$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1098494210874540035/0/34322e36322e33322e302f32312d3231203d3e203233373234.roa File: 34322e36322e33322e302f32312d3231203d3e203233373234.roa (raw, json) Hash identifier: 5fV6EvkK9HY5cJ6QMdi44kgDLBAOMwIObTFqRz2Ou6U= Subject key identifier: 8F:AF:1F:B4:58:B1:F9:20:F3:E4:1D:3D:04:B0:B2:37:44:EE:58:D3 Certificate issuer: /CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Certificate serial: 272B13F80C447A051FF84E725A8220A88FF3C47A Authority key identifier: 6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/34322e36322e33322e302f32312d3231203d3e203233373234.roa Signing time: Mon 20 Apr 2026 06:25:28 +0000 ROA not before: Mon 20 Apr 2026 06:20:28 +0000 ROA not after: Mon 19 Apr 2027 06:25:28 +0000 asID: 23724 IP address blocks: 42.62.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2b:13:f8:0c:44:7a:05:1f:f8:4e:72:5a:82:20:a8:8f:f3:c4:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1AB58561FCA85349B344B3CCABAF9318D49FAF Validity Not Before: Apr 20 06:20:28 2026 GMT Not After : Apr 19 06:25:28 2027 GMT Subject: CN=8FAF1FB458B1F920F3E41D3D04B0B23744EE58D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6d:51:01:9a:98:00:02:cd:c4:7b:ac:d7:f3: 9c:0f:35:e5:ec:be:2a:43:71:fc:98:d3:72:d5:3b: 67:26:32:e6:7b:3d:b1:8a:b7:f6:12:bb:a8:67:03: 38:e1:1f:0f:a2:37:24:b1:4f:90:22:15:61:4b:c4: 50:ac:ab:03:f9:49:a4:da:ff:06:8e:3e:f8:bc:3a: 59:7e:44:5a:a6:5d:f6:09:a9:6e:05:7a:d9:a7:31: 94:ed:f4:b3:8a:14:23:13:8e:56:4b:b2:77:c3:69: ee:69:71:ef:5b:7b:de:ee:fa:b7:84:14:08:39:02: dc:99:4b:5b:e4:07:ba:43:f4:45:6b:09:bd:26:b3: 2e:1b:e9:b6:0b:bf:24:08:a3:ba:8f:9a:4d:74:89: 96:70:16:ba:15:e4:d0:82:ec:1e:fb:54:22:78:0d: f0:dd:73:1a:d4:7f:4c:e4:b4:87:59:cd:8e:0e:f1: d9:de:95:90:df:dd:15:61:4c:be:9f:a9:3b:4c:8a: 02:f0:9d:f8:63:c0:aa:88:f0:85:95:7f:86:2a:85: 36:cc:d0:8f:24:fd:06:a9:3b:22:c3:da:f5:38:6e: 53:14:08:e1:de:8a:1c:38:47:a7:bc:52:1a:49:b0: 98:2e:b1:31:c4:06:33:80:ad:28:45:5e:88:9a:1c: 2e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:AF:1F:B4:58:B1:F9:20:F3:E4:1D:3D:04:B0:B2:37:44:EE:58:D3 X509v3 Authority Key Identifier: keyid:6D:1A:B5:85:61:FC:A8:53:49:B3:44:B3:CC:AB:AF:93:18:D4:9F:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6D1AB58561FCA85349B344B3CCABAF9318D49FAF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1098494210874540035/0/34322e36322e33322e302f32312d3231203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.62.32.