$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095984294767099905/0/34332e3234372e3138342e302f32322d3332203d3e203233373234.roa File: 34332e3234372e3138342e302f32322d3332203d3e203233373234.roa (raw, json) Hash identifier: TP0dXFP6J3YoHPWv+68Yw+2qDs8x5/9THiU9vM0SoMI= Subject key identifier: D9:09:86:20:A6:2D:27:96:A7:9F:08:29:63:AD:25:59:59:5A:7F:52 Certificate issuer: /CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Certificate serial: 3E759D389DB07134DA3B10A1EF6FBCDB9E29DF6B Authority key identifier: 20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/34332e3234372e3138342e302f32322d3332203d3e203233373234.roa Signing time: Wed 15 Apr 2026 07:53:56 +0000 ROA not before: Wed 15 Apr 2026 07:48:56 +0000 ROA not after: Wed 14 Apr 2027 07:53:56 +0000 asID: 23724 IP address blocks: 43.247.184.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:75:9d:38:9d:b0:71:34:da:3b:10:a1:ef:6f:bc:db:9e:29:df:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Validity Not Before: Apr 15 07:48:56 2026 GMT Not After : Apr 14 07:53:56 2027 GMT Subject: CN=D9098620A62D2796A79F082963AD2559595A7F52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:11:97:b3:14:d0:c8:03:a3:dc:94:79:22:d0: d0:74:f7:26:6c:f6:ea:af:2a:48:2f:60:61:60:44: 1e:19:76:c1:04:97:3a:da:ec:06:46:3a:19:b6:f0: 0d:07:d3:44:b1:cf:95:db:8e:dc:cf:ad:60:d1:6e: 92:e3:9f:c4:ee:76:40:d6:8d:c0:1e:1a:50:f0:36: 1d:c6:8b:07:af:05:0a:ec:d8:49:ae:ce:27:27:85: fe:f8:8d:35:b2:1a:7b:fd:12:00:cc:0c:9f:64:0c: 13:5d:33:c6:e5:80:21:5e:3f:f2:d0:a3:f9:20:69: 78:b5:ce:7d:80:ac:45:57:cb:51:20:4f:d4:ed:e0: 94:15:e3:97:e6:6d:e0:15:23:44:49:1c:e3:be:09: 48:32:a8:1f:70:a1:ef:2c:e5:6b:c4:a5:9a:bb:05: 5e:3b:02:c8:05:1e:a1:fc:d7:f6:5c:2a:32:b4:9b: 39:7a:6d:56:4c:10:6a:80:53:62:7c:2f:40:79:89: 0f:62:a5:f1:a9:79:c4:c0:2e:29:80:55:35:ca:bc: ef:c2:77:e6:11:3e:e6:4b:74:e5:4a:a7:a5:b9:a3: 2a:58:b7:25:3d:7a:32:20:8a:1c:15:07:ef:06:ba: da:f7:b0:0e:e2:e2:d0:44:6e:5c:de:b7:43:0a:99: a7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:09:86:20:A6:2D:27:96:A7:9F:08:29:63:AD:25:59:59:5A:7F:52 X509v3 Authority Key Identifier: keyid:20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/34332e3234372e3138342e302f32322d3332203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.184.0/22 Signature Algorithm: sha256WithRSAEncryption 00:79:14:f1:e4:f8:d8:ea:c3:eb:69:d9:53:a0:7d:3a:a2:90: