$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094436162547744770/0/323430313a643738303a3a2f33322d3332203d3e20313331353036.roa File: 323430313a643738303a3a2f33322d3332203d3e20313331353036.roa (raw, json) Hash identifier: 1WaWO6RIA1a/HCSbXMpQSbbU+ma9gqpaM3KKpbXU0RQ= Subject key identifier: 3A:BF:CA:D2:69:DA:CC:4A:1E:1F:1A:56:48:90:C1:4C:E3:B5:5C:3C Certificate issuer: /CN=EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163 Certificate serial: 44BEFFF6E695F0F5173BD910FE752D69B6DA197E Authority key identifier: EE:AF:21:F2:1F:95:1D:FF:CE:8E:B9:CF:29:6F:8F:92:4D:6D:51:63 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/323430313a643738303a3a2f33322d3332203d3e20313331353036.roa Signing time: Thu 09 Apr 2026 02:00:17 +0000 ROA not before: Thu 09 Apr 2026 01:55:17 +0000 ROA not after: Thu 08 Apr 2027 02:00:17 +0000 asID: 131506 IP address blocks: 2401:d780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.crl rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Apr 2026 19:12:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:be:ff:f6:e6:95:f0:f5:17:3b:d9:10:fe:75:2d:69:b6:da:19:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163 Validity Not Before: Apr 9 01:55:17 2026 GMT Not After : Apr 8 02:00:17 2027 GMT Subject: CN=3ABFCAD269DACC4A1E1F1A564890C14CE3B55C3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:34:b1:75:cf:db:51:68:eb:48:08:83:52:7c: 22:7c:2d:c5:de:0e:10:1f:7d:ed:82:0b:4b:60:c4: b0:a6:89:d5:cf:b2:26:6a:29:c6:5e:ed:de:d5:73: 5b:63:1c:c6:41:35:d5:c1:1b:e7:a5:51:e3:02:8f: c8:15:35:2a:a9:ee:1d:4d:45:18:ce:98:6f:8c:e5: ac:1c:85:0b:4a:9d:ce:bd:21:c2:f5:b8:10:09:5b: ea:9f:7a:a2:13:3d:07:4f:ac:98:e9:f0:cf:bb:ff: 49:91:64:99:25:a1:fc:2c:55:da:b4:be:0e:c3:dd: d0:f8:90:39:b3:19:24:f4:2f:4a:0a:3b:e7:c8:59: f3:07:82:d6:c1:d5:d9:3c:17:ac:8e:49:e0:07:17: ff:74:03:81:cb:ca:99:1d:01:b0:99:b5:d0:ae:68: e8:33:24:cf:85:8d:73:48:3e:0e:e4:1c:b5:43:c9: a9:0f:ba:3f:a8:51:d8:e1:4c:34:16:65:fe:0f:6a: 95:5f:8e:2f:f0:b6:cc:a0:86:3b:ce:41:a0:e3:2b: a9:cf:d6:59:9c:45:fb:b0:a7:8f:54:aa:89:9e:b5: 78:92:89:2d:78:42:1e:b1:33:17:8f:68:97:e1:70: 38:7b:56:fd:84:b6:03:10:85:79:f3:70:2a:b2:90: 40:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:BF:CA:D2:69:DA:CC:4A:1E:1F:1A:56:48:90:C1:4C:E3:B5:5C:3C X509v3 Authority Key Identifier: keyid:EE:AF:21:F2:1F:95:1D:FF:CE:8E:B9:CF:29:6F:8F:92:4D:6D:51:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EEAF21F21F951DFFCE8EB9CF296F8F924D6D5163.