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:62:b1:42:41:24:94:29:b4:4b:11:0b:4a:0e:07:c8:97:dc: e6:95:f2:6e:06:f7:d0:1e:65:04:15:c9:fa:6c:0a:55:c7:5b: 82:ec:35:04:72:63:35:c0:2d:f2:3f:07:c4:3d:66:98:4b:17: af:39:b1:d6:74:dd:e9:dd:a8:e6:67:16:b0:f7:d2:6d:7a:ea: c9:7c:e2:1c:7c:5a:e4:d5:5e:cb:a5:5f:1b:b9:5b:0a:e7:b1: c1:75:e2:b8:d6:0a:b4:e9:60:d1:a8:24:fb:5a:28:78:9d:c2: 51:16:57:f8:bc:af:3d:51:ef:c8:75:86:48:2a:b1:2c:30:1f: 80:1a:85:1e:bd:62:93:9c:ba:3e:37:27:5e:76:91:ff:39:45: b5:12:4c:b8:22:18:75:97:2d:bb:ca:af:4a:b0:9a:ac:c8:83: 91:38:73:53:51:e6:cf:62:89:6b:24:af:56:df:4a:aa:94:f1: 1d:2d:c6:c6:fe:b6:5d:91:ce:c7:6e:2e:a7:40:2c:7d:13:eb: ab:69:3b:94:82:b4:f4:7e:95:d5:a6:5b:fc:00:c8:9f:c4:cc: a5:1f:1d:76:53:0e:62:34:b8:74:34:88:5f:31:58:a2:f8:58: 5e:24:87:46:cb:9f:d2:ca:b2:cd:3b:00:95:72:74:fa:d7:1e: bc:b5:27:41 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUJysT+AxEegUf+E5yWoIgqI/zxHowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMx OEQ0OUZBRjAeFw0yNjA0MjAwNjIwMjhaFw0yNzA0MTkwNjI1MjhaMDMxMTAvBgNV BAMTKDhGQUYxRkI0NThCMUY5MjBGM0U0MUQzRDA0QjBCMjM3NDRFRTU4RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzbVEBmpgAAs3Ee6zX85wPNeXs vipDcfyY03LVO2cmMuZ7PbGKt/YSu6hnAzjhHw+iNySxT5AiFWFLxFCsqwP5SaTa /waOPvi8Oll+RFqmXfYJqW4FetmnMZTt9LOKFCMTjlZLsnfDae5pce9be97u+reE FAg5AtyZS1vkB7pD9EVrCb0msy4b6bYLvyQIo7qPmk10iZZwFroV5NCC7B77VCJ4 DfDdcxrUf0zktIdZzY4O8dnelZDf3RVhTL6fqTtMigLwnfhjwKqI8IWVf4YqhTbM 0I8k/QapOyLD2vU4blMUCOHeihw4R6e8UhpJsJgusTHEBjOArShFXoiaHC7jAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUj68ftFix+SDz5B09BLCyN0TuWNMwHwYDVR0j BBgwFoAUbRq1hWH8qFNJs0SzzKuvkxjUn68wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 ODQ5NDIxMDg3NDU0MDAzNS8wLzZEMUFCNTg1NjFGQ0E4NTM0OUIzNDRCM0NDQUJB RjkzMThENDlGQUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkQxQUI1ODU2MUZDQTg1MzQ5QjM0NEIzQ0NBQkFGOTMxOEQ0OUZBRi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk4NDk0MjEwODc0NTQwMDM1LzAvMzQzMjJlMzYzMjJl MzMzMjJlMzAyZjMyMzEyZDMyMzEyMDNkM2UyMDMyMzMzNzMyMzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAMqPiAwDQYJKoZIhvcNAQELBQADggEBAIpisUJBJJQptEsRC0oOB8iX3OaV8m4G 99AeZQQVyfpsClXHW4LsNQRyYzXALfI/B8Q9ZphLF685sdZ03endqOZnFrD30m16 6sl84hx8WuTVXsulXxu5WwrnscF14rjWCrTpYNGoJPtaKHidwlEWV/i8rz1R78h1 hkgqsSwwH4AahR69YpOcuj43J152kf85RbUSTLgiGHWXLbvKr0qwmqzIg5E4c1NR 5s9iiWskr1bfSqqU8R0txsb+tl2RzsduLqdALH0T66tpO5SCtPR+ldWmW/wAyJ/E zKUfHXZTDmI0uHQ0iF8xWKL4WF4kh0bLn9LKss07AJVydPrXHry1J0E= -----END CERTIFICATE-----Generated at Wed May 13 13:34:03 2026 by rpki-client