$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577334786/0/34332e3234392e3139322e302f32322d3332203d3e20313339313830.roa File: 34332e3234392e3139322e302f32322d3332203d3e20313339313830.roa (raw, json) Hash identifier: qXG1OGi8es5A9ODnA9Wrh+6N5kcIEUbeRsSCX6gtlhk= Subject key identifier: A5:99:FF:94:8E:C5:E9:E4:AA:48:5F:BA:C6:D6:C5:89:7D:02:EC:27 Certificate issuer: /CN=8E80FA24E5DFF3073621050FF18487025A2A5198 Certificate serial: 346293D3C9DAD3491285B2D656DCC80A5C855F59 Authority key identifier: 8E:80:FA:24:E5:DF:F3:07:36:21:05:0F:F1:84:87:02:5A:2A:51:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/34332e3234392e3139322e302f32322d3332203d3e20313339313830.roa Signing time: Mon 20 Apr 2026 17:54:48 +0000 ROA not before: Mon 20 Apr 2026 17:49:48 +0000 ROA not after: Mon 19 Apr 2027 17:54:48 +0000 asID: 139180 IP address blocks: 43.249.192.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:62:93:d3:c9:da:d3:49:12:85:b2:d6:56:dc:c8:0a:5c:85:5f:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E80FA24E5DFF3073621050FF18487025A2A5198 Validity Not Before: Apr 20 17:49:48 2026 GMT Not After : Apr 19 17:54:48 2027 GMT Subject: CN=A599FF948EC5E9E4AA485FBAC6D6C5897D02EC27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1f:15:71:4d:c2:5c:c0:51:17:62:ff:27:64: 32:fc:09:cf:9b:02:bf:9f:fd:00:da:e3:6a:28:4b: ce:8d:ce:ea:07:c6:52:23:7c:82:05:6c:ab:b8:77: fb:1c:14:d2:00:ff:c8:d2:5b:51:ba:3e:92:fd:df: 7f:6c:18:8f:fc:5f:76:3d:0e:17:45:56:9f:0e:0a: f1:c8:22:4b:b4:66:e2:74:54:28:35:39:11:1f:1f: 5c:a0:05:7c:a5:b3:12:91:e3:24:e8:a7:2f:72:48: 6e:4b:dd:2f:e2:ce:cc:ea:23:5a:11:cd:f4:71:4f: 0c:c6:a1:7e:2c:2c:c5:75:de:e9:a9:0e:77:cf:7a: 2e:7d:e3:e8:92:00:cc:04:01:fc:37:49:6b:5a:84: 5d:2f:88:31:7c:c1:3f:ba:e6:01:8f:49:9e:6c:56: a9:d0:1a:4f:03:69:5b:03:82:3f:00:16:fa:80:d9: 1d:bc:ad:63:36:f0:3b:39:59:fd:2e:b4:52:83:40: 8d:be:22:44:ee:c9:5b:4c:07:89:c5:00:1c:e3:4d: 68:b9:da:d7:34:95:d1:ed:d3:4e:37:97:b5:2b:10: 52:ec:c5:f6:85:c6:e5:e9:25:ae:f5:2c:71:05:3c: 3d:82:3e:b0:47:b2:b5:eb:2d:2b:96:a5:64:36:88: 61:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:99:FF:94:8E:C5:E9:E4:AA:48:5F:BA:C6:D6:C5:89:7D:02:EC:27 X509v3 Authority Key Identifier: keyid:8E:80:FA:24:E5:DF:F3:07:36:21:05:0F:F1:84:87:02:5A:2A:51:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/34332e3234392e3139322e302f32322d3332203d3e20313339313830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.192.0/22 Signature Algorithm: sha256WithRSAEncryption 00:97:4a:b4:fd:e9:43:03:7a:51:9c:8c:66:f8:53:40:e5:c6: 