5a:e1:c5:37: fe:00:62:46:d9:2c:d6:a1:18:4a:33:ea:da:a0:83: ff:a2:03:21:33:b1:50:02:9e:86:fd:bf:c7:88:2b: a7:05:8f:a9:a0:be:be:3c:de:a4:e2:77:ba:fa:74: 66:5f:74:18:7e:38:a7:a1:16:ce:15:83:87:c9:9e: b1:e1:3e:d8:56:a0:6a:3c:be:44:ef:4f:6d:3f:a7: b3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:28:B2:61:22:93:2F:BE:C8:2E:F1:18:B5:C6:79:31:F4:8E:44:76 X509v3 Authority Key Identifier: keyid:1B:27:C2:6F:8F:7E:CE:53:97:2D:80:93:3F:50:3C:09:22:2E:8F:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/1B27C26F8F7ECE53972D80933F503C09222E8F9F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1B27C26F8F7ECE53972D80933F503C09222E8F9F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1070955924073545731/0/34332e3234332e3134382e302f32332d3233203d3e203137363231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.148.0/23 Signature Algorithm: sha256WithRSAEncryption 37:4e:27:2c:a0:fd:12:3a:9d:6f:21:7d:91:8d:da:06:ce:d0: c5:af:61:ec:f4:30:8e:64:cb:33:e2:b0:95:bd:a8:c1:26:64: 02:ce:49:61:48:f8:9d:d7:fa:11:f0:c7:1a:84:22:3c:c3:77: 6c:72:02:de:aa:33:51:08:86:3d:55:34:5e:a6:7b:f2:5d:4a: b8:9e:c4:9f:3a:93:6b:1c:1a:91:d7:b9:77:1b:7d:23:da:f3: 07:33:82:36:46:4b:75:6b:9e:e2:2b:63:06:f7:d9:82:1b:44: 80:16:95:ac:45:bc:df:91:1d:04:4c:12:63:52:80:08:cf:66: 23:5b:1c:6a:57:89:c3:f8:ab:db:4c:71:54:68:7d:8b:a5:85: a6:c6:c2:87:09:92:10:75:01:09:48:55:ee:47:ed:6b:1c:f4: ff:fb:2b:57:a9:a7:5b:ae:16:03:8b:7b:68:8c:1b:fa:ae:1b: 2f:1a:4d:f7:9c:6f:bb:72:81:37:da:07:81:57:fd:b2:4a:d7: e1:f8:5a:8e:9b:88:c8:90:70:8d:a6:f9:8f:8f:df:fe:7f:7e: 98:c8:5e:20:50:37:4e:75:fc:88:77:e5:35:81:f1:b8:f5:eb: 67:22:df:d2:d0:0e:fb:a8:8f:73:a0:20:1c:e5:56:e3:95:e6: 86:8d:51:fe -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUeqqelLPFvxQ45YxPuZMMRkv04PIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUIyN0MyNkY4RjdFQ0U1Mzk3MkQ4MDkzM0Y1MDNDMDky MjJFOEY5RjAeFw0yNjA0MTUwNDEwMThaFw0yNzA0MTQwNDE1MThaMDMxMTAvBgNV BAMTKDc3MjhCMjYxMjI5MzJGQkVDODJFRjExOEI1QzY3OTMxRjQ4RTQ0NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChFdKOyuLg8afGnY17N6uOWBnu oZAOy9EbNVFU78bJvkszVts8ZUFxzAICOFREidpmGJoBbkMA4n6eZaoDA+ZlpHzq vst4Epp3HJoBoQChsK22S6Tdu0wfe69Mu0MP288lKRTlFwZRYkuSTQfyfl46sgyy UWPEgR9tWtKxcczA6VEMXEtfzUe+4pbtn3SIX54SXMhChdC/FhufVxgqkqtDbALW aWOo7YW/DbMyKRulWuHFN/4AYkbZLNahGEoz6tqgg/+iAyEzsVACnob9v8eIK6cF j6mgvr483qTid7r6dGZfdBh+OKehFs4Vg4fJnrHhPthWoGo8vkTvT20/p7NpAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUdyiyYSKTL77ILvEYtcZ5MfSORHYwHwYDVR0j BBgwFoAUGyfCb49+zlOXLYCTP1A8CSIuj58wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA3 MDk1NTkyNDA3MzU0NTczMS8wLzFCMjdDMjZGOEY3RUNFNTM5NzJEODA5MzNGNTAz QzA5MjIyRThGOUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUIyN0MyNkY4RjdFQ0U1Mzk3MkQ4MDkzM0Y1MDNDMDkyMjJFOEY5Ri5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA3MDk1NTkyNDA3MzU0NTczMS8wLzM0MzMyZTMyMzQz MzJlMzEzNDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzEzNzM2MzIzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASvzlDANBgkqhkiG9w0BAQsFAAOCAQEAN04nLKD9EjqdbyF9kY3aBs7Q xa9h7PQwjmTLM+Kwlb2owSZkAs5JYUj4ndf6EfDHGoQiPMN3bHIC3qozUQiGPVU0 XqZ78l1KuJ7EnzqTaxwakde5dxt9I9rzBzOCNkZLdWue4itjBvfZghtEgBaVrEW8 35EdBEwSY1KACM9mI1scaleJw/ir20xxVGh9i6WFpsbChwmSEHUBCUhV7kftaxz0 //srV6mnW64WA4t7aIwb+q4bLxpN95xvu3KBN9oHgVf9skrX4fhajpuIyJBwjab5 j4/f/n9+mMheIFA3TnX8iHflNYHxuPXrZyLf0tAO+6iPc6AgHOVW45Xmho1R/g== -----END CERTIFICATE-----Generated at Fri Apr 17 17:13:56 2026 by rpki-client