$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714749953/0/323430303a643230303a3a2f33322d3332203d3e2030.roa File: 323430303a643230303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: iNUdmu9Gf0xgCxDEJhv4BLHbiymyu26z4nlJEpV0mo4= Subject key identifier: 08:6D:D2:44:82:42:AA:65:40:4A:F7:3A:0C:E2:A5:13:18:EB:95:89 Certificate issuer: /CN=9B87DFEBDCCDA813116988D4421B088404578168 Certificate serial: 0C561AC65EA86E1111D0B6CC810CFC6B9EC94B8A Authority key identifier: 9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/323430303a643230303a3a2f33322d3332203d3e2030.roa Signing time: Thu 09 Apr 2026 08:15:50 +0000 ROA not before: Thu 09 Apr 2026 08:10:50 +0000 ROA not after: Thu 08 Apr 2027 08:15:50 +0000 asID: 0 IP address blocks: 2400:d200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 02:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:56:1a:c6:5e:a8:6e:11:11:d0:b6:cc:81:0c:fc:6b:9e:c9:4b:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B87DFEBDCCDA813116988D4421B088404578168 Validity Not Before: Apr 9 08:10:50 2026 GMT Not After : Apr 8 08:15:50 2027 GMT Subject: CN=086DD2448242AA65404AF73A0CE2A51318EB9589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d2:d9:67:bc:08:9d:18:21:8c:d9:16:d9:cb: 71:a0:26:ea:ca:2a:da:a5:29:fc:4f:e1:35:4e:74: 21:0b:a4:e4:b9:36:9a:9a:28:8b:47:14:95:41:71: 47:a1:f2:36:3f:ce:ab:37:ad:a0:74:43:c1:ed:3e: 31:46:27:fd:ea:f1:1a:10:84:37:59:ab:e8:79:2a: b3:4e:f1:67:6c:a2:01:90:36:34:66:31:37:03:83: f3:f2:e0:94:ca:43:17:3a:ce:b8:8c:fc:9d:9b:34: 28:65:45:3e:64:96:12:60:70:22:aa:35:5a:51:3a: 7f:f1:9e:97:42:2c:22:1f:17:66:9f:8a:c8:d3:c4: 3e:bd:ad:9d:cc:aa:5b:45:64:3c:fe:cc:5e:ee:7d: c3:6f:ae:8d:27:00:ab:e2:8d:62:ef:70:1d:a3:e8: ee:12:3d:14:4f:23:b7:72:a8:c6:e4:6b:b7:3d:1e: ab:b7:61:6e:c7:f4:e6:ba:34:a9:ea:2b:b1:5c:12: 12:18:bc:d5:f9:c8:25:4c:17:ee:75:79:98:84:bc: 87:a9:ee:74:8d:cf:e2:69:d4:d2:c2:76:da:2b:07: 9d:68:ef:0f:a5:bb:43:46:09:bb:90:bf:bd:6b:0d: f6:1a:7e:39:a6:2d:b9:5b:68:af:ac:93:a3:de:df: 2f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:6D:D2:44:82:42:AA:65:40:4A:F7:3A:0C:E2:A5:13:18:EB:95:89 X509v3 Authority Key Identifier: keyid:9B:87:DF:EB:DC:CD:A8:13:11:69:88:D4:42:1B:08:84:04:57:81:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/9B87DFEBDCCDA813116988D4421B088404578168.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B87DFEBDCCDA813116988D4421B088404578168.