$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134372e302f32342d3234203d3e20313338343231.roa File: 34332e3235342e3134372e302f32342d3234203d3e20313338343231.roa (raw, json) Hash identifier: pFoVGFp+Ji48fClrUOviOZVFUEIoE/trKE1mZtFrJUY= Subject key identifier: 44:59:B4:67:D2:DB:58:24:5A:6D:11:B8:1B:2B:9E:9C:C8:2E:46:EC Certificate issuer: /CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Certificate serial: 369C8148B93FDB03BB3E6C38C7BCC88744F5F67B Authority key identifier: C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134372e302f32342d3234203d3e20313338343231.roa Signing time: Fri 17 Apr 2026 08:56:26 +0000 ROA not before: Fri 17 Apr 2026 08:51:26 +0000 ROA not after: Fri 16 Apr 2027 08:56:26 +0000 asID: 138421 IP address blocks: 43.254.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:52:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:9c:81:48:b9:3f:db:03:bb:3e:6c:38:c7:bc:c8:87:44:f5:f6:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C89881B315F7E21BA948CF9CB11D1AC422106426 Validity Not Before: Apr 17 08:51:26 2026 GMT Not After : Apr 16 08:56:26 2027 GMT Subject: CN=4459B467D2DB58245A6D11B81B2B9E9CC82E46EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f5:66:f1:34:fb:61:30:3d:6a:a7:ff:a8:8c: 59:69:e7:4f:1f:86:b9:4d:bc:59:dd:62:09:61:e6: 1d:9f:a8:61:82:07:62:5c:bf:77:39:d9:d8:45:0d: 9b:64:5a:18:d3:ab:30:2e:7c:f4:79:c8:61:61:70: 33:d5:ea:34:37:84:1f:98:b2:ea:b4:14:49:35:41: 41:47:b7:bd:53:2f:bf:ee:42:bf:5d:43:9a:b0:5f: 8e:a0:85:b8:b1:23:6f:c4:73:76:4c:8b:56:60:96: aa:f6:5a:82:1e:b9:3e:54:dd:1e:49:a4:89:0b:04: e7:30:bd:a7:d8:e0:7e:c8:be:14:89:11:3c:3c:1f: f5:30:00:cc:1e:9c:41:c2:cd:45:dd:42:31:ea:9e: 79:aa:7f:41:7b:8d:be:1a:ca:e7:73:7a:94:57:f8: 02:0b:c5:15:37:cd:2b:01:99:f4:9d:e9:c7:a3:a1: e3:88:38:d8:3b:76:4a:c2:cd:78:f3:68:9d:28:91: e4:55:a9:48:19:19:81:da:7a:ac:0a:0a:33:ef:8f: 98:e7:6f:ba:4b:0c:09:96:d2:53:b3:c4:5b:98:a1: ac:af:35:5a:e1:11:ea:f2:17:1d:b4:8c:32:3f:72: d6:b2:61:6b:89:08:6c:0d:48:2b:16:3c:98:92:32: 22:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:59:B4:67:D2:DB:58:24:5A:6D:11:B8:1B:2B:9E:9C:C8:2E:46:EC X509v3 Authority Key Identifier: keyid:C8:98:81:B3:15:F7:E2:1B:A9:48:CF:9C:B1:1D:1A:C4:22:10:64:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/C89881B315F7E21BA948CF9CB11D1AC422106426.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C89881B315F7E21BA948CF9CB11D1AC422106426.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096632062997168131/0/34332e3235342e3134372e302f32342d3234203d3e20313338343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.147.