$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430333a316563303a3a2f33322d3438203d3e203538343636.roa File: 323430333a316563303a3a2f33322d3438203d3e203538343636.roa (raw, json) Hash identifier: tRh2YgzlR5Svzv18MLAamPt/gmO8Q9nCqITk1gBUC5Y= Subject key identifier: F1:61:30:22:22:D0:15:94:61:C5:83:5D:30:9C:08:46:DF:0D:79:8E Certificate issuer: /CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Certificate serial: 40BE55C7D9FF0ABCDED9580FEDAA718B5D241CC6 Authority key identifier: D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430333a316563303a3a2f33322d3438203d3e203538343636.roa Signing time: Fri 10 Apr 2026 09:56:24 +0000 ROA not before: Fri 10 Apr 2026 09:51:24 +0000 ROA not after: Fri 09 Apr 2027 09:56:24 +0000 asID: 58466 IP address blocks: 2403:1ec0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:be:55:c7:d9:ff:0a:bc:de:d9:58:0f:ed:aa:71:8b:5d:24:1c:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6805DB309057612CC9272CB2C85BA6CB0D389E5 Validity Not Before: Apr 10 09:51:24 2026 GMT Not After : Apr 9 09:56:24 2027 GMT Subject: CN=F161302222D0159461C5835D309C0846DF0D798E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cb:a7:59:bf:f4:1b:79:41:b9:84:fc:6b:09: 0f:b0:17:9c:2f:33:be:ba:69:e2:86:52:32:b0:a3: bf:2b:2f:d1:30:9e:7c:89:92:4a:d3:da:2f:7d:dd: bf:c7:af:3e:1a:15:80:ac:e1:74:36:b3:26:08:b6: e1:bd:d7:99:65:fd:fc:81:46:96:2e:4f:1c:dd:f9: 0e:16:df:8f:ff:37:5b:e1:a9:ff:20:72:08:c0:b0: ce:0a:ed:6b:e6:2c:b4:ed:fa:77:2d:c9:15:c3:bf: a5:89:a8:2b:4b:47:96:85:ab:d7:04:cc:8e:81:03: 1e:40:a6:eb:bd:08:85:66:9b:98:8a:2c:ee:8b:14: 4e:95:22:29:6b:4d:5c:22:fd:0d:84:3e:bc:bb:bf: ba:e0:a4:b7:05:13:bd:a1:00:fe:79:65:49:8c:8b: 3b:4f:e0:b0:23:16:e3:20:c8:c6:ed:48:99:82:16: 36:ce:e8:59:be:94:68:8c:77:33:f1:a3:7f:de:1e: 13:99:c9:c4:a4:64:68:52:01:0c:42:2e:e0:fc:55: a0:be:fe:f4:01:78:8f:dd:35:22:6d:34:b2:d0:81: 1c:d9:49:1c:f7:53:5a:b3:79:ca:88:de:77:76:20: 95:da:52:82:7b:9a:8c:68:7d:4c:05:6d:c5:b6:3b: 99:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:61:30:22:22:D0:15:94:61:C5:83:5D:30:9C:08:46:DF:0D:79:8E X509v3 Authority Key Identifier: keyid:D6:80:5D:B3:09:05:76:12:CC:92:72:CB:2C:85:BA:6C:B0:D3:89:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/D6805DB309057612CC9272CB2C85BA6CB0D389E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D6805DB309057612CC9272CB2C85BA6CB0D389E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1068363599790997506/0/323430333a316563303a3a2f33322d3438203d3e203538343636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:1ec0::/32 