$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a343a3a2f34382d3438203d3e203633363431.roa File: 323430353a3663303a343a3a2f34382d3438203d3e203633363431.roa (raw, json) Hash identifier: yZtXhu6YDEXoiYnjFfzcLrfLPB/PeySxPcagGjm1vVY= Subject key identifier: DE:29:62:56:13:69:8E:47:3F:AF:85:F2:90:44:DE:14:51:C3:A0:4D Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 1F3D8BAB18C0ABEE2728E7746E09A26AC3D1A058 Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a343a3a2f34382d3438203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:23:08 +0000 ROA not before: Wed 22 Apr 2026 14:18:08 +0000 ROA not after: Wed 21 Apr 2027 14:23:08 +0000 asID: 63641 IP address blocks: 2405:6c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:3d:8b:ab:18:c0:ab:ee:27:28:e7:74:6e:09:a2:6a:c3:d1:a0:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:18:08 2026 GMT Not After : Apr 21 14:23:08 2027 GMT Subject: CN=DE29625613698E473FAF85F29044DE1451C3A04D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:aa:24:8d:62:40:09:9b:81:8b:3f:30:95:ca: f0:4c:30:9f:16:37:9c:c4:57:6d:a7:d3:91:4e:56: 6c:c5:73:9f:19:94:77:23:a8:7c:84:41:c2:72:09: 0a:8c:d6:b8:1d:4e:f5:43:af:c8:45:36:4d:a5:19: 97:d5:9b:98:44:32:e8:c4:6d:70:eb:d2:87:d9:64: a7:d4:0b:bc:e4:26:bc:36:50:f4:1d:e8:81:67:39: 6c:8f:dd:7c:df:4e:4f:6d:41:06:20:fb:f6:05:22: e9:f9:a6:6d:71:7f:71:25:ac:c0:e5:be:07:7a:65: ca:ab:25:68:b5:81:6e:64:eb:5b:05:09:1f:db:77: 13:9c:5f:3e:df:f6:50:66:42:84:74:59:1c:c1:a4: 6b:ba:32:9c:de:e9:73:78:45:70:ed:ea:7d:53:0f: c3:44:e0:cd:3b:2c:ac:8a:91:7f:1b:82:fe:a0:e9: 79:bd:e8:54:8f:46:bb:3b:7f:47:7f:1e:b0:fe:81: a7:06:b3:50:96:33:2b:48:f7:3f:42:9a:2e:f5:3b: 02:67:1f:30:00:2a:97:33:1e:51:b5:76:d6:fa:3c: bf:31:62:a3:0d:13:51:a5:3d:e3:96:d7:17:ec:9a: 72:df:fb:b1:1c:82:92:9a:93:5d:c1:ac:7c:a1:11: 24:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:29:62:56:13:69:8E:47:3F:AF:85:F2:90:44:DE:14:51:C3:A0:4D X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a343a3a2f34382d3438203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6c0:4::/48 Signature Algorithm: sha256WithRSAEncryption 73:47:32:c6:fd:11:10:83:c5:4a:c0:31:b0:a5:18:38:4b:52: 97:55:24:e0:d3:97:9c:34:2d:d9:6a:2d:5f:87:31:dd:ee:a9: 99:1c:27:6e:9e:57:f3:ff:d8:e1:ea:e6:61:a8:5a:62:71:93: 8c:22:ee:60:31:ca:e8:db:3f:e2:e1:2e:be:27:dd:a4:28:49: 1a:5c:02:b2:52:d2:8e:0f:cd:f6:22:12:1f:7d:a1:f7:e1:21: be:a3:04:39:e0:8f:f5:fd:68:6f:5d:6a:9c:0a:40:bd:ee:f3: d7:65:cd:8f:93:31:c8:5c:f2:ab:ec:a8:ec:aa:b4:81:c9:29: fe:7b:e7:ef:fe:cb:22:de:1a:41:84:9a:09:e4:06:cb:71:b2: 90:97:72:ba:2d:ce:37:da:92:4f:ef:b5:7c:34:e6:03:8f:ef: ee:97:f6:e8:a0:4d:98:04:a7:23:ec:6e:48:93:42:b2:10:89: c2:41:2e:03:97:2c:41:24:18:ab:d3:a5:0d:e7:16:54:93:cc: 0e:3d:15:b7:82:3a:32:90:96:96:87:9c:f8:fa:62:7d:f2:3a: 3d:09:43:d1:d2:b9:13:dc:9f:97:1c:dd:80:56:13:7b:01:dd: d0:36:1f:cb:db:47:00:38:be:8c:b6:46:4f:35:15:92:af:54: 52:33:be:f1 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUHz2LqxjAq+4nKOd0bgmiasPRoFgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDE4MDhaFw0yNzA0MjExNDIzMDhaMDMxMTAvBgNV BAMTKERFMjk2MjU2MTM2OThFNDczRkFGODVGMjkwNDRERTE0NTFDM0EwNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNqiSNYkAJm4GLPzCVyvBMMJ8W N5zEV22n05FOVmzFc58ZlHcjqHyEQcJyCQqM1rgdTvVDr8hFNk2lGZfVm5hEMujE bXDr0ofZZKfUC7zkJrw2UPQd6IFnOWyP3XzfTk9tQQYg+/YFIun5pm1xf3ElrMDl vgd6ZcqrJWi1gW5k61sFCR/bdxOcXz7f9lBmQoR0WRzBpGu6Mpze6XN4RXDt6n1T D8NE4M07LKyKkX8bgv6g6Xm96FSPRrs7f0d/HrD+gacGs1CWMytI9z9Cmi71OwJn HzAAKpczHlG1dtb6PL8xYqMNE1GlPeOW1xfsmnLf+7EcgpKak13BrHyhESRTAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU3iliVhNpjkc/r4XykETeFFHDoE0wHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMyMzQzMDM1M2Ez NjYzMzAzYTM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQFBsAABDANBgkqhkiG9w0BAQsFAAOCAQEAc0cyxv0REIPFSsAxsKUY OEtSl1Uk4NOXnDQt2WotX4cx3e6pmRwnbp5X8//Y4ermYahaYnGTjCLuYDHK6Ns/ 4uEuvifdpChJGlwCslLSjg/N9iISH32h9+EhvqMEOeCP9f1ob11qnApAve7z12XN j5MxyFzyq+yo7Kq0gckp/nvn7/7LIt4aQYSaCeQGy3GykJdyui3ON9qST++1fDTm A4/v7pf26KBNmASnI+xuSJNCshCJwkEuA5csQSQYq9OlDecWVJPMDj0Vt4I6MpCW loec+PpiffI6PQlD0dK5E9yflxzdgFYTewHd0DYfy9tHADi+jLZGTzUVkq9UUjO+ 8Q== -----END CERTIFICATE-----Generated at Mon Apr 27 11:07:22 2026 by rpki-client