$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235352e3230302e302f32322d3232203d3e203633363437.roa File: 34332e3235352e3230302e302f32322d3232203d3e203633363437.roa (raw, json) Hash identifier: md7fYl91Lxt0c8GjUDNz/sn5ky2vltMG6Z5Oyh+X4U4= Subject key identifier: 68:E3:36:87:A2:C1:E2:79:5F:48:CA:7A:44:00:C2:50:55:8F:15:45 Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 45A16A60BE7F3CB2A483EB934C34B633494F37D9 Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235352e3230302e302f32322d3232203d3e203633363437.roa Signing time: Mon 13 Apr 2026 08:05:19 +0000 ROA not before: Mon 13 Apr 2026 08:00:19 +0000 ROA not after: Mon 12 Apr 2027 08:05:19 +0000 asID: 63647 IP address blocks: 43.255.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a1:6a:60:be:7f:3c:b2:a4:83:eb:93:4c:34:b6:33:49:4f:37:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:00:19 2026 GMT Not After : Apr 12 08:05:19 2027 GMT Subject: CN=68E33687A2C1E2795F48CA7A4400C250558F1545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b7:f3:17:6a:64:bf:93:86:61:9e:28:b7:b5: 1a:0b:f5:e0:c6:3e:d9:c9:9e:6b:14:f5:ca:30:aa: e9:c1:df:64:63:71:12:e9:20:42:84:09:61:39:92: 09:50:2f:19:98:a3:da:08:7c:62:3e:10:d6:15:2e: 4c:dd:43:69:80:2e:2f:e3:1b:d8:5d:33:2d:9e:86: ac:76:de:79:15:b8:83:8e:33:fb:22:65:7d:6b:9f: 88:7a:20:6f:50:8f:01:41:eb:c9:4e:46:04:0c:5b: a8:5b:ef:aa:08:7e:2f:d8:89:84:35:4f:14:d3:31: a9:bd:fc:69:73:0e:0c:1a:90:5a:52:13:70:2f:ef: 6f:b0:9e:0e:9c:a7:a8:1f:0d:55:de:16:33:4c:16: a7:84:5e:79:52:b5:01:b2:a7:57:41:ca:70:75:87: e9:a3:c1:01:9e:f2:88:89:75:fe:4a:86:14:a8:e1: 9a:6f:48:1e:37:04:2f:9c:85:80:cd:2b:a4:0f:24: d7:de:d4:75:5f:76:a0:41:18:b3:48:e2:f3:91:a1: 7f:75:3f:50:32:7c:0f:37:79:ae:d5:b9:24:8d:68: bd:1d:48:e8:f9:d2:81:ec:f4:73:38:79:d3:2d:44: 3f:a8:b9:9b:06:97:14:a3:2a:c7:80:26:11:64:22: eb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E3:36:87:A2:C1:E2:79:5F:48:CA:7A:44:00:C2:50:55:8F:15:45 X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235352e3230302e302f32322d3232203d3e203633363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.200.0/22 Signature Algorithm: sha256WithRSAEncryption a8:1e:2e:f5:5b:2c:7d:c5:8d:a0:b3:f0:7f:58:a9:1e:d9:f4: 9a:7b:91:37:08:ce:4f:e8:64:0d:a0:3e:00:94:6f:e6:52:52: 5c:43:d2:38:2f:64:00:0a:8d:e9:50:77:d6:12:b1:be:8e:1d: 46:ef:20:2f:b8:d8:02:a4:54:d8:d8:70:9c:b3:77:1b:6c:a2: 50:73:70:fe:a9:ae:1f:92:86:ce:14:81:53:0d:48:95:60:72: 62:58:12:89:de:d6:1e:e4:70:cf:39:21:2e:bd:58:38:e4:ce: ec:63:26:d5:b0:ba:58:f0:c7:c3:c8:99:1a:e6:e9:ab:86:0b: 49:fa:c1:7e:d1:78:69:dc:fe:00:1d:ff:36:86:95:1d:6d:aa: 06:3c:59:ad:4b:48:f9:15:ca:72:a9:60:8d:75:9c:bd:6b:f0: 90:db:28:e2:0d:aa:be:e5:8d:e4:c1:70:90:81:4c:1e:78:85: ab:ad:2b:52:e0:0c:43:dd:5b:ae:2e:ba:ad:db:b2:c0:61:77: c4:68:ae:a5:87:7d:18:40:93:6a:c9:67:4d:a4:5d:06:8d:10: 8e:06:80:a2:64:ab:ef:27:66:27:a0:ea:1d:dd:fe:10:ba:d5: ed:27:ee:24:e1:c2:bb:96:cc:da:70:3d:17:32:e0:d2:24:cc: c7:05:5f:47 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIURaFqYL5/PLKkg+uTTDS2M0lPN9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAwMTlaFw0yNzA0MTIwODA1MTlaMDMxMTAvBgNV BAMTKDY4RTMzNjg3QTJDMUUyNzk1RjQ4Q0E3QTQ0MDBDMjUwNTU4RjE1NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYt/MXamS/k4Zhnii3tRoL9eDG PtnJnmsU9cowqunB32RjcRLpIEKECWE5kglQLxmYo9oIfGI+ENYVLkzdQ2mALi/j G9hdMy2ehqx23nkVuIOOM/siZX1rn4h6IG9QjwFB68lORgQMW6hb76oIfi/YiYQ1 TxTTMam9/GlzDgwakFpSE3Av72+wng6cp6gfDVXeFjNMFqeEXnlStQGyp1dBynB1 h+mjwQGe8oiJdf5KhhSo4ZpvSB43BC+chYDNK6QPJNfe1HVfdqBBGLNI4vORoX91 P1AyfA83ea7VuSSNaL0dSOj50oHs9HM4edMtRD+ouZsGlxSjKseAJhFkIuuNAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUaOM2h6LB4nlfSMp6RADCUFWPFUUwHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk3ODMxNjg4NTY1NTU1NS8wLzM0MzMyZTMyMzUz NTJlMzIzMDMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzYzMzM2MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv/yDANBgkqhkiG9w0BAQsFAAOCAQEAqB4u9VssfcWNoLPwf1ipHtn0 mnuRNwjOT+hkDaA+AJRv5lJSXEPSOC9kAAqN6VB31hKxvo4dRu8gL7jYAqRU2Nhw nLN3G2yiUHNw/qmuH5KGzhSBUw1IlWByYlgSid7WHuRwzzkhLr1YOOTO7GMm1bC6 WPDHw8iZGubpq4YLSfrBftF4adz+AB3/NoaVHW2qBjxZrUtI+RXKcqlgjXWcvWvw kNso4g2qvuWN5MFwkIFMHniFq60rUuAMQ91bri66rduywGF3xGiupYd9GECTasln TaRdBo0QjgaAomSr7ydmJ6DqHd3+ELrV7SfuJOHCu5bM2nA9FzLg0iTMxwVfRw== -----END CERTIFICATE-----Generated at Sat Apr 18 01:20:59 2026 by rpki-client