$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097083532355829763/0/34332e3233302e3232312e302f32342d3234203d3e203233383438.roa File: 34332e3233302e3232312e302f32342d3234203d3e203233383438.roa (raw, json) Hash identifier: QU6caD+8+jogew1+5qYHx/HEHyHCp2sQmRzWqtJzrac= Subject key identifier: 0F:91:52:59:12:70:2F:BF:8D:30:03:44:31:CE:55:E4:77:E1:78:99 Certificate issuer: /CN=EDA884A79748D57EB49366704CB6A8110E27042D Certificate serial: 0F75A5F729D4698C05712A9DF57FF8A006789857 Authority key identifier: ED:A8:84:A7:97:48:D5:7E:B4:93:66:70:4C:B6:A8:11:0E:27:04:2D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/34332e3233302e3232312e302f32342d3234203d3e203233383438.roa Signing time: Thu 16 Apr 2026 09:07:32 +0000 ROA not before: Thu 16 Apr 2026 09:02:32 +0000 ROA not after: Thu 15 Apr 2027 09:07:32 +0000 asID: 23848 IP address blocks: 43.230.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.crl rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 05:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:75:a5:f7:29:d4:69:8c:05:71:2a:9d:f5:7f:f8:a0:06:78:98:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EDA884A79748D57EB49366704CB6A8110E27042D Validity Not Before: Apr 16 09:02:32 2026 GMT Not After : Apr 15 09:07:32 2027 GMT Subject: CN=0F91525912702FBF8D30034431CE55E477E17899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:83:c8:ec:ed:a5:9e:61:f7:3a:7c:63:08:a3: 48:e7:bc:74:82:e4:d0:21:65:22:fe:cf:dd:7f:8e: b3:8b:38:ea:26:7f:a2:e2:51:b1:7d:97:5b:b4:31: 6d:77:ea:b1:e0:72:98:a8:c6:97:39:51:e9:25:3e: 04:5a:e5:62:65:16:f2:35:da:38:b7:26:57:d7:29: 02:75:52:67:ea:2b:92:6b:f0:d8:80:9d:d3:d7:a5: cf:8a:a9:d6:e8:dd:4d:c2:d8:ab:f0:7c:3d:6d:53: d3:1c:58:92:77:75:ba:54:9f:83:cb:90:6d:99:6f: 55:e1:47:93:6b:66:e5:7f:cd:83:3c:e2:d3:1d:99: 27:6c:54:f8:7d:7f:79:c5:3e:a4:c0:5a:2e:8c:8a: d0:44:e4:6f:da:c0:3a:3b:a5:4b:11:47:f5:39:bc: e2:35:28:eb:d7:95:0a:a4:bf:04:5b:40:29:88:6c: ab:f2:55:68:2c:90:41:dd:e5:67:76:49:26:e5:8f: 5b:cb:14:2a:5d:3c:96:13:9c:7a:a7:ff:37:dd:91: d5:41:fb:cf:8c:fa:99:97:77:8e:93:24:73:fb:6b: 4b:95:9f:68:d2:17:ee:5b:9a:02:5f:11:32:83:e2: d0:f5:58:5c:0d:b7:b7:6a:9c:7c:b6:f5:c6:69:84: fb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:91:52:59:12:70:2F:BF:8D:30:03:44:31:CE:55:E4:77:E1:78:99 X509v3 Authority Key Identifier: keyid:ED:A8:84:A7:97:48:D5:7E:B4:93:66:70:4C:B6:A8:11:0E:27:04:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/EDA884A79748D57EB49366704CB6A8110E27042D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EDA884A79748D57EB49366704CB6A8110E27042D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097083532355829763/0/34332e3233302e3232312e302f32342d3234203d3e203233383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.230.221.0/24 