$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235342e3137322e302f32322d3232203d3e2034383038.roa File: 34332e3235342e3137322e302f32322d3232203d3e2034383038.roa (raw, json) Hash identifier: ecz6eKDp5LMTZNwi/FceAVWwOE4xurxpGjZMjrIChLU= Subject key identifier: 73:87:9E:76:B7:19:29:C8:50:48:F9:61:77:2F:E8:8E:8A:37:48:8A Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 73D4543B46C41655C58DE1E3A4FBDBDF8F719DBB Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235342e3137322e302f32322d3232203d3e2034383038.roa Signing time: Mon 13 Apr 2026 08:05:20 +0000 ROA not before: Mon 13 Apr 2026 08:00:20 +0000 ROA not after: Mon 12 Apr 2027 08:05:20 +0000 asID: 4808 IP address blocks: 43.254.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:d4:54:3b:46:c4:16:55:c5:8d:e1:e3:a4:fb:db:df:8f:71:9d:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:00:20 2026 GMT Not After : Apr 12 08:05:20 2027 GMT Subject: CN=73879E76B71929C85048F961772FE88E8A37488A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:60:ad:b1:d7:91:32:04:43:df:00:c1:d1:40: d9:2a:c8:6e:f7:a2:d8:eb:f0:0f:08:02:f7:fa:3e: fc:ad:0d:dc:6d:3a:d4:87:b0:92:7f:ae:05:1d:e3: 37:fa:08:e8:a0:f0:cf:90:32:0f:47:a5:bf:d1:89: 57:b9:09:45:52:44:88:2d:f8:c5:7e:3f:1e:45:8d: a2:6a:43:ca:43:05:31:c8:e4:ee:90:57:98:8e:11: c6:f7:bd:b9:83:6e:7e:8f:c4:e8:5e:30:f3:fa:20: b3:88:b3:37:09:b9:f1:2d:a9:d0:06:38:1a:25:53: c7:c3:9a:d1:7b:1d:80:f9:e2:f7:25:04:0e:e9:b8: 2b:48:0f:4e:d1:cd:05:99:d0:de:12:31:17:9c:3f: 8a:53:60:1f:29:7f:aa:b9:7d:20:e4:30:18:b4:78: 26:da:71:6f:2b:80:dc:06:23:11:fe:a1:78:d5:1f: 2b:c6:66:40:18:8e:9f:7f:9e:70:35:b7:af:72:1b: 12:33:55:01:3a:7b:6d:2d:3f:71:bc:6e:38:21:b7: a7:a0:a2:05:ed:94:ad:11:44:2b:f6:34:c5:da:65: 73:e7:49:c6:be:8b:da:b3:eb:5c:7b:6f:2d:ff:a2: af:b0:48:b0:26:95:d0:4c:fe:b4:fe:d9:b6:05:1d: 52:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:87:9E:76:B7:19:29:C8:50:48:F9:61:77:2F:E8:8E:8A:37:48:8A X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235342e3137322e302f32322d3232203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.172.0/22 Signature Algorithm: sha256WithRSAEncryption 57:37:eb:51:49:7f:bc:25:99:3a:75:ed:5a:8c:ac:a5:54:51: 02:2b:e4:ef:0b:71:6e:30:63:82:bd:4e:9e:6d:9c:73:0e:5b: ed:4a:b0:62:fa:7d:ca:33:ba:43:93:02:34:c3:06:19:37:e9: 42:f8:72:82:84:e5:5a:e7:91:19:dd:93:06:29:45:5d:8d:8c: b9:f5:97:30:95:1b:d8:5f:09:0a:e4:db:b8:19:32:53:1e:e6: a6:5b:99:65:05:09:4a:5b:bb:91:f3:ec:37:1a:5a:bf:b2:70: d0:b5:3c:b2:95:ba:21:7f:5e:cf:68:94:1d:d6:98:d1:40:73: e8:cf:f6:cf:32:12:ba:08:7b:a6:cf:ca:77:31:0e:ca:67:78: 1f:4e:f1:26:1c:59:fb:14:77:80:ed:47:71:bc:0c:72:a4:80: b5:38:f1:05:15:9a:0e:76:a2:93:bc:b9:39:1f:40:18:b0:a6: 69:04:59:a3:3d:c5:70:03:68:ef:f0:83:0b:d9:1a:b9:08:d1: e5:78:3f:2b:2b:af:30:cd:b6:69:65:5e:b4:7f:f9:fe:61:fb: b4:32:66:9d:19:fa:87:d4:bf:8a:f1:af:3b:79:e3:c8:10:3f: fa:04:ce:97:01:f2:79:35:a4:09:d6:ca:82:8f:f4:d8:c3:35: 11:3b:5c:3c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUc9RUO0bEFlXFjeHjpPvb349xnbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAwMjBaFw0yNzA0MTIwODA1MjBaMDMxMTAvBgNV BAMTKDczODc5RTc2QjcxOTI5Qzg1MDQ4Rjk2MTc3MkZFODhFOEEzNzQ4OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYYK2x15EyBEPfAMHRQNkqyG73 otjr8A8IAvf6PvytDdxtOtSHsJJ/rgUd4zf6COig8M+QMg9Hpb/RiVe5CUVSRIgt +MV+Px5FjaJqQ8pDBTHI5O6QV5iOEcb3vbmDbn6PxOheMPP6ILOIszcJufEtqdAG OBolU8fDmtF7HYD54vclBA7puCtID07RzQWZ0N4SMRecP4pTYB8pf6q5fSDkMBi0 eCbacW8rgNwGIxH+oXjVHyvGZkAYjp9/nnA1t69yGxIzVQE6e20tP3G8bjght6eg ogXtlK0RRCv2NMXaZXPnSca+i9qz61x7by3/oq+wSLAmldBM/rT+2bYFHVJtAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUc4eedrcZKchQSPlhdy/ojoo3SIowHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTc4MzE2ODg1NjU1NTU1LzAvMzQzMzJlMzIzNTM0 MmUzMTM3MzIyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv+rDANBgkqhkiG9w0BAQsFAAOCAQEAVzfrUUl/vCWZOnXtWoyspVRRAivk 7wtxbjBjgr1Onm2ccw5b7UqwYvp9yjO6Q5MCNMMGGTfpQvhygoTlWueRGd2TBilF XY2MufWXMJUb2F8JCuTbuBkyUx7mpluZZQUJSlu7kfPsNxpav7Jw0LU8spW6IX9e z2iUHdaY0UBz6M/2zzISugh7ps/KdzEOymd4H07xJhxZ+xR3gO1HcbwMcqSAtTjx BRWaDnaik7y5OR9AGLCmaQRZoz3FcANo7/CDC9kauQjR5Xg/KyuvMM22aWVetH/5 /mH7tDJmnRn6h9S/ivGvO3njyBA/+gTOlwHyeTWkCdbKgo/02MM1ETtcPA== -----END CERTIFICATE-----Generated at Fri Apr 17 21:12:59 2026 by rpki-client