$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34332e3232342e35362e302f32322d3234203d3e20313338393530.roa File: 34332e3232342e35362e302f32322d3234203d3e20313338393530.roa (raw, json) Hash identifier: 4VtSR2wzYMEQ2hKkCXuVPDWataP8J4lzMQ7CaxYoU20= Subject key identifier: F6:4F:86:B8:A4:0C:60:0E:E5:F2:C2:C7:E0:91:14:B7:9C:4B:A1:C4 Certificate issuer: /CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Certificate serial: 4164A15E2050126C3EED1C79A15394EE17758AF0 Authority key identifier: 0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34332e3232342e35362e302f32322d3234203d3e20313338393530.roa Signing time: Thu 16 Apr 2026 02:18:15 +0000 ROA not before: Thu 16 Apr 2026 02:13:15 +0000 ROA not after: Thu 15 Apr 2027 02:18:15 +0000 asID: 138950 IP address blocks: 43.224.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 16:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:64:a1:5e:20:50:12:6c:3e:ed:1c:79:a1:53:94:ee:17:75:8a:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4A64A90B48C8ED4AA286E8883D595B769FDF8B Validity Not Before: Apr 16 02:13:15 2026 GMT Not After : Apr 15 02:18:15 2027 GMT Subject: CN=F64F86B8A40C600EE5F2C2C7E09114B79C4BA1C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f3:f4:e4:50:32:e2:f6:58:4d:c4:d2:13:15: a0:89:b0:ae:26:2f:6b:2a:9d:a2:12:3c:c6:cd:32: 68:82:9b:c0:dd:ab:cf:8f:15:a4:39:e7:2b:6d:21: 67:ac:dd:b5:a6:e6:df:53:58:59:71:ba:0c:4b:69: 81:de:88:63:fd:78:4c:78:e0:01:82:3c:14:c2:cc: c3:c3:c9:be:03:b9:e6:1c:4c:de:5d:de:b4:e2:58: b9:88:0a:ef:0b:6b:c3:01:c9:82:cc:ec:84:40:4b: 7f:63:8f:f3:41:40:06:5d:4e:b5:8f:90:f9:0f:7f: ed:9c:71:eb:5b:bb:78:f5:3b:33:8c:3c:b9:f7:98: 94:70:9e:b6:20:8e:ef:e9:ef:5f:df:3d:b8:5c:32: eb:6b:3a:a0:78:c6:92:d0:a2:dc:a0:dc:ba:2a:24: 90:88:a6:51:02:45:de:3b:08:6d:ab:7c:42:4f:78: f7:13:27:a9:0a:d1:c9:3c:0e:49:28:4d:32:92:71: b2:48:72:3c:6c:61:15:cb:42:d5:d0:cc:bc:8a:92: 62:0e:7f:12:a7:67:ea:ee:96:5a:9b:eb:bc:c0:aa: 6f:26:35:df:cc:88:76:fc:85:b2:84:25:b9:db:0d: 78:88:db:3e:67:bd:28:6c:32:36:af:90:89:fe:33: a8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:4F:86:B8:A4:0C:60:0E:E5:F2:C2:C7:E0:91:14:B7:9C:4B:A1:C4 X509v3 Authority Key Identifier: keyid:0E:4A:64:A9:0B:48:C8:ED:4A:A2:86:E8:88:3D:59:5B:76:9F:DF:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0E4A64A90B48C8ED4AA286E8883D595B769FDF8B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095912410859962371/0/34332e3232342e35362e302f32322d3234203d3e20313338393530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.56.0/22 Signature