$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094551670852943873/0/323430333a356563303a3a2f33322d3332203d3e2030.roa File: 323430333a356563303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: pn5P8/momGxXTFfknwO8tuClvccGh1zTNEWhwlA2qwo= Subject key identifier: 38:A8:DB:0F:76:8E:2D:78:F0:51:1C:32:67:78:63:CD:FF:03:29:F3 Certificate issuer: /CN=6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72 Certificate serial: 7CB69A0F8C78906558D450D436800B4E7F0448A5 Authority key identifier: 6B:86:BD:3F:A0:FB:0B:37:BA:C6:4D:6C:8D:2D:9F:66:36:53:6E:72 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/323430333a356563303a3a2f33322d3332203d3e2030.roa Signing time: Thu 09 Apr 2026 09:22:23 +0000 ROA not before: Thu 09 Apr 2026 09:17:23 +0000 ROA not after: Thu 08 Apr 2027 09:22:23 +0000 asID: 0 IP address blocks: 2403:5ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.crl rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:b6:9a:0f:8c:78:90:65:58:d4:50:d4:36:80:0b:4e:7f:04:48:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72 Validity Not Before: Apr 9 09:17:23 2026 GMT Not After : Apr 8 09:22:23 2027 GMT Subject: CN=38A8DB0F768E2D78F0511C32677863CDFF0329F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:38:97:74:55:96:f2:92:99:46:61:e8:76:2b: 66:47:df:69:a7:9b:63:e9:1c:55:ba:0a:19:94:2c: c9:5a:8b:96:ee:9d:83:7b:e7:ae:1c:76:7e:6f:82: 8a:f7:a8:4b:58:e0:f6:46:f4:b3:18:94:a1:2f:7c: b0:78:ee:8b:65:28:e6:90:c5:f7:9d:35:43:9f:a3: 57:67:d6:8a:7c:08:6e:14:86:e6:33:43:b0:df:6a: d9:40:82:e4:f4:0e:6a:31:cb:35:19:a3:0d:af:aa: a2:2a:43:83:b7:99:2f:23:dd:87:f5:b9:18:e4:b9: 88:8d:54:4b:81:cb:15:59:9b:6d:3f:ff:4a:3b:e9: 4f:ec:4c:d1:91:95:80:11:62:2d:2c:b1:f2:3d:9c: a5:3b:5f:03:08:88:46:5e:9e:f9:ca:46:4c:99:7e: 3e:c2:c8:bc:0d:b4:35:51:ec:3f:a7:aa:72:1b:7e: 10:79:97:dc:8e:59:35:0c:ff:01:1d:ef:f9:55:20: 4c:36:af:c5:96:2e:21:16:2e:9d:3b:c9:76:d7:e1: 23:7c:9d:5d:10:42:6b:80:a2:66:10:bb:05:d9:3c: 32:c6:5c:fb:26:c3:8f:96:dd:1b:ed:d5:47:71:de: 4a:00:cb:fc:f4:be:b9:cd:a6:9a:a7:47:39:02:4e: e1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A8:DB:0F:76:8E:2D:78:F0:51:1C:32:67:78:63:CD:FF:03:29:F3 X509v3 Authority Key Identifier: keyid:6B:86:BD:3F:A0:FB:0B:37:BA:C6:4D:6C:8D:2D:9F:66:36:53:6E:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6B86BD3FA0FB0B37BAC64D6C8D2D9F6636536E72.