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:55:7a:44:4c:db:15:f7:ac:b8:93:96:d9:17:4b:c8:09:27: 5e:8c:ac:e7:b4:21:9f:5c:73:8e:5a:f0:68:56:53:e0:35:30: 7b:9d:e7:dc:68:1d:d3:e0:94:8b:e2:ca:1e:de:81:55:31:18: 15:ab:a8:92:3c:01:a6:9b:a1:5f:4a:92:ed:4c:13:15:2c:9b: f1:1e:a3:fc:04:91:8a:26:93:e0:13:37:34:85:64:22:bc:68: e1:7a:13:ec:c1:5a:4f:3b:53:e1:1c:f5:78:48:ce:41:ac:6d: 23:cc:98:45:7f:d3:18:04:a3:37:9a:ad:64:b3:4c:b5:70:c6: 00:9c:9e:c1:89:10:c4:10:b5:0f:e9:aa:0a:c0:06:a0:b0:c4: 74:55:27:a8:0d:d1:53:f7:e4:cb:19:42:38:98:4e:14:03:46: ca:4f:91:41:ab:61:3e:7c:c8:69:a0:d2:49:17:3b:8a:31:76: a8:4d:48:5d:e6:7c:fc:e1:de:42:90:04:24:1d:c2:cd:c4:8c: 4a:fd:2e:a3:4a:fa:f1:f7:0b:de:1a:92:e4:19:dd:bd:36:58: ea:f7:ea:19:1e:b4:02:f5:5d:bc:fe:de:6f:ee:a5:e3:e0:23: 74:16:14:dd:1b:dc:c6:d6:46:a3:ed:28:81:ba:60:29:3b:27: 0f:1e:b4:cb -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUNpyBSLk/2wO7Pmw4x7zIh0T19nswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQy MjEwNjQyNjAeFw0yNjA0MTcwODUxMjZaFw0yNzA0MTYwODU2MjZaMDMxMTAvBgNV BAMTKDQ0NTlCNDY3RDJEQjU4MjQ1QTZEMTFCODFCMkI5RTlDQzgyRTQ2RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY9WbxNPthMD1qp/+ojFlp508f hrlNvFndYglh5h2fqGGCB2Jcv3c52dhFDZtkWhjTqzAufPR5yGFhcDPV6jQ3hB+Y suq0FEk1QUFHt71TL7/uQr9dQ5qwX46ghbixI2/Ec3ZMi1Zglqr2WoIeuT5U3R5J pIkLBOcwvafY4H7IvhSJETw8H/UwAMwenEHCzUXdQjHqnnmqf0F7jb4ayudzepRX +AILxRU3zSsBmfSd6cejoeOIONg7dkrCzXjzaJ0okeRVqUgZGYHaeqwKCjPvj5jn b7pLDAmW0lOzxFuYoayvNVrhEeryFx20jDI/ctayYWuJCGwNSCsWPJiSMiIRAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQURFm0Z9LbWCRabRG4GyuenMguRuwwHwYDVR0j BBgwFoAUyJiBsxX34hupSM+csR0axCIQZCYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjYzMjA2Mjk5NzE2ODEzMS8wL0M4OTg4MUIzMTVGN0UyMUJBOTQ4Q0Y5Q0IxMUQx QUM0MjIxMDY0MjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5ODgxQjMxNUY3RTIxQkE5NDhDRjlDQjExRDFBQzQyMjEwNjQyNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY2MzIwNjI5OTcxNjgxMzEvMC8zNDMzMmUzMjM1 MzQyZTMxMzQzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzODM0MzIzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv+kzANBgkqhkiG9w0BAQsFAAOCAQEALVV6REzbFfesuJOW2RdL yAknXoys57Qhn1xzjlrwaFZT4DUwe53n3Ggd0+CUi+LKHt6BVTEYFauokjwBppuh X0qS7UwTFSyb8R6j/ASRiiaT4BM3NIVkIrxo4XoT7MFaTztT4Rz1eEjOQaxtI8yY RX/TGASjN5qtZLNMtXDGAJyewYkQxBC1D+mqCsAGoLDEdFUnqA3RU/fkyxlCOJhO FANGyk+RQathPnzIaaDSSRc7ijF2qE1IXeZ8/OHeQpAEJB3CzcSMSv0uo0r68fcL 3hqS5BndvTZY6vfqGR60AvVdvP7eb+6l4+AjdBYU3RvcxtZGo+0ogbpgKTsnDx60 yw== -----END CERTIFICATE-----Generated at Sat Apr 18 02:26:51 2026 by rpki-client