$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a323a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a323a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: xKPMd9vsX/lngPXvff/QfST94o2Wg7AO0xAt70to8n0= Subject key identifier: 3C:0D:DD:9A:58:3A:37:C8:37:0E:F9:6C:F6:80:26:54:6E:FF:1A:79 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 42CB28A77124AC5460A7527064A65C07225552BF Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a323a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:34 +0000 ROA not before: Fri 10 Apr 2026 02:55:34 +0000 ROA not after: Fri 09 Apr 2027 03:00:34 +0000 asID: 56040 IP address blocks: 2401:71c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:cb:28:a7:71:24:ac:54:60:a7:52:70:64:a6:5c:07:22:55:52:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:34 2026 GMT Not After : Apr 9 03:00:34 2027 GMT Subject: CN=3C0DDD9A583A37C8370EF96CF68026546EFF1A79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bf:81:14:38:b3:f6:c6:33:5d:22:81:d1:35: d4:de:06:99:f5:0f:ab:a5:e6:73:98:d4:3e:66:4b: 18:9e:cd:c8:60:c8:cf:92:65:fa:f6:6a:4a:13:09: 92:c4:48:fd:54:a6:50:2d:7d:d9:37:24:92:67:47: 81:b1:05:15:8b:11:0d:47:a2:11:b8:1c:65:32:48: fa:53:e4:15:53:8e:15:1d:a2:59:79:22:19:33:2c: 12:3c:12:b7:fa:71:79:de:d1:9d:cb:20:ee:27:86: 0e:b2:69:8c:b1:b6:b2:dd:cb:67:26:48:48:31:60: b8:2d:0c:88:74:08:bb:e0:1a:f8:fe:fc:0f:1b:25: 8c:f3:1f:f4:40:2d:fe:c8:71:08:07:a2:fe:8d:16: 73:e2:b4:1e:87:40:9a:cb:bc:a8:4b:e8:70:85:f4: 46:e0:cb:63:7a:a2:40:71:ad:50:5c:6b:68:1c:c5: d2:e5:38:90:36:da:d6:03:52:8e:8e:05:26:86:97: 73:30:79:22:ae:e5:5a:28:7d:e0:ec:5a:69:88:5b: 08:fd:27:88:cb:7f:94:90:35:58:bb:f8:d4:58:7f: ed:7e:da:8e:6c:0c:e2:38:4f:c6:62:b7:31:67:3e: 7a:49:87:86:6e:4b:2f:66:99:ab:de:41:18:f1:e7: 1e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:0D:DD:9A:58:3A:37:C8:37:0E:F9:6C:F6:80:26:54:6E:FF:1A:79 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a323a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:2::/48 Signature Algorithm: sha256WithRSAEncryption ca:a4:4f:e7:dd:32:ea:14:1f:8b:42:57:6c:5a:19:2d:3a:7c: 75:b5:64:53:6f:f3:a9:fe:d0:5e:51:80:a7:7f:cd:8c:c8:8b: 0b:61:13:79:b0:01:9b:58:e3:0f:53:4d:52:95:ed:b4:a2:6a: 73:5d:c5:6d:61:69:fe:ba:11:1c:f5:e0:e1:bf:d3:5d:77:dd: 50:87:31:55:e3:07:93:7d:40:60:55:a3:c6:7d:41:d3:76:bf: b4:8c:5a:30:d1:dc:f9:3f:d4:30:e0:15:f3:3b:c2:28:ff:0a: d7:41:59:66:b2:da:c0:94:73:47:37:bb:f4:39:91:7d:82:d2: 36:f4:20:ba:55:1e:d1:14:c0:51:e8:91:96:6b:2d:39:b6:d2: c7:71:55:df:93:bb:cf:6e:04:6c:2a:da:9f:ed:b3:f2:da:3e: b1:08:d0:5b:ed:76:e2:4b:62:03:49:fd:b1:68:17:f8:bf:9e: 2c:05:d5:11:c8:18:2f:59:f4:b3:5e:21:e3:d2:93:c8:f2:0b: 65:59:cb:a2:8a:2f:f2:ce:32:49:9e:04:04:76:ac:f2:b0:de: 0d:b7:05:b2:71:8c:f0:a8:c5:0b:b2:11:78:25:78:fb:b3:cd: 5e:a6:c9:f0:9e:47:8a:c4:e9:9f:4b:eb:5e:92:f9:4f:f1:4b: 9a:1b:05:47 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUQssop3EkrFRgp1JwZKZcByJVUr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzRaFw0yNzA0MDkwMzAwMzRaMDMxMTAvBgNV BAMTKDNDMERERDlBNTgzQTM3QzgzNzBFRjk2Q0Y2ODAyNjU0NkVGRjFBNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCov4EUOLP2xjNdIoHRNdTeBpn1 D6ul5nOY1D5mSxiezchgyM+SZfr2akoTCZLESP1UplAtfdk3JJJnR4GxBRWLEQ1H ohG4HGUySPpT5BVTjhUdoll5IhkzLBI8Erf6cXne0Z3LIO4nhg6yaYyxtrLdy2cm SEgxYLgtDIh0CLvgGvj+/A8bJYzzH/RALf7IcQgHov6NFnPitB6HQJrLvKhL6HCF 9Ebgy2N6okBxrVBca2gcxdLlOJA22tYDUo6OBSaGl3MweSKu5VoofeDsWmmIWwj9 J4jLf5SQNVi7+NRYf+1+2o5sDOI4T8ZitzFnPnpJh4ZuSy9mmaveQRjx5x7TAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUPA3dmlg6N8g3Dvls9oAmVG7/GnkwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAAAjANBgkqhkiG9w0BAQsFAAOCAQEAyqRP590y6hQfi0JX bFoZLTp8dbVkU2/zqf7QXlGAp3/NjMiLC2ETebABm1jjD1NNUpXttKJqc13FbWFp /roRHPXg4b/TXXfdUIcxVeMHk31AYFWjxn1B03a/tIxaMNHc+T/UMOAV8zvCKP8K 10FZZrLawJRzRze79DmRfYLSNvQgulUe0RTAUeiRlmstObbSx3FV35O7z24EbCra n+2z8to+sQjQW+124ktiA0n9sWgX+L+eLAXVEcgYL1n0s14h49KTyPILZVnLooov 8s4ySZ4EBHas8rDeDbcFsnGM8KjFC7IReCV4+7PNXqbJ8J5HisTpn0vrXpL5T/FL mhsFRw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:16 2026 by rpki-client