$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a31313a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a31313a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: FfdK7O2+HBfqWUFQkH/lbFpL6iWbHc5IuAFrQMiU3oQ= Subject key identifier: C7:C2:3B:BA:D8:2E:B5:CD:7B:E2:BA:2E:16:51:6E:C5:B0:C5:9C:07 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 248EC865E753BAFF85742FF875A08FA3844859B9 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a31313a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:34 +0000 ROA not before: Fri 10 Apr 2026 02:55:34 +0000 ROA not after: Fri 09 Apr 2027 03:00:34 +0000 asID: 56040 IP address blocks: 2401:71c0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:8e:c8:65:e7:53:ba:ff:85:74:2f:f8:75:a0:8f:a3:84:48:59:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:34 2026 GMT Not After : Apr 9 03:00:34 2027 GMT Subject: CN=C7C23BBAD82EB5CD7BE2BA2E16516EC5B0C59C07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:2a:14:e8:e6:6d:8f:9b:4e:b2:ae:3b:1e: 8f:a1:d3:d5:ba:93:9a:d9:ff:e2:b0:73:00:18:55: 9a:c2:ad:96:e5:87:7b:08:c9:4d:ea:ef:63:92:a5: 42:b4:1b:da:04:24:e5:d6:32:6a:1e:1e:66:e7:ef: fb:e0:6f:dd:a0:da:89:1c:5a:ed:5a:57:ff:5a:4b: 70:10:a4:43:a4:8b:ac:3d:0d:29:6f:ab:fe:c0:6d: 11:eb:7f:3d:b5:e7:82:75:4a:cc:44:5e:17:04:59: 5f:a0:69:6e:23:33:79:c4:ba:79:4f:6a:e8:60:e5: 8e:dd:dd:59:6e:56:2b:2c:76:55:b8:dc:45:c1:67: e0:b2:3f:d3:58:33:bc:4c:7f:dd:a7:9b:39:6f:b6: 2d:b2:5c:e3:36:1a:f0:d0:32:ae:e3:00:ec:3f:38: d4:ca:68:22:0e:af:23:e0:84:10:b5:35:26:cb:39: 8e:94:35:22:32:13:01:cf:bd:2a:4a:55:84:5d:33: e1:06:f5:f5:77:d7:4e:2d:e0:e6:11:bf:60:1f:0e: 4c:e3:60:8c:6b:b0:b2:c9:ea:e4:ef:5c:39:9f:5f: 41:9d:84:7e:de:4b:42:75:89:23:d6:9e:c2:78:69: 9a:91:3c:e5:14:3b:e1:bf:d6:39:24:cd:b5:07:9f: dc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C2:3B:BA:D8:2E:B5:CD:7B:E2:BA:2E:16:51:6E:C5:B0:C5:9C:07 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a31313a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:11::/48 Signature Algorithm: sha256WithRSAEncryption 2d:f8:d3:2a:80:f2:a5:10:5b:54:61:48:98:e3:0c:41:6e:d4: 9c:48:cd:cb:9b:8c:15:c6:d8:04:30:24:76:e0:e7:dd:a1:65: f9:ea:34:c4:ec:88:33:40:f5:e0:87:56:3d:e1:f7:4b:bb:11: b6:d2:6b:cc:5b:88:4b:34:d2:25:97:e7:bd:01:e3:a5:43:16: 36:67:8c:f0:7b:6f:bb:de:da:7e:4b:ec:63:64:a3:f2:00:61: 55:14:03:70:be:6d:5f:fb:0c:4b:7e:36:33:68:20:68:b1:20: 57:61:fc:65:fc:1b:06:06:5d:95:99:95:91:83:3a:05:1a:74: 6f:7f:67:34:28:b4:19:b8:97:4a:55:40:a3:29:02:04:87:66: 3e:7f:c1:f6:12:58:54:f5:36:38:14:4c:a6:8e:20:84:9b:3b: 98:84:39:7b:33:a4:40:3a:a1:9b:ec:66:09:f6:a4:5c:3c:fa: 5b:78:04:1c:2b:77:8a:0f:be:a3:3b:7b:92:a7:c9:a3:17:3c: cc:1c:cf:3e:8a:a7:42:42:7e:50:0b:52:e5:c2:2c:17:cf:3e: af:a7:ca:c1:66:af:99:4d:4a:ed:7c:ee:cb:96:fa:b3:b3:cb: 54:13:6a:45:a1:ac:67:93:28:3b:81:14:d9:3f:f6:97:1d:37: 3c:10:36:c4 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUJI7IZedTuv+FdC/4daCPo4RIWbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzRaFw0yNzA0MDkwMzAwMzRaMDMxMTAvBgNV BAMTKEM3QzIzQkJBRDgyRUI1Q0Q3QkUyQkEyRTE2NTE2RUM1QjBDNTlDMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0LioU6OZtj5tOsq47Ho+h09W6 k5rZ/+KwcwAYVZrCrZblh3sIyU3q72OSpUK0G9oEJOXWMmoeHmbn7/vgb92g2okc Wu1aV/9aS3AQpEOki6w9DSlvq/7AbRHrfz2154J1SsxEXhcEWV+gaW4jM3nEunlP auhg5Y7d3VluVissdlW43EXBZ+CyP9NYM7xMf92nmzlvti2yXOM2GvDQMq7jAOw/ ONTKaCIOryPghBC1NSbLOY6UNSIyEwHPvSpKVYRdM+EG9fV3104t4OYRv2AfDkzj YIxrsLLJ6uTvXDmfX0GdhH7eS0J1iSPWnsJ4aZqRPOUUO+G/1jkkzbUHn9wbAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUx8I7utgutc174rouFlFuxbDFnAcwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3ODU4MTc5LzAvMzIzNDMwMzEz YTM3MzE2MzMwM2EzMTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQz MC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBccAAETANBgkqhkiG9w0BAQsFAAOCAQEALfjTKoDypRBb VGFImOMMQW7UnEjNy5uMFcbYBDAkduDn3aFl+eo0xOyIM0D14IdWPeH3S7sRttJr zFuISzTSJZfnvQHjpUMWNmeM8Htvu97afkvsY2Sj8gBhVRQDcL5tX/sMS342M2gg aLEgV2H8ZfwbBgZdlZmVkYM6BRp0b39nNCi0GbiXSlVAoykCBIdmPn/B9hJYVPU2 OBRMpo4ghJs7mIQ5ezOkQDqhm+xmCfakXDz6W3gEHCt3ig++ozt7kqfJoxc8zBzP PoqnQkJ+UAtS5cIsF88+r6fKwWavmU1K7Xzuy5b6s7PLVBNqRaGsZ5MoO4EU2T/2 lx03PBA2xA== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:54 2026 by rpki-client