$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094498863600893954/0/34352e3235312e3134382e302f32322d3232203d3e2030.roa File: 34352e3235312e3134382e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: hgzzmAJZR3a6NXzfmlpD1wxFTR8mhcdKXPB/DalEBzY= Subject key identifier: 0A:9D:1E:4F:00:A6:C4:CA:41:A7:40:20:ED:DE:C4:7C:25:99:76:98 Certificate issuer: /CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Certificate serial: 5294D4A1B3BC905445621DCBD8C5ACB35BF004AE Authority key identifier: 60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/34352e3235312e3134382e302f32322d3232203d3e2030.roa Signing time: Wed 22 Apr 2026 07:03:32 +0000 ROA not before: Wed 22 Apr 2026 06:58:32 +0000 ROA not after: Wed 21 Apr 2027 07:03:32 +0000 asID: 0 IP address blocks: 45.251.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 16:26:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:94:d4:a1:b3:bc:90:54:45:62:1d:cb:d8:c5:ac:b3:5b:f0:04:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Validity Not Before: Apr 22 06:58:32 2026 GMT Not After : Apr 21 07:03:32 2027 GMT Subject: CN=0A9D1E4F00A6C4CA41A74020EDDEC47C25997698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:58:37:61:33:2a:fe:03:ce:75:77:1a:a6:1a: 95:c6:9e:26:33:29:4f:04:3f:0a:8b:5b:65:27:f9: 37:b3:40:aa:fc:90:b5:b5:cb:14:85:04:04:b4:11: 11:af:59:6b:d2:e4:9b:bb:4f:e7:17:21:5e:02:b7: 85:52:7a:04:03:13:d5:a9:f1:d4:cd:da:26:2a:27: 32:b7:e7:78:75:bb:c3:ac:0b:5e:d8:d8:75:02:4d: 1a:be:08:c9:c9:bf:23:02:4a:35:67:99:64:30:19: f1:e2:63:b8:10:5d:8b:56:a0:7b:c4:5b:fc:53:06: 17:b7:96:d1:7a:ec:23:da:ec:52:eb:72:e1:d9:73: 07:28:e1:94:75:37:31:1d:1e:06:b0:e4:56:2b:4d: de:5b:71:b3:94:8f:e6:7d:2f:4c:38:b1:ef:6f:18: 1b:ed:8f:5e:1e:38:9d:74:c3:90:48:45:24:20:05: 3d:2e:aa:68:18:8b:d9:8a:b4:fe:1c:5f:8b:8b:1f: 29:7a:ed:7d:ed:4c:33:f6:43:a2:bf:f2:c3:eb:09: 87:04:34:57:bb:a9:c0:6b:98:b6:77:07:0c:10:2f: 15:ff:19:04:c3:db:1b:1e:48:78:9f:3f:65:2d:55: 82:61:22:69:21:a8:de:2b:11:de:8e:81:c6:57:12: 6c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:9D:1E:4F:00:A6:C4:CA:41:A7:40:20:ED:DE:C4:7C:25:99:76:98 X509v3 Authority Key Identifier: keyid:60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/34352e3235312e3134382e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.251.148.0/22 Signature Algorithm: sha256WithRSAEncryption 32:bc:fe:f5:c3:8c:dd:f2:4b:9b:4f:78:7e:1f:7f:fb:40:53: 5d:f1:82:08:ba:09:a6:1c:ed:e2:53:a7:1c:ee:44:12:2a:84: 18:17:3a:f8:96:88:71:89:f3:bc:8a:26:80:63:98:89:6f:54: 83:f4:7f:88:f4:74:93:d9:17:80:18:52:87:4b:72:97:4c:e4: 9c:a1:80:bc:41:43:40:cf:3d:dd:02:03:e0:4b:a9:9c:95:15: 5f:90:f1:30:0d:3e:a5:7b:70:32:6e:f1:6b:ba:1c:41:dc:c8: 47:89:6e:45:c5:f0:58:6a:3b:1b:fe:26:80:8d:c8:62:58:bd: b8:14:ea:f9:29:84:9d:73:62:1e:00:50:5a:20:30:64:16:c4: e9:3b:a5:31:6f:e5:ab:17:18:fb:df:2e:37:1b:ed:88:1b:db: 99:c6:98:48:d3:79:a3:9e:3d:5d:66:a1:2a:ac:81:e3:b0:7a: be:9b:b4:ea:b8:85:03:b7:65:de:3f:09:85:dc:b2:96:06:1a: c6:7c:1b:94:d3:56:58:ff:52:00:91:bf:ce:06:67:eb:67:5d: 20:42:ae:b2:36:59:03:c5:eb:a6:47:aa:a8:d5:c0:dd:bb:5b: c6:13:87:f0:d4:2c:9d:c3:9c:7b:5e:c8:6e:da:11:14:ea:51: be:4b:e0:3c -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUUpTUobO8kFRFYh3L2MWss1vwBK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZG NTRFREM0RTAeFw0yNjA0MjIwNjU4MzJaFw0yNzA0MjEwNzAzMzJaMDMxMTAvBgNV BAMTKDBBOUQxRTRGMDBBNkM0Q0E0MUE3NDAyMEVEREVDNDdDMjU5OTc2OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYWDdhMyr+A851dxqmGpXGniYz KU8EPwqLW2Un+TezQKr8kLW1yxSFBAS0ERGvWWvS5Ju7T+cXIV4Ct4VSegQDE9Wp 8dTN2iYqJzK353h1u8OsC17Y2HUCTRq+CMnJvyMCSjVnmWQwGfHiY7gQXYtWoHvE W/xTBhe3ltF67CPa7FLrcuHZcwco4ZR1NzEdHgaw5FYrTd5bcbOUj+Z9L0w4se9v GBvtj14eOJ10w5BIRSQgBT0uqmgYi9mKtP4cX4uLHyl67X3tTDP2Q6K/8sPrCYcE NFe7qcBrmLZ3BwwQLxX/GQTD2xseSHifP2UtVYJhImkhqN4rEd6OgcZXEmyRAgMB AAGjggILMIICBzAdBgNVHQ4EFgQUCp0eTwCmxMpBp0Ag7d7EfCWZdpgwHwYDVR0j BBgwFoAUYBqaijtQWl7iKDJD96vnpvVO3E4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQ5ODg2MzYwMDg5Mzk1NC8wLzYwMUE5QThBM0I1MDVBNUVFMjI4MzI0M0Y3QUJF N0E2RjU0RURDNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZGNTRFREM0RS5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0NDk4ODYzNjAwODkzOTU0LzAvMzQzNTJlMzIzNTMx MmUzMTM0MzgyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi37 lDANBgkqhkiG9w0BAQsFAAOCAQEAMrz+9cOM3fJLm094fh9/+0BTXfGCCLoJphzt 4lOnHO5EEiqEGBc6+JaIcYnzvIomgGOYiW9Ug/R/iPR0k9kXgBhSh0tyl0zknKGA vEFDQM893QID4EupnJUVX5DxMA0+pXtwMm7xa7ocQdzIR4luRcXwWGo7G/4mgI3I Yli9uBTq+SmEnXNiHgBQWiAwZBbE6TulMW/lqxcY+98uNxvtiBvbmcaYSNN5o549 XWahKqyB47B6vpu06riFA7dl3j8JhdyylgYaxnwblNNWWP9SAJG/zgZn62ddIEKu sjZZA8XrpkeqqNXA3btbxhOH8NQsncOce17IbtoRFOpRvkvgPA== -----END CERTIFICATE-----Generated at Wed May 13 08:45:15 2026 by rpki-client