$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235342e3137322e302f32322d3232203d3e203633363437.roa File: 34332e3235342e3137322e302f32322d3232203d3e203633363437.roa (raw, json) Hash identifier: lG2Te3jOLEmHhI2Ph1e/5/mpWpMgUvzlShbnLBwcpu4= Subject key identifier: 9C:86:DD:2F:CD:6C:65:88:1D:23:71:9F:5B:67:03:71:35:12:35:E2 Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 3C663C7AEBA40639F1343EFF2863950040FA8033 Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235342e3137322e302f32322d3232203d3e203633363437.roa Signing time: Mon 13 Apr 2026 08:05:20 +0000 ROA not before: Mon 13 Apr 2026 08:00:20 +0000 ROA not after: Mon 12 Apr 2027 08:05:20 +0000 asID: 63647 IP address blocks: 43.254.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:66:3c:7a:eb:a4:06:39:f1:34:3e:ff:28:63:95:00:40:fa:80:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:00:20 2026 GMT Not After : Apr 12 08:05:20 2027 GMT Subject: CN=9C86DD2FCD6C65881D23719F5B670371351235E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6a:d8:61:d7:70:9d:e6:52:d5:0e:6e:96:0a: 5f:ca:a2:0a:ab:3f:34:23:cb:f1:3f:55:f9:05:42: 19:38:fa:71:f9:25:48:8b:0e:6e:ad:d6:ae:31:e2: 04:83:e8:7f:cb:56:4f:29:22:c5:d9:ee:7a:98:78: ee:32:c8:d1:0f:02:76:10:e9:ef:9f:d3:65:a1:ec: 2b:67:fb:8e:46:2d:d2:e3:60:c8:b0:d6:13:96:4f: 20:22:7b:a6:25:80:27:93:3d:39:34:a4:d3:be:0b: d9:99:d7:fa:8d:bb:e6:a1:46:e7:7d:08:f6:a1:b9: 69:51:ce:90:a2:c5:e8:43:e0:61:c7:a9:db:af:5b: 0b:11:a4:f7:32:55:e8:d6:bc:af:ce:d9:ab:66:f9: 91:69:16:a6:dc:59:91:f7:2a:f2:02:b5:c8:04:4d: 7a:5a:b2:81:08:d9:d6:ca:54:0f:db:59:43:14:3b: 6c:83:f1:80:da:d3:a2:93:b1:79:4b:c4:bc:a5:04: 55:d3:24:a2:fb:22:4f:f5:ad:86:c0:d9:12:21:1d: 20:a4:20:42:d8:4f:87:7e:31:57:64:99:5b:f4:05: c6:c6:16:4e:b4:9b:e1:20:95:ce:cc:84:fe:f2:8f: be:55:68:4f:28:e4:01:4b:37:24:24:f9:c6:d6:61: c0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:86:DD:2F:CD:6C:65:88:1D:23:71:9F:5B:67:03:71:35:12:35:E2 X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235342e3137322e302f32322d3232203d3e203633363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.172.0/22 Signature Algorithm: sha256WithRSAEncryption 98:1f:7a:ea:bb:10:28:0b:ee:30:c7:94:f4:aa:1e:13:ba:bb: 69:23:1f:7d:3c:46:35:32:4d:36:8d:ff:c8:77:3f:82:ba:0a: 5b:46:6b:34:2a:ea:18:00:28:ca:13:69:e7:80:3a:0f:bc:da: 5c:ad:2e:da:d4:de:9f:c6:6a:99:8d:d5:09:bb:7b:d3:31:a5: f8:94:a8:4b:47:b8:cc:a5:69:63:25:e0:b7:c9:30:94:f4:1e: 0e:8a:44:21:45:ea:b3:d6:8a:46:a6:3a:33:77:f1:73:91:27: 31:73:e9:53:9e:05:e6:87:8e:94:a7:04:04:62:a4:ab:56:d6: 36:96:8a:86:ee:a8:df:23:2a:fd:1b:98:a0:c5:d8:dc:ec:78: 0d:64:b0:2f:ac:04:de:62:5e:3f:e0:b6:db:1f:e9:24:e4:78: e4:fc:4b:38:0c:f1:94:85:c3:71:48:91:be:ea:36:89:cc:f2: 8b:ed:a9:81:6c:92:8e:79:60:18:0f:96:19:b8:1a:26:32:18: 1c:d8:7a:2e:0c:7c:9a:1f:16:0e:82:45:74:f6:e2:a5:b7:ca: 28:03:c1:e2:d9:15:90:39:74:fd:fc:1d:d5:0a:1b:5a:7d:5b: 85:51:8e:a6:a0:bf:24:57:d4:90:15:5d:ac:dc:83:54:09:ab: 27:b0:52:9f -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPGY8euukBjnxND7/KGOVAED6gDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAwMjBaFw0yNzA0MTIwODA1MjBaMDMxMTAvBgNV BAMTKDlDODZERDJGQ0Q2QzY1ODgxRDIzNzE5RjVCNjcwMzcxMzUxMjM1RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoathh13Cd5lLVDm6WCl/Kogqr PzQjy/E/VfkFQhk4+nH5JUiLDm6t1q4x4gSD6H/LVk8pIsXZ7nqYeO4yyNEPAnYQ 6e+f02Wh7Ctn+45GLdLjYMiw1hOWTyAie6YlgCeTPTk0pNO+C9mZ1/qNu+ahRud9 CPahuWlRzpCixehD4GHHqduvWwsRpPcyVejWvK/O2atm+ZFpFqbcWZH3KvICtcgE TXpasoEI2dbKVA/bWUMUO2yD8YDa06KTsXlLxLylBFXTJKL7Ik/1rYbA2RIhHSCk IELYT4d+MVdkmVv0BcbGFk60m+Eglc7MhP7yj75VaE8o5AFLNyQk+cbWYcClAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUnIbdL81sZYgdI3GfW2cDcTUSNeIwHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk3ODMxNjg4NTY1NTU1NS8wLzM0MzMyZTMyMzUz NDJlMzEzNzMyMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv+rDANBgkqhkiG9w0BAQsFAAOCAQEAmB966rsQKAvuMMeU9KoeE7q7 aSMffTxGNTJNNo3/yHc/groKW0ZrNCrqGAAoyhNp54A6D7zaXK0u2tTen8ZqmY3V Cbt70zGl+JSoS0e4zKVpYyXgt8kwlPQeDopEIUXqs9aKRqY6M3fxc5EnMXPpU54F 5oeOlKcEBGKkq1bWNpaKhu6o3yMq/RuYoMXY3Ox4DWSwL6wE3mJeP+C22x/pJOR4 5PxLOAzxlIXDcUiRvuo2iczyi+2pgWySjnlgGA+WGbgaJjIYHNh6Lgx8mh8WDoJF dPbipbfKKAPB4tkVkDl0/fwd1QobWn1bhVGOpqC/JFfUkBVdrNyDVAmrJ7BSnw== -----END CERTIFICATE-----Generated at Sat Apr 18 01:20:51 2026 by rpki-client