Algorithm: sha256WithRSAEncryption 49:3b:07:bf:ea:c2:ec:9f:a8:53:9c:cf:27:95:a4:a6:52:6f: b3:1f:24:6a:df:97:1d:10:84:58:8f:c6:c1:e5:b8:ac:41:ee: 6d:b6:4e:e3:db:b4:33:91:fb:50:ce:b2:81:bd:07:7e:06:21: 55:c4:ce:ee:a3:18:1f:7e:2f:86:3c:00:ac:5e:9d:91:3e:39: 8f:e0:a0:59:c5:f2:a9:5d:f5:35:b7:73:9e:a3:77:c5:d2:8a: 76:52:1c:92:d5:ec:82:2b:df:93:44:b7:b2:cf:fe:1c:2e:a3: 8e:0b:55:b2:ed:b0:b4:9b:07:12:eb:40:f8:ae:16:e2:5f:22: f3:71:80:f3:e0:1e:86:77:05:f0:63:d4:5a:be:a5:2d:bf:e5: 93:a8:bb:a6:34:1e:d1:d3:2b:26:64:33:3c:6b:a5:45:13:7a: fc:c7:5e:f3:ec:9c:10:2a:30:69:6d:32:b4:d3:da:29:66:f0: 79:8f:7e:51:94:31:fa:12:3d:6c:7c:42:02:4c:47:6e:45:22: 22:71:f8:03:16:52:06:f6:36:36:05:65:58:90:90:67:a9:0a: 2f:ef:df:45:58:72:5f:a1:15:c4:8e:68:b7:74:f3:57:bd:c3: 5e:d2:46:f4:02:31:99:e1:de:66:b3:99:8c:c2:06:a7:04:60: 5e:0b:a7:e7 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUQWShXiBQEmw+7Rx5oVOU7hd1ivAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3 NjlGREY4QjAeFw0yNjA0MTYwMjEzMTVaFw0yNzA0MTUwMjE4MTVaMDMxMTAvBgNV BAMTKEY2NEY4NkI4QTQwQzYwMEVFNUYyQzJDN0UwOTExNEI3OUM0QkExQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL8/TkUDLi9lhNxNITFaCJsK4m L2sqnaISPMbNMmiCm8Ddq8+PFaQ55yttIWes3bWm5t9TWFlxugxLaYHeiGP9eEx4 4AGCPBTCzMPDyb4DueYcTN5d3rTiWLmICu8La8MByYLM7IRAS39jj/NBQAZdTrWP kPkPf+2ccetbu3j1OzOMPLn3mJRwnrYgju/p71/fPbhcMutrOqB4xpLQotyg3Loq JJCIplECRd47CG2rfEJPePcTJ6kK0ck8DkkoTTKScbJIcjxsYRXLQtXQzLyKkmIO fxKnZ+rullqb67zAqm8mNd/MiHb8hbKEJbnbDXiI2z5nvShsMjavkIn+M6gzAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU9k+GuKQMYA7l8sLH4JEUt5xLocQwHwYDVR0j BBgwFoAUDkpkqQtIyO1KooboiD1ZW3af34swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTkxMjQxMDg1OTk2MjM3MS8wLzBFNEE2NEE5MEI0OEM4RUQ0QUEyODZFODg4M0Q1 OTVCNzY5RkRGOEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEU0QTY0QTkwQjQ4QzhFRDRBQTI4NkU4ODgzRDU5NUI3NjlGREY4Qi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTkxMjQxMDg1OTk2MjM3MS8wLzM0MzMyZTMyMzIz NDJlMzUzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzMzODM5MzUzMC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivgODANBgkqhkiG9w0BAQsFAAOCAQEASTsHv+rC7J+oU5zPJ5WkplJv sx8kat+XHRCEWI/GweW4rEHubbZO49u0M5H7UM6ygb0HfgYhVcTO7qMYH34vhjwA rF6dkT45j+CgWcXyqV31NbdznqN3xdKKdlIcktXsgivfk0S3ss/+HC6jjgtVsu2w tJsHEutA+K4W4l8i83GA8+AehncF8GPUWr6lLb/lk6i7pjQe0dMrJmQzPGulRRN6 /Mde8+ycECowaW0ytNPaKWbweY9+UZQx+hI9bHxCAkxHbkUiInH4AxZSBvY2NgVl WJCQZ6kKL+/fRVhyX6EVxI5ot3TzV73DXtJG9AIxmeHeZrOZjMIGpwRgXgun5w== -----END CERTIFICATE-----Generated at Sat Apr 18 01:20:08 2026 by rpki-client