$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097368392639184898/0/34352e3131322e3233362e302f32322d3232203d3e2030.roa File: 34352e3131322e3233362e302f32322d3232203d3e2030.roa (raw, json) Hash identifier: 79syriVhn4xwLEus8js+X0J+/iXzcPB/T/pLWwKsJIA= Subject key identifier: D5:50:72:7B:F7:9E:B9:4F:A4:B1:BF:8A:DD:EC:2C:EF:B9:26:3D:BF Certificate issuer: /CN=BC0038FB81B8F669133DF399272C7BEEBC78A04E Certificate serial: 7645250F404E136B9C4558D40353624C8A857CE9 Authority key identifier: BC:00:38:FB:81:B8:F6:69:13:3D:F3:99:27:2C:7B:EE:BC:78:A0:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BC0038FB81B8F669133DF399272C7BEEBC78A04E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/34352e3131322e3233362e302f32322d3232203d3e2030.roa Signing time: Mon 20 Apr 2026 06:03:35 +0000 ROA not before: Mon 20 Apr 2026 05:58:35 +0000 ROA not after: Mon 19 Apr 2027 06:03:35 +0000 asID: 0 IP address blocks: 45.112.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/BC0038FB81B8F669133DF399272C7BEEBC78A04E.crl rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/BC0038FB81B8F669133DF399272C7BEEBC78A04E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BC0038FB81B8F669133DF399272C7BEEBC78A04E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:45:25:0f:40:4e:13:6b:9c:45:58:d4:03:53:62:4c:8a:85:7c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC0038FB81B8F669133DF399272C7BEEBC78A04E Validity Not Before: Apr 20 05:58:35 2026 GMT Not After : Apr 19 06:03:35 2027 GMT Subject: CN=D550727BF79EB94FA4B1BF8ADDEC2CEFB9263DBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:aa:8e:20:19:29:dc:ee:13:2f:b4:17:c0:76: 82:56:13:f4:12:27:fe:64:46:1e:62:1e:48:7b:3e: a2:a0:db:19:7d:49:23:e0:14:6f:c8:e8:13:58:80: 6e:44:fa:37:fa:db:f7:23:41:03:7c:c3:63:dd:74: bb:e4:ae:7a:8d:83:ec:51:5a:c5:fa:95:6d:98:b6: 7a:67:bd:eb:36:1d:88:7e:08:66:27:33:63:7d:60: a8:a9:0f:50:ae:37:a8:c2:81:98:d2:74:38:5f:4e: c8:95:20:9c:56:fc:ee:ba:90:02:2d:ad:eb:4a:fd: a2:9e:ea:fa:42:86:fc:44:7b:b7:6f:f4:a6:2a:73: 19:f2:69:97:9b:8d:d7:b0:9c:bd:72:b3:cf:54:f8: b8:71:2b:00:d3:21:86:42:f5:16:5f:f9:32:f4:21: ef:05:86:b1:f5:e5:c2:98:57:71:aa:ca:84:ca:53: c8:1a:a3:8d:45:23:55:eb:82:b4:94:05:70:b6:f4: 71:ee:4a:76:7c:8f:81:e0:9e:17:bc:09:f0:98:87: d2:57:9b:6e:df:aa:cc:89:1b:e9:fc:0c:ca:38:d6: d2:0b:36:ac:e6:42:ce:64:5d:d9:ef:c2:3d:2e:ed: 7e:4d:47:ac:1b:a9:eb:5f:6f:6f:ba:76:4e:b8:ba: 2a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:50:72:7B:F7:9E:B9:4F:A4:B1:BF:8A:DD:EC:2C:EF:B9:26:3D:BF X509v3 Authority Key Identifier: keyid:BC:00:38:FB:81:B8:F6:69:13:3D:F3:99:27:2C:7B:EE:BC:78:A0:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/BC0038FB81B8F669133DF399272C7BEEBC78A04E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BC0038FB81B8F669133DF399272C7BEEBC78A04E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/34352e3131322e3233362e302f32322d3232203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.112.236.0/22 