$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394785795/0/323430333a333338303a3a2f33322d3332203d3e2030.roa File: 323430333a333338303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: L5J7xyMuMtEGzGEsiWyt2OshvSr3EQOTBPtaQmDFyvM= Subject key identifier: 26:D6:5D:25:49:87:10:7A:88:6E:F0:BA:AF:54:7A:E1:6B:37:50:A6 Certificate issuer: /CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Certificate serial: 0EE252B79FB0CA3BBCEF28C8AC60C33D3844FEAC Authority key identifier: 71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/323430333a333338303a3a2f33322d3332203d3e2030.roa Signing time: Fri 17 Apr 2026 01:44:27 +0000 ROA not before: Fri 17 Apr 2026 01:39:27 +0000 ROA not after: Fri 16 Apr 2027 01:44:27 +0000 asID: 0 IP address blocks: 2403:3380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 11:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:e2:52:b7:9f:b0:ca:3b:bc:ef:28:c8:ac:60:c3:3d:38:44:fe:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E Validity Not Before: Apr 17 01:39:27 2026 GMT Not After : Apr 16 01:44:27 2027 GMT Subject: CN=26D65D254987107A886EF0BAAF547AE16B3750A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9b:ce:c8:27:87:02:5a:b5:a3:b2:05:21:b1: 91:6d:9d:2e:cc:0d:19:17:6e:97:41:1d:f5:76:8f: a9:2e:c1:e5:50:00:19:f4:8c:32:c6:4f:61:a9:7a: b9:d1:78:85:5a:59:d6:83:d2:02:c6:88:7e:85:a6: 46:8f:83:27:d9:b1:04:c7:11:cf:d2:23:57:dd:6d: 7d:cc:87:af:b7:73:85:17:48:93:34:32:b0:e5:f8: 3c:8c:51:b0:cf:83:9d:aa:a3:3a:6c:2e:ca:e8:62: 3a:73:3f:5a:2d:b3:0a:7e:0d:3c:a4:92:be:55:1a: a1:b6:aa:00:ae:e9:3d:19:f7:a2:7a:3f:a8:42:ec: 19:70:fa:0e:9d:13:42:ac:e6:37:c1:08:b0:2d:31: 4f:a6:b2:22:08:86:36:d0:95:1a:c4:35:5a:04:40: a8:0f:57:21:d3:84:77:58:99:e3:72:27:c4:a2:48: 59:d2:e1:b2:88:c5:b4:8a:c7:13:19:f7:d6:23:bd: a9:f9:01:cf:93:db:f3:1a:80:19:7f:a7:0f:e9:ab: 02:3e:8d:22:5c:20:fa:20:5f:e6:80:8a:92:8f:35: 0c:e2:37:09:ac:c4:25:04:a9:ca:8a:b4:27:86:e1: d6:e9:76:9f:44:ff:64:df:19:7d:41:e6:2b:78:49: fe:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D6:5D:25:49:87:10:7A:88:6E:F0:BA:AF:54:7A:E1:6B:37:50:A6 X509v3 Authority Key Identifier: keyid:71:C9:BF:E4:C8:FD:7E:77:7A:1C:9E:55:DF:A6:0A:3A:C2:9A:25:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/71C9BFE4C8FD7E777A1C9E55DFA60A3AC29A254E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394785795/0/323430333a333338303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:3380::/32 Signature Algorithm: