$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576723371786242/0/323430343a373630303a3a2f33322d3332203d3e203233383533.roa File: 323430343a373630303a3a2f33322d3332203d3e203233383533.roa (raw, json) Hash identifier: gKtWmniIjY7C6+YlmHdzCK3hP/+EVEt8A1Yl3RllWsc= Subject key identifier: BF:A4:B3:C9:D7:49:10:06:85:C5:82:72:52:9F:D4:50:30:66:B7:73 Certificate issuer: /CN=3EC2D884A54E878D848EDE42517466153F747434 Certificate serial: 633AEBB4175B70FFDC73C34EFD244DF5326D3E1E Authority key identifier: 3E:C2:D8:84:A5:4E:87:8D:84:8E:DE:42:51:74:66:15:3F:74:74:34 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3EC2D884A54E878D848EDE42517466153F747434.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/323430343a373630303a3a2f33322d3332203d3e203233383533.roa Signing time: Sat 18 Apr 2026 10:18:32 +0000 ROA not before: Sat 18 Apr 2026 10:13:32 +0000 ROA not after: Sat 17 Apr 2027 10:18:32 +0000 asID: 23853 IP address blocks: 2404:7600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3EC2D884A54E878D848EDE42517466153F747434.crl rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3EC2D884A54E878D848EDE42517466153F747434.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3EC2D884A54E878D848EDE42517466153F747434.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 09:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:3a:eb:b4:17:5b:70:ff:dc:73:c3:4e:fd:24:4d:f5:32:6d:3e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3EC2D884A54E878D848EDE42517466153F747434 Validity Not Before: Apr 18 10:13:32 2026 GMT Not After : Apr 17 10:18:32 2027 GMT Subject: CN=BFA4B3C9D749100685C58272529FD4503066B773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:41:80:31:ff:a0:54:8f:d5:bc:91:56:a1: 1b:6c:b1:cd:0f:86:15:20:00:1c:c3:ac:4a:df:fa: b6:42:f0:d9:35:8d:e9:ce:cc:28:e9:eb:92:c3:71: 0d:63:57:c1:d5:b8:f2:c1:65:d3:32:78:27:95:a6: b4:d0:7a:ac:06:4e:e8:ea:1d:bc:31:af:39:98:d7: 53:c6:b0:46:62:21:0d:c8:40:b9:f0:34:0c:3f:e7: 7a:44:7c:ed:d8:f8:97:d6:0e:a6:6d:da:91:d2:ad: 24:00:a9:f4:ec:0e:98:e4:7d:e2:9e:40:e7:55:39: 7e:96:45:41:78:ab:72:45:c5:97:37:54:81:be:7c: e7:30:3a:6c:f4:7d:96:4e:b4:f0:c1:06:5e:60:6a: 0c:d5:67:90:cb:e1:bf:01:dc:ca:8f:9f:4f:9c:13: b4:22:57:d1:48:4e:0f:41:8d:8f:10:e9:30:62:76: b3:97:f9:ea:f2:ed:d7:ea:92:03:cf:f7:97:60:d9: 8e:ac:9f:57:90:cc:49:12:47:70:75:83:42:e3:33: 64:4c:8e:53:56:79:09:9e:6d:4b:43:69:fd:1f:55: ae:a9:70:14:1b:12:60:1f:33:4f:57:ba:bd:bf:06: eb:bd:a9:73:65:4a:a0:a3:58:4f:ba:27:c7:f2:ae: 6b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A4:B3:C9:D7:49:10:06:85:C5:82:72:52:9F:D4:50:30:66:B7:73 X509v3 Authority Key Identifier: keyid:3E:C2:D8:84:A5:4E:87:8D:84:8E:DE:42:51:74:66:15:3F:74:74:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/3EC2D884A54E878D848EDE42517466153F747434.