$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32322d3232203d3e203536303431.roa File: 34332e3232352e3132302e302f32322d3232203d3e203536303431.roa (raw, json) Hash identifier: suWLvzyg5WBf9U0GCT+ilRuceZ0ezBD/MjP/YVxc0ok= Subject key identifier: 30:54:1A:D5:EE:B4:20:9E:E7:56:E3:47:A4:F6:1D:3E:27:E2:8E:9B Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 0B1073D5C68630C24EFF6C1D12A7208738592D13 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32322d3232203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:33:02 +0000 ROA not before: Wed 15 Apr 2026 09:28:02 +0000 ROA not after: Wed 14 Apr 2027 09:33:02 +0000 asID: 56041 IP address blocks: 43.225.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:10:73:d5:c6:86:30:c2:4e:ff:6c:1d:12:a7:20:87:38:59:2d:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:28:02 2026 GMT Not After : Apr 14 09:33:02 2027 GMT Subject: CN=30541AD5EEB4209EE756E347A4F61D3E27E28E9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3b:86:62:e7:63:1b:2e:e0:f7:d0:0b:72:15: 04:2e:74:42:89:e9:19:6d:53:61:75:5e:6a:41:98: 08:f8:45:dd:ef:58:13:3b:b6:00:2d:55:2d:8a:c7: 80:8d:44:8f:f8:df:78:dc:7d:b1:0f:e2:5e:de:35: 4f:ff:e6:ea:39:f0:f4:22:9a:ec:42:46:d4:4c:01: 8d:04:a9:1b:e7:d4:b3:ec:3b:4f:22:70:fa:71:74: 2b:6b:c4:79:de:37:42:09:fd:5a:57:b8:89:29:97: fb:d8:59:ef:7e:fa:44:d6:3e:6a:89:7c:fb:52:5e: b5:4b:2a:9c:0f:1d:e5:19:b5:a3:e8:9c:97:d3:2d: 5c:69:6c:94:87:00:ce:ca:2b:99:18:94:c2:e7:19: 90:9b:bd:47:a8:ec:cf:77:ea:ae:7b:40:8d:8d:5e: bf:3c:c4:3f:5f:50:c9:f8:99:f1:6a:df:b0:76:ab: 27:ef:a8:e9:7a:b5:4c:eb:bc:a3:8b:26:38:d9:73: 22:fd:31:38:8c:aa:6b:a6:48:b2:cc:94:0f:e5:74: 18:e2:e4:aa:c1:a2:2a:44:74:17:52:45:51:33:69: 36:1d:fa:9d:fa:7d:22:62:8d:f4:8a:0e:14:51:66: 01:f2:d8:f3:1f:bb:1c:ee:5d:f8:5e:50:f7:68:67: ac:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:54:1A:D5:EE:B4:20:9E:E7:56:E3:47:A4:F6:1D:3E:27:E2:8E:9B X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3232352e3132302e302f32322d3232203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.225.120.0/22 Signature Algorithm: sha256WithRSAEncryption 07:c2:7b:1e:fd:92:9a:9c:b4:d4:33:5e:7e:a5:70:91:b6:22: a7:c8:33:1e:f5:b7:c9:c9:23:8d:e8:85:a7:a9:9f:79:ed:53: 13:2a:1b:e6:aa:4a:b4:7a:07:9e:c0:17:e1:e0:dd:d1:dd:38: 35:e3:0d:3d:21:db:43:2f:bb:bc:e6:44:54:09:8e:d8:69:75: a4:d6:2a:0d:b8:d3:d8:b7:3d:31:82:c4:24:b5:a2:7f:19:9c: 8a:01:0f:bd:b8:a3:80:eb:89:d3:7d:8c:2f:42:e9:2e:7f:80: aa:43:55:4d:e7:52:c2:2e:78:e9:70:6d:59:f8:77:6a:dc:65: 9a:67:e7:d5:40:e7:8e:82:d3:be:54:6c:07:c2:8f:01:e6:28: 86:29:6c:ef:78:da:b0:08:35:e3:4e:17:a5:df:45:c9:59:c0: dd:88:37:b8:d3:6c:c2:57:48:c7:11:ba:25:ad:bb:33:9e:7a: 47:6e:d6:11:18:bc:1f:94:c0:5a:fe:cd:a4:2c:72:8b:58:20: 82:2e:25:1b:25:ba:2f:27:52:45:5f:65:db:96:24:c8:c9:bb: 46:a3:54:b8:2b:5f:c7:08:63:a9:4b:05:7d:07:0b:83:2d:20: 5d:55:29:1b:0c:72:95:7f:bf:48:80:61:85:76:7c:51:95:11: be:0c:ef:b3 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUCxBz1caGMMJO/2wdEqcghzhZLRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTI4MDJaFw0yNzA0MTQwOTMzMDJaMDMxMTAvBgNV BAMTKDMwNTQxQUQ1RUVCNDIwOUVFNzU2RTM0N0E0RjYxRDNFMjdFMjhFOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhO4Zi52MbLuD30AtyFQQudEKJ 6RltU2F1XmpBmAj4Rd3vWBM7tgAtVS2Kx4CNRI/433jcfbEP4l7eNU//5uo58PQi muxCRtRMAY0EqRvn1LPsO08icPpxdCtrxHneN0IJ/VpXuIkpl/vYWe9++kTWPmqJ fPtSXrVLKpwPHeUZtaPonJfTLVxpbJSHAM7KK5kYlMLnGZCbvUeo7M936q57QI2N Xr88xD9fUMn4mfFq37B2qyfvqOl6tUzrvKOLJjjZcyL9MTiMqmumSLLMlA/ldBji 5KrBoipEdBdSRVEzaTYd+p36fSJijfSKDhRRZgHy2PMfuxzuXfheUPdoZ6xbAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUMFQa1e60IJ7nVuNHpPYdPifijpswHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NjcyNzc1MjM1MTk0MDYwOS8wLzM0MzMyZTMyMzIz NTJlMzEzMjMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzNjMwMzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAivheDANBgkqhkiG9w0BAQsFAAOCAQEAB8J7Hv2Smpy01DNefqVwkbYi p8gzHvW3yckjjeiFp6mfee1TEyob5qpKtHoHnsAX4eDd0d04NeMNPSHbQy+7vOZE VAmO2Gl1pNYqDbjT2Lc9MYLEJLWifxmcigEPvbijgOuJ032ML0LpLn+AqkNVTedS wi546XBtWfh3atxlmmfn1UDnjoLTvlRsB8KPAeYohils73jasAg1404Xpd9FyVnA 3Yg3uNNswldIxxG6Ja27M556R27WERi8H5TAWv7NpCxyi1gggi4lGyW6LydSRV9l 25YkyMm7RqNUuCtfxwhjqUsFfQcLgy0gXVUpGwxylX+/SIBhhXZ8UZURvgzvsw== -----END CERTIFICATE-----Generated at Fri Apr 17 22:12:19 2026 by rpki-client