sha256WithRSAEncryption 9c:0d:a4:7a:18:de:b7:c5:17:57:77:82:4b:75:a6:6b:74:8c: 73:c3:02:f0:51:fc:e3:f8:de:d4:cf:85:ae:60:d0:0c:e6:1f: 0f:47:54:f9:1a:a4:13:a1:26:01:86:e6:5b:18:1c:3c:74:77: 0c:60:9d:f7:b2:90:7e:93:bf:65:2d:a0:99:c6:7b:7d:90:2c: a3:98:19:90:91:b9:25:13:43:1a:07:7d:01:73:34:7b:e1:0e: b3:fc:fd:3c:f3:1b:ff:6d:94:11:6b:8e:04:cb:85:80:77:25: c9:41:f2:ec:88:a1:5a:c7:74:dc:50:84:7e:f5:66:f2:d8:70: 75:a7:c1:4c:ca:72:10:9b:fa:b0:a7:32:54:6c:76:f3:17:97: 0b:a5:fc:90:b0:2e:ed:d9:b0:60:65:5b:b6:93:3b:82:b5:da: f9:bc:87:fd:6f:2d:a7:e7:40:98:f0:6c:f9:37:9e:86:9d:19: ed:c3:a2:c4:88:72:a4:ed:b7:ec:2e:13:53:32:4f:48:41:e4: 33:4f:2c:e7:31:a5:e0:6f:18:91:c6:33:83:85:56:6d:ca:b2: bb:a5:a5:0b:43:9c:1b:18:6a:c4:15:11:8b:55:63:4c:a7:b4: 29:00:b9:16:9e:7d:9e:83:59:40:da:af:6b:90:9a:90:d1:7c: db:b8:77:17 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUDuJSt5+wyju87yjIrGDDPThE/qwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FD MjlBMjU0RTAeFw0yNjA0MTcwMTM5MjdaFw0yNzA0MTYwMTQ0MjdaMDMxMTAvBgNV BAMTKDI2RDY1RDI1NDk4NzEwN0E4ODZFRjBCQUFGNTQ3QUUxNkIzNzUwQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlm87IJ4cCWrWjsgUhsZFtnS7M DRkXbpdBHfV2j6kuweVQABn0jDLGT2GpernReIVaWdaD0gLGiH6FpkaPgyfZsQTH Ec/SI1fdbX3Mh6+3c4UXSJM0MrDl+DyMUbDPg52qozpsLsroYjpzP1otswp+DTyk kr5VGqG2qgCu6T0Z96J6P6hC7Blw+g6dE0Ks5jfBCLAtMU+msiIIhjbQlRrENVoE QKgPVyHThHdYmeNyJ8SiSFnS4bKIxbSKxxMZ99Yjvan5Ac+T2/MagBl/pw/pqwI+ jSJcIPogX+aAipKPNQziNwmsxCUEqcqKtCeG4dbpdp9E/2TfGX1B5it4Sf7ZAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUJtZdJUmHEHqIbvC6r1R64Ws3UKYwHwYDVR0j BBgwFoAUccm/5Mj9fnd6HJ5V36YKOsKaJU4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDc4NTc5NS8wLzcxQzlCRkU0QzhGRDdFNzc3QTFDOUU1NURGQTYw QTNBQzI5QTI1NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzFDOUJGRTRDOEZEN0U3NzdBMUM5RTU1REZBNjBBM0FDMjlBMjU0RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0Nzg1Nzk1LzAvMzIzNDMwMzMzYTMz MzMzODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAzOA MA0GCSqGSIb3DQEBCwUAA4IBAQCcDaR6GN63xRdXd4JLdaZrdIxzwwLwUfzj+N7U z4WuYNAM5h8PR1T5GqQToSYBhuZbGBw8dHcMYJ33spB+k79lLaCZxnt9kCyjmBmQ kbklE0MaB30BczR74Q6z/P088xv/bZQRa44Ey4WAdyXJQfLsiKFax3TcUIR+9Wby 2HB1p8FMynIQm/qwpzJUbHbzF5cLpfyQsC7t2bBgZVu2kzuCtdr5vIf9by2n50CY 8Gz5N56GnRntw6LEiHKk7bfsLhNTMk9IQeQzTyznMaXgbxiRxjODhVZtyrK7paUL Q5wbGGrEFRGLVWNMp7QpALkWnn2eg1lA2q9rkJqQ0XzbuHcX -----END CERTIFICATE-----Generated at Mon Apr 27 17:22:55 2026 by rpki-client