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714749953/0/323430303a643230303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d200::/32 Signature Algorithm: sha256WithRSAEncryption 11:78:8d:ed:ff:f0:a1:ff:76:83:00:84:54:33:ea:a2:3e:26: 82:e2:fd:5b:de:f7:35:7a:a2:15:8f:bb:c0:b6:11:ff:c9:32: 33:00:f3:c0:92:85:a3:66:4e:54:90:cd:5c:f4:19:2c:3e:ed: 66:29:91:16:96:1e:14:01:a6:54:83:ac:02:da:05:b0:73:5b: bb:23:bb:c3:de:6c:0b:b6:e3:d6:8a:5c:77:b7:91:61:cb:29: 9a:e9:e1:79:b0:61:1b:9f:67:d6:e2:67:ab:b1:8e:ae:49:b7: 1a:24:a6:8c:b5:79:bd:3d:88:95:bc:35:9b:67:ee:d2:7c:47: 75:00:aa:3d:5d:ea:08:f4:4b:f4:a0:41:82:24:3b:90:cd:3b: 59:39:0b:12:68:59:ad:c3:f2:4d:f6:7a:81:65:3b:aa:df:83: f4:93:a3:e5:e7:c3:0d:9d:5b:ee:c0:c1:be:4c:46:99:af:92: d9:92:53:f1:70:17:8f:4f:48:5f:c9:88:82:72:62:62:a1:04: a2:7f:f2:a9:b3:23:de:83:a1:15:61:6f:71:bc:a3:a1:55:88: 4f:c2:e5:6c:8b:7f:66:2c:a5:44:4d:f2:e5:0e:6f:d0:ef:73: 20:5d:1f:a5:6d:d1:49:98:34:0d:f9:6f:15:24:08:f0:fc:bf: b2:5c:a4:f1 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUDFYaxl6obhER0LbMgQz8a57JS4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQw NDU3ODE2ODAeFw0yNjA0MDkwODEwNTBaFw0yNzA0MDgwODE1NTBaMDMxMTAvBgNV BAMTKDA4NkREMjQ0ODI0MkFBNjU0MDRBRjczQTBDRTJBNTEzMThFQjk1ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC00tlnvAidGCGM2RbZy3GgJurK KtqlKfxP4TVOdCELpOS5NpqaKItHFJVBcUeh8jY/zqs3raB0Q8HtPjFGJ/3q8RoQ hDdZq+h5KrNO8WdsogGQNjRmMTcDg/Py4JTKQxc6zriM/J2bNChlRT5klhJgcCKq NVpROn/xnpdCLCIfF2afisjTxD69rZ3MqltFZDz+zF7ufcNvro0nAKvijWLvcB2j 6O4SPRRPI7dyqMbka7c9Hqu3YW7H9Oa6NKnqK7FcEhIYvNX5yCVMF+51eZiEvIep 7nSNz+Jp1NLCdtorB51o7w+lu0NGCbuQv71rDfYafjmmLblbaK+sk6Pe3y+5AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUCG3SRIJCqmVASvc6DOKlExjrlYkwHwYDVR0j BBgwFoAUm4ff69zNqBMRaYjUQhsIhARXgWgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDc0OTk1My8wLzlCODdERkVCRENDREE4MTMxMTY5ODhENDQyMUIw ODg0MDQ1NzgxNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUI4N0RGRUJEQ0NEQTgxMzExNjk4OEQ0NDIxQjA4ODQwNDU3ODE2OC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5Nzk2NzE0NzQ5OTUzLzAvMzIzNDMwMzAzYTY0 MzIzMDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkANIA MA0GCSqGSIb3DQEBCwUAA4IBAQAReI3t//Ch/3aDAIRUM+qiPiaC4v1b3vc1eqIV j7vAthH/yTIzAPPAkoWjZk5UkM1c9BksPu1mKZEWlh4UAaZUg6wC2gWwc1u7I7vD 3mwLtuPWilx3t5Fhyyma6eF5sGEbn2fW4mersY6uSbcaJKaMtXm9PYiVvDWbZ+7S fEd1AKo9XeoI9Ev0oEGCJDuQzTtZOQsSaFmtw/JN9nqBZTuq34P0k6Pl58MNnVvu wMG+TEaZr5LZklPxcBePT0hfyYiCcmJioQSif/KpsyPeg6EVYW9xvKOhVYhPwuVs i39mLKVETfLlDm/Q73MgXR+lbdFJmDQN+W8VJAjw/L+yXKTx -----END CERTIFICATE-----Generated at Mon Apr 13 15:31:16 2026 by rpki-client