Signature Algorithm: sha256WithRSAEncryption 24:f1:aa:29:92:4f:92:15:5b:22:d9:bd:e4:44:a5:b4:9c:78: a3:70:92:32:ae:3c:e1:19:56:6b:fd:4a:27:a5:b6:0e:35:1c: dc:88:91:52:b0:d6:c2:54:c8:b8:57:57:9f:f9:24:56:52:af: 47:61:cc:c4:8f:6e:ad:b9:2d:48:13:06:2e:c0:e4:f4:42:61: fc:eb:e8:38:ca:13:39:6e:cf:e0:2e:8b:9d:97:87:05:ed:00: 49:c7:81:f9:8a:0d:ac:8d:c6:bf:5f:f3:91:48:81:10:56:04: 5c:0c:79:13:63:37:25:f4:f6:6e:c2:1c:58:f0:6d:9f:33:50: 25:99:74:f0:31:69:8c:77:ee:90:05:2a:73:32:34:c3:05:78: 50:db:dd:3e:9c:76:76:2a:ff:de:35:cd:36:cb:a2:8a:1f:41: 95:42:dc:11:ea:a6:38:65:9a:5f:a4:ad:aa:3a:70:d2:a4:b2: 55:44:24:94:f1:c2:7e:dc:a4:8d:93:9c:55:06:3d:af:6a:13: 67:6d:26:05:ff:a2:f5:d8:b2:a8:f1:5c:08:40:b2:75:ed:2c: b6:6f:08:f9:be:dd:bc:71:28:04:18:26:a4:40:77:33:5e:bf: 62:67:1e:a2:90:06:fa:f1:e2:ec:f7:19:9a:b7:f4:61:ae:af: 8f:8f:6e:21 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUQL5Vx9n/Crze2VgP7apxi10kHMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNC MEQzODlFNTAeFw0yNjA0MTAwOTUxMjRaFw0yNzA0MDkwOTU2MjRaMDMxMTAvBgNV BAMTKEYxNjEzMDIyMjJEMDE1OTQ2MUM1ODM1RDMwOUMwODQ2REYwRDc5OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDby6dZv/QbeUG5hPxrCQ+wF5wv M766aeKGUjKwo78rL9EwnnyJkkrT2i993b/Hrz4aFYCs4XQ2syYItuG915ll/fyB RpYuTxzd+Q4W34//N1vhqf8gcgjAsM4K7WvmLLTt+nctyRXDv6WJqCtLR5aFq9cE zI6BAx5Apuu9CIVmm5iKLO6LFE6VIilrTVwi/Q2EPry7v7rgpLcFE72hAP55ZUmM iztP4LAjFuMgyMbtSJmCFjbO6Fm+lGiMdzPxo3/eHhOZycSkZGhSAQxCLuD8VaC+ /vQBeI/dNSJtNLLQgRzZSRz3U1qzecqI3nd2IJXaUoJ7moxofUwFbcW2O5l9AgMB AAGjggISMIICDjAdBgNVHQ4EFgQU8WEwIiLQFZRhxYNdMJwIRt8NeY4wHwYDVR0j BBgwFoAU1oBdswkFdhLMknLLLIW6bLDTieUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 ODM2MzU5OTc5MDk5NzUwNi8wL0Q2ODA1REIzMDkwNTc2MTJDQzkyNzJDQjJDODVC QTZDQjBEMzg5RTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDY4MDVEQjMwOTA1NzYxMkNDOTI3MkNCMkM4NUJBNkNCMEQzODlFNS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY4MzYzNTk5NzkwOTk3NTA2LzAvMzIzNDMwMzMzYTMx NjU2MzMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzUzODM0MzYzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQDHsAwDQYJKoZIhvcNAQELBQADggEBACTxqimST5IVWyLZveREpbSceKNw kjKuPOEZVmv9Sieltg41HNyIkVKw1sJUyLhXV5/5JFZSr0dhzMSPbq25LUgTBi7A 5PRCYfzr6DjKEzluz+Aui52XhwXtAEnHgfmKDayNxr9f85FIgRBWBFwMeRNjNyX0 9m7CHFjwbZ8zUCWZdPAxaYx37pAFKnMyNMMFeFDb3T6cdnYq/941zTbLooofQZVC 3BHqpjhlml+krao6cNKkslVEJJTxwn7cpI2TnFUGPa9qE2dtJgX/ovXYsqjxXAhA snXtLLZvCPm+3bxxKAQYJqRAdzNev2JnHqKQBvrx4uz3GZq39GGur4+PbiE= -----END CERTIFICATE-----Generated at Mon Apr 13 17:57:13 2026 by rpki-client