$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098489245552607235/0/34322e36322e34302e302f32312d3231203d3e2039383038.roa File: 34322e36322e34302e302f32312d3231203d3e2039383038.roa (raw, json) Hash identifier: ja6c4uJHEChs9FFeOmh3baWv5nsp0uezZGdLPdL+61U= Subject key identifier: 30:D5:A3:8F:37:4A:9B:54:1E:39:E9:A2:5A:61:7B:A3:08:15:3D:03 Certificate issuer: /CN=51110140697A5E791546E594A2208042F4C4C6DB Certificate serial: 5AAC03D5D7F909D313FC8C470776BC16D794DEFA Authority key identifier: 51:11:01:40:69:7A:5E:79:15:46:E5:94:A2:20:80:42:F4:C4:C6:DB Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51110140697A5E791546E594A2208042F4C4C6DB.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/34322e36322e34302e302f32312d3231203d3e2039383038.roa Signing time: Mon 20 Apr 2026 07:23:38 +0000 ROA not before: Mon 20 Apr 2026 07:18:38 +0000 ROA not after: Mon 19 Apr 2027 07:23:38 +0000 asID: 9808 IP address blocks: 42.62.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/51110140697A5E791546E594A2208042F4C4C6DB.crl rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/51110140697A5E791546E594A2208042F4C4C6DB.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51110140697A5E791546E594A2208042F4C4C6DB.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ac:03:d5:d7:f9:09:d3:13:fc:8c:47:07:76:bc:16:d7:94:de:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51110140697A5E791546E594A2208042F4C4C6DB Validity Not Before: Apr 20 07:18:38 2026 GMT Not After : Apr 19 07:23:38 2027 GMT Subject: CN=30D5A38F374A9B541E39E9A25A617BA308153D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b6:4c:84:c8:d7:55:af:17:3a:d2:de:4a:30: 52:8c:8a:67:c3:de:81:cc:19:01:a0:bb:07:6a:34: 5a:44:8c:84:c8:58:58:88:91:46:8a:b7:a7:2b:cb: 00:8e:17:63:df:59:d7:b1:f4:a6:8f:b3:b0:3b:07: 36:fe:51:72:ee:af:86:52:6b:df:df:8a:df:2b:b9: 99:82:dd:7b:27:a4:3b:60:1a:42:c1:fe:49:25:fb: fd:46:ea:21:3d:46:66:bf:6e:ba:65:ee:08:64:a4: e8:17:9c:2c:f8:e8:1b:76:f8:1b:f0:8e:54:72:ea: 61:14:bf:29:93:53:6b:e1:3b:2f:ab:45:26:be:0b: 03:16:9e:13:a6:d9:fa:d0:8e:78:3a:cc:d8:73:2e: ae:04:1d:0b:2b:3e:e6:88:28:9a:69:13:e1:a8:0a: 46:5f:31:a3:61:0d:4b:7f:27:05:0e:53:9e:41:9a: 2a:ed:be:bf:f2:eb:e2:1d:3a:1e:29:eb:92:ae:0b: c1:d6:65:3f:0c:8e:1d:c4:19:10:cb:2d:d9:1d:e8: 76:72:bc:d5:16:88:06:28:e1:c2:a9:80:4d:b8:f0: a4:51:80:59:72:ee:83:b8:7a:4a:7f:40:dc:69:36: cc:80:20:2a:95:cc:96:72:2a:ed:17:bf:c8:fe:e9: 4b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D5:A3:8F:37:4A:9B:54:1E:39:E9:A2:5A:61:7B:A3:08:15:3D:03 X509v3 Authority Key Identifier: keyid:51:11:01:40:69:7A:5E:79:15:46:E5:94:A2:20:80:42:F4:C4:C6:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/51110140697A5E791546E594A2208042F4C4C6DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/51110140697A5E791546E594A2208042F4C4C6DB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098489245552607235/0/34322e36322e34302e302f32312d3231203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.62.40.