$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096962404895424515/0/34352e3235322e302e302f32322d3232203d3e203234313339.roa File: 34352e3235322e302e302f32322d3232203d3e203234313339.roa (raw, json) Hash identifier: yZ9/bItsZVNimYfZJceoCqR8YKceJZZWWFqQf2xko2Y= Subject key identifier: 2C:82:AD:B5:53:61:B5:5A:34:EE:5F:E3:F4:69:44:8E:9B:0F:99:BC Certificate issuer: /CN=40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71 Certificate serial: 11A152102A717E9F4772F651CB74C44FD5E9D1CB Authority key identifier: 40:AB:F4:13:CD:33:0E:0A:4D:2B:AE:8F:1E:66:AF:8B:FC:B7:3D:71 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/34352e3235322e302e302f32322d3232203d3e203234313339.roa Signing time: Thu 16 Apr 2026 08:15:23 +0000 ROA not before: Thu 16 Apr 2026 08:10:23 +0000 ROA not after: Thu 15 Apr 2027 08:15:23 +0000 asID: 24139 IP address blocks: 45.252.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.crl rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 03:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:a1:52:10:2a:71:7e:9f:47:72:f6:51:cb:74:c4:4f:d5:e9:d1:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71 Validity Not Before: Apr 16 08:10:23 2026 GMT Not After : Apr 15 08:15:23 2027 GMT Subject: CN=2C82ADB55361B55A34EE5FE3F469448E9B0F99BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c8:b9:a5:c6:b7:36:30:3c:12:92:eb:c4:e0: b6:33:ed:90:b0:2a:bd:35:0e:dd:d7:7d:57:05:32: 4a:3e:3a:6d:d4:f0:50:a5:ff:9c:06:90:b7:d6:66: ec:41:0e:60:4a:1a:53:d7:dc:3e:a8:8c:6e:97:f5: 14:39:5c:0d:f9:02:87:c2:f3:2a:8d:68:76:02:56: 6c:2c:a5:56:ef:00:d3:43:fd:1d:28:cd:c0:d7:54: 67:fe:f8:16:09:b2:f9:81:e3:95:8a:52:d6:52:41: 47:36:d6:1c:7e:2e:47:55:7d:71:98:e5:b0:99:88: 8d:cd:2b:5a:de:f2:e1:3e:f9:0f:20:b5:ff:c2:d4: 32:df:b7:ba:e0:67:6d:25:04:f4:50:19:b7:73:a0: 4f:69:b2:07:60:06:e2:2c:16:e3:02:6a:1a:fd:fc: f8:c8:6b:64:72:5c:2b:01:7d:fe:dd:53:17:0d:53: b9:9a:bd:b6:a7:70:29:b7:da:3a:ef:73:fb:d3:99: 52:c6:dc:05:98:d2:4d:99:a2:0d:b1:66:62:30:5c: 2d:d0:61:f2:f1:9f:a5:20:3e:1a:c0:41:d4:3d:46: f4:2b:e1:6c:e4:7a:87:88:de:a6:88:50:09:90:be: 33:f4:d8:f1:45:7f:83:1d:c3:b9:aa:a3:c9:40:13: 9c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:82:AD:B5:53:61:B5:5A:34:EE:5F:E3:F4:69:44:8E:9B:0F:99:BC X509v3 Authority Key Identifier: keyid:40:AB:F4:13:CD:33:0E:0A:4D:2B:AE:8F:1E:66:AF:8B:FC:B7:3D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/40ABF413CD330E0A4D2BAE8F1E66AF8BFCB73D71.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096962404895424515/0/34352e3235322e302e302f32322d3232203d3e203234313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.252.0.