$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3234322e38342e302f32322d3232203d3e203633363437.roa File: 34332e3234322e38342e302f32322d3232203d3e203633363437.roa (raw, json) Hash identifier: IxoHWD6DCsgGGORftBrjvAvmmZX4k4STRA22FWqJpf8= Subject key identifier: 4D:B8:D0:63:D1:F7:18:46:06:E0:6E:D9:17:16:96:C8:81:90:66:7C Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 0A97488AD9F66216025CC1885B2EBD7361F27A9F Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3234322e38342e302f32322d3232203d3e203633363437.roa Signing time: Mon 13 Apr 2026 08:05:20 +0000 ROA not before: Mon 13 Apr 2026 08:00:20 +0000 ROA not after: Mon 12 Apr 2027 08:05:20 +0000 asID: 63647 IP address blocks: 43.242.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:97:48:8a:d9:f6:62:16:02:5c:c1:88:5b:2e:bd:73:61:f2:7a:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:00:20 2026 GMT Not After : Apr 12 08:05:20 2027 GMT Subject: CN=4DB8D063D1F7184606E06ED9171696C88190667C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4a:ec:bb:82:ed:0e:9a:52:b1:ca:4e:0b:13: 13:0c:b6:54:26:56:6d:5a:38:18:92:2c:d2:28:c9: f2:7f:2d:f4:1a:d6:a3:9e:9b:7c:04:f5:c5:15:5c: b3:88:c6:35:3a:b1:3c:4f:e9:61:29:ff:96:08:64: 3a:ce:a8:43:8f:e3:4d:e0:ad:30:7e:46:5e:5d:8b: 1b:b8:a2:9d:09:f0:37:66:e9:48:83:98:7b:74:7c: aa:d6:3d:19:fa:e3:cc:e4:b8:69:9c:6f:68:16:c5: bb:d1:cd:e6:72:e2:14:47:e0:77:10:81:5a:ab:e6: 60:8f:a9:38:41:22:b4:9d:40:83:c5:40:12:5f:10: 46:68:28:1f:dd:24:5a:32:f8:20:98:54:c7:f0:2e: 6f:26:10:1e:89:f0:90:23:f2:cc:08:d4:00:4f:ff: e1:27:ce:f8:18:8b:eb:a2:0c:72:66:9c:7a:da:fb: e9:2c:d0:e6:df:91:6a:7a:e8:a6:c6:18:b4:d7:74: 92:67:a5:b4:6d:ce:e7:bc:75:8d:e7:ce:09:1b:b5: de:14:5e:92:31:5d:e2:a0:e9:de:45:8a:aa:32:6d: 3d:9c:e5:aa:9b:29:25:95:17:95:06:79:2a:3f:a6: 4b:85:b4:17:56:95:55:79:d1:70:b6:1c:8a:99:4e: a1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B8:D0:63:D1:F7:18:46:06:E0:6E:D9:17:16:96:C8:81:90:66:7C X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3234322e38342e302f32322d3232203d3e203633363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.84.0/22 Signature Algorithm: sha256WithRSAEncryption 90:ab:89:d3:74:47:33:4d:fb:76:bd:4b:0d:99:63:53:69:5d: 5f:54:05:e9:8f:66:65:42:60:51:6e:86:0b:65:6f:7a:53:91: a1:3f:f0:85:f1:77:d7:7c:02:42:47:73:d4:be:e0:da:ba:33: 60:4a:f2:d9:0b:0d:ed:01:5e:62:59:87:d0:12:ab:7f:51:11: c1:1f:5c:c1:d2:e4:21:a7:5a:b3:4c:3d:e9:5d:e7:84:43:64: 4c:5c:2d:55:7a:68:eb:65:e0:fd:b8:c8:33:d0:f5:32:ba:27: 73:aa:db:57:3d:50:db:91:d3:e1:ab:22:46:a7:2f:50:0b:00: b9:12:de:32:84:43:17:64:e7:cd:05:82:05:71:f3:ac:7f:13: 52:3a:26:d6:bc:76:de:20:61:fd:30:a1:16:f4:87:61:fb:e3: 51:6c:65:3f:90:83:f5:33:bd:6e:9d:b1:be:8e:7b:dd:06:72: 6d:65:0c:66:b4:b0:2a:86:9d:00:0c:22:1f:3d:d6:dc:05:3b: c3:a1:a0:2a:90:37:f8:54:54:d5:71:7c:5c:57:c8:54:b3:5e: 55:11:be:25:ee:01:4d:06:57:d1:a0:c0:60:ac:9f:f6:2e:df: f2:ae:d5:45:cc:72:53:42:6d:99:b2:e0:6f:e5:e9:7b:ee:c8: 9f:18:af:05 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUCpdIitn2YhYCXMGIWy69c2Hyep8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAwMjBaFw0yNzA0MTIwODA1MjBaMDMxMTAvBgNV BAMTKDREQjhEMDYzRDFGNzE4NDYwNkUwNkVEOTE3MTY5NkM4ODE5MDY2N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgSuy7gu0OmlKxyk4LExMMtlQm Vm1aOBiSLNIoyfJ/LfQa1qOem3wE9cUVXLOIxjU6sTxP6WEp/5YIZDrOqEOP403g rTB+Rl5dixu4op0J8Ddm6UiDmHt0fKrWPRn648zkuGmcb2gWxbvRzeZy4hRH4HcQ gVqr5mCPqThBIrSdQIPFQBJfEEZoKB/dJFoy+CCYVMfwLm8mEB6J8JAj8swI1ABP /+EnzvgYi+uiDHJmnHra++ks0ObfkWp66KbGGLTXdJJnpbRtzue8dY3nzgkbtd4U XpIxXeKg6d5FiqoybT2c5aqbKSWVF5UGeSo/pkuFtBdWlVV50XC2HIqZTqGJAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUTbjQY9H3GEYG4G7ZFxaWyIGQZnwwHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTc4MzE2ODg1NjU1NTU1LzAvMzQzMzJlMzIzNDMy MmUzODM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAivyVDANBgkqhkiG9w0BAQsFAAOCAQEAkKuJ03RHM037dr1LDZljU2ldX1QF 6Y9mZUJgUW6GC2VvelORoT/whfF313wCQkdz1L7g2rozYEry2QsN7QFeYlmH0BKr f1ERwR9cwdLkIadas0w96V3nhENkTFwtVXpo62Xg/bjIM9D1Mronc6rbVz1Q25HT 4asiRqcvUAsAuRLeMoRDF2TnzQWCBXHzrH8TUjom1rx23iBh/TChFvSHYfvjUWxl P5CD9TO9bp2xvo573QZybWUMZrSwKoadAAwiHz3W3AU7w6GgKpA3+FRU1XF8XFfI VLNeVRG+Je4BTQZX0aDAYKyf9i7f8q7VRcxyU0JtmbLgb+Xpe+7InxivBQ== -----END CERTIFICATE-----Generated at Sat Apr 18 01:21:21 2026 by rpki-client