$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095984294767099905/0/34332e3234372e3138342e302f32322d3332203d3e203536303438.roa File: 34332e3234372e3138342e302f32322d3332203d3e203536303438.roa (raw, json) Hash identifier: C/FXsL3L/3Jsgkl+fBV8LPbIlHgWxnnbtmRbpXzbwUQ= Subject key identifier: 5E:A7:FF:C1:E3:E9:A6:16:66:51:95:DD:B0:6F:DC:D8:BA:14:C7:68 Certificate issuer: /CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Certificate serial: 5B81CEDC5C14C4633D1FEDB213D3B3B5EC1F6205 Authority key identifier: 20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/34332e3234372e3138342e302f32322d3332203d3e203536303438.roa Signing time: Wed 15 Apr 2026 07:45:41 +0000 ROA not before: Wed 15 Apr 2026 07:40:41 +0000 ROA not after: Wed 14 Apr 2027 07:45:41 +0000 asID: 56048 IP address blocks: 43.247.184.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:81:ce:dc:5c:14:c4:63:3d:1f:ed:b2:13:d3:b3:b5:ec:1f:62:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20CAC8E70B5CB3094E47FF051623A98578C1E315 Validity Not Before: Apr 15 07:40:41 2026 GMT Not After : Apr 14 07:45:41 2027 GMT Subject: CN=5EA7FFC1E3E9A616665195DDB06FDCD8BA14C768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:63:26:ac:fe:da:2c:05:27:6d:7c:ce:7c:fa: 99:c2:f0:56:0d:34:c1:8f:70:f8:f3:72:37:51:f3: 89:45:93:10:27:63:d2:97:ef:97:cc:f9:f3:96:7b: e2:ec:6c:18:2d:18:23:98:92:9e:02:55:56:a9:d5: f9:0e:77:0f:8f:9e:28:c5:f0:7b:0b:77:73:6b:07: f8:d1:31:df:fa:1c:8c:81:61:d7:1c:b8:16:e2:9e: db:4b:52:ec:b9:7b:76:62:77:48:a0:b3:33:b5:43: b3:2d:ad:2e:50:82:7c:09:64:af:d7:fe:8d:23:c6: 73:93:45:20:69:fc:65:6d:91:b3:1d:0c:e0:2d:cf: a6:e1:89:a4:10:dd:e8:03:79:76:aa:97:fb:02:49: 2b:40:9f:6b:b7:3b:7a:72:ca:4f:69:cf:2e:0d:52: 36:31:5b:70:7d:b2:3e:ba:1a:86:41:c3:9d:67:7d: 9e:b0:4e:08:aa:da:1c:96:b7:36:d8:c0:33:25:ea: 5f:aa:71:87:46:d4:e2:cf:17:b7:8a:a9:ce:9d:ed: fb:54:ed:92:5d:c9:ac:63:06:f7:98:7c:9d:5b:d3: 74:be:40:11:a5:7f:e5:c0:9f:f9:5a:de:5b:7b:50: 16:50:91:e2:0a:4a:0a:eb:7b:b4:b2:13:cd:ff:af: c9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A7:FF:C1:E3:E9:A6:16:66:51:95:DD:B0:6F:DC:D8:BA:14:C7:68 X509v3 Authority Key Identifier: keyid:20:CA:C8:E7:0B:5C:B3:09:4E:47:FF:05:16:23:A9:85:78:C1:E3:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/20CAC8E70B5CB3094E47FF051623A98578C1E315.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/20CAC8E70B5CB3094E47FF051623A98578C1E315.