$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096689320682651650/0/34332e3235352e342e302f32322d3232203d3e203234313337.roa File: 34332e3235352e342e302f32322d3232203d3e203234313337.roa (raw, json) Hash identifier: +gOi9g7AvYMGXZweSvI7M0D/yREUi2fnQBbiw9Ibq0Q= Subject key identifier: B6:78:7D:55:C3:4A:8D:8E:45:CB:64:63:1C:34:3D:E0:D3:40:73:EF Certificate issuer: /CN=833355AAAB477A3A1D2F649973B483982F9BA6CE Certificate serial: 68EC80F44108191EB41B7CBFFBF3A5EE7BEA95C1 Authority key identifier: 83:33:55:AA:AB:47:7A:3A:1D:2F:64:99:73:B4:83:98:2F:9B:A6:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/833355AAAB477A3A1D2F649973B483982F9BA6CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/34332e3235352e342e302f32322d3232203d3e203234313337.roa Signing time: Wed 15 Apr 2026 07:09:15 +0000 ROA not before: Wed 15 Apr 2026 07:04:15 +0000 ROA not after: Wed 14 Apr 2027 07:09:15 +0000 asID: 24137 IP address blocks: 43.255.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/833355AAAB477A3A1D2F649973B483982F9BA6CE.crl rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/833355AAAB477A3A1D2F649973B483982F9BA6CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/833355AAAB477A3A1D2F649973B483982F9BA6CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ec:80:f4:41:08:19:1e:b4:1b:7c:bf:fb:f3:a5:ee:7b:ea:95:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833355AAAB477A3A1D2F649973B483982F9BA6CE Validity Not Before: Apr 15 07:04:15 2026 GMT Not After : Apr 14 07:09:15 2027 GMT Subject: CN=B6787D55C34A8D8E45CB64631C343DE0D34073EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:94:1d:3e:78:ef:32:51:3b:dd:d4:45:ce:9b: 4a:fa:c4:81:17:85:c9:40:21:1f:99:c1:3f:32:fd: 02:5e:7e:5d:81:c3:ba:88:92:63:0d:7a:be:bc:2c: 3f:61:8c:fe:bc:8a:03:be:39:a8:04:db:43:fb:f9: 02:cb:98:5c:d5:39:b3:d4:23:ac:8d:d6:08:36:25: ee:cc:67:ca:d2:c2:5b:e2:f3:a3:0b:89:0c:5c:06: 0c:3f:1c:98:0d:fa:13:92:05:6e:52:d7:4d:af:63: 8c:e4:c7:79:56:b1:7c:5d:64:0b:34:9b:32:5e:ac: 68:24:48:29:24:b0:1f:e1:45:c7:95:df:b8:8a:a4: b8:e9:ef:2c:c5:31:f9:ca:f9:a9:de:68:0f:5d:53: 3b:b2:0e:69:9d:6d:f8:4f:51:d1:67:3f:70:e2:84: ca:e6:dc:17:1c:62:77:30:b6:5e:02:29:2a:0a:2b: 6e:43:6c:fb:97:19:6d:44:46:43:cc:33:98:8b:92: 08:8f:7f:e0:f2:f8:4c:f6:5c:95:9b:db:67:c8:7b: bb:c1:7b:a6:ad:94:b1:d4:c8:2c:9f:12:3e:87:26: 54:55:0a:16:62:d3:45:64:93:b9:0d:24:1d:64:05: ea:f8:50:ab:d4:42:62:ef:c0:9f:0f:c7:a1:f7:a6: 5b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:78:7D:55:C3:4A:8D:8E:45:CB:64:63:1C:34:3D:E0:D3:40:73:EF X509v3 Authority Key Identifier: keyid:83:33:55:AA:AB:47:7A:3A:1D:2F:64:99:73:B4:83:98:2F:9B:A6:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/833355AAAB477A3A1D2F649973B483982F9BA6CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/833355AAAB477A3A1D2F649973B483982F9BA6CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096689320682651650/0/34332e3235352e342e302f32322d3232203d3e203234313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.255.4.0/22 