$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a31313a3a2f34382d3438203d3e20313531333131.roa File: 323430313a373163303a31313a3a2f34382d3438203d3e20313531333131.roa (raw, json) Hash identifier: ZNdcaTCfBol9Ir4vlcGsruyrYSHtUC/mqoA6oskJ468= Subject key identifier: 42:B2:32:B8:B2:B1:66:A7:82:84:90:2E:B6:9C:3F:5B:22:09:91:A0 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 55123672B1670C73B137ED040CF1FC5202194E2E Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a31313a3a2f34382d3438203d3e20313531333131.roa Signing time: Thu 04 Jun 2026 02:24:40 +0000 ROA not before: Thu 04 Jun 2026 02:19:40 +0000 ROA not after: Thu 03 Jun 2027 02:24:40 +0000 asID: 151311 IP address blocks: 2401:71c0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 02:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:12:36:72:b1:67:0c:73:b1:37:ed:04:0c:f1:fc:52:02:19:4e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Jun 4 02:19:40 2026 GMT Not After : Jun 3 02:24:40 2027 GMT Subject: CN=42B232B8B2B166A78284902EB69C3F5B220991A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ba:e8:3d:c0:d4:65:bc:8e:7d:4f:d3:36:7d: 2f:3b:28:bc:6f:31:1e:45:2f:81:5b:83:bf:40:2f: 64:9d:df:76:7b:87:00:a1:db:11:03:a2:e6:0d:68: 9b:12:cb:ed:9f:9b:7b:91:fc:5d:aa:cf:ce:c3:1e: 32:ab:d8:ee:08:71:ec:87:93:45:06:a1:71:f5:5a: 1e:c2:ab:77:d1:e3:93:9c:58:77:e4:f5:01:2c:c2: 1a:21:6f:5f:60:54:bf:4c:06:97:51:7d:9a:7a:16: fb:03:cb:4f:c3:20:dd:49:70:85:47:9d:1c:64:06: a1:c5:ad:90:63:36:f5:20:e8:73:6b:04:e1:4b:8b: 1c:00:94:97:e8:da:69:91:be:68:4b:6d:be:d9:3b: fb:0c:69:16:75:96:65:06:ee:2e:b3:86:c4:97:65: 2e:10:80:b0:26:f7:4a:36:9b:57:66:6b:71:2d:ea: 58:c8:74:a1:eb:75:a5:3f:2c:7a:aa:db:fe:c6:3f: 22:bd:7d:13:74:10:c1:ff:18:cb:6a:31:13:af:97: e1:ea:57:93:19:ea:46:67:ee:b1:86:4c:9f:5f:7d: 81:d2:40:e6:46:a3:56:03:d5:f9:b7:2b:fc:a7:0f: 64:a0:51:93:19:9b:b8:ed:2d:c3:d7:36:99:21:c7: 23:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B2:32:B8:B2:B1:66:A7:82:84:90:2E:B6:9C:3F:5B:22:09:91:A0 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a31313a3a2f34382d3438203d3e20313531333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:11::/48 Signature Algorithm: sha256WithRSAEncryption 34:31:84:3a:6b:8c:61:ba:b3:6f:60:e0:9f:ec:d6:7e:7d:90: db:d6:24:d9:53:9b:31:ea:4d:6b:07:a7:85:a7:9a:a4:3d:2e: 87:93:15:26:6e:66:5c:88:0f:84:59:e8:36:c4:d4:58:46:a5: 00:2d:a1:db:f5:38:a9:29:19:12:a8:91:0a:59:47:0d:80:1c: 2b:c7:ac:21:df:19:df:0c:9e:73:71:62:5a:78:c3:84:58:b3: ea:a5:45:f4:79:0b:09:d2:04:56:eb:5e:ec:b9:a7:dd:ab:b5: 63:e4:2d:50:1d:e5:fb:7b:80:a3:11:90:56:4f:bb:a3:74:68: 8b:bf:ba:21:0a:3c:59:28:00:b5:10:e8:e8:21:0d:00:b5:b7: d4:83:15:f5:a8:e6:ae:de:d8:8c:44:ef:46:6d:08:3c:68:76: 43:33:73:0d:c6:88:13:46:bb:12:6d:b7:23:2b:df:fc:5c:f7: 6f:54:37:e2:46:3e:34:9b:7d:1b:88:7f:1a:be:f0:b0:5b:56: b1:8b:17:2e:ce:74:ce:eb:51:21:b4:7e:73:e9:b9:c1:bb:3f: 70:61:61:f7:e1:97:68:55:da:0a:b9:fb:4f:0b:7c:a9:c8:51: cc:bf:22:ef:83:b9:c3:ca:ea:95:01:35:22:c3:81:cc:8c:46: 52:2c:31:dd -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgIUVRI2crFnDHOxN+0EDPH8UgIZTi4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA2MDQwMjE5NDBaFw0yNzA2MDMwMjI0NDBaMDMxMTAvBgNV BAMTKDQyQjIzMkI4QjJCMTY2QTc4Mjg0OTAyRUI2OUMzRjVCMjIwOTkxQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSuug9wNRlvI59T9M2fS87KLxv MR5FL4Fbg79AL2Sd33Z7hwCh2xEDouYNaJsSy+2fm3uR/F2qz87DHjKr2O4IceyH k0UGoXH1Wh7Cq3fR45OcWHfk9QEswhohb19gVL9MBpdRfZp6FvsDy0/DIN1JcIVH nRxkBqHFrZBjNvUg6HNrBOFLixwAlJfo2mmRvmhLbb7ZO/sMaRZ1lmUG7i6zhsSX ZS4QgLAm90o2m1dma3Et6ljIdKHrdaU/LHqq2/7GPyK9fRN0EMH/GMtqMROvl+Hq V5MZ6kZn7rGGTJ9ffYHSQOZGo1YD1fm3K/ynD2SgUZMZm7jtLcPXNpkhxyP5AgMB AAGjggIfMIICGzAdBgNVHQ4EFgQUQrIyuLKxZqeChJAutpw/WyIJkaAwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZUGCCsGAQUFBwELBIGIMIGFMIGCBggrBgEFBQcwC4Z2cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3ODU4MTc5LzAvMzIzNDMwMzEz YTM3MzE2MzMwM2EzMTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzMz MTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAJAFxwAARMA0GCSqGSIb3DQEBCwUAA4IBAQA0MYQ6a4xh urNvYOCf7NZ+fZDb1iTZU5sx6k1rB6eFp5qkPS6HkxUmbmZciA+EWeg2xNRYRqUA LaHb9TipKRkSqJEKWUcNgBwrx6wh3xnfDJ5zcWJaeMOEWLPqpUX0eQsJ0gRW617s uafdq7Vj5C1QHeX7e4CjEZBWT7ujdGiLv7ohCjxZKAC1EOjoIQ0AtbfUgxX1qOau 3tiMRO9GbQg8aHZDM3MNxogTRrsSbbcjK9/8XPdvVDfiRj40m30biH8avvCwW1ax ixcuznTO61EhtH5z6bnBuz9wYWH34ZdoVdoKuftPC3ypyFHMvyLvg7nDyuqVATUi w4HMjEZSLDHd -----END CERTIFICATE-----Generated at Fri Jun 12 06:45:14 2026 by rpki-client