$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3234382e3131302e302f32332d3233203d3e20313436373732.roa File: 34352e3234382e3131302e302f32332d3233203d3e20313436373732.roa (raw, json) Hash identifier: NE6ljU5KjnghW4pvGF9PHCS/poej81XQVr8BeMhZs4k= Subject key identifier: 19:37:6A:7D:A6:31:2D:6C:A2:FB:4F:1C:64:38:31:ED:8A:15:7C:4B Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 34F228CAB9F0DE1FC2ED94A4414E825823D9BB87 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3234382e3131302e302f32332d3233203d3e20313436373732.roa Signing time: Fri 24 Apr 2026 07:34:54 +0000 ROA not before: Fri 24 Apr 2026 07:29:54 +0000 ROA not after: Fri 23 Apr 2027 07:34:54 +0000 asID: 146772 IP address blocks: 45.248.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:f2:28:ca:b9:f0:de:1f:c2:ed:94:a4:41:4e:82:58:23:d9:bb:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 24 07:29:54 2026 GMT Not After : Apr 23 07:34:54 2027 GMT Subject: CN=19376A7DA6312D6CA2FB4F1C643831ED8A157C4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a2:84:a3:05:c9:1b:6e:f1:05:53:37:a4:70: 03:b8:3f:b8:1d:60:15:96:02:7d:08:c0:90:d1:f6: 43:a1:83:fe:21:3f:1d:07:3c:ea:e6:b1:ba:ff:43: df:a9:dc:af:b0:e6:58:d2:7b:f0:d4:c8:30:f3:47: f0:5c:a0:d5:e5:d8:23:9b:78:9b:e4:91:b1:89:83: 9f:38:4f:07:4b:44:6b:bf:f8:e4:4d:4e:cf:03:71: 87:21:35:a7:ba:8d:74:97:44:8d:9f:3e:89:91:db: 56:a9:8c:31:c3:9d:22:87:fa:97:49:69:3c:fa:4a: 4a:93:c1:ae:8b:9a:3e:b3:1e:f7:07:76:01:f4:67: a8:e6:7a:e3:dc:25:37:13:ae:f0:46:ae:38:86:c0: ac:fd:96:b5:93:f6:55:b1:8d:4b:c9:03:1d:b4:78: 29:47:77:39:08:7a:3e:bb:69:73:da:21:ea:6a:c2: c2:2a:ce:0a:73:22:de:51:03:b2:82:f6:f5:85:bd: 60:27:2e:55:31:cd:62:bc:19:2e:81:15:35:48:c6: d6:07:47:cf:b6:8f:71:c4:30:8e:16:17:87:fc:d2: 86:dd:46:4a:93:ee:a8:b2:8f:87:0c:fd:c6:eb:b2: 5f:ab:36:45:9d:d3:24:54:73:9b:84:0a:54:a7:f3: 16:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:37:6A:7D:A6:31:2D:6C:A2:FB:4F:1C:64:38:31:ED:8A:15:7C:4B X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/34352e3234382e3131302e302f32332d3233203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.248.110.0/23 Signature Algorithm: sha256WithRSAEncryption 38:a3:bd:3c:9a:1f:8d:93:26:62:fa:de:4a:56:f4:7d:fc:e3: fa:38:1f:c0:ca:03:04:e7:e6:aa:23:dc:12:e5:40:c1:52:cd: ce:b9:0f:26:08:18:25:56:0e:2e:69:f8:ff:e3:00:b7:14:46: f2:99:3d:af:e3:37:b2:67:09:09:5a:50:ea:96:14:14:91:9d: 93:77:3d:b8:76:08:59:44:66:df:8f:76:94:1c:dc:00:ac:de: e3:b5:ef:e4:35:0d:d7:96:5c:af:c3:54:eb:f7:6e:bc:5e:49: 66:04:5f:79:c0:07:d2:d2:9e:b2:b4:6f:78:fe:3e:0b:7d:9a: 84:23:9f:41:5b:11:11:12:52:de:9f:ff:02:9e:64:b7:ef:73: 64:66:41:87:49:86:48:48:9a:59:5c:fe:75:16:3a:6a:e3:17: fa:2d:18:eb:ea:77:a2:1a:c7:68:f1:7f:bf:b3:75:7e:a1:cb: 07:5c:8c:44:f3:12:f7:f5:ad:e2:37:5e:77:88:25:a9:cd:7b: 3b:09:d8:00:d0:1d:a6:18:c6:9e:ce:19:1e:39:51:ce:c1:7c: 39:da:3b:3d:bd:59:b6:d1:9c:84:c4:c2:10:7e:da:21:0f:c7: 91:bd:05:fb:b9:76:b4:00:9b:7b:cb:b1:94:bc:89:84:82:6a: f5:06:b4:01 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUNPIoyrnw3h/C7ZSkQU6CWCPZu4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjQwNzI5NTRaFw0yNzA0MjMwNzM0NTRaMDMxMTAvBgNV BAMTKDE5Mzc2QTdEQTYzMTJENkNBMkZCNEYxQzY0MzgzMUVEOEExNTdDNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEooSjBckbbvEFUzekcAO4P7gd YBWWAn0IwJDR9kOhg/4hPx0HPOrmsbr/Q9+p3K+w5ljSe/DUyDDzR/BcoNXl2COb eJvkkbGJg584TwdLRGu/+ORNTs8DcYchNae6jXSXRI2fPomR21apjDHDnSKH+pdJ aTz6SkqTwa6Lmj6zHvcHdgH0Z6jmeuPcJTcTrvBGrjiGwKz9lrWT9lWxjUvJAx20 eClHdzkIej67aXPaIepqwsIqzgpzIt5RA7KC9vWFvWAnLlUxzWK8GS6BFTVIxtYH R8+2j3HEMI4WF4f80obdRkqT7qiyj4cM/cbrsl+rNkWd0yRUc5uEClSn8xZ9AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUGTdqfaYxLWyi+08cZDgx7YoVfEswHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU0MjAyODkvMC8zNDM1MmUzMjM0 MzgyZTMxMzEzMDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMxMzQzNjM3MzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAS34bjANBgkqhkiG9w0BAQsFAAOCAQEAOKO9PJofjZMmYvreSlb0 ffzj+jgfwMoDBOfmqiPcEuVAwVLNzrkPJggYJVYOLmn4/+MAtxRG8pk9r+M3smcJ CVpQ6pYUFJGdk3c9uHYIWURm3492lBzcAKze47Xv5DUN15Zcr8NU6/duvF5JZgRf ecAH0tKesrRveP4+C32ahCOfQVsRERJS3p//Ap5kt+9zZGZBh0mGSEiaWVz+dRY6 auMX+i0Y6+p3ohrHaPF/v7N1fqHLB1yMRPMS9/Wt4jded4glqc17OwnYANAdphjG ns4ZHjlRzsF8Odo7Pb1ZttGchMTCEH7aIQ/Hkb0F+7l2tACbe8uxlLyJhIJq9Qa0 AQ== -----END CERTIFICATE-----Generated at Wed May 13 13:48:48 2026 by rpki-client