$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585649345822722/0/323430313a356332303a3a2f33322d313238203d3e20313531323633.roa File: 323430313a356332303a3a2f33322d313238203d3e20313531323633.roa (raw, json) Hash identifier: 4xod6o1vq3z+k4NYUD1FRFrB+HGmJpeH0a6J+uCnWrQ= Subject key identifier: D4:FF:FF:F1:89:78:E7:4A:C3:3B:09:02:63:E4:99:A3:A2:D9:A2:02 Certificate issuer: /CN=DDBA616F96D9C2CD7F7CAB692F9EFE7666680138 Certificate serial: 459C65B16D53BD23E616C90191ADB4329778852F Authority key identifier: DD:BA:61:6F:96:D9:C2:CD:7F:7C:AB:69:2F:9E:FE:76:66:68:01:38 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/323430313a356332303a3a2f33322d313238203d3e20313531323633.roa Signing time: Fri 10 Apr 2026 08:44:45 +0000 ROA not before: Fri 10 Apr 2026 08:39:45 +0000 ROA not after: Fri 09 Apr 2027 08:44:45 +0000 asID: 151263 IP address blocks: 2401:5c20::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.crl rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 11:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:9c:65:b1:6d:53:bd:23:e6:16:c9:01:91:ad:b4:32:97:78:85:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDBA616F96D9C2CD7F7CAB692F9EFE7666680138 Validity Not Before: Apr 10 08:39:45 2026 GMT Not After : Apr 9 08:44:45 2027 GMT Subject: CN=D4FFFFF18978E74AC33B090263E499A3A2D9A202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0c:7c:be:18:33:a8:50:c4:0f:9f:74:30:47: 73:57:43:5e:01:64:d2:e6:f6:65:4b:51:38:c4:a4: 67:43:8e:8c:6e:7e:11:46:bc:a9:25:f7:90:27:62: ca:7e:c8:43:9e:0f:23:4d:38:41:1e:ab:2f:ae:58: 78:9f:dc:ab:0a:7f:7b:22:62:6f:91:87:aa:91:31: 13:0c:38:1f:61:fb:16:4c:9b:83:7d:ed:ee:45:a3: a9:a4:96:cb:3c:65:61:38:f5:57:96:32:3b:06:a9: 94:eb:ca:05:37:a6:76:08:b8:43:14:0a:cb:84:88: 0d:25:71:1a:a6:91:0f:c0:4e:0d:fe:3e:76:af:08: 58:12:22:f7:b2:73:7a:21:b7:60:f3:5f:c9:2a:ff: 03:18:49:4a:b9:8f:ee:82:a1:c6:4f:43:d5:de:7a: 84:60:fe:51:14:76:d6:d4:7a:6f:3d:8b:39:0c:66: 55:9e:e8:4d:a0:cb:d2:2a:7b:79:ce:43:9e:7f:e5: d0:c3:be:9a:b3:8e:e6:e4:03:14:06:0e:6b:9f:4e: f7:57:ae:2c:dd:f1:85:70:89:6a:47:26:77:e5:90: 36:b7:eb:fd:26:09:ce:c2:be:48:72:06:be:24:2c: 04:40:f9:d3:5e:57:0e:ce:6f:d8:00:99:72:dd:c1: 67:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FF:FF:F1:89:78:E7:4A:C3:3B:09:02:63:E4:99:A3:A2:D9:A2:02 X509v3 Authority Key Identifier: keyid:DD:BA:61:6F:96:D9:C2:CD:7F:7C:AB:69:2F:9E:FE:76:66:68:01:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/DDBA616F96D9C2CD7F7CAB692F9EFE7666680138.