$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134342e302f32342d3234203d3e20313338343231.roa File: 34332e3235342e3134342e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: Xq/Ix53ab9PsPtKkuxQ+243VPGsmdPvruJft6uPD3hs= Subject key identifier: CE:01:8B:A9:1C:D9:35:54:12:4A:21:AB:5A:F6:4C:DB:C2:09:5E:59 Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 0269223CD14497550228B547CAF91DE359E3AC0C Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134342e302f32342d3234203d3e20313338343231.roa Signing time: Fri 17 Apr 2026 08:56:26 +0000 ROA not before: Fri 17 Apr 2026 08:51:26 +0000 ROA not after: Fri 16 Apr 2027 08:56:26 +0000 asID: 138421 IP address blocks: 43.254.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:69:22:3c:d1:44:97:55:02:28:b5:47:ca:f9:1d:e3:59:e3:ac:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 08:51:26 2026 GMT Not After : Apr 16 08:56:26 2027 GMT Subject: CN=CE018BA91CD93554124A21AB5AF64CDBC2095E59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b4:75:02:43:37:e0:db:40:6a:8f:ac:e0:66: ab:a5:a5:95:b3:cd:9d:51:3a:ee:02:7b:12:6c:e6: f9:44:3d:99:1b:2f:45:7b:d4:b1:21:57:59:1b:60: 75:8c:0b:af:d0:11:c6:88:ff:76:39:a6:9b:9e:f4: 99:15:6d:6b:2f:5d:dd:72:22:62:2f:bb:7a:03:8b: 69:94:67:85:aa:01:a7:58:34:be:22:fb:fc:79:53: 5b:33:2c:95:de:5b:90:e0:52:c6:3a:cc:42:8f:eb: c3:f2:b3:b7:02:83:bb:cf:30:e5:54:72:4f:9f:2f: af:db:f8:46:e1:30:f4:f9:9c:bf:ab:80:37:bb:88: a4:6e:1c:81:d1:1e:23:2c:d4:6a:8f:64:64:f5:59: 9c:2d:ef:b4:3c:18:91:42:47:f0:78:54:3c:31:58: e4:0f:3f:5c:94:bf:2e:ab:5b:3c:15:9e:13:7c:c0: 27:52:48:ec:f9:0e:bd:94:7f:29:fa:fa:7e:5d:bb: 79:1d:0b:bb:3a:5c:25:3a:10:6a:1a:60:34:ca:97: ec:48:60:08:d4:9e:c5:35:c2:ee:b1:95:0e:9b:ca: 90:49:a3:55:4e:2a:6a:ed:da:06:6c:02:9e:25:d7: 5b:f7:2e:ce:6b:cf:81:93:e5:6d:c1:b0:c2:3e:58: 86:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:01:8B:A9:1C:D9:35:54:12:4A:21:AB:5A:F6:4C:DB:C2:09:5E:59 X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134342e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.144.0/24 Signature Algorithm: sha256WithRSAEncryption 66:77:bd:55:f6:8e:e0:62:a4:b0:9b:7d:bb:c9:05:64:4f:10: 3b:e5:26:4d:55:16:f7:2e:f9:c1:78:34:5f:75:35:17:de:41: 29:8d:c4:ac:ab:88:58:c4:f6:ba:2e:d8:cc:fe:fd:69:15:4d: 91:f1:72:26:65:72:d8:4a:17:31:9c:6d:5f:47:3b:2a:b5:00: 22:ca:51:e1:d4:5a:b8:7f:05:f7:90:eb:89:03:22:bd:84:3e: d4:63:a5:e9:db:c3:f6:bc:6a:bb:06:4c:2c:34:32:9d:eb:69: 53:6f:a1:c8:12:80:85:a0:43:36:1c:93:eb:6b:d8:60:e3:fb: 40:32:f8:de:4d:38:05:5c:1d:ab:74:b1:56:f9:3a:30:1a:ca: 91:b2:25:08:27:a7:88:62:e2:2b:c0:f0:91:64:a7:bd:55:26: 93:06:d7:ce:77:3e:73:67:59:86:f1:b5:45:b4:4c:52:cc:28: 6d:7c:97:a7:e3:b0:09:55:d2:63:1b:45:46:29:ef:d4:3d:bd: b7:e7:e5:71:73:f3:46:f6:46:0e:a8:ae:b1:2d:a6:61:f9:56: 70:ee:2c:b4:ee:fb:b4:ca:6f:53:b9:c4:63:2c:29:7e:b5:19: ac:5c:79:8e:66:f6:34:63:42:3c:d2:8c:3f:00:bb:15:1b:0c: d0:cc:10:90 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUAmkiPNFEl1UCKLVHyvkd41njrAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwODUxMjZaFw0yNzA0MTYwODU2MjZaMDMxMTAvBgNV BAMTKENFMDE4QkE5MUNEOTM1NTQxMjRBMjFBQjVBRjY0Q0RCQzIwOTVFNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAtHUCQzfg20Bqj6zgZqulpZWz zZ1ROu4CexJs5vlEPZkbL0V71LEhV1kbYHWMC6/QEcaI/3Y5ppue9JkVbWsvXd1y ImIvu3oDi2mUZ4WqAadYNL4i+/x5U1szLJXeW5DgUsY6zEKP68Pys7cCg7vPMOVU ck+fL6/b+EbhMPT5nL+rgDe7iKRuHIHRHiMs1GqPZGT1WZwt77Q8GJFCR/B4VDwx WOQPP1yUvy6rWzwVnhN8wCdSSOz5Dr2Ufyn6+n5du3kdC7s6XCU6EGoaYDTKl+xI YAjUnsU1wu6xlQ6bypBJo1VOKmrt2gZsAp4l11v3Ls5rz4GT5W3BsMI+WIatAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUzgGLqRzZNVQSSiGrWvZM28IJXlkwHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2MzIwNjI5OTcxNjgxMzEvMC8zNDMzMmUzMjM1 MzQyZTMxMzQzNDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+kDANBgkqhkiG9w0BAQsFAAOCAQEAZne9VfaO4GKksJt9u8kF ZE8QO+UmTVUW9y75wXg0X3U1F95BKY3ErKuIWMT2ui7YzP79aRVNkfFyJmVy2EoX MZxtX0c7KrUAIspR4dRauH8F95DriQMivYQ+1GOl6dvD9rxquwZMLDQynetpU2+h yBKAhaBDNhyT62vYYOP7QDL43k04BVwdq3SxVvk6MBrKkbIlCCeniGLiK8DwkWSn vVUmkwbXznc+c2dZhvG1RbRMUswobXyXp+OwCVXSYxtFRinv1D29t+flcXPzRvZG DqiusS2mYflWcO4stO77tMpvU7nEYywpfrUZrFx5jmb2NGNCPNKMPwC7FRsM0MwQ kA== -----END CERTIFICATE-----Generated at Fri Apr 17 23:28:29 2026 by rpki-client