$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577728002/0/323430353a393463303a3a2f33322d3634203d3e2039333932.roa File: 323430353a393463303a3a2f33322d3634203d3e2039333932.roa (raw, json) Hash identifier: qrvfzDrxioXFEVWOYWe3E0IKCO6drPhy+LzFpN1500o= Subject key identifier: 78:83:F9:7D:F5:B8:4F:E6:FB:AB:AA:E3:F5:AC:61:BA:67:60:B9:EC Certificate issuer: /CN=BF7230B41A75F66CC3D2372CC0CFFA248AFD961E Certificate serial: 08EB19DE2DFA0C2672F2AF16F7A09BD08A3A0A79 Authority key identifier: BF:72:30:B4:1A:75:F6:6C:C3:D2:37:2C:C0:CF:FA:24:8A:FD:96:1E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF7230B41A75F66CC3D2372CC0CFFA248AFD961E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577728002/0/323430353a393463303a3a2f33322d3634203d3e2039333932.roa Signing time: Thu 09 Apr 2026 06:00:15 +0000 ROA not before: Thu 09 Apr 2026 05:55:15 +0000 ROA not after: Thu 08 Apr 2027 06:00:15 +0000 asID: 9392 IP address blocks: 2405:94c0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577728002/0/BF7230B41A75F66CC3D2372CC0CFFA248AFD961E.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577728002/0/BF7230B41A75F66CC3D2372CC0CFFA248AFD961E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF7230B41A75F66CC3D2372CC0CFFA248AFD961E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 03:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:eb:19:de:2d:fa:0c:26:72:f2:af:16:f7:a0:9b:d0:8a:3a:0a:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF7230B41A75F66CC3D2372CC0CFFA248AFD961E Validity Not Before: Apr 9 05:55:15 2026 GMT Not After : Apr 8 06:00:15 2027 GMT Subject: CN=7883F97DF5B84FE6FBABAAE3F5AC61BA6760B9EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:00:1f:5c:d4:dc:2a:a8:fb:62:18:b5:8d:64: cc:8a:08:66:69:1f:1e:36:32:9f:63:15:af:9e:1e: 38:f4:e0:73:24:2c:07:db:c5:a6:ae:3a:6e:40:34: 64:6b:40:61:01:57:d6:6b:4a:d3:12:04:b3:2d:43: 40:c2:f3:07:c0:73:df:bf:7f:47:cd:1b:7f:ba:dd: 60:fd:9b:8b:3b:35:4b:23:2b:ac:4c:3a:19:18:e8: df:76:8b:95:c7:28:d6:78:28:8b:c5:55:c5:39:f6: ac:d9:71:64:3b:76:f8:ea:02:b5:9a:b9:8e:b3:78: b9:b8:a3:2b:24:33:f7:57:dc:b0:b0:0a:ac:df:7e: 00:52:48:ad:95:80:1b:23:d5:5e:65:07:2f:c7:74: 52:2f:d5:85:74:1e:6a:c1:fc:13:b5:86:03:07:8e: 56:4d:b0:74:82:0c:33:9b:7e:f5:d8:43:2e:de:79: 6d:dc:a1:45:87:e4:13:39:5a:25:7b:98:1c:8a:44: 4c:bb:ea:1d:79:08:4c:45:16:b9:72:09:7c:c2:68: bf:5f:c2:99:94:74:9a:11:84:7c:a3:61:26:97:60: e4:58:67:3c:eb:07:08:b4:35:37:27:f3:2b:de:79: 37:5e:58:6f:57:9c:67:11:b4:18:cd:11:39:70:d2: 43:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:83:F9:7D:F5:B8:4F:E6:FB:AB:AA:E3:F5:AC:61:BA:67:60:B9:EC X509v3 Authority Key Identifier: