$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096689320682586114/0/34332e3233392e3132312e302f32342d3234203d3e2034383337.roa File: 34332e3233392e3132312e302f32342d3234203d3e2034383337.roa (raw, json) Hash identifier: BaekiEiRPpFp2s1DV3F9q7vYjwpTx4wZ+MgPXB7iiFU= Subject key identifier: 09:5C:A2:8F:D2:31:6B:21:49:E7:6A:51:7F:E4:88:85:69:A2:81:D8 Certificate issuer: /CN=526198C6FEC4729E2A08209CDB07E7BD6537198F Certificate serial: 6CA573B83D6111A8B1EED2F22561D13EBBFD9B53 Authority key identifier: 52:61:98:C6:FE:C4:72:9E:2A:08:20:9C:DB:07:E7:BD:65:37:19:8F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/526198C6FEC4729E2A08209CDB07E7BD6537198F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096689320682586114/0/34332e3233392e3132312e302f32342d3234203d3e2034383337.roa Signing time: Wed 15 Apr 2026 07:02:19 +0000 ROA not before: Wed 15 Apr 2026 06:57:19 +0000 ROA not after: Wed 14 Apr 2027 07:02:19 +0000 asID: 4837 IP address blocks: 43.239.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096689320682586114/0/526198C6FEC4729E2A08209CDB07E7BD6537198F.crl rsync://rpki-rps.cnnic.cn/repo/A1096689320682586114/0/526198C6FEC4729E2A08209CDB07E7BD6537198F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/526198C6FEC4729E2A08209CDB07E7BD6537198F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a5:73:b8:3d:61:11:a8:b1:ee:d2:f2:25:61:d1:3e:bb:fd:9b:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=526198C6FEC4729E2A08209CDB07E7BD6537198F Validity Not Before: Apr 15 06:57:19 2026 GMT Not After : Apr 14 07:02:19 2027 GMT Subject: CN=095CA28FD2316B2149E76A517FE4888569A281D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8d:83:32:77:64:cb:f7:1e:83:48:1d:34:40: 06:5d:79:f8:b4:47:2d:82:eb:48:8d:30:63:31:2a: 5f:94:51:2d:74:ba:3d:ae:a6:84:46:8a:2a:ba:a9: 17:86:69:f3:ac:d2:f9:99:a2:5a:0d:a2:d8:9e:86: 00:84:9c:f5:bc:ea:7f:44:60:64:3a:ad:b9:a3:48: 2b:05:07:8d:0f:a5:d6:a5:89:e5:43:02:be:60:69: fb:01:ae:42:90:67:8b:ea:70:14:1c:15:15:25:65: 44:7c:21:8c:b7:c2:66:a2:6b:04:30:2a:d6:41:ea: b5:00:e9:43:de:fe:49:70:be:de:07:6e:84:fb:02: b7:ce:3f:77:0a:6a:7e:e2:68:00:07:10:ff:d6:ec: 23:2c:89:2f:4f:02:c2:33:ee:7d:88:1b:56:5f:e4: 38:da:3f:b0:5e:7f:fe:18:ef:5a:ef:40:9e:a2:91: a9:33:d6:e0:e4:f8:b0:7f:49:ed:e4:d4:82:33:14: 82:9d:24:06:9c:5c:ff:e1:3a:f6:4b:3c:10:d7:3a: c5:73:7c:fb:7b:36:69:7e:90:01:9d:25:47:5e:87: 58:15:b9:79:92:8d:34:17:11:bc:af:c1:48:f3:f8: 3c:b8:e1:4c:83:f9:a5:d7:6b:dc:bc:ff:87:22:7f: be:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5C:A2:8F:D2:31:6B:21:49:E7:6A:51:7F:E4:88:85:69:A2:81:D8 X509v3 Authority Key Identifier: