$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130342e302f32342d3234203d3e20313338343231.roa File: 34332e3235342e3130342e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: LHduS4u2rlTqlsuo/lYTwAf/p7tlVBwJX5Q7M2RD9TE= Subject key identifier: D3:EC:7A:4F:CE:D2:DD:6A:EF:E7:09:0E:CF:2C:19:2C:0C:97:BD:7D Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 17153DCD61BAADE253ABC709665BD3AF9F2DBF24 Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130342e302f32342d3234203d3e20313338343231.roa Signing time: Fri 17 Apr 2026 09:14:11 +0000 ROA not before: Fri 17 Apr 2026 09:09:11 +0000 ROA not after: Fri 16 Apr 2027 09:14:11 +0000 asID: 138421 IP address blocks: 43.254.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:15:3d:cd:61:ba:ad:e2:53:ab:c7:09:66:5b:d3:af:9f:2d:bf:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 09:09:11 2026 GMT Not After : Apr 16 09:14:11 2027 GMT Subject: CN=D3EC7A4FCED2DD6AEFE7090ECF2C192C0C97BD7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:49:0a:c5:30:0f:01:ce:ff:b4:06:ce:9d:90: 97:0b:23:19:8a:79:30:a0:0f:e2:1e:be:2f:5b:1c: 8b:a0:8d:92:2e:b0:02:79:1d:64:36:07:73:09:95: 99:99:7b:6d:45:dd:6e:10:12:b7:38:03:0b:cd:22: c6:74:2d:1c:4d:72:2f:79:f1:0b:01:8f:f6:ec:46: c7:de:c2:4a:38:0f:06:2f:ef:73:8e:0f:3e:a9:fd: c6:13:c7:d4:18:15:5a:6f:55:fb:1b:c9:88:19:53: e1:87:59:66:81:6c:87:91:ca:13:e9:bc:0b:23:82: 74:9a:e0:1c:b4:4e:74:85:2d:af:29:62:65:27:0a: 73:2a:be:d4:ad:f7:c5:1b:04:9f:7e:7e:8c:3d:bd: 7c:de:8b:0c:35:62:7c:09:f8:77:c1:b7:6d:e8:7a: f9:a1:39:b4:36:0c:b2:72:b0:2d:3e:71:78:45:c1: 6c:b4:3c:0c:73:62:77:9d:26:d4:50:9b:72:d3:0c: 79:ee:a1:d8:d2:e7:89:0c:8f:5e:4e:c0:e9:3f:4d: 6d:07:e3:75:69:d4:1b:11:10:06:e9:2e:e7:be:2b: 76:d8:55:71:ea:fd:48:d7:f3:e7:9a:6c:b9:ab:08: 74:c0:e7:ec:4f:69:31:b5:a1:a1:13:c0:14:f0:5f: 2b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:EC:7A:4F:CE:D2:DD:6A:EF:E7:09:0E:CF:2C:19:2C:0C:97:BD:7D X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130342e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.104.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:53:3e:52:16:df:39:41:82:08:94:67:84:bd:a3:6a:2f:b7: 1c:72:10:9f:d4:be:d6:1d:4e:93:b0:e2:c6:e4:16:ba:89:fb: 42:1e:27:8d:13:0c:03:04:01:5a:67:06:74:c3:c8:19:8f:11: 69:ee:9e:4b:e7:a6:b3:d2:89:63:c5:ad:71:b3:b0:66:ca:09: c8:8a:38:cb:5b:8a:78:71:a8:0e:1f:ca:06:2d:fd:af:bd:b9: 6a:f8:9f:ce:23:e0:89:8f:42:01:4e:da:f6:d1:f7:d8:93:28: f6:6a:b3:01:37:99:35:50:58:99:3d:18:2b:97:1c:4b:38:9b: 02:fd:ab:d4:f5:d8:4f:8e:9a:41:00:fb:e4:c1:c1:9c:81:a2: 11:0d:63:55:05:89:a6:e0:15:11:78:22:be:39:9b:54:a4:16: 2f:2e:4c:c7:93:69:5f:df:8c:ec:ed:b8:cd:7b:27:bc:59:e7: 13:0f:c4:f3:1b:c7:d5:95:47:a6:ae:45:28:09:89:41:51:04: bb:13:84:9a:75:0c:b7:8f:32:26:8f:3f:6d:c7:fb:10:d1:e0: 50:90:9e:85:4e:6a:d8:cd:8b:a5:4a:f0:75:43:e4:39:da:d3: 4e:33:16:ec:a0:26:53:7d:ce:38:c2:bd:0a:5a:65:6e:4c:4a: 4e:a1:13:e5 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUFxU9zWG6reJTq8cJZlvTr58tvyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwOTA5MTFaFw0yNzA0MTYwOTE0MTFaMDMxMTAvBgNV BAMTKEQzRUM3QTRGQ0VEMkRENkFFRkU3MDkwRUNGMkMxOTJDMEM5N0JEN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfSQrFMA8Bzv+0Bs6dkJcLIxmK eTCgD+Ievi9bHIugjZIusAJ5HWQ2B3MJlZmZe21F3W4QErc4AwvNIsZ0LRxNci95 8QsBj/bsRsfewko4DwYv73OODz6p/cYTx9QYFVpvVfsbyYgZU+GHWWaBbIeRyhPp vAsjgnSa4By0TnSFLa8pYmUnCnMqvtSt98UbBJ9+fow9vXzeiww1YnwJ+HfBt23o evmhObQ2DLJysC0+cXhFwWy0PAxzYnedJtRQm3LTDHnuodjS54kMj15OwOk/TW0H 43Vp1BsREAbpLue+K3bYVXHq/UjX8+eabLmrCHTA5+xPaTG1oaETwBTwXytrAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU0+x6T87S3Wrv5wkOzywZLAyXvX0wHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2MzIwNjI5OTcxNjgxMzEvMC8zNDMzMmUzMjM1 MzQyZTMxMzAzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+aDANBgkqhkiG9w0BAQsFAAOCAQEAalM+UhbfOUGCCJRnhL2j ai+3HHIQn9S+1h1Ok7DixuQWuon7Qh4njRMMAwQBWmcGdMPIGY8Rae6eS+ems9KJ Y8WtcbOwZsoJyIo4y1uKeHGoDh/KBi39r725avifziPgiY9CAU7a9tH32JMo9mqz ATeZNVBYmT0YK5ccSzibAv2r1PXYT46aQQD75MHBnIGiEQ1jVQWJpuAVEXgivjmb VKQWLy5Mx5NpX9+M7O24zXsnvFnnEw/E8xvH1ZVHpq5FKAmJQVEEuxOEmnUMt48y Jo8/bcf7ENHgUJCehU5q2M2LpUrwdUPkOdrTTjMW7KAmU33OOMK9ClplbkxKTqET 5Q== -----END CERTIFICATE-----Generated at Fri Apr 17 20:16:38 2026 by rpki-client