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3EC2D884A54E878D848EDE42517466153F747434.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576723371786242/0/323430343a373630303a3a2f33322d3332203d3e203233383533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:7600::/32 Signature Algorithm: sha256WithRSAEncryption 33:67:bc:f6:bd:a5:6d:2b:25:94:d5:a8:3e:ed:8b:e9:3c:d6: 48:eb:02:c2:01:3d:a4:96:7e:35:56:08:31:d8:64:66:aa:de: 96:89:2a:35:3c:49:b3:2e:99:73:22:11:3d:c8:60:97:dd:72: cd:f8:4e:60:f5:70:48:bd:81:9a:2b:04:e9:b4:7d:70:73:f1: 5b:e6:c8:d9:1b:08:95:59:5a:43:25:25:91:d9:c2:f9:3b:a8: 06:78:15:a0:36:1e:db:eb:d9:64:bd:12:8f:23:d8:85:83:13: 47:7a:37:67:10:d4:57:7c:34:e4:6c:df:bf:2a:4b:25:b5:9e: 94:13:78:08:59:0f:c8:97:d2:58:2e:b0:b7:b7:98:a6:19:78: 8b:76:f3:f2:b5:7c:06:ff:c2:74:b1:0d:48:ba:47:b6:67:e6: 31:60:be:ee:a8:ed:43:5a:97:0d:4f:ec:1b:d6:4e:8a:ed:48: 23:af:0a:dc:c8:96:a1:9c:be:11:13:d1:f1:5a:b6:7f:49:c2: cb:6a:ad:a3:df:86:7e:05:11:7c:4f:56:57:b3:21:8f:02:f8: d0:4e:59:fa:56:a4:2e:01:5d:2d:46:e2:ec:b7:c6:7e:a1:85: 2c:e9:7b:8f:c1:f1:c4:fa:43:98:ed:2e:14:4f:67:b4:5f:56: 49:d4:db:7a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUYzrrtBdbcP/cc8NO/SRN9TJtPh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0VDMkQ4ODRBNTRFODc4RDg0OEVERTQyNTE3NDY2MTUz Rjc0NzQzNDAeFw0yNjA0MTgxMDEzMzJaFw0yNzA0MTcxMDE4MzJaMDMxMTAvBgNV BAMTKEJGQTRCM0M5RDc0OTEwMDY4NUM1ODI3MjUyOUZENDUwMzA2NkI3NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgaUGAMf+gVI/VvJFWoRtssc0P hhUgABzDrErf+rZC8Nk1jenOzCjp65LDcQ1jV8HVuPLBZdMyeCeVprTQeqwGTujq HbwxrzmY11PGsEZiIQ3IQLnwNAw/53pEfO3Y+JfWDqZt2pHSrSQAqfTsDpjkfeKe QOdVOX6WRUF4q3JFxZc3VIG+fOcwOmz0fZZOtPDBBl5gagzVZ5DL4b8B3MqPn0+c E7QiV9FITg9BjY8Q6TBidrOX+ery7dfqkgPP95dg2Y6sn1eQzEkSR3B1g0LjM2RM jlNWeQmebUtDaf0fVa6pcBQbEmAfM09Xur2/Buu9qXNlSqCjWE+6J8fyrmv7AgMB AAGjggISMIICDjAdBgNVHQ4EFgQUv6SzyddJEAaFxYJyUp/UUDBmt3MwHwYDVR0j BBgwFoAUPsLYhKVOh42Ejt5CUXRmFT90dDQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjcyMzM3MTc4NjI0Mi8wLzNFQzJEODg0QTU0RTg3OEQ4NDhFREU0MjUxNzQ2 NjE1M0Y3NDc0MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0VDMkQ4ODRBNTRFODc4RDg0OEVERTQyNTE3NDY2MTUzRjc0NzQzNC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2NzIzMzcxNzg2MjQyLzAvMzIzNDMwMzQzYTM3 MzYzMDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzMzM4MzUzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQEdgAwDQYJKoZIhvcNAQELBQADggEBADNnvPa9pW0rJZTVqD7ti+k81kjr AsIBPaSWfjVWCDHYZGaq3paJKjU8SbMumXMiET3IYJfdcs34TmD1cEi9gZorBOm0 fXBz8VvmyNkbCJVZWkMlJZHZwvk7qAZ4FaA2Htvr2WS9Eo8j2IWDE0d6N2cQ1Fd8 NORs378qSyW1npQTeAhZD8iX0lgusLe3mKYZeIt28/K1fAb/wnSxDUi6R7Zn5jFg vu6o7UNalw1P7BvWTortSCOvCtzIlqGcvhET0fFatn9JwstqraPfhn4FEXxPVlez IY8C+NBOWfpWpC4BXS1G4uy3xn6hhSzpe4/B8cT6Q5jtLhRPZ7RfVknU23o= -----END CERTIFICATE-----Generated at Mon Apr 27 11:16:21 2026 by rpki-client