$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32322d3232203d3e203234313339.roa File: 34332e3232352e3132302e302f32322d3232203d3e203234313339.roa (raw, json) Hash identifier: d7c4NX3QBA8YembdDP1aq4wG+NzAusn1tNDrXTYiUVA= Subject key identifier: F4:5E:B6:F9:72:FB:12:A9:AC:52:53:FB:FC:E1:32:A5:63:BC:3D:15 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 4AA410618712A1B0F3E6C960EDADE3C7F6FF2EDE Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32322d3232203d3e203234313339.roa Signing time: Wed 15 Apr 2026 09:33:02 +0000 ROA not before: Wed 15 Apr 2026 09:28:02 +0000 ROA not after: Wed 14 Apr 2027 09:33:02 +0000 asID: 24139 IP address blocks: 43.225.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a4:10:61:87:12:a1:b0:f3:e6:c9:60:ed:ad:e3:c7:f6:ff:2e:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:28:02 2026 GMT Not After : Apr 14 09:33:02 2027 GMT Subject: CN=F45EB6F972FB12A9AC5253FBFCE132A563BC3D15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d0:51:bd:4d:2f:ab:e0:79:b1:61:91:62:ae: 90:64:4a:44:8a:9c:e1:64:fd:34:6c:b8:70:c2:a6: e5:b6:c6:8e:09:ce:dc:50:b6:79:33:8a:6c:9f:b2: 81:1e:83:60:bd:db:9f:96:c8:31:b5:34:46:d4:3f: 58:cc:fd:d5:1e:e7:a3:75:dc:fc:7b:42:d4:2e:a4: 03:91:12:76:69:dc:42:b6:5a:2f:24:a9:91:f1:db: b6:f9:99:9c:77:46:61:40:66:53:ce:ba:d4:03:15: 6c:aa:79:ab:57:e8:89:d1:cd:2f:ca:4a:0e:ec:55: 0e:d2:1e:d3:93:9e:0b:ec:e7:08:a1:b7:c6:72:33: 2a:3b:81:73:bd:ef:f3:86:59:b0:6e:38:41:de:0b: dc:50:f3:3c:73:14:5d:64:05:a2:34:1a:d6:6a:78: 83:df:db:49:16:66:e0:7c:e2:f0:3c:1e:f7:66:8d: 02:cd:6d:a7:6b:23:92:74:20:ff:be:35:26:dd:b2: bf:81:62:34:37:e7:6d:b5:7b:95:a5:67:0a:56:fb: 3d:ae:b5:84:7a:d4:af:21:4e:3a:e9:61:a9:76:25: ba:51:24:e7:1b:c5:2f:4c:71:4e:8d:af:cf:bb:9c: 49:3c:96:7b:5d:be:b5:df:d0:0c:6c:f2:45:2b:a9: 2c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:5E:B6:F9:72:FB:12:A9:AC:52:53:FB:FC:E1:32:A5:63:BC:3D:15 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32322d3232203d3e203234313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.120.0/22 Signature Algorithm: sha256WithRSAEncryption bd:d4:a5:44:9c:4f:f1:aa:f7:65:6c:7e:3a:7d:83:41:af:7a: ec:7c:23:bb:48:58:19:09:05:64:1d:d6:1c:01:86:7b:82:19: 88:69:02:09:d8:77:76:bd:46:d0:0d:72:2b:64:6f:5f:df:ed: d5:69:34:f1:9b:ed:1a:72:67:3e:43:10:ef:b3:9b:78:ce:94: 77:90:c2:94:65:7d:e0:09:8a:06:52:3b:65:7a:11:29:03:8d: 8b:d8:7d:89:b6:f2:de:4b:3c:51:ea:d0:2a:85:f1:5d:96:b1: 56:6e:d2:35:e1:95:e7:85:cf:7e:c6:ff:c6:56:82:5f:bb:f9: 43:18:a1:ce:5f:ee:0c:57:0b:12:8b:01:69:8b:c2:f5:f5:b2: 64:cf:f1:da:ff:80:e5:e7:a1:a1:6e:5c:8c:7f:47:54:40:1d: d5:4c:97:b4:0a:11:ea:7f:4a:88:b8:ca:6a:0d:a4:f9:f9:be: 5d:7a:43:dd:0b:e6:fb:75:b0:ae:81:ee:50:0b:84:4b:01:c1: af:1c:b1:17:27:f1:25:47:b8:9e:ec:fb:3a:dc:75:70:d1:00: f2:e4:ef:56:d5:40:92:9d:d8:11:a4:7b:c6:f3:4f:36:28:98: 66:a0:fb:a1:78:8f:77:c9:52:bb:3b:d2:b5:6c:b2:f0:88:d5: 4d:e3:62:e8 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUSqQQYYcSobDz5slg7a3jx/b/Lt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTI4MDJaFw0yNzA0MTQwOTMzMDJaMDMxMTAvBgNV BAMTKEY0NUVCNkY5NzJGQjEyQTlBQzUyNTNGQkZDRTEzMkE1NjNCQzNEMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB0FG9TS+r4HmxYZFirpBkSkSK nOFk/TRsuHDCpuW2xo4JztxQtnkzimyfsoEeg2C925+WyDG1NEbUP1jM/dUe56N1 3Px7QtQupAOREnZp3EK2Wi8kqZHx27b5mZx3RmFAZlPOutQDFWyqeatX6InRzS/K Sg7sVQ7SHtOTngvs5wiht8ZyMyo7gXO97/OGWbBuOEHeC9xQ8zxzFF1kBaI0GtZq eIPf20kWZuB84vA8HvdmjQLNbadrI5J0IP++NSbdsr+BYjQ35221e5WlZwpW+z2u tYR61K8hTjrpYal2JbpRJOcbxS9McU6Nr8+7nEk8lntdvrXf0Axs8kUrqSzLAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU9F62+XL7EqmsUlP7/OEypWO8PRUwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjcyNzc1MjM1MTk0MDYwOS8wLzM0MzMyZTMyMzIz NTJlMzEzMjMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNDMxMzMzOS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivheDANBgkqhkiG9w0BAQsFAAOCAQEAvdSlRJxP8ar3ZWx+On2DQa96 7Hwju0hYGQkFZB3WHAGGe4IZiGkCCdh3dr1G0A1yK2RvX9/t1Wk08ZvtGnJnPkMQ 77ObeM6Ud5DClGV94AmKBlI7ZXoRKQONi9h9ibby3ks8UerQKoXxXZaxVm7SNeGV 54XPfsb/xlaCX7v5Qxihzl/uDFcLEosBaYvC9fWyZM/x2v+A5eehoW5cjH9HVEAd 1UyXtAoR6n9KiLjKag2k+fm+XXpD3Qvm+3WwroHuUAuESwHBrxyxFyfxJUe4nuz7 Otx1cNEA8uTvVtVAkp3YEaR7xvNPNiiYZqD7oXiPd8lSuzvStWyy8IjVTeNi6A== -----END CERTIFICATE-----Generated at Fri Apr 17 19:43:02 2026 by rpki-client