$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3234322e38302e302f32322d3232203d3e2030.roa File: 34332e3234322e38302e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: thuicuO247cznyJ38dfNDJHfTahb5LWxnOd5dRNO3qY= Subject key identifier: E2:06:DE:28:EA:D4:09:D5:99:1D:DE:F0:49:57:4B:6E:88:6B:86:E9 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 72AB176CFC8432428A2344E2753F19EAC9E62CB6 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3234322e38302e302f32322d3232203d3e2030.roa Signing time: Wed 15 Apr 2026 09:33:02 +0000 ROA not before: Wed 15 Apr 2026 09:28:02 +0000 ROA not after: Wed 14 Apr 2027 09:33:02 +0000 asID: 0 IP address blocks: 43.242.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 06:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ab:17:6c:fc:84:32:42:8a:23:44:e2:75:3f:19:ea:c9:e6:2c:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:28:02 2026 GMT Not After : Apr 14 09:33:02 2027 GMT Subject: CN=E206DE28EAD409D5991DDEF049574B6E886B86E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:90:cf:1d:7c:8a:55:2e:32:68:ca:47:47:02: 7a:e6:b6:dc:bc:f1:1e:b6:d8:c8:7a:e4:5a:6b:37: c2:c0:46:c6:29:85:a0:58:1e:0b:c0:42:db:a4:44: 5d:c8:50:b1:10:0c:b2:72:72:4d:d4:48:00:a1:4e: 53:b6:e5:93:10:db:21:aa:6e:82:2d:bf:c2:7f:25: 05:11:f0:e4:c9:39:ed:24:04:8c:6e:90:1c:5a:f9: fd:22:cf:32:c4:69:58:4d:70:2e:3d:86:77:74:31: 58:28:7a:b9:b8:2c:92:92:2a:8e:8b:cc:79:a3:08: 88:e7:26:82:12:5c:d4:f0:c0:33:94:f8:1d:51:b5: 4d:80:80:b4:f4:a2:b1:72:4f:9d:e2:bc:d4:a5:ba: 0f:14:4c:da:d8:f4:7e:01:dc:29:cf:c6:ee:26:da: f8:01:03:76:16:8e:ae:55:c6:c3:dc:a8:0f:61:6e: 5f:4c:68:46:e5:cb:82:ff:88:f4:7c:bb:0f:62:43: f2:2c:32:31:20:b6:04:04:35:e4:89:ea:f1:70:ab: a1:85:65:64:c8:de:8b:4c:47:f8:2b:e8:02:12:e6: 36:90:57:9c:3f:b1:4a:e1:69:8d:4f:1a:6d:42:53: a2:15:c2:67:bf:d9:a9:b4:29:89:ae:42:b7:39:d1: d7:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:06:DE:28:EA:D4:09:D5:99:1D:DE:F0:49:57:4B:6E:88:6B:86:E9 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/34332e3234322e38302e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.242.80.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:5e:01:08:62:84:af:3f:ae:67:03:0e:d6:cd:30:d6:4c:47: 02:0a:14:3b:23:65:4c:77:9d:1a:0c:1a:36:05:ac:ca:a0:bb: e9:05:ee:29:50:01:67:08:bb:6e:96:46:91:14:2e:7e:35:21: 5a:2a:16:b9:fa:60:9a:c1:9d:fc:1c:b6:ff:7b:c7:f7:94:83: 3a:8d:98:d6:6d:69:77:47:8e:74:c6:13:95:b8:90:6d:8c:1c: cf:00:26:08:fe:8f:e4:f7:99:e7:e8:28:9f:07:19:bc:2a:65: db:13:d3:d6:ac:d6:a0:0f:a4:3b:2e:92:bb:4d:07:54:58:a3: 95:93:99:2f:50:2f:42:77:cf:d2:2f:21:d9:4a:5f:75:a0:68: 44:74:fc:05:42:7c:25:81:2f:e7:00:0f:3c:98:7d:00:60:2f: 4e:b5:c0:06:f9:06:73:78:ce:dc:84:3b:0f:c1:6d:fc:73:64: 95:be:66:3e:88:e5:18:8a:7d:8a:56:55:ce:26:cf:98:29:61: 45:9b:c6:9e:b6:c7:77:81:aa:95:a5:1b:f0:47:98:01:07:be: f6:8f:6e:ec:bd:3d:b3:dd:14:48:f2:9f:f7:00:e5:66:aa:73: 12:81:9e:80:42:da:5b:74:3b:a7:df:9c:6c:0d:a6:7c:57:77: 9d:ae:7a:4b -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgIUcqsXbPyEMkKKI0TidT8Z6snmLLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTI4MDJaFw0yNzA0MTQwOTMzMDJaMDMxMTAvBgNV BAMTKEUyMDZERTI4RUFENDA5RDU5OTFEREVGMDQ5NTc0QjZFODg2Qjg2RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUkM8dfIpVLjJoykdHAnrmtty8 8R622Mh65FprN8LARsYphaBYHgvAQtukRF3IULEQDLJyck3USAChTlO25ZMQ2yGq boItv8J/JQUR8OTJOe0kBIxukBxa+f0izzLEaVhNcC49hnd0MVgoerm4LJKSKo6L zHmjCIjnJoISXNTwwDOU+B1RtU2AgLT0orFyT53ivNSlug8UTNrY9H4B3CnPxu4m 2vgBA3YWjq5VxsPcqA9hbl9MaEbly4L/iPR8uw9iQ/IsMjEgtgQENeSJ6vFwq6GF ZWTI3otMR/gr6AIS5jaQV5w/sUrhaY1PGm1CU6IVwme/2am0KYmuQrc50ddbAgMB AAGjggIJMIICBTAdBgNVHQ4EFgQU4gbeKOrUCdWZHd7wSVdLbohrhukwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NzI3NzUyMzUxOTQwNjA5LzAvMzQzMzJlMzIzNDMy MmUzODMwMmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr8lAw DQYJKoZIhvcNAQELBQADggEBAFpeAQhihK8/rmcDDtbNMNZMRwIKFDsjZUx3nRoM GjYFrMqgu+kF7ilQAWcIu26WRpEULn41IVoqFrn6YJrBnfwctv97x/eUgzqNmNZt aXdHjnTGE5W4kG2MHM8AJgj+j+T3mefoKJ8HGbwqZdsT09as1qAPpDsukrtNB1RY o5WTmS9QL0J3z9IvIdlKX3WgaER0/AVCfCWBL+cADzyYfQBgL061wAb5BnN4ztyE Ow/BbfxzZJW+Zj6I5RiKfYpWVc4mz5gpYUWbxp62x3eBqpWlG/BHmAEHvvaPbuy9 PbPdFEjyn/cA5WaqcxKBnoBC2lt0O6ffnGwNpnxXd52ueks= -----END CERTIFICATE-----Generated at Thu Apr 16 22:35:38 2026 by rpki-client