$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130362e302f32342d3234203d3e20313338343231.roa File: 34332e3235342e3130362e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: DA24GVj9XkWsHkFLVIw79fr0ODjNX/pfGSB+lAN760k= Subject key identifier: 3A:23:11:E3:44:64:7F:74:CA:6A:C3:DD:1F:BA:54:96:97:42:E1:FF Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 0FDE0A161D8179FA02AF02945E10965E82465993 Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130362e302f32342d3234203d3e20313338343231.roa Signing time: Fri 17 Apr 2026 09:14:11 +0000 ROA not before: Fri 17 Apr 2026 09:09:11 +0000 ROA not after: Fri 16 Apr 2027 09:14:11 +0000 asID: 138421 IP address blocks: 43.254.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:de:0a:16:1d:81:79:fa:02:af:02:94:5e:10:96:5e:82:46:59:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 09:09:11 2026 GMT Not After : Apr 16 09:14:11 2027 GMT Subject: CN=3A2311E344647F74CA6AC3DD1FBA54969742E1FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d6:b6:b2:72:67:38:64:91:4c:dd:08:c1:10: 0a:93:ff:e6:73:c0:42:98:e4:2b:b1:ec:1b:b1:cf: e3:e8:d0:bd:b5:83:10:db:e8:be:dc:5a:dc:66:4d: fe:0c:c1:9b:65:d8:db:f7:e9:ff:9d:45:2e:de:65: 55:eb:97:4f:7c:f7:bb:77:82:06:b8:36:4a:dd:5f: 2a:bc:4a:1b:5a:9d:ec:2a:2f:8a:8f:c6:24:0b:5a: 1f:00:48:25:b9:71:bb:99:91:35:d7:47:1f:3f:1a: 39:c0:53:fa:05:0b:8c:b4:10:57:b3:0c:98:b1:1c: cd:0a:8f:0b:85:c3:4f:82:fc:11:8e:bf:f0:7b:79: 75:97:84:88:a7:68:07:41:54:97:eb:80:e0:58:d4: 5e:e6:c9:a4:60:d9:e8:b4:03:34:23:36:a9:7f:5d: a1:82:a7:a2:7e:cb:2a:09:93:ed:09:5f:c9:77:ea: 6a:a7:64:f6:79:21:ad:14:50:4f:dc:b2:a9:94:88: 43:5c:4d:2d:88:8f:45:36:a6:fc:5c:c0:1e:e0:0d: 27:47:6d:4a:34:e3:2e:e8:9b:f7:74:aa:71:9b:7b: 53:39:5f:60:a7:90:01:9c:3f:03:53:7a:07:fa:c2: d7:af:da:74:c9:64:4c:21:1a:7d:77:7b:5c:e2:73: 4c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:23:11:E3:44:64:7F:74:CA:6A:C3:DD:1F:BA:54:96:97:42:E1:FF X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130362e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.106.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:71:a2:3a:c1:18:16:ec:4c:46:32:1d:a0:61:59:5f:9c:f1: 2f:62:45:af:e1:73:87:78:4b:59:9a:30:02:89:92:6f:e7:5d: e3:ed:44:a8:16:c0:4a:a1:89:ea:a3:06:1a:d1:e8:5c:71:c6: 2b:73:30:56:38:6a:73:2e:b3:a2:a4:90:40:e0:6c:8f:fe:59: d8:e9:54:b3:7c:d4:13:b3:08:d3:d6:9d:b2:17:1f:24:6d:df: e0:3c:69:6f:e1:9d:54:7a:23:ef:62:16:6e:37:cc:17:ea:db: de:e6:9f:57:9e:a3:03:8b:bf:f7:f8:88:40:3e:6c:43:bc:e6: b4:8f:76:92:2e:cf:55:fc:63:5c:ba:df:ba:db:36:1d:ef:1b: c0:58:d1:d9:6a:33:7f:69:ba:3b:16:fc:b4:b8:88:51:22:4a: 96:69:8a:5b:e7:e0:99:f4:0d:0a:f7:a7:18:c1:a2:14:85:b5: ae:72:27:40:38:89:42:b4:e2:09:68:e8:4d:45:95:bc:c7:95: 1a:32:45:12:cd:f8:3f:d1:68:ca:ac:fd:f0:c8:7e:74:56:5b: 6e:10:de:46:db:74:9b:d2:27:1f:c2:16:20:a0:76:dc:65:48: 11:0f:39:50:36:d1:4a:6a:75:92:23:f7:f6:5e:58:60:32:3a: 29:fe:7a:38 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUD94KFh2BefoCrwKUXhCWXoJGWZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwOTA5MTFaFw0yNzA0MTYwOTE0MTFaMDMxMTAvBgNV BAMTKDNBMjMxMUUzNDQ2NDdGNzRDQTZBQzNERDFGQkE1NDk2OTc0MkUxRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC51raycmc4ZJFM3QjBEAqT/+Zz wEKY5Cux7Buxz+Po0L21gxDb6L7cWtxmTf4MwZtl2Nv36f+dRS7eZVXrl09897t3 gga4NkrdXyq8ShtanewqL4qPxiQLWh8ASCW5cbuZkTXXRx8/GjnAU/oFC4y0EFez DJixHM0KjwuFw0+C/BGOv/B7eXWXhIinaAdBVJfrgOBY1F7myaRg2ei0AzQjNql/ XaGCp6J+yyoJk+0JX8l36mqnZPZ5Ia0UUE/csqmUiENcTS2Ij0U2pvxcwB7gDSdH bUo04y7om/d0qnGbe1M5X2CnkAGcPwNTegf6wtev2nTJZEwhGn13e1zic0zFAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUOiMR40Rkf3TKasPdH7pUlpdC4f8wHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2MzIwNjI5OTcxNjgxMzEvMC8zNDMzMmUzMjM1 MzQyZTMxMzAzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+ajANBgkqhkiG9w0BAQsFAAOCAQEAfnGiOsEYFuxMRjIdoGFZ X5zxL2JFr+Fzh3hLWZowAomSb+dd4+1EqBbASqGJ6qMGGtHoXHHGK3MwVjhqcy6z oqSQQOBsj/5Z2OlUs3zUE7MI09adshcfJG3f4Dxpb+GdVHoj72IWbjfMF+rb3uaf V56jA4u/9/iIQD5sQ7zmtI92ki7PVfxjXLrfuts2He8bwFjR2Wozf2m6Oxb8tLiI USJKlmmKW+fgmfQNCvenGMGiFIW1rnInQDiJQrTiCWjoTUWVvMeVGjJFEs34P9Fo yqz98Mh+dFZbbhDeRtt0m9InH8IWIKB23GVIEQ85UDbRSmp1kiP39l5YYDI6Kf56 OA== -----END CERTIFICATE-----Generated at Sat Apr 18 03:53:31 2026 by rpki-client