$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094553714812780546/0/323430613a633030303a3a2f32302d3230203d3e20313337373236.roa File: 323430613a633030303a3a2f32302d3230203d3e20313337373236.roa (raw, json) Hash identifier: P/uGAO3eiSum4zNic0X3psUc8CVrx9YxKsqMCgddi/U= Subject key identifier: 3F:77:D7:9B:97:C1:03:DD:2B:43:20:B5:B1:03:88:6A:09:01:A7:D7 Certificate issuer: /CN=5BAFD52D9FB4A37C7A1382A8EFCC19AC1AC8F48C Certificate serial: 1B2C226123FC6FE9DB9D592A9E2A88C2DEAC10DB Authority key identifier: 5B:AF:D5:2D:9F:B4:A3:7C:7A:13:82:A8:EF:CC:19:AC:1A:C8:F4:8C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5BAFD52D9FB4A37C7A1382A8EFCC19AC1AC8F48C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094553714812780546/0/323430613a633030303a3a2f32302d3230203d3e20313337373236.roa Signing time: Fri 10 Apr 2026 01:01:42 +0000 ROA not before: Fri 10 Apr 2026 00:56:42 +0000 ROA not after: Fri 09 Apr 2027 01:01:42 +0000 asID: 137726 IP address blocks: 240a:c000::/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094553714812780546/0/5BAFD52D9FB4A37C7A1382A8EFCC19AC1AC8F48C.crl rsync://rpki-rps.cnnic.cn/repo/A1094553714812780546/0/5BAFD52D9FB4A37C7A1382A8EFCC19AC1AC8F48C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5BAFD52D9FB4A37C7A1382A8EFCC19AC1AC8F48C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 05:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:2c:22:61:23:fc:6f:e9:db:9d:59:2a:9e:2a:88:c2:de:ac:10:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BAFD52D9FB4A37C7A1382A8EFCC19AC1AC8F48C Validity Not Before: Apr 10 00:56:42 2026 GMT Not After : Apr 9 01:01:42 2027 GMT Subject: CN=3F77D79B97C103DD2B4320B5B103886A0901A7D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d2:b1:8e:85:49:22:dd:60:62:35:10:e0:6b: b0:8b:c2:2e:19:96:a8:fc:cb:d0:ea:52:2a:24:b8: 0b:f8:ad:a8:23:2a:a7:09:05:e2:02:3d:50:52:88: 34:8b:e0:99:cd:07:ab:1e:8d:49:9c:59:bc:b7:ba: 37:ee:5a:9c:84:93:27:16:87:8b:b7:ad:5e:dd:09: 63:d1:99:59:31:d7:3b:48:9d:9c:51:10:d6:43:0c: 73:ce:42:2c:a2:cf:3c:93:ee:49:86:f2:f2:4c:95: 62:20:92:f3:c7:0a:48:0e:7b:73:28:d8:95:1f:1a: e5:e4:33:52:ef:82:a8:4c:b8:e5:a5:14:8c:d3:73: b5:f5:1d:b0:12:89:08:d4:76:2b:a6:c5:52:b5:4f: a2:9c:12:cb:8a:70:e4:fe:bc:1d:ea:51:00:04:81: 9c:52:d8:20:9a:5e:25:40:e8:0c:4b:8d:d8:ac:dc: 72:67:15:00:45:1d:31:8d:b0:41:32:7d:83:25:51: c5:fe:a9:17:d3:af:3f:89:9f:b3:ae:b9:31:f7:74: 90:85:8a:d3:74:46:e9:81:7c:ae:bf:9b:ff:b7:ba: 7e:8c:61:4f:db:aa:e1:b4:88:68:02:f9:b3:fe:72: 30:fd:a9:12:f5:03:98:ed:be:8c:7b:b4:b4:3e:25: e4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:77:D7:9B:97:C1:03:DD:2B:43:20:B5:B1:03:88:6A:09:01:A7:D7 X509v3 Authority Key Identifier: