$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a3a2f33322d3332203d3e203633363431.roa File: 323430353a3663303a3a2f33322d3332203d3e203633363431.roa (raw, json) Hash identifier: o6YM+A0UjcXJNSXvYP+pZVFkKa6SLQvYsRv5s/B3uws= Subject key identifier: 5C:8A:DC:A0:EF:69:C2:96:FB:BA:FD:8D:CE:C0:46:28:2E:13:94:6B Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 3C851ADA38684C536A0E9EE14C82CC1EF577DBBE Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a3a2f33322d3332203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:23:08 +0000 ROA not before: Wed 22 Apr 2026 14:18:08 +0000 ROA not after: Wed 21 Apr 2027 14:23:08 +0000 asID: 63641 IP address blocks: 2405:6c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:85:1a:da:38:68:4c:53:6a:0e:9e:e1:4c:82:cc:1e:f5:77:db:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:18:08 2026 GMT Not After : Apr 21 14:23:08 2027 GMT Subject: CN=5C8ADCA0EF69C296FBBAFD8DCEC046282E13946B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:12:83:32:71:1d:44:2c:d9:aa:4a:ca:dd:cd: 62:5f:eb:54:e8:34:90:98:13:00:e5:21:2b:76:c8: 10:aa:30:e8:d3:54:60:ed:05:2c:ee:fb:78:2f:37: 1a:a3:bf:c8:51:35:3a:ea:7b:e0:62:9b:68:e3:f9: f7:33:01:a3:8a:9b:d7:69:2c:de:82:f7:fe:94:5b: ff:3f:69:b9:c2:1d:c2:17:e5:64:54:91:79:2b:ee: cb:ba:d0:22:8c:5a:f5:53:05:a9:82:cc:19:01:53: 85:d2:19:b6:e4:b1:c9:5e:9d:73:ea:7f:a5:33:5e: 26:34:24:ff:f9:4b:8f:8c:a2:77:0c:43:5e:2c:ef: f3:1e:bc:d1:ea:5a:0b:72:08:ac:91:7e:d8:48:24: fa:05:04:2f:b1:2b:2a:a1:97:09:d2:13:ff:9c:83: 20:73:b3:8f:f9:d5:1c:81:c2:e6:10:80:23:60:6e: b9:60:e0:18:29:f6:f5:ca:66:e4:15:15:1f:35:8d: e0:79:bb:60:21:1b:42:f7:46:37:c7:2d:f6:ae:8f: 94:6f:a5:e9:f7:06:73:e0:bd:04:9f:0c:64:fb:c0: 95:a3:cb:53:81:f5:57:d6:06:3f:c3:99:a0:8e:fb: b6:aa:b0:81:8e:c2:bd:88:5b:a8:9f:df:9b:95:c4: 88:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:8A:DC:A0:EF:69:C2:96:FB:BA:FD:8D:CE:C0:46:28:2E:13:94:6B X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/323430353a3663303a3a2f33322d3332203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6c0::/32 Signature Algorithm: sha256WithRSAEncryption ad:0f:c1:9a:f4:3a:c8:6b:bd:96:d9:53:0b:f7:5d:6c:72:f7: 3c:5f:55:7e:65:37:95:56:b2:54:ea:46:f9:b8:bc:ae:02:e8: 68:3e:9d:44:10:3c:90:b1:ed:4e:24:7d:7e:60:09:3a:9e:c0: 6d:e5:2a:0d:f1:c6:ea:8b:29:83:4c:5a:7e:a3:63:be:b7:80: 15:03:0a:23:da:b7:14:0b:bf:49:25:b1:88:0c:c1:a9:55:a1: aa:11:c1:be:01:62:6a:b2:5d:f1:95:f4:0f:87:e2:2e:ff:7a: b1:59:7a:5f:62:0e:af:fc:6b:27:80:60:e8:d5:35:cb:09:7e: ba:a5:86:a3:cf:3f:e9:89:8e:78:74:37:e1:1a:84:57:9c:87: 8e:15:9f:5e:ec:fe:2e:44:c9:75:bc:d6:a9:fa:ff:d5:fd:8c: 32:53:94:36:3a:91:fb:0f:5b:c6:a0:f1:2b:24:a2:91:e6:d5: a2:27:b5:b3:43:bf:28:3a:25:43:ba:1f:a1:b8:0a:1f:c6:c7: 76:82:20:72:57:da:36:c6:98:bd:c1:c0:8d:ce:9b:21:f8:ff: d0:ed:6c:d0:93:57:bd:9a:b6:18:b3:85:61:c4:ce:b5:16:d8: 2e:c8:69:9d:c6:a0:bb:6c:ee:36:6f:24:47:96:80:c6:03:9e: 4b:3e:a7:01 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUPIUa2jhoTFNqDp7hTILMHvV3274wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDE4MDhaFw0yNzA0MjExNDIzMDhaMDMxMTAvBgNV BAMTKDVDOEFEQ0EwRUY2OUMyOTZGQkJBRkQ4RENFQzA0NjI4MkUxMzk0NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsEoMycR1ELNmqSsrdzWJf61To NJCYEwDlISt2yBCqMOjTVGDtBSzu+3gvNxqjv8hRNTrqe+Bim2jj+fczAaOKm9dp LN6C9/6UW/8/abnCHcIX5WRUkXkr7su60CKMWvVTBamCzBkBU4XSGbbksclenXPq f6UzXiY0JP/5S4+MoncMQ14s7/MevNHqWgtyCKyRfthIJPoFBC+xKyqhlwnSE/+c gyBzs4/51RyBwuYQgCNgbrlg4Bgp9vXKZuQVFR81jeB5u2AhG0L3RjfHLfauj5Rv pen3BnPgvQSfDGT7wJWjy1OB9VfWBj/DmaCO+7aqsIGOwr2IW6if35uVxIhPAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUXIrcoO9pwpb7uv2NzsBGKC4TlGswHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyMzMwMzQ2Nzk5MTA1LzAvMzIzNDMwMzUzYTM2 NjMzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDM2MzMzNjM0MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBQbAMA0GCSqGSIb3DQEBCwUAA4IBAQCtD8Ga9DrIa72W2VML911scvc8X1V+ ZTeVVrJU6kb5uLyuAuhoPp1EEDyQse1OJH1+YAk6nsBt5SoN8cbqiymDTFp+o2O+ t4AVAwoj2rcUC79JJbGIDMGpVaGqEcG+AWJqsl3xlfQPh+Iu/3qxWXpfYg6v/Gsn gGDo1TXLCX66pYajzz/piY54dDfhGoRXnIeOFZ9e7P4uRMl1vNap+v/V/YwyU5Q2 OpH7D1vGoPErJKKR5tWiJ7WzQ78oOiVDuh+huAofxsd2giByV9o2xpi9wcCNzpsh +P/Q7WzQk1e9mrYYs4VhxM61FtguyGmdxqC7bO42byRHloDGA55LPqcB -----END CERTIFICATE-----Generated at Mon Apr 27 11:07:40 2026 by rpki-client