keyid:BF:72:30:B4:1A:75:F6:6C:C3:D2:37:2C:C0:CF:FA:24:8A:FD:96:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577728002/0/BF7230B41A75F66CC3D2372CC0CFFA248AFD961E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BF7230B41A75F66CC3D2372CC0CFFA248AFD961E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577728002/0/323430353a393463303a3a2f33322d3634203d3e2039333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:94c0::/32 Signature Algorithm: sha256WithRSAEncryption b2:93:99:e4:dd:a3:78:17:aa:56:3d:ce:6a:1f:52:2d:ca:1c: 0a:16:26:7c:8f:31:29:8d:e2:20:ff:96:45:82:45:82:20:fa: 55:dd:c9:85:28:e1:b0:1f:52:bd:e0:75:83:bc:4b:fc:f2:53: 9e:07:c9:1f:2c:ba:0c:e2:1f:45:f2:0f:e9:80:29:3a:d1:bc: 1b:16:39:90:ef:45:21:41:d8:78:57:2f:b7:fa:29:14:5d:ca: 38:0b:12:17:8c:34:22:82:7f:57:f7:30:49:2d:32:e3:4d:d5: 3e:9f:97:6a:e5:bd:87:ca:d3:d8:aa:88:6a:ed:24:fc:bb:64: 9e:48:ee:bf:27:49:62:3c:c9:15:d7:8c:8b:13:a7:c9:5e:fa: 89:86:72:14:e3:ef:c2:be:a4:0e:7a:91:95:e0:57:38:90:fb: f5:98:f3:a6:13:20:11:10:f8:4c:fa:4b:a5:1e:06:36:4c:ba: 1e:a6:3c:b7:30:84:13:03:1d:8b:27:7c:21:54:80:8f:5d:7c: 1f:87:f5:8b:11:ac:8e:c1:30:a7:06:be:18:63:bc:bc:31:a8: 71:12:08:b0:81:c6:a4:cf:0e:0a:91:72:28:77:98:e0:69:de: eb:e5:6d:7a:de:1f:eb:e4:f1:55:2f:6a:79:3c:32:51:c0:48: a9:dc:5d:b9 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUCOsZ3i36DCZy8q8W96Cb0Io6CnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkY3MjMwQjQxQTc1RjY2Q0MzRDIzNzJDQzBDRkZBMjQ4 QUZEOTYxRTAeFw0yNjA0MDkwNTU1MTVaFw0yNzA0MDgwNjAwMTVaMDMxMTAvBgNV BAMTKDc4ODNGOTdERjVCODRGRTZGQkFCQUFFM0Y1QUM2MUJBNjc2MEI5RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+AB9c1NwqqPtiGLWNZMyKCGZp Hx42Mp9jFa+eHjj04HMkLAfbxaauOm5ANGRrQGEBV9ZrStMSBLMtQ0DC8wfAc9+/ f0fNG3+63WD9m4s7NUsjK6xMOhkY6N92i5XHKNZ4KIvFVcU59qzZcWQ7dvjqArWa uY6zeLm4oyskM/dX3LCwCqzffgBSSK2VgBsj1V5lBy/HdFIv1YV0HmrB/BO1hgMH jlZNsHSCDDObfvXYQy7eeW3coUWH5BM5WiV7mByKREy76h15CExFFrlyCXzCaL9f wpmUdJoRhHyjYSaXYORYZzzrBwi0NTcn8yveeTdeWG9XnGcRtBjNETlw0kM1AgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUeIP5ffW4T+b7q6rj9axhumdguewwHwYDVR0j BBgwFoAUv3IwtBp19mzD0jcswM/6JIr9lh4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3NzcyODAwMi8wL0JGNzIzMEI0MUE3NUY2NkNDM0QyMzcyQ0MwQ0ZG QTI0OEFGRDk2MUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkY3MjMwQjQxQTc1RjY2Q0MzRDIzNzJDQzBDRkZBMjQ4QUZEOTYxRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgyNzQxNTc3NzI4MDAyLzAvMzIzNDMwMzUzYTM5 MzQ2MzMwM2EzYTJmMzMzMjJkMzYzNDIwM2QzZTIwMzkzMzM5MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBZTAMA0GCSqGSIb3DQEBCwUAA4IBAQCyk5nk3aN4F6pWPc5qH1ItyhwKFiZ8 jzEpjeIg/5ZFgkWCIPpV3cmFKOGwH1K94HWDvEv88lOeB8kfLLoM4h9F8g/pgCk6 0bwbFjmQ70UhQdh4Vy+3+ikUXco4CxIXjDQign9X9zBJLTLjTdU+n5dq5b2HytPY qohq7ST8u2SeSO6/J0liPMkV14yLE6fJXvqJhnIU4+/CvqQOepGV4Fc4kPv1mPOm EyAREPhM+kulHgY2TLoepjy3MIQTAx2LJ3whVICPXXwfh/WLEayOwTCnBr4YY7y8 MahxEgiwgcakzw4KkXIod5jgad7r5W163h/r5PFVL2p5PDJRwEip3F25 -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:43 2026 by rpki-client