$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134352e302f32342d3234203d3e20313338343231.roa File: 34332e3235342e3134352e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: WAAZ9vNFxRrfRPnsUj0QaFw4zZ7Y94pVUD3y/NRz17o= Subject key identifier: 61:73:1D:FF:72:2D:1D:13:08:A1:CC:C5:B0:6E:2F:27:C4:76:33:E6 Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 08A34A5E86E5B6B28CFC7CEF413A3FB1014E4C31 Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134352e302f32342d3234203d3e20313338343231.roa Signing time: Fri 17 Apr 2026 08:56:26 +0000 ROA not before: Fri 17 Apr 2026 08:51:26 +0000 ROA not after: Fri 16 Apr 2027 08:56:26 +0000 asID: 138421 IP address blocks: 43.254.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a3:4a:5e:86:e5:b6:b2:8c:fc:7c:ef:41:3a:3f:b1:01:4e:4c:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 08:51:26 2026 GMT Not After : Apr 16 08:56:26 2027 GMT Subject: CN=61731DFF722D1D1308A1CCC5B06E2F27C47633E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:12:30:8c:e1:70:b3:d6:0c:1b:b8:6c:0f:ca: da:93:93:cc:3f:c5:c2:b3:03:68:91:08:17:68:d9: 21:e1:b5:0f:f4:95:5c:d2:06:d4:a2:32:78:c7:81: 5c:b8:33:58:81:b7:b2:ac:21:a3:23:1d:24:b0:36: 0b:82:95:20:00:87:2b:88:48:3d:3c:f6:6a:2e:a6: ba:c0:a0:92:96:01:3b:83:1c:24:f7:2c:d0:fd:43: de:3c:c7:dc:35:da:a6:74:4f:ec:37:ea:03:a7:1e: ac:b8:06:02:7d:82:b8:99:e6:ec:c4:32:f7:85:b2: 0b:09:e5:f2:4b:7a:f1:04:ab:53:1c:8a:8e:2a:ad: ca:71:62:8e:c6:22:88:47:4b:c5:dc:f8:e2:14:ae: a9:11:52:08:68:04:76:ae:0b:cd:d3:ba:f7:a9:ab: ad:c1:89:89:db:c6:5f:d1:d5:53:a7:2f:51:97:f3: bd:99:3a:f1:87:6e:69:f4:2a:8c:e1:ce:a6:0c:86: a8:ee:5b:3d:6f:c8:d5:52:06:97:ad:88:b9:80:89: a9:a9:f9:95:07:56:4b:f3:27:8a:1d:26:d3:47:32: 90:2a:57:69:75:83:c3:a7:40:c4:46:69:12:40:5a: 76:be:07:63:10:ed:24:c5:07:74:78:42:e6:bc:5e: d8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:73:1D:FF:72:2D:1D:13:08:A1:CC:C5:B0:6E:2F:27:C4:76:33:E6 X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134352e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.145.0/24 Signature Algorithm: sha256WithRSAEncryption 75:1d:8d:83:a8:a6:f0:f8:62:02:b3:67:2b:62:ba:bd:68:8f: 04:64:74:43:8f:3f:1e:65:46:dd:e9:d4:27:54:cf:72:9b:b4: e5:6e:f1:48:4d:4b:15:93:24:58:4d:23:14:89:df:7f:d0:30: 06:30:e2:06:b7:2c:81:f8:ec:ac:2c:24:2a:6f:d0:aa:25:77: ed:9c:ab:2f:90:31:5a:dd:85:0d:e1:3a:ab:98:7d:44:12:98: 60:d2:ed:23:cf:e1:38:40:4c:a6:1c:0c:8f:ea:a5:64:f5:b3: 31:c4:71:ec:ef:65:43:cf:50:8c:b5:9c:be:72:56:1b:68:1b: 86:af:3b:c6:19:09:2d:b7:fb:df:f9:9a:cc:72:dd:09:51:c1: 2b:63:cb:ce:ca:a9:5f:0e:5d:fc:c2:9f:3b:91:5c:c9:46:44: 47:95:78:5e:9b:fc:1b:da:a7:53:4a:22:2b:d6:c4:ca:30:ed: 8f:08:9e:b8:65:f9:36:02:84:0b:b8:d5:44:1f:17:67:17:5b: 6b:06:37:f0:d6:fd:de:d4:cc:e4:e3:ca:47:12:ce:30:61:d6: 3d:e2:7a:3e:13:39:7a:99:89:41:b1:d0:1f:90:f1:d9:71:80: 6b:3f:15:06:fd:52:21:d4:2a:64:e6:72:42:43:f9:d7:72:75: 4a:e2:08:2e -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCKNKXobltrKM/HzvQTo/sQFOTDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwODUxMjZaFw0yNzA0MTYwODU2MjZaMDMxMTAvBgNV BAMTKDYxNzMxREZGNzIyRDFEMTMwOEExQ0NDNUIwNkUyRjI3QzQ3NjMzRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvEjCM4XCz1gwbuGwPytqTk8w/ xcKzA2iRCBdo2SHhtQ/0lVzSBtSiMnjHgVy4M1iBt7KsIaMjHSSwNguClSAAhyuI SD089mouprrAoJKWATuDHCT3LND9Q948x9w12qZ0T+w36gOnHqy4BgJ9griZ5uzE MveFsgsJ5fJLevEEq1Mcio4qrcpxYo7GIohHS8Xc+OIUrqkRUghoBHauC83Tuvep q63BiYnbxl/R1VOnL1GX872ZOvGHbmn0KozhzqYMhqjuWz1vyNVSBpetiLmAiamp +ZUHVkvzJ4odJtNHMpAqV2l1g8OnQMRGaRJAWna+B2MQ7STFB3R4Qua8XtjpAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUYXMd/3ItHRMIoczFsG4vJ8R2M+YwHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2MzIwNjI5OTcxNjgxMzEvMC8zNDMzMmUzMjM1 MzQyZTMxMzQzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+kTANBgkqhkiG9w0BAQsFAAOCAQEAdR2Ng6im8PhiArNnK2K6 vWiPBGR0Q48/HmVG3enUJ1TPcpu05W7xSE1LFZMkWE0jFInff9AwBjDiBrcsgfjs rCwkKm/QqiV37ZyrL5AxWt2FDeE6q5h9RBKYYNLtI8/hOEBMphwMj+qlZPWzMcRx 7O9lQ89QjLWcvnJWG2gbhq87xhkJLbf73/mazHLdCVHBK2PLzsqpXw5d/MKfO5Fc yUZER5V4Xpv8G9qnU0oiK9bEyjDtjwieuGX5NgKEC7jVRB8XZxdbawY38Nb93tTM 5OPKRxLOMGHWPeJ6PhM5epmJQbHQH5Dx2XGAaz8VBv1SIdQqZOZyQkP513J1SuII Lg== -----END CERTIFICATE-----Generated at Fri Apr 17 21:21:13 2026 by rpki-client