$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130362e302f32342d3234203d3e2034383132.roa File: 34332e3235342e3130362e302f32342d3234203d3e2034383132.roa (raw, json) Hash identifier: GtORJR+fMJzuvS7CCr/wdnROSvQubddVWgovkMgALUI= Subject key identifier: 94:57:7C:71:14:90:B7:FA:01:DA:53:E3:98:6D:92:E8:99:26:4C:64 Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 12DB40906B8B7C7F5E1B400E6F36CF49D5C65799 Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130362e302f32342d3234203d3e2034383132.roa Signing time: Fri 17 Apr 2026 09:14:10 +0000 ROA not before: Fri 17 Apr 2026 09:09:10 +0000 ROA not after: Fri 16 Apr 2027 09:14:10 +0000 asID: 4812 IP address blocks: 43.254.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:db:40:90:6b:8b:7c:7f:5e:1b:40:0e:6f:36:cf:49:d5:c6:57:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 09:09:10 2026 GMT Not After : Apr 16 09:14:10 2027 GMT Subject: CN=94577C711490B7FA01DA53E3986D92E899264C64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:70:89:1a:07:ba:8e:bc:0d:44:8f:3c:5b:fd: 73:02:72:4e:f8:c3:45:b7:a6:ec:2c:95:15:ce:db: 18:b5:87:a3:d1:85:15:d8:ea:b9:57:d3:41:78:72: f2:09:dd:0c:f1:94:12:d8:ad:4e:51:19:ab:a5:3c: 6b:f6:44:0e:09:b9:86:d9:52:1e:c1:bc:a8:67:43: 6a:7d:af:af:24:50:7e:8b:aa:f9:3f:68:ab:11:1b: fc:07:c2:16:2a:18:70:3f:60:e1:bd:10:b1:2b:79: 27:30:da:70:ba:0d:6d:17:ff:a7:52:9a:c0:d9:c6: df:01:4d:e2:f2:e3:b4:fb:be:a2:83:96:40:59:02: a6:a5:72:ba:d9:fe:f1:b0:80:da:db:5a:0d:c2:3e: b1:b8:a5:97:70:f8:4b:d4:c6:39:94:bd:20:d6:69: b6:11:a0:3c:1d:87:33:8b:d9:73:e7:34:ad:da:37: c6:56:be:38:dc:78:fb:7c:e6:df:0c:1a:09:77:7b: 3b:af:d2:d9:4c:09:d0:01:25:a6:2c:9f:03:d7:45: 68:c1:0a:ca:26:a0:2e:7f:71:57:9d:6e:3b:d2:32: b3:d5:40:da:d6:1c:6f:d9:bc:00:08:5a:75:aa:67: 08:a7:7f:c0:88:84:31:71:47:66:83:07:ba:f1:d6: 92:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:57:7C:71:14:90:B7:FA:01:DA:53:E3:98:6D:92:E8:99:26:4C:64 X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3130362e302f32342d3234203d3e2034383132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.106.0/24 Signature Algorithm: sha256WithRSAEncryption 37:e8:6f:2f:84:d4:89:84:c0:72:ac:73:28:a7:8c:30:d1:8f: b1:47:d6:08:92:dd:cb:aa:c9:23:58:6d:1f:02:3a:1d:ee:c1: 13:3c:01:36:a5:1a:43:43:2f:1c:20:f1:33:65:a0:68:10:29: 18:d5:74:3a:f3:82:99:74:7e:53:2a:26:5a:cb:54:6e:25:1f: 5b:b5:16:43:f3:4c:95:3f:66:56:4d:85:ee:6c:6d:42:2f:72: 04:f6:1d:ad:41:e4:4e:2a:41:ef:83:f3:ad:17:dc:91:67:3c: bf:cd:bc:ad:52:63:a1:b8:30:71:4d:ce:05:73:b4:a7:c4:02: 0d:c7:87:12:ac:43:cd:e8:5e:de:59:dc:b6:26:af:ff:6f:fe: 83:95:7c:61:b7:10:89:1d:54:cd:33:7e:11:29:4b:ba:cc:55: b9:fa:5b:18:80:f3:53:d8:53:6f:d7:8f:db:56:a4:7b:27:21: e3:54:f2:a7:c0:68:0d:9d:5a:13:af:6f:5d:1e:33:98:87:4e: ae:9d:1c:5c:88:c5:48:d4:99:07:10:06:c4:40:aa:26:82:6f: 4c:f8:db:28:40:a4:6c:a8:45:68:bc:a1:d8:2a:7d:d3:dd:1f: 2a:2d:fc:87:94:1f:52:d0:c0:6d:36:40:f5:98:5f:53:79:61: a3:e7:2c:71 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUEttAkGuLfH9eG0AObzbPSdXGV5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwOTA5MTBaFw0yNzA0MTYwOTE0MTBaMDMxMTAvBgNV BAMTKDk0NTc3QzcxMTQ5MEI3RkEwMURBNTNFMzk4NkQ5MkU4OTkyNjRDNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKcIkaB7qOvA1Ejzxb/XMCck74 w0W3puwslRXO2xi1h6PRhRXY6rlX00F4cvIJ3QzxlBLYrU5RGaulPGv2RA4JuYbZ Uh7BvKhnQ2p9r68kUH6Lqvk/aKsRG/wHwhYqGHA/YOG9ELEreScw2nC6DW0X/6dS msDZxt8BTeLy47T7vqKDlkBZAqalcrrZ/vGwgNrbWg3CPrG4pZdw+EvUxjmUvSDW abYRoDwdhzOL2XPnNK3aN8ZWvjjcePt85t8MGgl3ezuv0tlMCdABJaYsnwPXRWjB CsomoC5/cVedbjvSMrPVQNrWHG/ZvAAIWnWqZwinf8CIhDFxR2aDB7rx1pLZAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUlFd8cRSQt/oB2lPjmG2S6JkmTGQwHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NjMyMDYyOTk3MTY4MTMxLzAvMzQzMzJlMzIzNTM0 MmUzMTMwMzYyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzEzMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACv+ajANBgkqhkiG9w0BAQsFAAOCAQEAN+hvL4TUiYTAcqxzKKeMMNGPsUfW CJLdy6rJI1htHwI6He7BEzwBNqUaQ0MvHCDxM2WgaBApGNV0OvOCmXR+UyomWstU biUfW7UWQ/NMlT9mVk2F7mxtQi9yBPYdrUHkTipB74PzrRfckWc8v828rVJjobgw cU3OBXO0p8QCDceHEqxDzehe3lnctiav/2/+g5V8YbcQiR1UzTN+ESlLusxVufpb GIDzU9hTb9eP21akeych41Typ8BoDZ1aE69vXR4zmIdOrp0cXIjFSNSZBxAGxECq JoJvTPjbKECkbKhFaLyh2Cp9090fKi38h5QfUtDAbTZA9ZhfU3lho+cscQ== -----END CERTIFICATE-----Generated at Sat Apr 18 03:52:59 2026 by rpki-client