Signature Algorithm: sha256WithRSAEncryption 81:8b:1a:d0:de:dc:94:68:c4:3d:79:4f:62:4a:0c:e2:75:90: 6c:c7:f3:af:e1:9a:70:46:ee:8e:ef:2c:26:c6:36:03:e4:26: 8e:df:b2:52:98:fe:5e:7e:c4:ca:58:e8:1c:e3:7f:ad:a2:1d: 3b:cf:4f:e1:db:3d:3f:bd:fb:e1:3d:50:03:76:f9:e4:7e:78: 36:49:85:cd:bd:08:64:fd:2e:7a:a5:17:11:72:07:c1:3f:e5: 57:3d:7f:92:56:19:32:e1:da:4b:97:f2:6a:4a:06:26:9a:0d: 4e:57:63:50:a2:c2:1a:0b:e2:a6:d7:20:48:3e:6d:0d:be:26: af:61:96:ca:ba:31:a3:72:6f:d3:0b:76:16:e2:8b:03:51:7a: 6f:b3:3c:84:fd:a5:ea:da:61:72:11:63:be:e2:64:d1:06:7f: 33:40:0e:ec:10:4a:8b:1b:7f:27:49:05:65:33:d5:43:61:a9: b1:61:2b:4d:6f:50:7b:ac:85:84:fd:5b:64:19:8a:25:05:b3: 92:74:cd:e0:0b:00:d0:a0:3e:1a:92:65:76:58:14:18:5a:86: 07:51:93:04:40:dc:93:58:d6:75:7c:08:fe:b9:ff:fb:a3:5a: 1f:71:e1:e6:c0:92:9f:57:76:b5:fb:d2:4e:5d:3a:c8:eb:61: 29:5d:d5:27 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUaOyA9EEIGR60G3y/+/Ol7nvqlcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODMzMzU1QUFBQjQ3N0EzQTFEMkY2NDk5NzNCNDgzOTgy RjlCQTZDRTAeFw0yNjA0MTUwNzA0MTVaFw0yNzA0MTQwNzA5MTVaMDMxMTAvBgNV BAMTKEI2Nzg3RDU1QzM0QThEOEU0NUNCNjQ2MzFDMzQzREUwRDM0MDczRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCulB0+eO8yUTvd1EXOm0r6xIEX hclAIR+ZwT8y/QJefl2Bw7qIkmMNer68LD9hjP68igO+OagE20P7+QLLmFzVObPU I6yN1gg2Je7MZ8rSwlvi86MLiQxcBgw/HJgN+hOSBW5S102vY4zkx3lWsXxdZAs0 mzJerGgkSCkksB/hRceV37iKpLjp7yzFMfnK+aneaA9dUzuyDmmdbfhPUdFnP3Di hMrm3BccYncwtl4CKSoKK25DbPuXGW1ERkPMM5iLkgiPf+Dy+Ez2XJWb22fIe7vB e6atlLHUyCyfEj6HJlRVChZi00Vkk7kNJB1kBer4UKvUQmLvwJ8Px6H3pluJAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUtnh9VcNKjY5Fy2RjHDQ94NNAc+8wHwYDVR0j BBgwFoAUgzNVqqtHejodL2SZc7SDmC+bps4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY4OTMyMDY4MjY1MTY1MC8wLzgzMzM1NUFBQUI0NzdBM0ExRDJGNjQ5OTczQjQ4 Mzk4MkY5QkE2Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODMzMzU1QUFBQjQ3N0EzQTFEMkY2NDk5NzNCNDgzOTgyRjlCQTZDRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2Njg5MzIwNjgyNjUxNjUwLzAvMzQzMzJlMzIzNTM1 MmUzNDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMyMzQzMTMzMzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr/wQwDQYJKoZIhvcNAQELBQADggEBAIGLGtDe3JRoxD15T2JKDOJ1kGzH86/h mnBG7o7vLCbGNgPkJo7fslKY/l5+xMpY6Bzjf62iHTvPT+HbPT+9++E9UAN2+eR+ eDZJhc29CGT9LnqlFxFyB8E/5Vc9f5JWGTLh2kuX8mpKBiaaDU5XY1CiwhoL4qbX IEg+bQ2+Jq9hlsq6MaNyb9MLdhbiiwNRem+zPIT9peraYXIRY77iZNEGfzNADuwQ SosbfydJBWUz1UNhqbFhK01vUHushYT9W2QZiiUFs5J0zeALANCgPhqSZXZYFBha hgdRkwRA3JNY1nV8CP65//ujWh9x4ebAkp9XdrX70k5dOsjrYSld1Sc= -----END CERTIFICATE-----Generated at Sat Apr 18 02:43:31 2026 by rpki-client