$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130352e302f32342d3234203d3e20313338343231.roa File: 34332e3235342e3130352e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: 3Nv40/DwPjOl+7G2R8YSFcYjMfYkKCMq0wNLZ9lIvnE= Subject key identifier: 07:62:79:93:07:B0:B6:67:31:CE:2A:FF:76:50:E4:52:B3:EF:B9:C5 Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 67C545782C269E4CD0AD107BA9CAEC531AAA5B73 Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130352e302f32342d3234203d3e20313338343231.roa Signing time: Fri 17 Apr 2026 09:14:10 +0000 ROA not before: Fri 17 Apr 2026 09:09:10 +0000 ROA not after: Fri 16 Apr 2027 09:14:10 +0000 asID: 138421 IP address blocks: 43.254.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c5:45:78:2c:26:9e:4c:d0:ad:10:7b:a9:ca:ec:53:1a:aa:5b:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 09:09:10 2026 GMT Not After : Apr 16 09:14:10 2027 GMT Subject: CN=0762799307B0B66731CE2AFF7650E452B3EFB9C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:59:74:53:58:9d:97:ee:1c:97:07:53:80:1c: 02:59:f0:ea:b2:f7:e5:4d:71:cd:82:c8:ce:1c:b0: 87:b4:1a:29:88:d1:80:ec:0a:13:72:30:12:32:ae: 06:3b:65:64:78:29:cc:a6:60:aa:7b:c5:6c:37:a9: 8f:89:2b:ae:42:64:33:53:41:38:dc:04:8e:39:a1: 9e:ed:fe:b4:44:18:a1:b9:16:17:4a:ac:7f:08:4f: 8f:ad:78:c5:66:18:2c:a2:91:30:bf:6c:bd:6d:ed: 1a:80:d8:99:6a:d2:b0:76:95:49:43:cd:d8:ee:fb: ec:f6:b6:31:64:52:60:0a:0c:43:ef:0e:2b:c5:df: 95:cb:c5:70:6d:05:58:ec:53:5f:63:2f:e0:6d:91: 64:68:55:e8:b9:f9:ca:9e:17:b2:cd:9c:af:28:e4: 30:e1:1e:4f:ae:4a:1f:80:04:70:c6:00:ac:3c:4c: 21:c6:45:b1:3b:9e:8f:af:e7:06:2c:2b:8b:cd:73: 6e:17:d5:c8:55:09:a9:a5:ef:d5:b4:e8:91:4e:c2: 5b:3e:75:26:0d:0b:ec:40:95:c8:9d:92:62:51:4c: a5:d6:14:04:18:ce:82:ca:24:de:5a:1f:08:3b:e0: 38:50:f0:eb:10:a0:39:7a:fe:55:88:26:9e:e5:c8: 8e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:62:79:93:07:B0:B6:67:31:CE:2A:FF:76:50:E4:52:B3:EF:B9:C5 X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130352e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.105.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:a0:5e:49:f5:68:e7:76:80:3e:95:35:32:a4:58:c9:6e:89: 94:df:83:21:f4:a3:68:c1:0d:6d:4c:c7:d6:30:a6:d2:01:6d: 30:f0:2b:d4:08:8c:5c:c7:20:51:36:8b:e7:79:d8:a7:f4:7d: be:d4:4e:84:99:8c:bb:ef:cf:48:78:2d:40:a3:b2:4c:75:69: ee:f8:f9:9a:34:45:5b:24:74:1f:fa:3b:db:02:1c:8b:ba:2d: ce:5f:b1:5c:28:aa:06:cf:78:9f:d4:11:77:fa:76:df:87:30: 60:9c:67:d1:fb:7f:24:45:25:ea:dd:ad:f4:16:7a:1f:75:19: 3e:35:ac:84:b1:d2:4d:c3:95:1c:ed:48:62:3a:45:15:9f:e8: 43:cb:17:58:85:3b:0d:ba:b0:6e:ed:6c:d0:de:51:63:7f:0d: d1:ab:fa:03:8a:a9:5a:a1:e5:e9:a9:7f:47:e7:f7:19:92:a8: f9:bb:d1:98:2c:ca:ca:ee:14:49:d6:19:47:ec:4d:f5:51:3a: 4f:2c:13:c0:ea:b8:23:e2:39:0b:7c:5e:1c:77:12:d4:f8:c1: 80:c6:78:cb:8b:f2:0b:4f:ca:92:67:f0:a3:e2:1e:49:45:9d: 51:82:52:66:e9:fd:89:30:ad:9b:69:3a:7c:ff:c9:c2:22:38: f4:aa:4b:8e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUZ8VFeCwmnkzQrRB7qcrsUxqqW3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwOTA5MTBaFw0yNzA0MTYwOTE0MTBaMDMxMTAvBgNV BAMTKDA3NjI3OTkzMDdCMEI2NjczMUNFMkFGRjc2NTBFNDUyQjNFRkI5QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5WXRTWJ2X7hyXB1OAHAJZ8Oqy 9+VNcc2CyM4csIe0GimI0YDsChNyMBIyrgY7ZWR4KcymYKp7xWw3qY+JK65CZDNT QTjcBI45oZ7t/rREGKG5FhdKrH8IT4+teMVmGCyikTC/bL1t7RqA2Jlq0rB2lUlD zdju++z2tjFkUmAKDEPvDivF35XLxXBtBVjsU19jL+BtkWRoVei5+cqeF7LNnK8o 5DDhHk+uSh+ABHDGAKw8TCHGRbE7no+v5wYsK4vNc24X1chVCaml79W06JFOwls+ dSYNC+xAlcidkmJRTKXWFAQYzoLKJN5aHwg74DhQ8OsQoDl6/lWIJp7lyI4tAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUB2J5kwewtmcxzir/dlDkUrPvucUwHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2MzIwNjI5OTcxNjgxMzEvMC8zNDMzMmUzMjM1 MzQyZTMxMzAzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+aTANBgkqhkiG9w0BAQsFAAOCAQEAOqBeSfVo53aAPpU1MqRY yW6JlN+DIfSjaMENbUzH1jCm0gFtMPAr1AiMXMcgUTaL53nYp/R9vtROhJmMu+/P SHgtQKOyTHVp7vj5mjRFWyR0H/o72wIci7otzl+xXCiqBs94n9QRd/p234cwYJxn 0ft/JEUl6t2t9BZ6H3UZPjWshLHSTcOVHO1IYjpFFZ/oQ8sXWIU7Dbqwbu1s0N5R Y38N0av6A4qpWqHl6al/R+f3GZKo+bvRmCzKyu4USdYZR+xN9VE6TywTwOq4I+I5 C3xeHHcS1PjBgMZ4y4vyC0/Kkmfwo+IeSUWdUYJSZun9iTCtm2k6fP/JwiI49KpL jg== -----END CERTIFICATE-----Generated at Fri Apr 17 20:16:47 2026 by rpki-client