$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a313a3a2f34382d3438203d3e203633363431.roa File: 323430353a3663303a313a3a2f34382d3438203d3e203633363431.roa (raw, json) Hash identifier: mF+ZxJtHnPfLTkgqD56yvCGVCdFckEfk2WqLMn9yZTA= Subject key identifier: 37:C1:C4:49:B2:B1:5F:C0:4D:0B:A1:C8:16:3E:A4:DF:B5:0E:D9:6B Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 22455A6C5E57804ABB42A1CBEBC8F364BE5496F1 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a313a3a2f34382d3438203d3e203633363431.roa Signing time: Wed 22 Apr 2026 13:50:38 +0000 ROA not before: Wed 22 Apr 2026 13:45:38 +0000 ROA not after: Wed 21 Apr 2027 13:50:38 +0000 asID: 63641 IP address blocks: 2405:6c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:45:5a:6c:5e:57:80:4a:bb:42:a1:cb:eb:c8:f3:64:be:54:96:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 13:45:38 2026 GMT Not After : Apr 21 13:50:38 2027 GMT Subject: CN=37C1C449B2B15FC04D0BA1C8163EA4DFB50ED96B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:24:a2:8a:c0:cb:b1:9a:4d:d9:7d:03:b9:74: fa:0b:65:1a:58:24:b8:2b:b4:73:1a:4f:f5:71:83: a1:8b:46:73:12:a9:54:dc:18:a8:d3:54:80:fa:b6: 8a:6b:2d:65:b6:63:11:84:87:4f:aa:39:c1:51:ff: 96:53:84:e5:41:a2:1f:af:12:11:6f:18:84:57:ca: f7:06:60:db:88:26:6d:78:b7:31:32:d1:8b:f6:c0: 05:22:27:0a:0d:e0:b5:84:86:76:7a:0d:68:77:55: f2:1c:26:ad:cb:e5:78:a5:1e:02:0f:3a:ff:ab:ce: 8e:a6:ad:82:3b:a0:e0:a6:d1:3d:50:15:e8:6b:ec: 93:93:af:90:3c:6a:4f:d6:ff:f0:49:42:54:b6:de: 08:d8:e3:15:4f:e2:55:b6:4d:ea:1e:4f:5f:18:88: b4:1d:5a:02:a3:ff:7f:ef:8d:51:c4:92:06:37:a4: 93:80:7a:07:b7:12:bc:40:11:6a:74:87:5e:94:1c: 8c:39:18:70:49:e3:73:bd:cd:94:4e:4e:47:3b:14: 6e:a2:58:dd:5b:7e:b0:48:ef:15:dd:1c:09:c9:09: d7:aa:6f:2d:b0:6b:86:90:7a:92:8b:3e:a1:99:fe: 89:1f:2a:c1:82:b3:cb:58:14:6f:ad:00:e9:82:49: d9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C1:C4:49:B2:B1:5F:C0:4D:0B:A1:C8:16:3E:A4:DF:B5:0E:D9:6B X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a313a3a2f34382d3438203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 24:23:a8:a0:da:89:f1:97:df:04:5b:4a:6d:36:bc:f0:bc:e1: 41:b3:37:d6:70:ba:18:cd:27:78:41:c9:36:0f:1b:ac:bb:28: e6:44:56:ac:75:9a:40:37:bf:ae:3d:0b:a0:f3:d9:2d:77:b8: 64:23:65:33:6a:66:e1:03:68:23:58:d8:a8:01:a9:a5:06:1d: c9:e6:84:24:3b:44:da:89:a1:65:a3:99:65:71:0c:fa:d1:87: 0e:79:5d:3a:bb:a2:69:f6:19:f7:34:46:55:93:22:e7:d7:67: 74:68:c7:20:28:6f:54:55:69:03:e2:ad:2b:77:fa:e0:71:a4: 31:06:99:35:b8:b5:61:51:71:5f:62:63:28:30:7d:1e:75:d9: 74:57:78:f8:07:ca:80:93:a7:ad:63:91:42:b2:a5:09:0e:82: 52:c2:68:0d:fb:8e:db:dc:ed:2a:31:01:4c:88:56:0c:06:25: d5:8a:f4:e5:c0:49:4a:42:29:66:6f:7c:ad:c9:0b:2c:bb:96: 6e:cb:0e:be:dc:bb:0c:07:67:f9:21:78:5e:49:67:10:e9:3a: 20:51:10:fb:87:bf:43:37:e2:de:a3:72:7c:54:66:6c:e4:44: 7d:28:4a:ae:60:68:56:dc:83:00:13:2f:c1:ba:e9:e4:7a:34: 15:7b:2e:0a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUIkVabF5XgEq7QqHL68jzZL5UlvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxMzQ1MzhaFw0yNzA0MjExMzUwMzhaMDMxMTAvBgNV BAMTKDM3QzFDNDQ5QjJCMTVGQzA0RDBCQTFDODE2M0VBNERGQjUwRUQ5NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRJKKKwMuxmk3ZfQO5dPoLZRpY JLgrtHMaT/Vxg6GLRnMSqVTcGKjTVID6toprLWW2YxGEh0+qOcFR/5ZThOVBoh+v EhFvGIRXyvcGYNuIJm14tzEy0Yv2wAUiJwoN4LWEhnZ6DWh3VfIcJq3L5XilHgIP Ov+rzo6mrYI7oOCm0T1QFehr7JOTr5A8ak/W//BJQlS23gjY4xVP4lW2TeoeT18Y iLQdWgKj/3/vjVHEkgY3pJOAege3ErxAEWp0h16UHIw5GHBJ43O9zZROTkc7FG6i WN1bfrBI7xXdHAnJCdeqby2wa4aQepKLPqGZ/okfKsGCs8tYFG+tAOmCSdndAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUN8HESbKxX8BNC6HIFj6k37UO2WswHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMyMzQzMDM1M2Ez NjYzMzAzYTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQFBsAAATANBgkqhkiG9w0BAQsFAAOCAQEAJCOooNqJ8ZffBFtKbTa8 8LzhQbM31nC6GM0neEHJNg8brLso5kRWrHWaQDe/rj0LoPPZLXe4ZCNlM2pm4QNo I1jYqAGppQYdyeaEJDtE2omhZaOZZXEM+tGHDnldOruiafYZ9zRGVZMi59dndGjH IChvVFVpA+KtK3f64HGkMQaZNbi1YVFxX2JjKDB9HnXZdFd4+AfKgJOnrWORQrKl CQ6CUsJoDfuO29ztKjEBTIhWDAYl1Yr05cBJSkIpZm98rckLLLuWbssOvty7DAdn +SF4XklnEOk6IFEQ+4e/Qzfi3qNyfFRmbOREfShKrmBoVtyDABMvwbrp5Ho0FXsu Cg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:07:23 2026 by rpki-client