$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096256463749251074/0/34332e3235342e382e302f32322d3234203d3e2034383337.roa File: 34332e3235342e382e302f32322d3234203d3e2034383337.roa (raw, json) Hash identifier: 4VOL+FHU5oMndMfPy+9vcSEIegfTuNgRB1Pd44NTIFE= Subject key identifier: 6E:04:D8:45:6D:60:4E:E2:8A:C3:16:D3:60:96:7A:CD:71:EE:C4:1E Certificate issuer: /CN=E9C413C596FB166D0625FAF7B4A9D7CA2401C254 Certificate serial: 2B1AAF599B7A9070F0A7FBDD32BA5D7A28CDB00F Authority key identifier: E9:C4:13:C5:96:FB:16:6D:06:25:FA:F7:B4:A9:D7:CA:24:01:C2:54 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E9C413C596FB166D0625FAF7B4A9D7CA2401C254.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096256463749251074/0/34332e3235342e382e302f32322d3234203d3e2034383337.roa Signing time: Tue 14 Apr 2026 07:21:58 +0000 ROA not before: Tue 14 Apr 2026 07:16:58 +0000 ROA not after: Tue 13 Apr 2027 07:21:58 +0000 asID: 4837 IP address blocks: 43.254.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096256463749251074/0/E9C413C596FB166D0625FAF7B4A9D7CA2401C254.crl rsync://rpki-rps.cnnic.cn/repo/A1096256463749251074/0/E9C413C596FB166D0625FAF7B4A9D7CA2401C254.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E9C413C596FB166D0625FAF7B4A9D7CA2401C254.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 06:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:1a:af:59:9b:7a:90:70:f0:a7:fb:dd:32:ba:5d:7a:28:cd:b0:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9C413C596FB166D0625FAF7B4A9D7CA2401C254 Validity Not Before: Apr 14 07:16:58 2026 GMT Not After : Apr 13 07:21:58 2027 GMT Subject: CN=6E04D8456D604EE28AC316D360967ACD71EEC41E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b6:7c:20:e2:aa:60:b9:9c:22:c0:ca:97:1d: 4b:12:8a:64:03:c8:2c:24:a2:91:c7:c1:f3:e1:e6: 28:3d:b8:40:92:a2:b7:48:4a:52:ea:ec:8c:1b:a7: 2d:07:f7:5d:db:98:90:f1:28:45:86:da:ee:c0:4b: c6:78:59:cb:91:0d:ec:82:f0:35:d7:96:e0:e0:50: cb:6a:ec:ac:3a:c3:2d:7b:18:a5:42:93:8e:fd:bb: 5a:df:af:1b:74:e8:74:f9:0e:75:51:27:d6:d1:43: 89:b1:76:c8:4f:52:10:5d:81:aa:c7:1a:aa:22:57: 54:f7:8e:43:b8:7b:b3:24:20:ed:ff:1a:fa:52:77: 90:36:97:ef:d4:d8:de:d8:5c:f6:b9:0d:58:bb:4f: 90:11:81:c6:ed:27:c4:ac:65:80:27:f4:a9:88:14: a7:21:03:71:f0:0a:62:1f:30:5b:b5:77:70:b1:ab: b1:12:25:be:01:8c:72:cc:09:6a:f0:53:72:cc:7d: 4a:2c:9f:c6:b2:f7:4e:8d:0b:6b:35:b6:5d:75:4f: 3c:c2:e4:da:ec:c3:b6:27:4c:99:36:18:20:8a:fd: bf:dd:4b:88:e2:b5:51:42:48:a5:3b:29:e4:7e:a4: 09:01:54:2d:3f:52:e2:7e:1d:d1:43:4f:f9:6d:9f: 7c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:04:D8:45:6D:60:4E:E2:8A:C3:16:D3:60:96:7A:CD:71:EE:C4:1E X509v3 Authority Key Identifier: keyid:E9:C4:13:C5:96:FB:16:6D:06:25:FA:F7:B4:A9:D7:CA:24:01:C2:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096256463749251074/0/E9C413C596FB166D0625FAF7B4A9D7CA2401C254.