$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094811409537040386/0/34332e3234392e3132302e302f32322d3232203d3e2030.roa File: 34332e3234392e3132302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: 5lC4W2GRTvqJOrMPbe5QKcwqWe7taOcbgtBKzu603/U= Subject key identifier: 46:7B:0F:9B:D6:D4:47:E3:9B:D5:9A:99:33:37:78:5C:28:6A:7B:FD Certificate issuer: /CN=B8D245B2C5B99498F3D8E0632643FF2259597775 Certificate serial: 5970F9538CA3B2C4418451D9A5F5BC37F6FC3FEF Authority key identifier: B8:D2:45:B2:C5:B9:94:98:F3:D8:E0:63:26:43:FF:22:59:59:77:75 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8D245B2C5B99498F3D8E0632643FF2259597775.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094811409537040386/0/34332e3234392e3132302e302f32322d3232203d3e2030.roa Signing time: Thu 16 Apr 2026 06:26:36 +0000 ROA not before: Thu 16 Apr 2026 06:21:36 +0000 ROA not after: Thu 15 Apr 2027 06:26:36 +0000 asID: 0 IP address blocks: 43.249.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094811409537040386/0/B8D245B2C5B99498F3D8E0632643FF2259597775.crl rsync://rpki-rps.cnnic.cn/repo/A1094811409537040386/0/B8D245B2C5B99498F3D8E0632643FF2259597775.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8D245B2C5B99498F3D8E0632643FF2259597775.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 09:11:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:70:f9:53:8c:a3:b2:c4:41:84:51:d9:a5:f5:bc:37:f6:fc:3f:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D245B2C5B99498F3D8E0632643FF2259597775 Validity Not Before: Apr 16 06:21:36 2026 GMT Not After : Apr 15 06:26:36 2027 GMT Subject: CN=467B0F9BD6D447E39BD59A993337785C286A7BFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:60:6d:81:ed:91:7a:48:13:8c:e3:b7:fe:dd: 37:8a:b5:35:f9:0e:68:1f:a9:65:5b:d9:a7:5c:c4: 49:b9:d3:be:0e:64:97:81:76:14:2c:68:53:9c:2a: 2f:da:18:4c:97:d9:79:ea:3f:1f:b7:36:be:cb:16: ad:f0:cd:5e:9d:78:bf:34:9e:4c:cb:d5:a5:38:18: c1:bc:d7:91:4f:bf:35:2c:8c:9b:57:0e:e1:9d:c1: cc:44:e3:b1:34:66:de:26:f8:1c:4e:81:63:5a:d0: a2:38:7c:a0:39:53:4d:90:17:ed:4f:32:59:56:7a: 58:2d:fb:d2:3b:21:87:5f:da:39:4b:09:11:14:0b: 7d:66:09:fd:fe:17:91:fb:76:32:20:fe:12:78:c3: 0b:d1:d5:a0:f8:69:ee:ca:28:46:48:60:09:04:af: 5b:0b:e2:35:61:ac:e2:42:5d:74:db:66:65:d9:74: c1:c0:25:a9:2a:3b:43:42:30:1c:d8:54:58:04:65: 66:1b:fb:6a:47:74:00:80:e2:69:e3:ab:a1:0f:77: 9f:8c:65:2b:37:15:ed:84:3b:a0:1d:f5:d6:17:7e: 49:19:85:29:e1:72:72:1f:59:9f:a2:0e:9a:3d:ae: ad:85:cf:ba:8b:9e:b2:ad:a5:ca:12:e3:ea:2c:a1: 3a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:7B:0F:9B:D6:D4:47:E3:9B:D5:9A:99:33:37:78:5C:28:6A:7B:FD X509v3 Authority Key Identifier: keyid:B8:D2:45:B2:C5:B9:94:98:F3:D8:E0:63:26:43:FF:22:59:59:77:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094811409537040386/0/B8D245B2C5B99498F3D8E0632643FF2259597775.