$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430323a646234303a3a2f33322d3438203d3e203233373234.roa File: 323430323a646234303a3a2f33322d3438203d3e203233373234.roa (raw, json) Hash identifier: GWxHDPY2fo2iGOwJcQY5o9blZTUjbP9OocCMNLotFqE= Subject key identifier: 03:08:73:91:86:94:F3:68:01:0C:DF:7C:1A:4B:EA:0B:E1:A2:03:94 Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 3960E19615ABD879113ABA23336DF24A1A07FA40 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430323a646234303a3a2f33322d3438203d3e203233373234.roa Signing time: Fri 10 Apr 2026 09:56:24 +0000 ROA not before: Fri 10 Apr 2026 09:51:24 +0000 ROA not after: Fri 09 Apr 2027 09:56:24 +0000 asID: 23724 IP address blocks: 2402:db40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:60:e1:96:15:ab:d8:79:11:3a:ba:23:33:6d:f2:4a:1a:07:fa:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 10 09:51:24 2026 GMT Not After : Apr 9 09:56:24 2027 GMT Subject: CN=030873918694F368010CDF7C1A4BEA0BE1A20394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a8:4e:d7:c2:77:d9:f8:86:18:c8:2f:6c:4a: ce:66:0c:b4:7e:2f:d7:b3:42:c7:a6:21:3e:49:20: 74:be:34:29:d7:d4:8f:f1:a8:6a:fd:2d:49:62:49: ac:d6:3d:be:f7:57:27:d1:73:2b:06:d1:7b:f1:69: 1c:55:b8:76:ec:75:87:bf:4c:4e:0a:85:05:bb:f3: c7:f6:67:7b:08:56:58:e3:27:16:ba:cc:d3:d9:29: 9c:50:3a:a4:ca:e4:89:f8:24:31:c4:42:59:fe:bd: 8b:d8:56:49:b5:71:8b:38:93:f2:c9:0e:41:43:72: e4:23:2d:31:52:26:c4:75:27:c6:86:6b:9a:34:87: 76:d3:07:6e:70:5d:89:de:b6:e9:ff:fa:6c:2d:31: 06:27:55:62:21:18:3b:df:79:fd:e6:98:4c:b2:9f: bf:94:cf:fd:50:c0:cb:d4:dc:1f:b2:8c:c2:03:8a: 60:00:ad:f6:8c:b3:fa:f6:3d:30:3c:03:1e:ca:88: 39:96:4c:ff:49:f0:a9:52:1a:7b:8f:cb:aa:9c:7e: ed:0e:7f:fd:46:1d:4a:ac:82:e9:bd:ed:50:9c:64: 2e:00:fe:40:6b:e3:75:54:4e:fc:b9:05:31:99:3c: 1a:39:a3:03:ec:76:31:e1:b0:e1:8e:04:d4:4d:05: de:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:08:73:91:86:94:F3:68:01:0C:DF:7C:1A:4B:EA:0B:E1:A2:03:94 X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430323a646234303a3a2f33322d3438203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:db40::/32 Signature Algorithm: sha256WithRSAEncryption 62:f9:b8:49:a3:5a:3c:d8:4f:89:a8:66:de:e1:19:1f:80:d1: 55:be:25:2e:e9:ec:aa:40:db:1e:eb:23:f3:85:eb:a3:40:8a: 02:d9:17:b7:e4:a5:92:36:f2:a6:c6:6a:1a:39:d3:53:ef:cb: ec:0e:1e:47:51:f3:6f:c4:29:e1:20:d8:de:c0:f2:81:e3:79: d1:b0:b5:3c:f6:d6:e9:5c:3b:5f:3d:3f:e9:16:87:ef:99:e2: fe:77:9b:b4:cf:c0:ea:c9:0b:a4:96:0a:c6:91:ef:b7:e8:f7: 97:a5:c5:74:63:82:e3:86:aa:03:5a:cd:bb:91:c4:6a:99:fe: ff:39:c5:15:68:d0:d8:d7:a8:d6:00:a2:0e:e5:c9:10:c8:a6: 03:75:3d:f6:e9:a0:b8:06:56:4c:b7:46:7b:c3:44:4c:c8:a7: c1:1a:d6:99:73:8d:c2:34:9f:01:46:3b:65:e6:37:b1:fe:9d: c7:f5:0b:85:4c:6e:9b:b3:79:1f:4d:dd:38:6c:0e:9e:67:62: b5:19:01:6d:9e:62:a3:fd:68:ee:72:0e:c6:62:bc:07:7b:fc: 84:7b:77:ee:72:57:00:37:31:68:54:eb:d1:06:cb:09:7e:f2: 22:08:23:b3:cb:43:c1:a2:dc:9b:bc:0f:df:52:b3:19:94:ee: a2:3b:44:6f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUOWDhlhWr2HkROrojM23yShoH+kAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MTAwOTUxMjRaFw0yNzA0MDkwOTU2MjRaMDMxMTAvBgNV BAMTKDAzMDg3MzkxODY5NEYzNjgwMTBDREY3QzFBNEJFQTBCRTFBMjAzOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaqE7XwnfZ+IYYyC9sSs5mDLR+ L9ezQsemIT5JIHS+NCnX1I/xqGr9LUliSazWPb73VyfRcysG0XvxaRxVuHbsdYe/ TE4KhQW788f2Z3sIVljjJxa6zNPZKZxQOqTK5In4JDHEQln+vYvYVkm1cYs4k/LJ DkFDcuQjLTFSJsR1J8aGa5o0h3bTB25wXYnetun/+mwtMQYnVWIhGDvfef3mmEyy n7+Uz/1QwMvU3B+yjMIDimAArfaMs/r2PTA8Ax7KiDmWTP9J8KlSGnuPy6qcfu0O f/1GHUqsgum97VCcZC4A/kBr43VUTvy5BTGZPBo5owPsdjHhsOGOBNRNBd5nAgMB AAGjggISMIICDjAdBgNVHQ4EFgQUAwhzkYaU82gBDN98GkvqC+GiA5QwHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzIzNDMwMzIzYTY0 NjIzNDMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMzM3MzIzNC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQC20AwDQYJKoZIhvcNAQELBQADggEBAGL5uEmjWjzYT4moZt7hGR+A0VW+ JS7p7KpA2x7rI/OF66NAigLZF7fkpZI28qbGaho501Pvy+wOHkdR82/EKeEg2N7A 8oHjedGwtTz21ulcO189P+kWh++Z4v53m7TPwOrJC6SWCsaR77fo95elxXRjguOG qgNazbuRxGqZ/v85xRVo0NjXqNYAog7lyRDIpgN1PfbpoLgGVky3RnvDREzIp8Ea 1plzjcI0nwFGO2XmN7H+ncf1C4VMbpuzeR9N3ThsDp5nYrUZAW2eYqP9aO5yDsZi vAd7/IR7d+5yVwA3MWhU69EGywl+8iIII7PLQ8Gi3Ju8D99SsxmU7qI7RG8= -----END CERTIFICATE-----Generated at Mon Apr 13 15:26:00 2026 by rpki-client