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094551670852943873/0/323430333a356563303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:5ec0::/32 Signature Algorithm: sha256WithRSAEncryption 07:e0:02:38:f8:e4:d0:0c:c3:bf:d3:f1:60:20:45:90:8e:30: 07:59:ec:6d:73:45:a5:1f:c4:1a:ed:94:ab:e5:08:32:57:f0: 10:7b:4b:2d:9a:9f:46:d7:90:29:3c:d5:46:ea:db:4a:b6:07: 12:e4:a6:c4:28:c4:db:fa:f1:11:f0:84:71:0d:8e:20:07:e7: f3:0f:54:fb:c1:ab:f0:bd:de:99:e1:8f:b8:2a:ee:4b:85:06: dc:ed:75:05:01:e7:98:a3:4e:af:4e:85:8f:2f:82:db:cc:27: c3:ee:27:cc:93:0b:3a:ab:9d:c7:20:e7:56:e5:c0:88:a4:84: 45:f7:a2:3b:aa:b5:bf:42:79:f2:38:47:77:4d:40:b3:63:4c: 7e:10:18:73:d5:bf:4d:da:85:4f:6c:b1:ee:33:41:57:cd:87: cd:a7:2c:67:18:38:ad:23:fb:8c:f7:ea:93:e3:b6:27:61:b1: 8c:d1:24:95:4a:a9:8e:45:37:cf:ed:6d:44:77:0a:79:6e:6e: 6b:3e:1c:4a:93:6f:35:7a:c1:f8:75:3c:93:6e:69:97:b6:6c: da:f2:7f:59:11:0b:e3:50:35:af:9d:f0:4f:7c:e8:77:36:c9: f7:8e:4c:c7:b8:ec:70:01:40:bb:ff:02:de:2a:77:56:c4:a7: 30:51:86:37 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUfLaaD4x4kGVY1FDUNoALTn8ESKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI4NkJEM0ZBMEZCMEIzN0JBQzY0RDZDOEQyRDlGNjYz NjUzNkU3MjAeFw0yNjA0MDkwOTE3MjNaFw0yNzA0MDgwOTIyMjNaMDMxMTAvBgNV BAMTKDM4QThEQjBGNzY4RTJENzhGMDUxMUMzMjY3Nzg2M0NERkYwMzI5RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClOJd0VZbykplGYeh2K2ZH32mn m2PpHFW6ChmULMlai5bunYN7564cdn5vgor3qEtY4PZG9LMYlKEvfLB47otlKOaQ xfedNUOfo1dn1op8CG4UhuYzQ7DfatlAguT0DmoxyzUZow2vqqIqQ4O3mS8j3Yf1 uRjkuYiNVEuByxVZm20//0o76U/sTNGRlYARYi0ssfI9nKU7XwMIiEZenvnKRkyZ fj7CyLwNtDVR7D+nqnIbfhB5l9yOWTUM/wEd7/lVIEw2r8WWLiEWLp07yXbX4SN8 nV0QQmuAomYQuwXZPDLGXPsmw4+W3Rvt1Udx3koAy/z0vrnNppqnRzkCTuEtAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUOKjbD3aOLXjwURwyZ3hjzf8DKfMwHwYDVR0j BBgwFoAUa4a9P6D7Cze6xk1sjS2fZjZTbnIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDU1MTY3MDg1Mjk0Mzg3My8wLzZCODZCRDNGQTBGQjBCMzdCQUM2NEQ2QzhEMkQ5 RjY2MzY1MzZFNzIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkI4NkJEM0ZBMEZCMEIzN0JBQzY0RDZDOEQyRDlGNjYzNjUzNkU3Mi5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0NTUxNjcwODUyOTQzODczLzAvMzIzNDMwMzMzYTM1 NjU2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA17A MA0GCSqGSIb3DQEBCwUAA4IBAQAH4AI4+OTQDMO/0/FgIEWQjjAHWextc0WlH8Qa 7ZSr5QgyV/AQe0stmp9G15ApPNVG6ttKtgcS5KbEKMTb+vER8IRxDY4gB+fzD1T7 wavwvd6Z4Y+4Ku5LhQbc7XUFAeeYo06vToWPL4LbzCfD7ifMkws6q53HIOdW5cCI pIRF96I7qrW/QnnyOEd3TUCzY0x+EBhz1b9N2oVPbLHuM0FXzYfNpyxnGDitI/uM 9+qT47YnYbGM0SSVSqmORTfP7W1Edwp5bm5rPhxKk281esH4dTyTbmmXtmza8n9Z EQvjUDWvnfBPfOh3Nsn3jkzHuOxwAUC7/wLeKndWxKcwUYY3 -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:10 2026 by rpki-client