Signature Algorithm: sha256WithRSAEncryption 62:c0:44:ff:cf:bf:53:58:0f:4c:db:6a:f2:6a:f3:68:ef:c0: dc:0d:32:d1:74:05:b9:61:eb:d5:8e:ef:b7:f1:4a:80:1e:5b: 11:3f:3f:17:47:0e:09:cf:ac:2f:e9:8a:d6:78:fe:f6:0f:57: c7:dd:a3:47:5e:85:d8:7e:16:f1:cc:70:c3:48:77:73:b8:c8: 92:5f:35:35:a5:e6:a3:f5:5a:d5:7c:6d:cf:94:c6:66:b3:32: 07:2b:68:4c:f2:f6:70:c6:9c:0b:8c:76:44:84:11:dc:95:78: dd:45:c9:f2:06:2c:37:d7:2e:b5:e0:96:4e:98:21:4e:17:ad: 27:af:f6:8b:6f:45:b1:3f:84:e4:f9:04:eb:41:55:da:6c:94: 05:dd:16:64:ff:ce:44:2a:44:cf:2d:bc:4d:79:89:cf:aa:04: 5d:2f:83:8d:bd:3a:a3:ae:39:2e:6d:25:f0:64:e3:b3:e0:00: 72:77:b9:f0:03:9f:9a:5b:64:71:38:10:49:5e:30:81:37:65: d7:24:a5:57:62:0a:42:45:f7:78:99:ef:5c:8c:5e:f3:9e:09: 59:eb:bd:3e:f3:e1:aa:6e:ea:d0:5d:71:56:b1:ba:f9:73:ae: e5:26:b5:c4:0f:bc:40:ca:29:0c:bf:bd:94:88:86:a8:ef:51: f6:6c:73:59 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUD3Wl9ynUaYwFcSqd9X/4oAZ4mFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRURBODg0QTc5NzQ4RDU3RUI0OTM2NjcwNENCNkE4MTEw RTI3MDQyRDAeFw0yNjA0MTYwOTAyMzJaFw0yNzA0MTUwOTA3MzJaMDMxMTAvBgNV BAMTKDBGOTE1MjU5MTI3MDJGQkY4RDMwMDM0NDMxQ0U1NUU0NzdFMTc4OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUg8js7aWeYfc6fGMIo0jnvHSC 5NAhZSL+z91/jrOLOOomf6LiUbF9l1u0MW136rHgcpioxpc5UeklPgRa5WJlFvI1 2ji3JlfXKQJ1UmfqK5Jr8NiAndPXpc+Kqdbo3U3C2KvwfD1tU9McWJJ3dbpUn4PL kG2Zb1XhR5NrZuV/zYM84tMdmSdsVPh9f3nFPqTAWi6MitBE5G/awDo7pUsRR/U5 vOI1KOvXlQqkvwRbQCmIbKvyVWgskEHd5Wd2SSblj1vLFCpdPJYTnHqn/zfdkdVB +8+M+pmXd46TJHP7a0uVn2jSF+5bmgJfETKD4tD1WFwNt7dqnHy29cZphPtHAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUD5FSWRJwL7+NMANEMc5V5HfheJkwHwYDVR0j BBgwFoAU7aiEp5dI1X60k2ZwTLaoEQ4nBC0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA4MzUzMjM1NTgyOTc2My8wL0VEQTg4NEE3OTc0OEQ1N0VCNDkzNjY3MDRDQjZB ODExMEUyNzA0MkQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRURBODg0QTc5NzQ4RDU3RUI0OTM2NjcwNENCNkE4MTEwRTI3MDQyRC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NzA4MzUzMjM1NTgyOTc2My8wLzM0MzMyZTMyMzMz MDJlMzIzMjMxMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzM4MzQzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEACvm3TANBgkqhkiG9w0BAQsFAAOCAQEAYsBE/8+/U1gPTNtq8mrzaO/A 3A0y0XQFuWHr1Y7vt/FKgB5bET8/F0cOCc+sL+mK1nj+9g9Xx92jR16F2H4W8cxw w0h3c7jIkl81NaXmo/Va1Xxtz5TGZrMyBytoTPL2cMacC4x2RIQR3JV43UXJ8gYs N9cuteCWTpghThetJ6/2i29FsT+E5PkE60FV2myUBd0WZP/ORCpEzy28TXmJz6oE XS+Djb06o645Lm0l8GTjs+AAcne58AOfmltkcTgQSV4wgTdl1ySlV2IKQkX3eJnv XIxe854JWeu9PvPhqm7q0F1xVrG6+XOu5Sa1xA+8QMopDL+9lIiGqO9R9mxzWQ== -----END CERTIFICATE-----Generated at Fri Apr 17 23:24:58 2026 by rpki-client