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094436162547744770/0/323430313a643738303a3a2f33322d3332203d3e20313331353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:d780::/32 Signature Algorithm: sha256WithRSAEncryption b7:7b:d6:30:b6:53:ee:f7:97:f1:27:18:3b:9a:0c:30:cf:22: 5b:7a:90:fd:8e:b3:ce:a4:f1:e3:d0:e5:49:85:8d:5d:c6:4d: a6:17:96:ec:61:0a:72:25:eb:0d:90:a7:24:7a:0f:e1:7d:a9: ce:be:b4:fb:20:da:82:01:61:28:a3:04:a5:2c:92:41:80:73: 55:52:dd:2c:14:01:8c:c4:7b:47:77:11:bf:48:63:43:39:f5: bb:39:38:91:6f:fa:02:c0:d4:60:e7:3b:3a:35:f0:0e:66:d0: 6b:c9:f1:f9:48:e4:ab:46:45:6b:dc:aa:45:87:52:75:d9:4c: 3d:0b:02:52:15:8c:c4:ee:75:c1:41:f0:7a:53:bc:f9:32:84: 8d:50:03:f9:a1:9f:a7:3a:33:ed:51:e9:fb:90:cc:d8:1c:93: 47:3a:e0:9e:f8:94:83:50:2c:71:be:8a:e7:af:37:e6:97:cb: e2:a3:ad:bf:bb:aa:94:c5:3d:55:af:3f:0f:0f:18:e6:ce:1d: 20:36:20:71:a3:0d:8e:3e:38:8d:e0:56:ce:b5:6f:cf:5d:57: 26:40:b9:29:03:43:14:d8:d4:a8:b7:5f:31:d4:20:8e:49:e4: 6a:2e:e4:71:a0:1e:96:b2:3f:34:a9:d6:c6:0f:e0:eb:84:1d: 9c:02:d3:ce -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIURL7/9uaV8PUXO9kQ/nUtabbaGX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVBRjIxRjIxRjk1MURGRkNFOEVCOUNGMjk2RjhGOTI0 RDZENTE2MzAeFw0yNjA0MDkwMTU1MTdaFw0yNzA0MDgwMjAwMTdaMDMxMTAvBgNV BAMTKDNBQkZDQUQyNjlEQUNDNEExRTFGMUE1NjQ4OTBDMTRDRTNCNTVDM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHNLF1z9tRaOtICINSfCJ8LcXe DhAffe2CC0tgxLCmidXPsiZqKcZe7d7Vc1tjHMZBNdXBG+elUeMCj8gVNSqp7h1N RRjOmG+M5awchQtKnc69IcL1uBAJW+qfeqITPQdPrJjp8M+7/0mRZJklofwsVdq0 vg7D3dD4kDmzGST0L0oKO+fIWfMHgtbB1dk8F6yOSeAHF/90A4HLypkdAbCZtdCu aOgzJM+FjXNIPg7kHLVDyakPuj+oUdjhTDQWZf4PapVfji/wtsyghjvOQaDjK6nP 1lmcRfuwp49UqometXiSiS14Qh6xMxePaJfhcDh7Vv2EtgMQhXnzcCqykEDZAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUOr/K0mnazEoeHxpWSJDBTOO1XDwwHwYDVR0j BBgwFoAU7q8h8h+VHf/OjrnPKW+Pkk1tUWMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQzNjE2MjU0Nzc0NDc3MC8wL0VFQUYyMUYyMUY5NTFERkZDRThFQjlDRjI5NkY4 RjkyNEQ2RDUxNjMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRUVBRjIxRjIxRjk1MURGRkNFOEVCOUNGMjk2RjhGOTI0RDZENTE2My5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDQzNjE2MjU0Nzc0NDc3MC8wLzMyMzQzMDMxM2E2 NDM3MzgzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzMzMTM1MzAzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQB14AwDQYJKoZIhvcNAQELBQADggEBALd71jC2U+73l/EnGDuaDDDP Ilt6kP2Os86k8ePQ5UmFjV3GTaYXluxhCnIl6w2QpyR6D+F9qc6+tPsg2oIBYSij BKUskkGAc1VS3SwUAYzEe0d3Eb9IY0M59bs5OJFv+gLA1GDnOzo18A5m0GvJ8flI 5KtGRWvcqkWHUnXZTD0LAlIVjMTudcFB8HpTvPkyhI1QA/mhn6c6M+1R6fuQzNgc k0c64J74lINQLHG+iuevN+aXy+Kjrb+7qpTFPVWvPw8PGObOHSA2IHGjDY4+OI3g Vs61b89dVyZAuSkDQxTY1Ki3XzHUII5J5Gou5HGgHpayPzSp1sYP4OuEHZwC084= -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:30 2026 by rpki-client