$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3234302e3132382e302f32332d3233203d3e20313338343231.roa File: 34332e3234302e3132382e302f32332d3233203d3e20313338343231.roa (raw, json) Hash identifier: d5ypK3LzrxmzzdfCv4NfTGTz5cM23L70SnCyV0cQuPA= Subject key identifier: FF:F0:A0:4C:B1:6F:BD:E5:22:72:4A:2C:D4:2E:70:EB:21:EA:BA:11 Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 0E75524E98A6303AA7E33A62373842569716D023 Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3234302e3132382e302f32332d3233203d3e20313338343231.roa Signing time: Fri 17 Apr 2026 09:42:18 +0000 ROA not before: Fri 17 Apr 2026 09:37:18 +0000 ROA not after: Fri 16 Apr 2027 09:42:18 +0000 asID: 138421 IP address blocks: 43.240.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:75:52:4e:98:a6:30:3a:a7:e3:3a:62:37:38:42:56:97:16:d0:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 09:37:18 2026 GMT Not After : Apr 16 09:42:18 2027 GMT Subject: CN=FFF0A04CB16FBDE522724A2CD42E70EB21EABA11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ec:7a:d0:a1:03:6b:c9:af:b2:8e:3c:77:42: e1:bd:43:83:64:9d:46:ea:30:1b:77:d1:af:2f:ae: 6b:17:e8:82:c0:ee:28:3e:a6:6e:80:b4:83:14:0a: 06:4b:b1:10:99:06:d5:ae:43:d4:4d:e6:08:7f:0a: 35:4a:e7:f4:b9:f7:89:d4:c2:6d:aa:74:d3:58:bc: 3c:ea:af:67:66:50:7e:c2:59:55:7e:65:4a:cf:ed: 44:32:a0:10:17:d2:06:51:1e:98:d5:35:80:0a:d6: 98:8b:3d:46:09:59:c8:c7:20:b5:2b:13:f4:2c:24: e7:de:df:fa:2e:da:13:d9:09:b9:2f:54:86:0c:e0: a8:75:9f:15:75:8f:09:74:cd:81:34:f8:36:49:d0: 09:85:5f:01:ad:fe:db:fe:3d:48:5f:72:99:73:8f: 94:67:2d:ec:3d:64:b1:61:e2:07:0b:34:5f:36:c1: 68:bd:9f:b9:1e:25:d7:bd:04:c1:c2:c9:f0:cf:83: a4:16:29:65:6a:a1:e2:ef:c3:a6:f7:5e:2a:82:49: b9:30:3a:5b:f8:e5:84:9e:6d:ff:25:a7:30:78:e8: f1:dd:54:80:29:aa:0f:c8:21:30:62:32:8a:6c:c8: 66:a7:91:dd:ae:60:6b:9c:54:56:2d:b6:a2:ce:ae: e8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F0:A0:4C:B1:6F:BD:E5:22:72:4A:2C:D4:2E:70:EB:21:EA:BA:11 X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3234302e3132382e302f32332d3233203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.128.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:09:ef:e2:0a:20:7c:09:c9:f1:45:60:dc:73:cb:57:41:d3: 20:43:6c:17:94:e8:ce:0b:61:75:c5:4e:d3:92:37:7f:c5:b3: 64:a1:c3:b9:d1:4d:1e:b4:b0:95:19:8d:db:8a:2f:56:20:0f: 84:ad:20:ec:3c:dd:39:b3:bd:fa:89:1f:84:57:f9:60:e6:f9: bb:18:cc:14:20:67:c3:3b:9e:d7:35:5b:b5:f2:12:d9:94:50: 9e:93:3b:d0:89:a4:e6:05:33:f0:21:78:87:48:e6:cf:fe:a4: 2c:68:d6:ce:c9:4a:f2:fa:ea:96:09:44:16:bf:7c:6a:c6:8d: ed:94:37:29:6d:88:72:9e:11:fb:d4:2f:f3:6b:be:84:8e:f3: bf:d7:c8:68:c8:52:b3:2a:d3:84:6e:f6:09:5b:d2:a4:17:a7: e7:d1:6a:92:a9:20:28:61:f3:0a:44:a9:1d:70:22:b3:12:0d: 90:43:ad:0d:84:2e:87:b6:cb:a3:0d:ad:e1:d4:c5:c6:cb:02: 5a:fa:dd:6b:6d:b8:ce:8d:65:ad:57:30:c5:ce:4e:d7:f2:a0: 64:3b:36:31:93:fc:04:28:25:09:88:e0:87:38:88:ea:d0:72: 3c:fa:a1:8d:60:eb:d9:8b:eb:6b:cd:fc:ba:64:5d:fc:a0:2a: 16:80:ae:be -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUDnVSTpimMDqn4zpiNzhCVpcW0CMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwOTM3MThaFw0yNzA0MTYwOTQyMThaMDMxMTAvBgNV BAMTKEZGRjBBMDRDQjE2RkJERTUyMjcyNEEyQ0Q0MkU3MEVCMjFFQUJBMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/7HrQoQNrya+yjjx3QuG9Q4Nk nUbqMBt30a8vrmsX6ILA7ig+pm6AtIMUCgZLsRCZBtWuQ9RN5gh/CjVK5/S594nU wm2qdNNYvDzqr2dmUH7CWVV+ZUrP7UQyoBAX0gZRHpjVNYAK1piLPUYJWcjHILUr E/QsJOfe3/ou2hPZCbkvVIYM4Kh1nxV1jwl0zYE0+DZJ0AmFXwGt/tv+PUhfcplz j5RnLew9ZLFh4gcLNF82wWi9n7keJde9BMHCyfDPg6QWKWVqoeLvw6b3XiqCSbkw Olv45YSebf8lpzB46PHdVIApqg/IITBiMopsyGankd2uYGucVFYttqLOrugvAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU//CgTLFvveUickos1C5w6yHquhEwHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2MzIwNjI5OTcxNjgxMzEvMC8zNDMzMmUzMjM0 MzAyZTMxMzIzODJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzMzODM0MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEASvwgDANBgkqhkiG9w0BAQsFAAOCAQEAbgnv4gogfAnJ8UVg3HPL V0HTIENsF5TozgthdcVO05I3f8WzZKHDudFNHrSwlRmN24ovViAPhK0g7DzdObO9 +okfhFf5YOb5uxjMFCBnwzue1zVbtfIS2ZRQnpM70Imk5gUz8CF4h0jmz/6kLGjW zslK8vrqlglEFr98asaN7ZQ3KW2Icp4R+9Qv82u+hI7zv9fIaMhSsyrThG72CVvS pBen59FqkqkgKGHzCkSpHXAisxINkEOtDYQuh7bLow2t4dTFxssCWvrda224zo1l rVcwxc5O1/KgZDs2MZP8BCglCYjghziI6tByPPqhjWDr2Yvra838umRd/KAqFoCu vg== -----END CERTIFICATE-----Generated at Fri Apr 17 19:41:51 2026 by rpki-client