keyid:5B:AF:D5:2D:9F:B4:A3:7C:7A:13:82:A8:EF:CC:19:AC:1A:C8:F4:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094553714812780546/0/5BAFD52D9FB4A37C7A1382A8EFCC19AC1AC8F48C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5BAFD52D9FB4A37C7A1382A8EFCC19AC1AC8F48C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094553714812780546/0/323430613a633030303a3a2f32302d3230203d3e20313337373236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:c000::/20 Signature Algorithm: sha256WithRSAEncryption 09:5f:62:4c:82:c2:ba:42:d9:11:d0:e1:2a:c4:d7:30:dc:01: 73:4c:b0:c1:e4:a2:03:3c:b6:e1:5c:e7:c3:dc:c4:78:1d:af: 9f:8a:82:25:87:2f:bd:3d:59:36:4e:5e:ea:0a:18:1f:18:ce: 55:66:0e:84:3e:66:fe:75:bb:7f:4d:35:cf:97:d5:90:26:d1: 61:bc:69:17:1f:e2:fd:ec:39:93:5b:c2:8c:c3:a8:1e:a8:9b: 8e:28:94:fa:72:b8:16:10:42:81:6c:a2:66:43:49:68:d3:68: 3d:60:f4:f7:09:69:46:f4:91:60:61:55:7f:15:af:c2:78:eb: 59:c0:2d:1d:49:61:54:88:20:98:2b:f0:01:23:11:0e:6a:fa: f9:12:97:01:e8:f3:a0:20:b1:2a:e6:26:29:ec:7f:48:1e:84: 92:52:99:e9:66:fb:77:ee:f2:99:ad:09:f4:cb:8c:89:af:73: f9:ec:43:68:ab:b4:b2:e8:2d:e9:39:3c:37:6f:cc:4f:1f:3a: 96:1e:5f:85:1b:f2:aa:6e:6f:41:22:0e:e4:2c:cd:0c:76:5b: 8e:89:05:b2:05:fc:90:fd:d2:e6:a3:a4:82:53:da:0d:a4:66: 83:58:a3:f6:66:30:1b:5f:e5:77:52:19:c5:4c:ea:b5:2f:7b: 1c:65:91:02 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUGywiYSP8b+nbnVkqniqIwt6sENswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJBRkQ1MkQ5RkI0QTM3QzdBMTM4MkE4RUZDQzE5QUMx QUM4RjQ4QzAeFw0yNjA0MTAwMDU2NDJaFw0yNzA0MDkwMTAxNDJaMDMxMTAvBgNV BAMTKDNGNzdENzlCOTdDMTAzREQyQjQzMjBCNUIxMDM4ODZBMDkwMUE3RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH0rGOhUki3WBiNRDga7CLwi4Z lqj8y9DqUiokuAv4ragjKqcJBeICPVBSiDSL4JnNB6sejUmcWby3ujfuWpyEkycW h4u3rV7dCWPRmVkx1ztInZxRENZDDHPOQiyizzyT7kmG8vJMlWIgkvPHCkgOe3Mo 2JUfGuXkM1LvgqhMuOWlFIzTc7X1HbASiQjUdiumxVK1T6KcEsuKcOT+vB3qUQAE gZxS2CCaXiVA6AxLjdis3HJnFQBFHTGNsEEyfYMlUcX+qRfTrz+Jn7OuuTH3dJCF itN0RumBfK6/m/+3un6MYU/bquG0iGgC+bP+cjD9qRL1A5jtvox7tLQ+JeT/AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUP3fXm5fBA90rQyC1sQOIagkBp9cwHwYDVR0j BBgwFoAUW6/VLZ+0o3x6E4Ko78wZrBrI9IwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDU1MzcxNDgxMjc4MDU0Ni8wLzVCQUZENTJEOUZCNEEzN0M3QTEzODJBOEVGQ0Mx OUFDMUFDOEY0OEMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNUJBRkQ1MkQ5RkI0QTM3QzdBMTM4MkE4RUZDQzE5QUMxQUM4RjQ4Qy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDU1MzcxNDgxMjc4MDU0Ni8wLzMyMzQzMDYxM2E2 MzMwMzAzMDNhM2EyZjMyMzAyZDMyMzAyMDNkM2UyMDMxMzMzNzM3MzIzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAIwBgMEBCQKwDANBgkqhkiG9w0BAQsFAAOCAQEACV9iTILCukLZEdDhKsTXMNwB c0ywweSiAzy24Vznw9zEeB2vn4qCJYcvvT1ZNk5e6goYHxjOVWYOhD5m/nW7f001 z5fVkCbRYbxpFx/i/ew5k1vCjMOoHqibjiiU+nK4FhBCgWyiZkNJaNNoPWD09wlp RvSRYGFVfxWvwnjrWcAtHUlhVIggmCvwASMRDmr6+RKXAejzoCCxKuYmKex/SB6E klKZ6Wb7d+7yma0J9MuMia9z+exDaKu0sugt6Tk8N2/MTx86lh5fhRvyqm5vQSIO 5CzNDHZbjokFsgX8kP3S5qOkglPaDaRmg1ij9mYwG1/ld1IZxUzqtS97HGWRAg== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:27 2026 by rpki-client