b9:02:d9:cf:98:2a:37:62:c9:f1:f7:ef:b1:3e:cb:99:2b:c1: 74:d7:65:d9:f0:68:9f:52:16:60:5e:c2:0d:63:12:87:d3:c3: 48:84:28:36:48:96:d6:3f:c7:f3:01:a7:c3:9b:38:a5:a8:55: 03:0f:cc:61:66:11:6d:e5:ef:1a:a3:98:1c:01:f6:c1:36:fe: 85:d2:06:de:66:cd:d7:31:37:49:04:a3:51:7c:19:8d:96:65: dc:21:16:b1:b9:3f:32:c7:bf:c3:ed:c6:75:c3:34:ee:c7:7e: 7e:d9:06:bb:69:5b:5c:b0:00:aa:f0:25:1a:b9:1a:46:32:69: 6e:bb:64:94:7e:e8:73:39:23:70:e7:01:c6:2a:8b:ca:cf:b4: 5f:2c:b7:45:de:34:b3:c7:e5:bc:62:39:c0:aa:61:71:d8:f0: c3:12:de:08:d1:c1:b2:a0:1f:5c:d9:75:54:c7:a1:11:63:45: e6:db:46:dc:df:fa:5a:38:1c:78:e7:6c:2a:8d:07:65:21:4f: 7c:5a:1f:5e:29:8c:dd:fd:59:f7:92:fc:b5:56:e9:70:6b:2e: ac:6d:6e:2a:7d:8b:d5:8f:dc:d6:b7:14:76:90:cb:b5:c0:11: 08:2a:e0:45 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUPnWdOJ2wcTTaOxCh72+8254p32swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3 OEMxRTMxNTAeFw0yNjA0MTUwNzQ4NTZaFw0yNzA0MTQwNzUzNTZaMDMxMTAvBgNV BAMTKEQ5MDk4NjIwQTYyRDI3OTZBNzlGMDgyOTYzQUQyNTU5NTk1QTdGNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVEZezFNDIA6PclHki0NB09yZs 9uqvKkgvYGFgRB4ZdsEElzra7AZGOhm28A0H00Sxz5XbjtzPrWDRbpLjn8TudkDW jcAeGlDwNh3GiwevBQrs2Emuzicnhf74jTWyGnv9EgDMDJ9kDBNdM8blgCFeP/LQ o/kgaXi1zn2ArEVXy1EgT9Tt4JQV45fmbeAVI0RJHOO+CUgyqB9woe8s5WvEpZq7 BV47AsgFHqH81/ZcKjK0mzl6bVZMEGqAU2J8L0B5iQ9ipfGpecTALimAVTXKvO/C d+YRPuZLdOVKp6W5oypYtyU9ejIgihwVB+8Gutr3sA7i4tBEblzet0MKmaffAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU2QmGIKYtJ5annwgpY60lWVlaf1IwHwYDVR0j BBgwFoAUIMrI5wtcswlOR/8FFiOphXjB4xUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk4NDI5NDc2NzA5OTkwNS8wLzIwQ0FDOEU3MEI1Q0IzMDk0RTQ3RkYwNTE2MjNB OTg1NzhDMUUzMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3OEMxRTMxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk4NDI5NDc2NzA5OTkwNS8wLzM0MzMyZTMyMzQz NzJlMzEzODM0MmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzIzMzM3MzIzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv3uDANBgkqhkiG9w0BAQsFAAOCAQEAAHkU8eT42OrD62nZU6B9OqKQ uQLZz5gqN2LJ8ffvsT7LmSvBdNdl2fBon1IWYF7CDWMSh9PDSIQoNkiW1j/H8wGn w5s4pahVAw/MYWYRbeXvGqOYHAH2wTb+hdIG3mbN1zE3SQSjUXwZjZZl3CEWsbk/ Mse/w+3GdcM07sd+ftkGu2lbXLAAqvAlGrkaRjJpbrtklH7oczkjcOcBxiqLys+0 Xyy3Rd40s8flvGI5wKphcdjwwxLeCNHBsqAfXNl1VMehEWNF5ttG3N/6WjgceOds Ko0HZSFPfFofXimM3f1Z95L8tVbpcGsurG1uKn2L1Y/c1rcUdpDLtcARCCrgRQ== -----END CERTIFICATE-----Generated at Sat Apr 18 02:28:23 2026 by rpki-client