$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS0.roa File: AS0.roa (raw, json) Hash identifier: 9xLLfxTCskiV7g6BrEEOp+PT0mr3/achRPuy/z2FYDw= Subject key identifier: 88:5B:D9:E3:72:75:15:B2:47:24:B8:5B:1D:4F:B3:DA:E2:4A:48:49 Certificate issuer: /CN=1FFF263C64163BC58514B539C10375CCB553D75E Certificate serial: 0F29C51910709D0FF824F014FACA335D7CFE86FF Authority key identifier: 1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS0.roa Signing time: Tue 21 Apr 2026 06:42:17 +0000 ROA not before: Tue 21 Apr 2026 06:37:17 +0000 ROA not after: Tue 20 Apr 2027 06:42:17 +0000 asID: 0 IP address blocks: 2406:1e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:29:c5:19:10:70:9d:0f:f8:24:f0:14:fa:ca:33:5d:7c:fe:86:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FFF263C64163BC58514B539C10375CCB553D75E Validity Not Before: Apr 21 06:37:17 2026 GMT Not After : Apr 20 06:42:17 2027 GMT Subject: CN=885BD9E3727515B24724B85B1D4FB3DAE24A4849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:43:24:d2:d3:32:34:a3:c3:b9:de:5b:20:e8: ee:84:a6:cb:da:e0:63:74:d6:48:0a:57:48:5c:9c: ac:22:8d:62:5a:ae:12:c6:13:15:de:64:4e:de:cc: b0:d3:c3:14:37:3c:87:dd:07:6e:4a:4e:86:e8:75: 76:64:66:12:21:f2:22:88:8b:e7:11:ce:87:7f:f6: e3:b1:cc:99:79:09:0d:c5:1c:0d:11:d8:4c:28:14: 78:b0:1e:39:8c:e8:b5:91:c2:82:3f:4d:87:92:d0: 3b:87:d8:54:9b:76:05:20:96:ee:9f:b1:31:6a:5f: c5:f1:2d:c9:4f:96:e9:ff:c5:d8:d1:02:16:67:69: 89:fe:26:ee:64:72:71:23:16:ef:b4:e5:c0:d1:6c: dd:f5:e9:b7:70:0a:6b:09:65:b8:dc:30:42:2f:bb: f7:ac:96:b9:fb:9a:cd:66:7a:6b:4a:3d:28:a4:4f: fa:70:d3:42:da:be:8d:21:1f:44:6a:55:91:a7:4e: 30:e4:9f:61:dd:ef:4c:a1:1e:eb:69:bb:38:33:de: 2f:00:32:46:47:3e:ec:96:45:95:a1:90:35:aa:8b: 7e:3e:85:5e:5e:2e:7a:d9:87:97:79:b6:bc:88:c0: c9:3e:e6:79:1a:04:4e:41:d8:d7:e9:0e:55:16:ac: c0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5B:D9:E3:72:75:15:B2:47:24:B8:5B:1D:4F:B3:DA:E2:4A:48:49 X509v3 Authority Key Identifier: keyid:1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1e80::/32 Signature Algorithm: sha256WithRSAEncryption 66:9f:fb:1e:0a:f1:80:b8:17:96:5f:94:b6:29:b9:8b:8c:3c: 70:3e:38:30:71:9f:68:2e:7d:4a:29:15:a7:85:16:67:03:d4: 9a:c3:40:e5:30:f4:3a:62:ee:74:1a:51:0c:66:df:1f:d5:e0: e9:b0:87:54:ef:9f:2d:7c:00:e8:e0:85:a0:cf:1b:ee:c9:cd: 2d:82:32:8f:57:a9:46:49:5c:e9:62:38:bf:55:a1:d8:e5:bc: ab:ae:27:11:c8:7c:d7:f4:c8:af:1d:b1:16:90:63:25:1d:c3: bd:1c:31:21:aa:fc:fc:0b:69:81:1e:5c:c3:20:45:18:eb:1c: ae:5d:50:43:20:cc:71:c4:a8:26:83:a0:ed:f9:f0:e1:fb:0c: 5e:7c:b5:da:12:9f:41:cf:0c:9f:05:a2:28:16:48:9e:74:20: 8a:30:ba:bf:0e:49:cd:04:28:0c:ef:49:1d:ca:47:27:4f:37: 86:0b:ca:4b:d1:04:e3:da:1d:df:6c:0f:9e:e8:71:23:55:c8: 19:4a:a1:e2:a3:f4:bc:f3:c9:21:98:ec:80:55:d4:de:bd:e1: 17:d0:dd:ce:f4:4a:39:c3:51:ad:75:64:8d:0c:62:1a:a3:3a: 52:4b:30:36:00:bf:e0:e0:7a:cb:9f:a5:c9:b7:4a:0d:2c:e8: 5a:3f:01:ac -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIUDynFGRBwnQ/4JPAU+sozXXz+hv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NC NTUzRDc1RTAeFw0yNjA0MjEwNjM3MTdaFw0yNzA0MjAwNjQyMTdaMDMxMTAvBgNV BAMTKDg4NUJEOUUzNzI3NTE1QjI0NzI0Qjg1QjFENEZCM0RBRTI0QTQ4NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+QyTS0zI0o8O53lsg6O6Epsva 4GN01kgKV0hcnKwijWJarhLGExXeZE7ezLDTwxQ3PIfdB25KTobodXZkZhIh8iKI i+cRzod/9uOxzJl5CQ3FHA0R2EwoFHiwHjmM6LWRwoI/TYeS0DuH2FSbdgUglu6f sTFqX8XxLclPlun/xdjRAhZnaYn+Ju5kcnEjFu+05cDRbN316bdwCmsJZbjcMEIv u/eslrn7ms1memtKPSikT/pw00Lavo0hH0RqVZGnTjDkn2Hd70yhHutpuzgz3i8A MkZHPuyWRZWhkDWqi34+hV5eLnrZh5d5tryIwMk+5nkaBE5B2NfpDlUWrMDDAgMB AAGjggHgMIIB3DAdBgNVHQ4EFgQUiFvZ43J1FbJHJLhbHU+z2uJKSEkwHwYDVR0j BBgwFoAUH/8mPGQWO8WFFLU5wQN1zLVT114wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDMyNzA0My8wLzFGRkYyNjNDNjQxNjNCQzU4NTE0QjUzOUMxMDM3 NUNDQjU1M0Q3NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NCNTUzRDc1RS5jZXIw WQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1yc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQzMjcwNDMvMC9BUzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBh6AMA0GCSqGSIb3DQEBCwUAA4IBAQBmn/seCvGAuBeWX5S2KbmLjDxwPjgw cZ9oLn1KKRWnhRZnA9Saw0DlMPQ6Yu50GlEMZt8f1eDpsIdU758tfADo4IWgzxvu yc0tgjKPV6lGSVzpYji/VaHY5byrricRyHzX9MivHbEWkGMlHcO9HDEhqvz8C2mB HlzDIEUY6xyuXVBDIMxxxKgmg6Dt+fDh+wxefLXaEp9BzwyfBaIoFkiedCCKMLq/ DknNBCgM70kdykcnTzeGC8pL0QTj2h3fbA+e6HEjVcgZSqHio/S888khmOyAVdTe veEX0N3O9Eo5w1GtdWSNDGIaozpSSzA2AL/g4HrLn6XJt0oNLOhaPwGs -----END CERTIFICATE-----Generated at Wed Apr 22 03:05:54 2026 by rpki-client