$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a313a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a313a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: n2XTnpyAprEv7e/Z5xW/+G0rRQ750aelR5qlLA77lCY= Subject key identifier: 07:E7:2D:77:05:C4:F2:16:94:BF:CC:B5:67:DF:4B:88:D4:09:FF:00 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 51F664B39F14378D0371FF0665DDF210E65AB9E6 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a313a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:34 +0000 ROA not before: Fri 10 Apr 2026 02:55:34 +0000 ROA not after: Fri 09 Apr 2027 03:00:34 +0000 asID: 56040 IP address blocks: 2401:71c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:f6:64:b3:9f:14:37:8d:03:71:ff:06:65:dd:f2:10:e6:5a:b9:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:34 2026 GMT Not After : Apr 9 03:00:34 2027 GMT Subject: CN=07E72D7705C4F21694BFCCB567DF4B88D409FF00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:3c:ac:dd:90:ea:39:75:78:b7:79:e5:7d: 47:fc:4f:32:e9:d5:ea:98:15:69:b5:ca:b3:a8:af: 54:fe:f2:9b:48:2a:93:60:f6:d8:ec:f6:7a:c6:98: 31:46:0c:b9:5c:04:68:d3:55:16:87:83:4a:68:3e: c8:cc:b0:34:7d:29:46:91:b8:72:80:c1:35:04:f2: e7:61:f7:0d:0c:47:8d:0b:11:a2:83:87:36:b5:f6: f1:e6:28:b9:44:a6:65:02:36:fb:31:8e:4c:ba:01: 82:38:3c:fb:d7:26:7a:26:26:94:24:b5:17:1f:99: 5f:2c:b1:b2:f5:6b:b2:f4:c3:8c:d5:05:7d:1d:43: 08:a5:1e:a5:a4:ca:88:7c:ce:86:84:09:d1:2f:6e: 49:81:a9:bd:a3:3e:09:51:e2:04:05:31:91:5d:77: 26:7c:a4:cc:d2:0f:3e:d8:ca:c2:28:20:15:a7:26: 6d:7a:3f:ad:44:d1:5f:f6:cc:b5:0f:a5:f4:59:97: f3:a2:b2:2b:e4:78:49:2c:d7:1b:e6:1e:d6:9c:29: 54:f3:21:a6:37:3b:cd:23:38:28:fb:c7:0a:0b:fe: 61:6e:1b:3a:a3:07:ad:f1:0f:a2:32:13:11:99:0f: 0b:f2:62:ce:28:42:ad:24:d3:b1:f0:a0:8f:54:54: 29:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E7:2D:77:05:C4:F2:16:94:BF:CC:B5:67:DF:4B:88:D4:09:FF:00 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a313a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 9a:a2:29:1e:7f:b0:c0:c4:f2:f4:61:0f:7a:7e:8d:ad:58:f4: 6f:58:3a:ae:39:3a:06:4c:75:cc:46:13:49:71:1b:c4:86:c8: 30:3f:06:98:61:50:24:24:45:78:79:29:a3:80:fe:2d:9d:c3: 82:c7:fb:81:7b:69:79:71:68:0c:f3:a8:c1:a2:79:c2:5e:89: 2d:e2:7c:d0:52:2c:38:10:13:b3:26:e4:eb:07:6f:a5:90:be: d7:67:aa:04:d1:50:07:7d:d3:ad:e7:8c:73:0d:19:77:09:0b: 59:1a:e9:0a:fb:11:4c:df:b7:8e:81:15:28:e6:55:71:ef:c2: 94:6c:6b:88:2b:af:5c:fe:d0:b4:03:7a:12:66:5f:a5:76:25: e6:a2:ef:87:34:25:44:75:80:9c:f2:dd:9a:fa:50:ed:94:57: ab:41:22:aa:5a:3f:18:ea:71:17:d8:f2:26:d1:54:dc:32:8b: db:31:09:1c:d8:78:db:c5:ec:86:94:96:e5:a6:54:08:ff:77: d2:20:e3:c0:76:24:d8:ed:50:68:82:72:f9:f3:52:7d:52:07: 76:c2:14:76:a8:4f:6c:c6:c0:c3:2f:ae:c0:60:b0:5b:86:45: 3d:9d:04:02:5b:4d:c5:22:4e:f4:c2:24:11:3a:bc:41:a8:e0: 65:3a:e3:00 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUUfZks58UN40Dcf8GZd3yEOZaueYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzRaFw0yNzA0MDkwMzAwMzRaMDMxMTAvBgNV BAMTKDA3RTcyRDc3MDVDNEYyMTY5NEJGQ0NCNTY3REY0Qjg4RDQwOUZGMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Yzys3ZDqOXV4t3nlfUf8TzLp 1eqYFWm1yrOor1T+8ptIKpNg9tjs9nrGmDFGDLlcBGjTVRaHg0poPsjMsDR9KUaR uHKAwTUE8udh9w0MR40LEaKDhza19vHmKLlEpmUCNvsxjky6AYI4PPvXJnomJpQk tRcfmV8ssbL1a7L0w4zVBX0dQwilHqWkyoh8zoaECdEvbkmBqb2jPglR4gQFMZFd dyZ8pMzSDz7YysIoIBWnJm16P61E0V/2zLUPpfRZl/OisivkeEks1xvmHtacKVTz IaY3O80jOCj7xwoL/mFuGzqjB63xD6IyExGZDwvyYs4oQq0k07HwoI9UVCmfAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUB+ctdwXE8haUv8y1Z99LiNQJ/wAwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAAATANBgkqhkiG9w0BAQsFAAOCAQEAmqIpHn+wwMTy9GEP en6NrVj0b1g6rjk6Bkx1zEYTSXEbxIbIMD8GmGFQJCRFeHkpo4D+LZ3Dgsf7gXtp eXFoDPOowaJ5wl6JLeJ80FIsOBATsybk6wdvpZC+12eqBNFQB33TreeMcw0ZdwkL WRrpCvsRTN+3joEVKOZVce/ClGxriCuvXP7QtAN6EmZfpXYl5qLvhzQlRHWAnPLd mvpQ7ZRXq0Eiqlo/GOpxF9jyJtFU3DKL2zEJHNh428XshpSW5aZUCP930iDjwHYk 2O1QaIJy+fNSfVIHdsIUdqhPbMbAwy+uwGCwW4ZFPZ0EAltNxSJO9MIkETq8Qajg ZTrjAA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:14 2026 by rpki-client