Signature Algorithm: sha256WithRSAEncryption 44:5e:37:f2:df:e3:4b:ff:7b:12:82:a6:c3:0d:69:b4:49:18: 4c:41:02:76:09:1c:84:46:27:5d:91:cc:d6:b3:d2:b3:68:29: db:b2:00:75:ec:f4:fc:40:ad:ee:58:f6:f4:b3:c3:9f:87:1e: e4:40:eb:af:a2:77:17:a0:20:53:68:92:99:b0:46:24:e8:a0: 7a:9c:65:5e:e2:6c:b3:2d:f4:6f:52:55:0a:56:a8:46:9f:ce: 81:03:c2:11:07:2c:2b:83:77:f5:b6:75:99:61:19:a2:db:cb: 82:9e:32:2f:1f:0e:80:5c:df:24:30:ee:5b:4d:86:3d:f2:94: 72:69:25:09:af:d1:ce:47:ce:16:23:da:ff:db:76:0b:27:46: 1c:e8:55:f8:2c:d7:9a:a9:94:56:2d:67:36:3f:6c:81:ea:b5: d1:52:4f:32:87:08:e7:cd:32:3d:31:fc:4b:29:1e:c1:8b:25: 6b:0a:b6:c2:b2:cd:54:ad:1c:6c:2b:65:fc:8b:73:0f:56:aa: 63:ae:bc:f5:37:76:b2:d7:f0:49:c6:02:f2:be:0d:4c:df:de: be:d7:63:06:c1:59:c6:fb:a6:7b:a4:14:21:70:44:01:84:4f: df:9d:58:eb:35:7e:a7:72:c3:b2:0a:ad:71:7e:56:5e:2a:7a: 46:a5:60:de -----BEGIN CERTIFICATE----- MIIFATCCA+mgAwIBAgIUdkUlD0BOE2ucRVjUA1NiTIqFfOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMwMDM4RkI4MUI4RjY2OTEzM0RGMzk5MjcyQzdCRUVC Qzc4QTA0RTAeFw0yNjA0MjAwNTU4MzVaFw0yNzA0MTkwNjAzMzVaMDMxMTAvBgNV BAMTKEQ1NTA3MjdCRjc5RUI5NEZBNEIxQkY4QURERUMyQ0VGQjkyNjNEQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKqo4gGSnc7hMvtBfAdoJWE/QS J/5kRh5iHkh7PqKg2xl9SSPgFG/I6BNYgG5E+jf62/cjQQN8w2PddLvkrnqNg+xR WsX6lW2Ytnpnves2HYh+CGYnM2N9YKipD1CuN6jCgZjSdDhfTsiVIJxW/O66kAIt retK/aKe6vpChvxEe7dv9KYqcxnyaZebjdewnL1ys89U+LhxKwDTIYZC9RZf+TL0 Ie8FhrH15cKYV3GqyoTKU8gao41FI1XrgrSUBXC29HHuSnZ8j4Hgnhe8CfCYh9JX m27fqsyJG+n8DMo41tILNqzmQs5kXdnvwj0u7X5NR6wbqetfb2+6dk64uirRAgMB AAGjggILMIICBzAdBgNVHQ4EFgQU1VBye/eeuU+ksb+K3ews77kmPb8wHwYDVR0j BBgwFoAUvAA4+4G49mkTPfOZJyx77rx4oE4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM2ODM5MjYzOTE4NDg5OC8wL0JDMDAzOEZCODFCOEY2NjkxMzNERjM5OTI3MkM3 QkVFQkM3OEEwNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkMwMDM4RkI4MUI4RjY2OTEzM0RGMzk5MjcyQzdCRUVCQzc4QTA0RS5jZXIw gYQGCCsGAQUFBwELBHgwdjB0BggrBgEFBQcwC4ZocnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MzY4MzkyNjM5MTg0ODk4LzAvMzQzNTJlMzEzMTMy MmUzMjMzMzYyZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1w 7DANBgkqhkiG9w0BAQsFAAOCAQEARF438t/jS/97EoKmww1ptEkYTEECdgkchEYn XZHM1rPSs2gp27IAdez0/ECt7lj29LPDn4ce5EDrr6J3F6AgU2iSmbBGJOigepxl XuJssy30b1JVClaoRp/OgQPCEQcsK4N39bZ1mWEZotvLgp4yLx8OgFzfJDDuW02G PfKUcmklCa/RzkfOFiPa/9t2CydGHOhV+CzXmqmUVi1nNj9sgeq10VJPMocI580y PTH8SykewYslawq2wrLNVK0cbCtl/ItzD1aqY6689Td2stfwScYC8r4NTN/evtdj BsFZxvume6QUIXBEAYRP351Y6zV+p3LDsgqtcX5WXip6RqVg3g== -----END CERTIFICATE-----Generated at Wed May 13 08:24:57 2026 by rpki-client