$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235352e3230322e302f32332d3233203d3e203633363437.roa File: 34332e3235352e3230322e302f32332d3233203d3e203633363437.roa (raw, json) Hash identifier: 7REn9RASQHZvN8euS0LAJMoryAYtn/bacCjh1LwDCoA= Subject key identifier: 31:CF:02:81:17:C4:38:72:89:2A:F2:10:E1:04:40:E5:AB:23:AD:9B Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 2146E4CC8D98C9BAEFE38399C11C50005A9CF7C1 Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235352e3230322e302f32332d3233203d3e203633363437.roa Signing time: Mon 13 Apr 2026 08:05:20 +0000 ROA not before: Mon 13 Apr 2026 08:00:20 +0000 ROA not after: Mon 12 Apr 2027 08:05:20 +0000 asID: 63647 IP address blocks: 43.255.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:46:e4:cc:8d:98:c9:ba:ef:e3:83:99:c1:1c:50:00:5a:9c:f7:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:00:20 2026 GMT Not After : Apr 12 08:05:20 2027 GMT Subject: CN=31CF028117C43872892AF210E10440E5AB23AD9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:71:e9:d2:57:ee:a2:ce:7c:07:35:bd:8a:4b: d9:b2:09:ca:f8:f6:56:52:af:3b:cf:c4:05:d6:e6: e7:b5:d7:02:3f:00:2d:a2:5a:c4:90:50:5a:32:98: 00:12:34:2c:28:ee:3b:3a:79:ea:6f:dd:f0:0e:9b: 35:ef:7e:4b:d9:1b:99:0b:34:c6:39:9d:66:07:81: 94:a0:7b:17:cd:bc:9c:5b:bf:3b:d7:5e:e8:da:a9: 9d:3c:15:97:c0:21:87:cb:06:db:96:ed:e6:2a:79: b9:4e:8e:a7:d6:bc:ff:7f:44:9d:1e:c6:df:e4:24: bc:e0:d4:7c:91:a3:d5:15:04:28:be:b0:80:24:30: ea:d0:96:67:bb:13:b8:eb:ac:83:2c:08:3a:8a:fd: ef:d3:de:23:42:d2:ed:06:4f:9f:a3:ae:b2:c0:8d: 78:5d:7e:dc:09:e7:37:30:5a:05:de:47:24:e0:7f: 0d:0e:92:05:f3:a8:bb:0e:5a:6c:7b:80:7b:82:f1: 21:db:c2:54:41:f0:67:52:54:cf:ff:36:d1:82:86: ab:bb:fb:ce:ce:4a:ef:b7:45:96:e5:0c:71:b6:99: fc:1b:a2:15:78:3e:c3:aa:c3:98:a6:6c:83:82:1d: 47:4a:9b:be:f1:e7:b4:2c:f2:18:77:46:98:65:5c: b5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CF:02:81:17:C4:38:72:89:2A:F2:10:E1:04:40:E5:AB:23:AD:9B X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/34332e3235352e3230322e302f32332d3233203d3e203633363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.202.0/23 Signature Algorithm: sha256WithRSAEncryption 86:94:65:6c:7d:32:ea:fe:6d:72:d2:d3:92:cf:c5:98:3c:93: c4:eb:c2:c5:e1:d6:66:9b:f5:89:56:71:b1:27:97:41:e3:8f: 40:8c:79:80:71:db:5e:8c:e2:85:6c:2d:cf:6f:99:d8:e3:dd: 37:98:bf:dd:86:18:3e:38:02:0c:c4:b7:e4:84:c6:b7:4b:0f: 72:7e:cf:fc:d0:4a:57:d7:70:ce:0c:ca:fa:ff:03:32:29:14: d5:4c:34:2f:8e:55:44:6c:4b:3c:89:fb:9b:bb:9a:51:ac:37: 3a:ec:ff:14:3d:fe:a5:7a:31:fb:78:bf:c7:fc:fb:62:ba:c4: d4:c5:d8:b1:36:08:ce:c0:ae:b0:4a:8b:36:60:11:4c:83:7b: ff:40:6b:64:0c:36:8c:e6:3c:97:cd:4e:bf:cf:6f:5a:f5:03: b7:b7:69:c3:1e:62:e4:47:0c:66:67:b4:76:f3:1d:a0:d0:2a: e9:27:fe:34:f5:b2:de:b5:47:6e:2a:e8:41:6c:44:da:f0:ae: ee:61:e4:fe:48:1c:8a:88:80:5a:83:db:38:c9:6c:86:a9:f3: 82:59:36:66:af:20:01:59:7f:68:76:54:47:e0:85:ee:37:ae: e0:64:64:d3:e4:b1:ca:c3:c3:b8:08:0e:40:27:a4:55:a3:a2: 4f:9e:4a:d5 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUIUbkzI2Yybrv44OZwRxQAFqc98EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAwMjBaFw0yNzA0MTIwODA1MjBaMDMxMTAvBgNV BAMTKDMxQ0YwMjgxMTdDNDM4NzI4OTJBRjIxMEUxMDQ0MEU1QUIyM0FEOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNcenSV+6iznwHNb2KS9myCcr4 9lZSrzvPxAXW5ue11wI/AC2iWsSQUFoymAASNCwo7js6eepv3fAOmzXvfkvZG5kL NMY5nWYHgZSgexfNvJxbvzvXXujaqZ08FZfAIYfLBtuW7eYqeblOjqfWvP9/RJ0e xt/kJLzg1HyRo9UVBCi+sIAkMOrQlme7E7jrrIMsCDqK/e/T3iNC0u0GT5+jrrLA jXhdftwJ5zcwWgXeRyTgfw0OkgXzqLsOWmx7gHuC8SHbwlRB8GdSVM//NtGChqu7 +87OSu+3RZblDHG2mfwbohV4PsOqw5imbIOCHUdKm77x57Qs8hh3RphlXLXJAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUMc8CgRfEOHKJKvIQ4QRA5asjrZswHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk3ODMxNjg4NTY1NTU1NS8wLzM0MzMyZTMyMzUz NTJlMzIzMDMyMmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzYzMzM2MzQzNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEASv/yjANBgkqhkiG9w0BAQsFAAOCAQEAhpRlbH0y6v5tctLTks/FmDyT xOvCxeHWZpv1iVZxsSeXQeOPQIx5gHHbXozihWwtz2+Z2OPdN5i/3YYYPjgCDMS3 5ITGt0sPcn7P/NBKV9dwzgzK+v8DMikU1Uw0L45VRGxLPIn7m7uaUaw3Ouz/FD3+ pXox+3i/x/z7YrrE1MXYsTYIzsCusEqLNmARTIN7/0BrZAw2jOY8l81Ov89vWvUD t7dpwx5i5EcMZme0dvMdoNAq6Sf+NPWy3rVHbiroQWxE2vCu7mHk/kgcioiAWoPb OMlshqnzglk2Zq8gAVl/aHZUR+CF7jeu4GRk0+SxysPDuAgOQCekVaOiT55K1Q== -----END CERTIFICATE-----Generated at Sat Apr 18 01:20:54 2026 by rpki-client