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:f6:e2:86:6a:6a:60:06:68:62:42:eb:73:46:69:24:2b:a5: f7:57:31:50:be:8b:ae:4b:13:e6:a4:88:bf:6c:6e:cd:8a:3d: d5:2b:73:cd:d2:b9:47:a7:fc:3b:99:f3:3f:aa:9e:47:f8:e5: 3c:f2:33:71:22:6e:62:50:f5:a3:a7:b7:d2:72:68:60:d7:b8: fb:45:9c:3d:e6:7c:6f:a0:d5:b4:0d:53:46:0b:5f:d6:b4:0b: 59:d6:15:8e:05:df:22:ef:f7:00:94:59:87:30:e8:b3:90:96: da:45:0f:93:21:88:0b:3f:b0:a2:ee:70:92:d8:59:71:58:d9: 7e:ba:4c:c3:9e:6b:fe:d8:13:c4:06:45:f5:f1:23:e9:2d:3e: b6:ae:f4:ef:95:38:58:64:96:e7:5d:ce:c1:2b:e5:6b:22:49: 94:d7:ec:57:11:7b:8f:a9:0e:82:30:8f:8b:b9:d6:0e:48:f8: de:b6:55:7f:a6:c2:1b:9f:74:9a:d6:e3:ad:15:7b:86:9b:44: 66:cc:21:69:46:af:ac:f9:28:52:87:d2:b3:99:2e:76:d1:8e: 22:e5:37:20:52:c9:a5:72:e6:a5:2f:78:86:6f:f0:77:28:40: 04:70:84:4d:a5:e0:e1:fb:63:2c:88:bc:14:98:b7:e3:dd:2a: 11:be:50:31 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUEaFSECpxfp9HcvZRy3TET9Xp0cswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBBQkY0MTNDRDMzMEUwQTREMkJBRThGMUU2NkFGOEJG Q0I3M0Q3MTAeFw0yNjA0MTYwODEwMjNaFw0yNzA0MTUwODE1MjNaMDMxMTAvBgNV BAMTKDJDODJBREI1NTM2MUI1NUEzNEVFNUZFM0Y0Njk0NDhFOUIwRjk5QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjyLmlxrc2MDwSkuvE4LYz7ZCw Kr01Dt3XfVcFMko+Om3U8FCl/5wGkLfWZuxBDmBKGlPX3D6ojG6X9RQ5XA35AofC 8yqNaHYCVmwspVbvANND/R0ozcDXVGf++BYJsvmB45WKUtZSQUc21hx+LkdVfXGY 5bCZiI3NK1re8uE++Q8gtf/C1DLft7rgZ20lBPRQGbdzoE9psgdgBuIsFuMCahr9 /PjIa2RyXCsBff7dUxcNU7mavbancCm32jrvc/vTmVLG3AWY0k2Zog2xZmIwXC3Q YfLxn6UgPhrAQdQ9RvQr4WzkeoeI3qaIUAmQvjP02PFFf4Mdw7mqo8lAE5ybAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQULIKttVNhtVo07l/j9GlEjpsPmbwwHwYDVR0j BBgwFoAUQKv0E80zDgpNK66PHmavi/y3PXEwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 Njk2MjQwNDg5NTQyNDUxNS8wLzQwQUJGNDEzQ0QzMzBFMEE0RDJCQUU4RjFFNjZB RjhCRkNCNzNENzEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDBBQkY0MTNDRDMzMEUwQTREMkJBRThGMUU2NkFGOEJGQ0I3M0Q3MS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2OTYyNDA0ODk1NDI0NTE1LzAvMzQzNTJlMzIzNTMy MmUzMDJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMyMzQzMTMzMzkucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/AAwDQYJKoZIhvcNAQELBQADggEBAG724oZqamAGaGJC63NGaSQrpfdXMVC+ i65LE+akiL9sbs2KPdUrc83SuUen/DuZ8z+qnkf45TzyM3EibmJQ9aOnt9JyaGDX uPtFnD3mfG+g1bQNU0YLX9a0C1nWFY4F3yLv9wCUWYcw6LOQltpFD5MhiAs/sKLu cJLYWXFY2X66TMOea/7YE8QGRfXxI+ktPrau9O+VOFhkluddzsEr5WsiSZTX7FcR e4+pDoIwj4u51g5I+N62VX+mwhufdJrW460Ve4abRGbMIWlGr6z5KFKH0rOZLnbR jiLlNyBSyaVy5qUveIZv8HcoQARwhE2l4OH7YyyIvBSYt+PdKhG+UDE= -----END CERTIFICATE-----Generated at Fri Apr 17 20:25:06 2026 by rpki-client