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:46:0c:eb:7f:08:af:a6:71:4f:9a:58:d5:d2:7d:98:1a:86: 26:8e:04:57:2d:59:5e:eb:dc:06:fa:af:73:c4:25:92:0f:6c: 9a:95:b6:10:f1:2c:4d:83:46:6a:d3:b6:fe:e6:3e:1f:25:e6: 1a:16:59:09:97:72:7f:73:4c:67:dd:e5:da:af:56:ac:4e:26: d0:1d:1a:79:dd:6b:9f:31:f0:3d:4f:ea:6e:dd:36:60:81:73: a7:37:1e:a4:2f:de:4c:c7:80:38:74:ff:c2:8e:49:46:bd:bd: 77:34:60:9d:b8:31:2c:bb:43:c8:8d:12:90:b6:5b:de:8f:8c: ef:a7:38:7e:e5:18:21:a6:d8:48:64:fe:6a:d7:c1:0c:0d:27: 58:64:4e:2e:f9:0d:52:3f:1a:67:05:5a:fd:2d:0a:3b:b8:1e: 0d:84:86:e2:62:8e:62:c4:d9:f0:f0:94:c6:c1:dd:46:e1:db: 62:8a:ff:66:17:76:79:01:78:ab:66:aa:eb:cc:3d:61:af:c9: ab:75:93:f8:31:29:13:6e:a9:ca:e8:16:ed:4c:6d:05:1c:09: f3:56:8e:a9:5d:6b:63:b2:21:0d:98:7b:a4:36:40:7e:19:4c: d1:8f:ef:06:ee:5c:c3:88:cd:ac:35:4f:7e:c5:9a:13:6f:9b: a0:e7:be:62 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUWqwD1df5CdMT/IxHB3a8FteU3vowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTExMTAxNDA2OTdBNUU3OTE1NDZFNTk0QTIyMDgwNDJG NEM0QzZEQjAeFw0yNjA0MjAwNzE4MzhaFw0yNzA0MTkwNzIzMzhaMDMxMTAvBgNV BAMTKDMwRDVBMzhGMzc0QTlCNTQxRTM5RTlBMjVBNjE3QkEzMDgxNTNEMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+tkyEyNdVrxc60t5KMFKMimfD 3oHMGQGguwdqNFpEjITIWFiIkUaKt6crywCOF2PfWdex9KaPs7A7Bzb+UXLur4ZS a9/fit8ruZmC3XsnpDtgGkLB/kkl+/1G6iE9Rma/brpl7ghkpOgXnCz46Bt2+Bvw jlRy6mEUvymTU2vhOy+rRSa+CwMWnhOm2frQjng6zNhzLq4EHQsrPuaIKJppE+Go CkZfMaNhDUt/JwUOU55Bmirtvr/y6+IdOh4p65KuC8HWZT8Mjh3EGRDLLdkd6HZy vNUWiAYo4cKpgE248KRRgFly7oO4ekp/QNxpNsyAICqVzJZyKu0Xv8j+6UsbAgMB AAGjggINMIICCTAdBgNVHQ4EFgQUMNWjjzdKm1QeOemiWmF7owgVPQMwHwYDVR0j BBgwFoAUUREBQGl6XnkVRuWUoiCAQvTExtswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ4OTI0NTU1MjYwNzIzNS8wLzUxMTEwMTQwNjk3QTVFNzkxNTQ2RTU5NEEyMjA4 MDQyRjRDNEM2REIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTExMTAxNDA2OTdBNUU3OTE1NDZFNTk0QTIyMDgwNDJGNEM0QzZEQi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDg5MjQ1NTUyNjA3MjM1LzAvMzQzMjJlMzYzMjJl MzQzMDJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDM5MzgzMDM4LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD Kj4oMA0GCSqGSIb3DQEBCwUAA4IBAQB6RgzrfwivpnFPmljV0n2YGoYmjgRXLVle 69wG+q9zxCWSD2yalbYQ8SxNg0Zq07b+5j4fJeYaFlkJl3J/c0xn3eXar1asTibQ HRp53WufMfA9T+pu3TZggXOnNx6kL95Mx4A4dP/CjklGvb13NGCduDEsu0PIjRKQ tlvej4zvpzh+5RghpthIZP5q18EMDSdYZE4u+Q1SPxpnBVr9LQo7uB4NhIbiYo5i xNnw8JTGwd1G4dtiiv9mF3Z5AXirZqrrzD1hr8mrdZP4MSkTbqnK6BbtTG0FHAnz Vo6pXWtjsiENmHukNkB+GUzRj+8G7lzDiM2sNU9+xZoTb5ug575i -----END CERTIFICATE-----Generated at Wed May 13 11:22:20 2026 by rpki-client