keyid:52:61:98:C6:FE:C4:72:9E:2A:08:20:9C:DB:07:E7:BD:65:37:19:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096689320682586114/0/526198C6FEC4729E2A08209CDB07E7BD6537198F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/526198C6FEC4729E2A08209CDB07E7BD6537198F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096689320682586114/0/34332e3233392e3132312e302f32342d3234203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.239.121.0/24 Signature Algorithm: sha256WithRSAEncryption 09:00:7c:59:a5:5c:f8:44:93:b6:59:b6:d4:10:9f:5b:48:5d: 19:ec:fc:b6:2f:54:f0:13:01:ec:11:d5:20:39:2c:98:5b:65: 1b:52:e5:6b:a5:f9:19:6a:4c:52:fc:50:30:b0:1d:f8:bf:5a: 72:e1:6d:ff:13:71:a7:5e:2d:fd:93:ca:52:01:92:8a:c4:b2: 69:ed:cd:d4:d0:7f:58:17:73:02:98:fa:3d:98:2c:6a:37:bd: ab:fe:1c:7a:88:92:fd:6c:87:24:9e:f8:e5:30:38:f7:28:7f: e8:ca:08:e4:a1:38:f5:86:8d:4e:22:4f:f0:35:54:73:37:ff: ce:3a:7a:e2:68:a9:cb:59:47:a6:dd:df:74:d3:7a:a2:f2:20: 65:ec:0d:b8:8d:cc:b1:08:f5:dd:14:0d:96:7d:d6:bb:f1:1a: d1:41:6a:aa:71:fb:cc:19:6e:e0:23:e4:e3:4a:be:0e:62:af: 65:91:e4:fb:60:60:f2:ac:a5:54:33:68:60:f2:c6:a9:13:af: c0:49:ae:3f:48:81:e6:27:a4:7d:ca:da:0d:42:68:4d:75:df: 43:2c:f8:9a:09:b4:cf:d3:ec:d7:c7:94:d2:2b:67:74:6c:c2: e9:e9:35:16:e8:11:ef:57:5d:ce:12:6d:6b:85:3b:55:de:52: 66:bd:57:49 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUbKVzuD1hEaix7tLyJWHRPrv9m1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI2MTk4QzZGRUM0NzI5RTJBMDgyMDlDREIwN0U3QkQ2 NTM3MTk4RjAeFw0yNjA0MTUwNjU3MTlaFw0yNzA0MTQwNzAyMTlaMDMxMTAvBgNV BAMTKDA5NUNBMjhGRDIzMTZCMjE0OUU3NkE1MTdGRTQ4ODg1NjlBMjgxRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmjYMyd2TL9x6DSB00QAZdefi0 Ry2C60iNMGMxKl+UUS10uj2upoRGiiq6qReGafOs0vmZoloNotiehgCEnPW86n9E YGQ6rbmjSCsFB40PpdalieVDAr5gafsBrkKQZ4vqcBQcFRUlZUR8IYy3wmaiawQw KtZB6rUA6UPe/klwvt4HboT7ArfOP3cKan7iaAAHEP/W7CMsiS9PAsIz7n2IG1Zf 5DjaP7Bef/4Y71rvQJ6ikakz1uDk+LB/Se3k1IIzFIKdJAacXP/hOvZLPBDXOsVz fPt7Nml+kAGdJUdeh1gVuXmSjTQXEbyvwUjz+Dy44UyD+aXXa9y8/4cif75LAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUCVyij9IxayFJ52pRf+SIhWmigdgwHwYDVR0j BBgwFoAUUmGYxv7Ecp4qCCCc2wfnvWU3GY8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY4OTMyMDY4MjU4NjExNC8wLzUyNjE5OEM2RkVDNDcyOUUyQTA4MjA5Q0RCMDdF N0JENjUzNzE5OEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTI2MTk4QzZGRUM0NzI5RTJBMDgyMDlDREIwN0U3QkQ2NTM3MTk4Ri5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2Njg5MzIwNjgyNTg2MTE0LzAvMzQzMzJlMzIzMzM5 MmUzMTMyMzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzMzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvveTANBgkqhkiG9w0BAQsFAAOCAQEACQB8WaVc+ESTtlm21BCfW0hdGez8 ti9U8BMB7BHVIDksmFtlG1Lla6X5GWpMUvxQMLAd+L9acuFt/xNxp14t/ZPKUgGS isSyae3N1NB/WBdzApj6PZgsaje9q/4ceoiS/WyHJJ745TA49yh/6MoI5KE49YaN TiJP8DVUczf/zjp64mipy1lHpt3fdNN6ovIgZewNuI3MsQj13RQNln3Wu/Ea0UFq qnH7zBlu4CPk40q+DmKvZZHk+2Bg8qylVDNoYPLGqROvwEmuP0iB5iekfcraDUJo TXXfQyz4mgm0z9Ps18eU0itndGzC6ek1FugR71ddzhJta4U7Vd5SZr1XSQ== -----END CERTIFICATE-----Generated at Fri Apr 17 17:51:07 2026 by rpki-client