$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134362e302f32342d3234203d3e20313338343231.roa File: 34332e3235342e3134362e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: toH1bl63cV1tHNV4VRND+sGM3Eyplg1n4JoG+nMkMts= Subject key identifier: D6:AC:83:43:83:68:AA:67:F6:20:73:48:33:89:2D:69:2C:3C:F2:74 Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 6F041BC7360014C8F315125BC085837F309747E0 Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134362e302f32342d3234203d3e20313338343231.roa Signing time: Fri 17 Apr 2026 08:56:26 +0000 ROA not before: Fri 17 Apr 2026 08:51:26 +0000 ROA not after: Fri 16 Apr 2027 08:56:26 +0000 asID: 138421 IP address blocks: 43.254.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:04:1b:c7:36:00:14:c8:f3:15:12:5b:c0:85:83:7f:30:97:47:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 08:51:26 2026 GMT Not After : Apr 16 08:56:26 2027 GMT Subject: CN=D6AC83438368AA67F620734833892D692C3CF274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:42:6b:29:80:87:34:a4:ae:aa:14:06:b3:5e: 4d:54:6c:e8:ef:ae:70:45:c0:e4:8f:8b:ad:64:26: 8b:70:0c:e5:64:ea:f5:b2:97:06:47:d8:a3:be:a1: e6:01:06:58:1e:14:e7:51:57:39:f1:f7:45:c6:03: 93:2c:a0:fd:9b:e5:e9:a6:2c:81:a4:9d:14:f0:8a: 19:12:34:91:f2:5c:98:01:45:20:eb:de:76:f9:b2: c4:42:bd:60:cb:df:e0:39:05:a4:c0:29:fd:d2:ff: f5:52:a9:bb:f2:71:71:d5:52:6e:fc:82:1f:c2:cf: f7:14:5f:7e:e4:05:75:4f:7b:ad:00:a1:63:7d:49: 49:53:a5:05:17:f6:4f:f4:c2:98:ee:be:0b:95:ab: 25:56:33:a3:0b:a9:e5:fc:f8:21:93:12:ef:5c:bb: 22:14:9a:4b:37:50:dd:18:b6:1d:1f:b1:c6:bf:74: 1e:d1:88:f2:7c:a4:af:db:48:d3:4d:d7:90:1d:90: 5d:0e:54:a1:2f:8f:d6:49:ab:43:1f:8b:e2:e9:19: c1:8f:75:54:92:fd:cd:a9:8f:67:56:e1:49:21:cd: 20:95:f6:b7:3c:d4:c7:e2:9b:35:80:e0:24:69:e0: 5c:6a:6d:13:e3:fb:22:fb:06:f9:da:41:0a:d1:4b: 9c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:AC:83:43:83:68:AA:67:F6:20:73:48:33:89:2D:69:2C:3C:F2:74 X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134362e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.146.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:26:e2:01:42:db:59:1b:75:75:95:ea:18:94:ff:e7:54:2c: 84:6c:ed:aa:d6:9c:59:25:52:46:67:48:91:9d:73:10:21:f0: 0d:14:6b:35:73:cc:f4:b0:c1:6a:5d:bb:41:3c:4c:e1:42:65: 46:40:52:aa:fe:b2:5d:1b:02:f9:1c:3d:81:4f:d7:9e:4a:dc: 13:6d:5e:88:1b:df:ba:db:df:26:02:37:09:b6:6e:3b:f3:d8: 73:26:a3:90:07:77:a9:0e:c3:c1:d0:3c:a6:2b:6b:33:76:ae: a8:56:1b:68:34:dd:2d:65:2e:ce:0f:c4:7c:47:7e:57:78:57: 94:7f:0f:dc:92:30:0c:52:8e:5d:5c:d3:1d:a1:bf:bc:32:15: 0e:7b:34:94:07:ca:66:fb:e1:bd:e1:8d:48:13:4f:8a:65:7a: 02:82:dc:b9:9d:69:39:e0:8b:f0:f5:d2:9e:27:9a:50:4f:97: de:66:cc:cd:50:32:0f:23:9e:24:f0:00:c3:b1:20:37:57:a7: 6f:b1:f5:19:b8:79:3b:01:13:72:d1:93:38:9b:43:bb:d4:7f: 2c:88:85:8b:b5:b5:86:e0:a5:a4:0f:a4:b4:38:4f:82:36:18: f9:b3:a5:e3:8e:f1:95:3e:e8:54:ee:a5:69:a5:cd:35:2c:f6: 91:95:99:1d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUbwQbxzYAFMjzFRJbwIWDfzCXR+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwODUxMjZaFw0yNzA0MTYwODU2MjZaMDMxMTAvBgNV BAMTKEQ2QUM4MzQzODM2OEFBNjdGNjIwNzM0ODMzODkyRDY5MkMzQ0YyNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNQmspgIc0pK6qFAazXk1UbOjv rnBFwOSPi61kJotwDOVk6vWylwZH2KO+oeYBBlgeFOdRVznx90XGA5MsoP2b5emm LIGknRTwihkSNJHyXJgBRSDr3nb5ssRCvWDL3+A5BaTAKf3S//VSqbvycXHVUm78 gh/Cz/cUX37kBXVPe60AoWN9SUlTpQUX9k/0wpjuvguVqyVWM6MLqeX8+CGTEu9c uyIUmks3UN0Yth0fsca/dB7RiPJ8pK/bSNNN15AdkF0OVKEvj9ZJq0Mfi+LpGcGP dVSS/c2pj2dW4UkhzSCV9rc81MfimzWA4CRp4FxqbRPj+yL7BvnaQQrRS5wfAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU1qyDQ4Noqmf2IHNIM4ktaSw88nQwHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2MzIwNjI5OTcxNjgxMzEvMC8zNDMzMmUzMjM1 MzQyZTMxMzQzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+kjANBgkqhkiG9w0BAQsFAAOCAQEATybiAULbWRt1dZXqGJT/ 51QshGztqtacWSVSRmdIkZ1zECHwDRRrNXPM9LDBal27QTxM4UJlRkBSqv6yXRsC +Rw9gU/XnkrcE21eiBvfutvfJgI3CbZuO/PYcyajkAd3qQ7DwdA8pitrM3auqFYb aDTdLWUuzg/EfEd+V3hXlH8P3JIwDFKOXVzTHaG/vDIVDns0lAfKZvvhveGNSBNP imV6AoLcuZ1pOeCL8PXSnieaUE+X3mbMzVAyDyOeJPAAw7EgN1enb7H1Gbh5OwET ctGTOJtDu9R/LIiFi7W1huClpA+ktDhPgjYY+bOl447xlT7oVO6laaXNNSz2kZWZ HQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:28:56 2026 by rpki-client