$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577990146/0/34332e3232372e382e302f32322d3232203d3e2030.roa File: 34332e3232372e382e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: rFWuKZANl9HR+2+j6XziWRcJMug5PNmcsitIIwWuKlA= Subject key identifier: F3:CC:93:44:F6:8B:51:81:BE:48:1D:54:29:2D:01:29:80:5F:E7:AD Certificate issuer: /CN=9684E4B95F47A986892F9930EF9D9E453227439F Certificate serial: 78C5F6038A97B05AE2DBAA6A4CF9FEA8E6FF27A4 Authority key identifier: 96:84:E4:B9:5F:47:A9:86:89:2F:99:30:EF:9D:9E:45:32:27:43:9F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9684E4B95F47A986892F9930EF9D9E453227439F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/34332e3232372e382e302f32322d3232203d3e2030.roa Signing time: Fri 17 Apr 2026 06:11:58 +0000 ROA not before: Fri 17 Apr 2026 06:06:58 +0000 ROA not after: Fri 16 Apr 2027 06:11:58 +0000 asID: 0 IP address blocks: 43.227.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/9684E4B95F47A986892F9930EF9D9E453227439F.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/9684E4B95F47A986892F9930EF9D9E453227439F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9684E4B95F47A986892F9930EF9D9E453227439F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 12:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c5:f6:03:8a:97:b0:5a:e2:db:aa:6a:4c:f9:fe:a8:e6:ff:27:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9684E4B95F47A986892F9930EF9D9E453227439F Validity Not Before: Apr 17 06:06:58 2026 GMT Not After : Apr 16 06:11:58 2027 GMT Subject: CN=F3CC9344F68B5181BE481D54292D0129805FE7AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a8:ee:d9:ae:6e:0e:bb:1a:bf:7e:6f:0e:ab: bf:e0:5d:2a:8d:bd:57:a2:b7:1f:87:db:71:e6:c2: 9c:ac:e5:b3:f1:59:70:30:85:8e:cb:bb:87:0d:84: d3:fd:0e:b7:9c:21:7c:04:cb:a8:6a:bd:59:f8:28: 65:53:45:fa:2a:85:ef:97:eb:e3:56:93:c3:87:98: dd:3f:8c:5b:61:85:f1:e1:50:c0:58:de:e8:f5:64: da:99:1e:29:35:e9:14:f9:29:7c:ff:91:a3:8d:2c: 7b:2c:c6:de:c9:72:20:44:65:37:7c:5b:2a:e0:cb: ee:e3:7d:19:73:67:43:27:2d:3c:60:60:73:ab:68: 60:83:97:b9:ad:ac:a4:08:d6:e7:8a:f9:82:16:3b: 29:0d:31:76:78:4f:8c:43:de:c0:f0:9e:99:6b:b6: f3:b7:9d:49:44:0d:f4:18:9d:85:c6:d0:df:b0:cf: 5f:72:2f:45:d9:26:4e:07:17:d1:58:7a:d0:29:25: 4c:5c:c5:72:67:e3:8d:8e:57:ab:ef:d5:7d:47:29: e6:0b:d1:37:12:7c:99:aa:c0:2c:0d:a4:0a:ce:9b: 47:57:b0:d0:95:88:5e:40:8b:64:7e:de:3c:2e:80: ac:37:00:c4:b2:a3:08:7c:8a:5b:76:b3:b0:27:54: 02:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CC:93:44:F6:8B:51:81:BE:48:1D:54:29:2D:01:29:80:5F:E7:AD X509v3 Authority Key Identifier: