$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430333a316563303a3a2f33322d3438203d3e2034383131.roa File: 323430333a316563303a3a2f33322d3438203d3e2034383131.roa (raw, json) Hash identifier: w2u38r39yx2TGJEYl8LRuWAo6FtCBWZm6IDS9VevGcA= Subject key identifier: 4A:91:A8:46:23:AE:BF:FB:02:49:24:EC:F2:3D:CB:DE:6E:08:2D:96 Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 18000ECF0BB97AD652AA8653CAB166DF7A037DFF Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430333a316563303a3a2f33322d3438203d3e2034383131.roa Signing time: Fri 10 Apr 2026 09:56:24 +0000 ROA not before: Fri 10 Apr 2026 09:51:24 +0000 ROA not after: Fri 09 Apr 2027 09:56:24 +0000 asID: 4811 IP address blocks: 2403:1ec0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:00:0e:cf:0b:b9:7a:d6:52:aa:86:53:ca:b1:66:df:7a:03:7d:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 10 09:51:24 2026 GMT Not After : Apr 9 09:56:24 2027 GMT Subject: CN=4A91A84623AEBFFB024924ECF23DCBDE6E082D96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d4:b9:f2:09:11:a8:11:21:77:78:37:12:81: 99:2a:5d:b1:97:d7:1e:79:61:4d:77:1d:a6:f2:36: 62:b0:5b:e6:b6:ca:f8:3d:f2:75:ec:11:85:70:c8: 15:39:eb:27:34:c2:d9:b5:05:72:e8:a9:65:f6:39: a2:13:4d:fe:07:53:00:9d:0b:7e:65:83:31:d4:dc: a3:e9:34:54:b1:bc:26:4c:96:47:29:71:47:86:bb: 2e:8e:a0:8f:2f:bb:72:ac:78:78:f1:92:47:b6:fa: 1e:9e:c3:fa:24:38:10:60:fd:6f:3b:d3:16:5d:25: 19:14:32:d8:a6:6b:b8:86:00:3c:f3:d2:ff:03:ec: e1:bb:74:14:96:7f:bc:d4:c6:d2:c3:01:46:31:f2: 1e:25:3b:b9:06:93:33:fc:f0:5f:e9:9f:6b:be:88: 2a:c3:7f:77:56:2a:57:7d:86:38:2e:72:57:c6:49: 92:fb:8f:9b:55:89:e4:4b:3f:46:45:56:2e:bf:94: 22:a7:a6:97:d4:12:30:23:d9:c5:ff:7f:f8:42:ff: 0e:6c:71:5a:3d:15:7a:24:6b:44:92:5b:d0:4c:7e: 53:67:26:1d:21:f2:d7:38:76:e2:92:6b:57:dc:5b: cc:ae:58:88:17:d2:33:dd:4f:85:48:4c:ca:9e:02: ae:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:91:A8:46:23:AE:BF:FB:02:49:24:EC:F2:3D:CB:DE:6E:08:2D:96 X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430333a316563303a3a2f33322d3438203d3e2034383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:1ec0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:a0:2d:a4:00:db:85:9b:5f:5b:a7:71:0f:86:61:30:8a:ab: 67:f1:1b:ca:a8:c3:69:c6:91:3f:dd:c1:89:39:a3:e2:00:24: 5f:3a:de:14:c3:e7:8d:7b:d3:04:55:11:f8:bd:e6:8e:5d:88: 82:d1:83:fd:c4:79:fc:b6:8d:59:42:78:de:bd:24:0b:10:4c: 88:a8:a9:25:25:2b:fc:bb:be:f1:4f:2d:56:68:82:a4:91:f0: e6:90:02:91:ce:b4:2a:14:b0:e0:80:c4:6b:96:57:c3:5f:03: cc:16:0c:29:27:77:7c:bd:a5:08:a9:1a:85:2a:7f:ec:31:5e: 39:9b:ea:f5:a5:d7:a7:a9:92:3d:bb:1a:63:c8:76:37:31:45: 6d:02:ed:14:1e:1f:a0:f2:bb:c7:1d:70:b9:35:94:7a:cc:39: 0b:04:00:1f:28:2b:fc:92:17:e9:fc:e9:32:97:73:4f:2d:bb: 57:ac:19:cf:a8:c7:02:eb:53:dc:b2:58:92:05:c8:1b:82:58: 25:54:8a:1e:06:81:71:f9:1c:aa:13:51:26:3e:c8:be:57:97: 6f:96:03:9a:8a:f9:54:bf:01:96:ae:45:59:1b:44:19:a8:32: 7f:53:14:a3:40:69:4e:8d:c7:11:0c:49:34:a9:16:18:1a:22: 14:99:f6:8c -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUGAAOzwu5etZSqoZTyrFm33oDff8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MTAwOTUxMjRaFw0yNzA0MDkwOTU2MjRaMDMxMTAvBgNV BAMTKDRBOTFBODQ2MjNBRUJGRkIwMjQ5MjRFQ0YyM0RDQkRFNkUwODJEOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo1LnyCRGoESF3eDcSgZkqXbGX 1x55YU13HabyNmKwW+a2yvg98nXsEYVwyBU56yc0wtm1BXLoqWX2OaITTf4HUwCd C35lgzHU3KPpNFSxvCZMlkcpcUeGuy6OoI8vu3KseHjxkke2+h6ew/okOBBg/W87 0xZdJRkUMtima7iGADzz0v8D7OG7dBSWf7zUxtLDAUYx8h4lO7kGkzP88F/pn2u+ iCrDf3dWKld9hjguclfGSZL7j5tVieRLP0ZFVi6/lCKnppfUEjAj2cX/f/hC/w5s cVo9FXoka0SSW9BMflNnJh0h8tc4duKSa1fcW8yuWIgX0jPdT4VITMqeAq6ZAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUSpGoRiOuv/sCSSTs8j3L3m4ILZYwHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzIzNDMwMzMzYTMx NjU2MzMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzQzODMxMzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAx7AMA0GCSqGSIb3DQEBCwUAA4IBAQANoC2kANuFm19bp3EPhmEwiqtn8RvK qMNpxpE/3cGJOaPiACRfOt4Uw+eNe9MEVRH4veaOXYiC0YP9xHn8to1ZQnjevSQL EEyIqKklJSv8u77xTy1WaIKkkfDmkAKRzrQqFLDggMRrllfDXwPMFgwpJ3d8vaUI qRqFKn/sMV45m+r1pdenqZI9uxpjyHY3MUVtAu0UHh+g8rvHHXC5NZR6zDkLBAAf KCv8khfp/Okyl3NPLbtXrBnPqMcC61PcsliSBcgbglglVIoeBoFx+RyqE1EmPsi+ V5dvlgOaivlUvwGWrkVZG0QZqDJ/UxSjQGlOjccRDEk0qRYYGiIUmfaM -----END CERTIFICATE-----Generated at Mon Apr 13 15:25:30 2026 by rpki-client