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095984294767099905/0/34332e3234372e3138342e302f32322d3332203d3e203536303438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.247.184.0/22 Signature Algorithm: sha256WithRSAEncryption a6:3f:40:17:68:73:68:00:9a:40:2e:f3:3a:f4:f7:1b:f3:c3: 10:93:db:d6:47:16:52:b5:41:f4:0a:97:42:3e:44:3a:4e:01: 5f:3f:7a:c4:9f:8a:9b:a7:87:ad:0c:57:03:a8:dc:8a:d6:74: 3f:5e:ee:42:f2:a1:85:be:78:e7:08:9e:85:23:9e:91:36:2a: 77:8b:c1:af:2d:b2:c8:72:a1:11:4d:3a:a3:6c:b8:29:ff:97: ed:fb:5b:50:2f:39:68:e7:67:8f:18:6c:d4:53:2f:76:27:ae: b9:a5:08:e0:71:42:95:7c:07:af:d0:69:c3:dd:68:b1:fb:ea: 1f:9a:7b:78:9c:99:5d:6f:3c:83:ba:29:83:53:5a:7d:3e:b7: 6f:50:9c:04:52:1f:ff:8b:76:36:a4:a1:9d:db:0c:3e:84:6e: 7f:0e:06:63:36:52:97:6e:3e:3b:30:ee:d4:8b:17:f9:93:d4: af:7f:be:13:98:ec:fc:cb:fe:3c:f0:59:a8:71:a4:a3:b0:07: 65:67:c1:3f:33:68:fc:14:6a:6d:eb:02:af:9a:31:ed:47:f0: 4c:bd:2e:86:64:60:d7:9d:8a:e4:e3:0d:1e:14:73:81:13:0a: 46:5d:65:f4:67:59:f8:ec:eb:3f:3e:33:d2:bb:f2:d7:c5:10: 8c:90:7b:52 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUW4HO3FwUxGM9H+2yE9OztewfYgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3 OEMxRTMxNTAeFw0yNjA0MTUwNzQwNDFaFw0yNzA0MTQwNzQ1NDFaMDMxMTAvBgNV BAMTKDVFQTdGRkMxRTNFOUE2MTY2NjUxOTVEREIwNkZEQ0Q4QkExNEM3NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzYyas/tosBSdtfM58+pnC8FYN NMGPcPjzcjdR84lFkxAnY9KX75fM+fOWe+LsbBgtGCOYkp4CVVap1fkOdw+PnijF 8HsLd3NrB/jRMd/6HIyBYdccuBbinttLUuy5e3Zid0igszO1Q7MtrS5QgnwJZK/X /o0jxnOTRSBp/GVtkbMdDOAtz6bhiaQQ3egDeXaql/sCSStAn2u3O3pyyk9pzy4N UjYxW3B9sj66GoZBw51nfZ6wTgiq2hyWtzbYwDMl6l+qcYdG1OLPF7eKqc6d7ftU 7ZJdyaxjBveYfJ1b03S+QBGlf+XAn/la3lt7UBZQkeIKSgrre7SyE83/r8nLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUXqf/wePpphZmUZXdsG/c2LoUx2gwHwYDVR0j BBgwFoAUIMrI5wtcswlOR/8FFiOphXjB4xUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk4NDI5NDc2NzA5OTkwNS8wLzIwQ0FDOEU3MEI1Q0IzMDk0RTQ3RkYwNTE2MjNB OTg1NzhDMUUzMTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjBDQUM4RTcwQjVDQjMwOTRFNDdGRjA1MTYyM0E5ODU3OEMxRTMxNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk4NDI5NDc2NzA5OTkwNS8wLzM0MzMyZTMyMzQz NzJlMzEzODM0MmUzMDJmMzIzMjJkMzMzMjIwM2QzZTIwMzUzNjMwMzQzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAiv3uDANBgkqhkiG9w0BAQsFAAOCAQEApj9AF2hzaACaQC7zOvT3G/PD EJPb1kcWUrVB9AqXQj5EOk4BXz96xJ+Km6eHrQxXA6jcitZ0P17uQvKhhb545wie hSOekTYqd4vBry2yyHKhEU06o2y4Kf+X7ftbUC85aOdnjxhs1FMvdieuuaUI4HFC lXwHr9Bpw91osfvqH5p7eJyZXW88g7opg1NafT63b1CcBFIf/4t2NqShndsMPoRu fw4GYzZSl24+OzDu1IsX+ZPUr3++E5js/Mv+PPBZqHGko7AHZWfBPzNo/BRqbesC r5ox7UfwTL0uhmRg152K5OMNHhRzgRMKRl1l9GdZ+OzrPz4z0rvy18UQjJB7Ug== -----END CERTIFICATE-----Generated at Fri Apr 17 22:26:40 2026 by rpki-client