keyid:96:84:E4:B9:5F:47:A9:86:89:2F:99:30:EF:9D:9E:45:32:27:43:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/9684E4B95F47A986892F9930EF9D9E453227439F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9684E4B95F47A986892F9930EF9D9E453227439F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/34332e3232372e382e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.227.8.0/22 Signature Algorithm: sha256WithRSAEncryption 24:88:4f:5f:29:d3:6d:33:ba:05:db:fb:5c:00:f7:07:ba:f0: fa:10:7e:b9:ea:2d:a3:7e:9a:e1:83:e4:61:b7:e1:58:70:d7: 47:5d:33:da:48:a1:d3:0d:3d:25:30:a8:21:a2:e5:9c:2e:4b: 12:79:3c:80:5c:41:d9:ae:04:c3:03:ed:13:c2:84:62:97:a1: 1e:6a:21:96:73:3b:55:12:40:71:57:b5:18:47:ae:d5:c3:b3: c1:1c:84:b3:c2:e9:81:85:f1:e9:26:1b:d5:b3:96:c0:50:d9: f8:af:12:29:d4:81:cd:c4:1d:bf:1e:80:58:a0:6c:1b:c1:45: 40:8d:24:72:d9:5a:5b:60:74:18:71:cd:9b:31:0b:69:7e:0e: c0:50:cf:0e:c8:86:ce:20:33:6a:58:93:c6:52:03:2c:a1:25: 34:73:64:0c:6e:07:01:ba:a6:7d:ab:ec:ad:69:bf:4a:22:9e: f5:95:d7:b5:3d:72:38:dd:63:cb:59:09:9d:ad:06:84:b8:d2: 67:95:8f:ef:0a:b2:14:72:61:27:27:c9:94:2b:b5:d8:d1:0a: 0a:4d:a4:49:e2:af:95:a5:2f:f2:18:78:7d:62:79:9c:8b:5a: 0e:ef:a7:46:3c:9b:70:51:76:ca:49:8c:af:5e:36:67:85:45: ea:70:4f:ce -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgIUeMX2A4qXsFri26pqTPn+qOb/J6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY4NEU0Qjk1RjQ3QTk4Njg5MkY5OTMwRUY5RDlFNDUz MjI3NDM5RjAeFw0yNjA0MTcwNjA2NThaFw0yNzA0MTYwNjExNThaMDMxMTAvBgNV BAMTKEYzQ0M5MzQ0RjY4QjUxODFCRTQ4MUQ1NDI5MkQwMTI5ODA1RkU3QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtqO7Zrm4Ouxq/fm8Oq7/gXSqN vVeitx+H23Hmwpys5bPxWXAwhY7Lu4cNhNP9DrecIXwEy6hqvVn4KGVTRfoqhe+X 6+NWk8OHmN0/jFthhfHhUMBY3uj1ZNqZHik16RT5KXz/kaONLHssxt7JciBEZTd8 Wyrgy+7jfRlzZ0MnLTxgYHOraGCDl7mtrKQI1ueK+YIWOykNMXZ4T4xD3sDwnplr tvO3nUlEDfQYnYXG0N+wz19yL0XZJk4HF9FYetApJUxcxXJn442OV6vv1X1HKeYL 0TcSfJmqwCwNpArOm0dXsNCViF5Ai2R+3jwugKw3AMSyowh8ilt2s7AnVAJNAgMB AAGjggIHMIICAzAdBgNVHQ4EFgQU88yTRPaLUYG+SB1UKS0BKYBf560wHwYDVR0j BBgwFoAUloTkuV9HqYaJL5kw752eRTInQ58wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3Nzk5MDE0Ni8wLzk2ODRFNEI5NUY0N0E5ODY4OTJGOTkzMEVGOUQ5 RTQ1MzIyNzQzOUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTY4NEU0Qjk1RjQ3QTk4Njg5MkY5OTMwRUY5RDlFNDUzMjI3NDM5Ri5jZXIw gYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyNzQxNTc3OTkwMTQ2LzAvMzQzMzJlMzIzMjM3 MmUzODJlMzAyZjMyMzIyZDMyMzIyMDNkM2UyMDMwLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCK+MIMA0G CSqGSIb3DQEBCwUAA4IBAQAkiE9fKdNtM7oF2/tcAPcHuvD6EH656i2jfprhg+Rh t+FYcNdHXTPaSKHTDT0lMKghouWcLksSeTyAXEHZrgTDA+0TwoRil6EeaiGWcztV EkBxV7UYR67Vw7PBHISzwumBhfHpJhvVs5bAUNn4rxIp1IHNxB2/HoBYoGwbwUVA jSRy2VpbYHQYcc2bMQtpfg7AUM8OyIbOIDNqWJPGUgMsoSU0c2QMbgcBuqZ9q+yt ab9KIp71lde1PXI43WPLWQmdrQaEuNJnlY/vCrIUcmEnJ8mUK7XY0QoKTaRJ4q+V pS/yGHh9Ynmci1oO76dGPJtwUXbKSYyvXjZnhUXqcE/O -----END CERTIFICATE-----Generated at Wed May 13 04:25:50 2026 by rpki-client