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/E9C413C596FB166D0625FAF7B4A9D7CA2401C254.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096256463749251074/0/34332e3235342e382e302f32322d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.8.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:0e:a7:48:9c:b9:91:ad:5e:77:34:aa:69:12:d2:cb:47:3d: d3:09:fc:a3:ec:67:09:17:5d:a0:7e:51:dd:d4:dd:fe:a9:eb: 73:e4:bb:9f:e0:80:8c:3e:3d:e9:c6:eb:11:80:37:cd:12:78: 15:d0:85:f9:b3:cf:ea:d4:95:a3:96:a8:b5:58:13:b1:26:16: 37:fc:64:e6:e2:2b:1a:93:f1:5c:8c:f2:37:6b:5c:47:86:e7: 39:eb:a8:df:07:89:7e:f7:11:52:c4:98:00:74:39:e3:07:a3: 88:33:ef:9c:80:52:37:ab:8a:fe:cb:d3:00:15:b3:73:f1:b7: be:0a:d3:04:e4:5e:97:15:61:c4:d1:36:a8:75:76:c2:fd:d0: 95:5e:1b:61:08:99:97:15:ab:78:23:22:eb:c4:1f:22:cb:9d: 8c:31:04:17:70:13:60:38:e3:bb:2e:f1:9e:07:7f:8c:14:04: a2:5a:8e:ea:8a:62:a5:bc:c7:8f:6e:66:ea:ee:17:e1:14:91: 32:ea:de:6b:d7:ac:84:2c:75:52:be:78:87:54:f1:ff:01:0a: a9:6a:9d:1c:ca:6d:d0:e5:aa:d9:e2:60:65:7a:66:5f:50:e5: d0:af:8f:a6:15:71:8d:95:51:58:a5:d7:c8:e2:2b:be:85:41: 08:73:cd:25 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUKxqvWZt6kHDwp/vdMrpdeijNsA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlDNDEzQzU5NkZCMTY2RDA2MjVGQUY3QjRBOUQ3Q0Ey NDAxQzI1NDAeFw0yNjA0MTQwNzE2NThaFw0yNzA0MTMwNzIxNThaMDMxMTAvBgNV BAMTKDZFMDREODQ1NkQ2MDRFRTI4QUMzMTZEMzYwOTY3QUNENzFFRUM0MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDStnwg4qpguZwiwMqXHUsSimQD yCwkopHHwfPh5ig9uECSordISlLq7Iwbpy0H913bmJDxKEWG2u7AS8Z4WcuRDeyC 8DXXluDgUMtq7Kw6wy17GKVCk479u1rfrxt06HT5DnVRJ9bRQ4mxdshPUhBdgarH GqoiV1T3jkO4e7MkIO3/GvpSd5A2l+/U2N7YXPa5DVi7T5ARgcbtJ8SsZYAn9KmI FKchA3HwCmIfMFu1d3Cxq7ESJb4BjHLMCWrwU3LMfUosn8ay906NC2s1tl11TzzC 5Nrsw7YnTJk2GCCK/b/dS4jitVFCSKU7KeR+pAkBVC0/UuJ+HdFDT/ltn3wfAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUbgTYRW1gTuKKwxbTYJZ6zXHuxB4wHwYDVR0j BBgwFoAU6cQTxZb7Fm0GJfr3tKnXyiQBwlQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjI1NjQ2Mzc0OTI1MTA3NC8wL0U5QzQxM0M1OTZGQjE2NkQwNjI1RkFGN0I0QTlE N0NBMjQwMUMyNTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRTlDNDEzQzU5NkZCMTY2RDA2MjVGQUY3QjRBOUQ3Q0EyNDAxQzI1NC5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2MjU2NDYzNzQ5MjUxMDc0LzAvMzQzMzJlMzIzNTM0 MmUzODJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM0MzgzMzM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC K/4IMA0GCSqGSIb3DQEBCwUAA4IBAQA7DqdInLmRrV53NKppEtLLRz3TCfyj7GcJ F12gflHd1N3+qetz5Luf4ICMPj3pxusRgDfNEngV0IX5s8/q1JWjlqi1WBOxJhY3 /GTm4isak/FcjPI3a1xHhuc566jfB4l+9xFSxJgAdDnjB6OIM++cgFI3q4r+y9MA FbNz8be+CtME5F6XFWHE0TaodXbC/dCVXhthCJmXFat4IyLrxB8iy52MMQQXcBNg OOO7LvGeB3+MFASiWo7qimKlvMePbmbq7hfhFJEy6t5r16yELHVSvniHVPH/AQqp ap0cym3Q5arZ4mBlemZfUOXQr4+mFXGNlVFYpdfI4iu+hUEIc80l -----END CERTIFICATE-----Generated at Fri Apr 17 19:17:10 2026 by rpki-client