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585649345822722/0/323430313a356332303a3a2f33322d313238203d3e20313531323633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5c20::/32 Signature Algorithm: sha256WithRSAEncryption 4c:01:78:8d:7a:f1:18:5c:a8:b7:21:07:c7:72:a6:28:cb:26: 8d:98:93:24:4f:e4:a8:50:3c:6d:f7:e5:09:d3:bd:24:7c:4d: 6b:85:be:aa:9d:99:c4:64:4c:af:62:eb:ca:ed:62:de:80:f4: 03:cd:c1:6b:99:92:53:3f:5c:34:70:a2:31:e6:78:97:66:d0: eb:54:fa:55:0e:92:3b:24:e8:12:91:d0:62:ef:5c:57:d7:55: 4e:9d:c2:96:1f:1d:fd:80:fd:5e:bd:6b:36:e1:69:7a:f3:6e: 4d:c6:89:3e:16:62:3c:25:a8:a2:30:ee:9a:fd:fd:c6:f2:27: bd:b2:83:0f:9e:69:24:62:dc:dc:6c:f6:9e:a1:f5:3c:63:66: 48:ad:6e:87:e7:b2:e0:f6:fe:f0:55:09:27:48:de:2a:09:78: 43:1c:b9:63:1a:64:55:aa:2a:c6:3d:5f:1a:51:3a:d8:05:99: b1:4c:81:18:2c:5b:32:41:15:58:72:06:c7:2a:ca:3d:fb:4f: 3d:16:c0:ed:b4:14:76:8f:6d:d6:ed:bb:fe:a3:12:d3:bc:ff: a0:66:0b:4a:35:ae:63:e9:47:b8:74:68:51:90:ad:6c:30:f1: ca:8f:13:ca:2b:61:f7:dd:8d:fc:7a:e3:6a:22:14:24:a4:fa: 0d:d5:bc:d9 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIURZxlsW1TvSPmFskBka20Mpd4hS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERCQTYxNkY5NkQ5QzJDRDdGN0NBQjY5MkY5RUZFNzY2 NjY4MDEzODAeFw0yNjA0MTAwODM5NDVaFw0yNzA0MDkwODQ0NDVaMDMxMTAvBgNV BAMTKEQ0RkZGRkYxODk3OEU3NEFDMzNCMDkwMjYzRTQ5OUEzQTJEOUEyMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8DHy+GDOoUMQPn3QwR3NXQ14B ZNLm9mVLUTjEpGdDjoxufhFGvKkl95AnYsp+yEOeDyNNOEEeqy+uWHif3KsKf3si Ym+Rh6qRMRMMOB9h+xZMm4N97e5Fo6mklss8ZWE49VeWMjsGqZTrygU3pnYIuEMU CsuEiA0lcRqmkQ/ATg3+PnavCFgSIveyc3oht2DzX8kq/wMYSUq5j+6CocZPQ9Xe eoRg/lEUdtbUem89izkMZlWe6E2gy9Iqe3nOQ55/5dDDvpqzjubkAxQGDmufTvdX rizd8YVwiWpHJnflkDa36/0mCc7CvkhyBr4kLARA+dNeVw7Ob9gAmXLdwWdxAgMB AAGjggIYMIICFDAdBgNVHQ4EFgQU1P//8Yl450rDOwkCY+SZo6LZogIwHwYDVR0j BBgwFoAU3bphb5bZws1/fKtpL57+dmZoATgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTY0OTM0NTgyMjcyMi8wL0REQkE2MTZGOTZEOUMyQ0Q3RjdDQUI2OTJGOUVG RTc2NjY2ODAxMzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRERCQTYxNkY5NkQ5QzJDRDdGN0NBQjY5MkY5RUZFNzY2NjY4MDEzOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODU2NDkzNDU4MjI3MjIvMC8zMjM0MzAzMTNh MzU2MzMyMzAzYTNhMmYzMzMyMmQzMTMyMzgyMDNkM2UyMDMxMzUzMTMyMzYzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBXCAwDQYJKoZIhvcNAQELBQADggEBAEwBeI168RhcqLchB8dy pijLJo2YkyRP5KhQPG335QnTvSR8TWuFvqqdmcRkTK9i68rtYt6A9APNwWuZklM/ XDRwojHmeJdm0OtU+lUOkjsk6BKR0GLvXFfXVU6dwpYfHf2A/V69azbhaXrzbk3G iT4WYjwlqKIw7pr9/cbyJ72ygw+eaSRi3Nxs9p6h9TxjZkitbofnsuD2/vBVCSdI 3ioJeEMcuWMaZFWqKsY9XxpROtgFmbFMgRgsWzJBFVhyBscqyj37Tz0WwO20FHaP bdbtu/6jEtO8/6BmC0o1rmPpR7h0aFGQrWww8cqPE8orYffdjfx642oiFCSk+g3V vNk= -----END CERTIFICATE-----Generated at Mon Apr 13 12:23:28 2026 by rpki-client