5a:2f:4f:a0:72:bd:de:9f:97:86:3b:05:0b:fc:ff:e5:94:c6: e5:80:8d:1b:b5:e1:3f:50:62:1f:d4:14:13:99:e7:dd:33:34: 08:12:88:78:af:a2:00:11:bc:2a:f3:25:00:04:e6:a0:04:a2: 78:69:bf:e0:89:78:9d:f3:e8:b3:25:f2:b0:b8:76:78:ae:7c: bb:c8:cc:86:26:59:0e:4a:57:8f:1b:a5:b6:98:88:9e:02:b4: 53:f3:c2:38:62:57:25:5d:f8:87:30:b8:16:56:fe:de:10:e6: eb:12:3c:5e:3a:14:f1:1d:fd:54:eb:dc:30:8d:57:76:0f:b1: 8c:b1:f2:77:7e:fc:34:fa:4b:ce:2f:0f:92:ab:be:18:7c:1c: ff:ff:29:26:9f:ca:56:ff:b5:9b:af:05:e5:55:39:2f:6a:48: 88:e7:21:35:c2:0e:a7:b1:f9:aa:a7:bc:30:22:66:3e:f1:3e: e5:cf:a3:ff:89:89:a1:94:27:d1:26:4a:1c:0a:70:cc:60:84: 00:cb:ba:8c:8b:1e:69:e1:06:48:8d:c0:d7:40:a9:12:fd:0b: 1f:4c:c1:e1:92:2a:43:cd:aa:39:a2:ff:5b:29:2c:26:dc:c8: 88:67:f1:c5 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUNGKT08na00kShbLWVtzIClyFX1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU4MEZBMjRFNURGRjMwNzM2MjEwNTBGRjE4NDg3MDI1 QTJBNTE5ODAeFw0yNjA0MjAxNzQ5NDhaFw0yNzA0MTkxNzU0NDhaMDMxMTAvBgNV BAMTKEE1OTlGRjk0OEVDNUU5RTRBQTQ4NUZCQUM2RDZDNTg5N0QwMkVDMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6HxVxTcJcwFEXYv8nZDL8Cc+b Ar+f/QDa42ooS86NzuoHxlIjfIIFbKu4d/scFNIA/8jSW1G6PpL9339sGI/8X3Y9 DhdFVp8OCvHIIku0ZuJ0VCg1OREfH1ygBXylsxKR4yTopy9ySG5L3S/izszqI1oR zfRxTwzGoX4sLMV13umpDnfPei594+iSAMwEAfw3SWtahF0viDF8wT+65gGPSZ5s VqnQGk8DaVsDgj8AFvqA2R28rWM28Ds5Wf0utFKDQI2+IkTuyVtMB4nFABzjTWi5 2tc0ldHt0043l7UrEFLsxfaFxuXpJa71LHEFPD2CPrBHsrXrLSuWpWQ2iGGPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUpZn/lI7F6eSqSF+6xtbFiX0C7CcwHwYDVR0j BBgwFoAUjoD6JOXf8wc2IQUP8YSHAloqUZgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3NzMzNDc4Ni8wLzhFODBGQTI0RTVERkYzMDczNjIxMDUwRkYxODQ4 NzAyNUEyQTUxOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEU4MEZBMjRFNURGRjMwNzM2MjEwNTBGRjE4NDg3MDI1QTJBNTE5OC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1NzczMzQ3ODYvMC8zNDMzMmUzMjM0 MzkyZTMxMzkzMjJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMxMzMzOTMxMzgzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAiv5wDANBgkqhkiG9w0BAQsFAAOCAQEAAJdKtP3pQwN6UZyMZvhT QOXGWi9PoHK93p+XhjsFC/z/5ZTG5YCNG7XhP1BiH9QUE5nn3TM0CBKIeK+iABG8 KvMlAATmoASieGm/4Il4nfPosyXysLh2eK58u8jMhiZZDkpXjxultpiIngK0U/PC OGJXJV34hzC4Flb+3hDm6xI8XjoU8R39VOvcMI1Xdg+xjLHyd378NPpLzi8Pkqu+ GHwc//8pJp/KVv+1m68F5VU5L2pIiOchNcIOp7H5qqe8MCJmPvE+5c+j/4mJoZQn 0SZKHApwzGCEAMu6jIseaeEGSI3A10CpEv0LH0zB4ZIqQ82qOaL/WyksJtzIiGfx xQ== -----END CERTIFICATE-----Generated at Wed May 13 20:57:42 2026 by rpki-client