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8D245B2C5B99498F3D8E0632643FF2259597775.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094811409537040386/0/34332e3234392e3132302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.120.0/22 Signature Algorithm: sha256WithRSAEncryption 80:21:a2:af:99:2f:eb:a2:f8:c9:7b:af:9e:59:4a:92:9d:81: 95:77:82:0c:ea:f6:95:ae:60:54:20:ef:03:11:89:88:de:99: 0c:6d:0f:1b:97:5f:e0:cd:7c:bf:2b:37:3c:59:bf:0e:22:f0: 50:c7:f0:2d:38:f2:54:13:90:bc:55:6b:17:1b:bd:00:f6:29: f1:ce:0a:9a:7a:1d:c3:1c:b4:ae:e9:5f:b9:a2:07:8f:e2:96: d0:84:c5:70:ac:30:ae:48:2b:a4:c5:67:77:15:1d:ab:f8:c5: c1:79:b6:4c:d5:c9:23:e0:df:7e:a3:75:90:07:92:23:b2:09: 94:0c:ef:1e:8e:c9:4d:04:22:d8:7d:ab:62:d9:c1:2f:88:2e: 0b:e0:6e:7e:25:cd:f0:2f:ff:49:07:2d:45:14:bd:7c:f9:5f: 83:d1:0f:f1:54:74:de:22:e7:d7:91:7b:e2:05:b4:ce:23:f5: 32:50:a0:fb:23:bd:a9:2b:a1:e0:d4:0e:d7:0b:19:73:67:e3: 40:37:06:64:2a:cd:77:a9:2c:07:b3:16:0a:26:fe:bf:38:7c: 05:8b:3c:62:32:ee:11:09:a0:d4:8b:f8:15:86:67:74:e7:f3: ed:ae:a6:9c:e6:f9:0d:e0:e2:ed:04:0a:fb:62:41:c3:e3:be: 8e:4f:26:13 -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUWXD5U4yjssRBhFHZpfW8N/b8P+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhEMjQ1QjJDNUI5OTQ5OEYzRDhFMDYzMjY0M0ZGMjI1 OTU5Nzc3NTAeFw0yNjA0MTYwNjIxMzZaFw0yNzA0MTUwNjI2MzZaMDMxMTAvBgNV BAMTKDQ2N0IwRjlCRDZENDQ3RTM5QkQ1OUE5OTMzMzc3ODVDMjg2QTdCRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYYG2B7ZF6SBOM47f+3TeKtTX5 DmgfqWVb2adcxEm5074OZJeBdhQsaFOcKi/aGEyX2XnqPx+3Nr7LFq3wzV6deL80 nkzL1aU4GMG815FPvzUsjJtXDuGdwcxE47E0Zt4m+BxOgWNa0KI4fKA5U02QF+1P MllWelgt+9I7IYdf2jlLCREUC31mCf3+F5H7djIg/hJ4wwvR1aD4ae7KKEZIYAkE r1sL4jVhrOJCXXTbZmXZdMHAJakqO0NCMBzYVFgEZWYb+2pHdACA4mnjq6EPd5+M ZSs3Fe2EO6Ad9dYXfkkZhSnhcnIfWZ+iDpo9rq2Fz7qLnrKtpcoS4+osoTrrAgMB AAGjggILMIICBzAdBgNVHQ4EFgQURnsPm9bUR+Ob1ZqZMzd4XChqe/0wHwYDVR0j BBgwFoAUuNJFssW5lJjz2OBjJkP/IllZd3UwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxMTQwOTUzNzA0MDM4Ni8wL0I4RDI0NUIyQzVCOTk0OThGM0Q4RTA2MzI2NDNG RjIyNTk1OTc3NzUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjhEMjQ1QjJDNUI5OTQ5OEYzRDhFMDYzMjY0M0ZGMjI1OTU5Nzc3NS5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODExNDA5NTM3MDQwMzg2LzAvMzQzMzJlMzIzNDM5 MmUzMTMyMzAyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv5 eDANBgkqhkiG9w0BAQsFAAOCAQEAgCGir5kv66L4yXuvnllKkp2BlXeCDOr2la5g VCDvAxGJiN6ZDG0PG5df4M18vys3PFm/DiLwUMfwLTjyVBOQvFVrFxu9APYp8c4K mnodwxy0rulfuaIHj+KW0ITFcKwwrkgrpMVndxUdq/jFwXm2TNXJI+DffqN1kAeS I7IJlAzvHo7JTQQi2H2rYtnBL4guC+BufiXN8C//SQctRRS9fPlfg9EP8VR03iLn 15F74gW0ziP1MlCg+yO9qSuh4NQO1wsZc2fjQDcGZCrNd6ksB7MWCib+vzh8BYs8 YjLuEQmg1Iv4FYZndOfz7a6mnOb5DeDi7QQK+2JBw+O+jk8mEw== -----END CERTIFICATE-----Generated at Thu Apr 16 22:36:04 2026 by rpki-client