$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a343a3a2f34382d3438203d3e20313531333131.roa File: 323430313a373163303a343a3a2f34382d3438203d3e20313531333131.roa (raw, json) Hash identifier: n18I+PsRscq4huPw6V1J8Ua6y/zIaT/stTq91vzbZE4= Subject key identifier: E0:C1:BD:D4:1F:74:48:EF:72:79:F5:99:38:EE:BC:71:61:47:C4:5C Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 2DD3C72A97273DCF3C147DB3A2A9265DCB4CB1EC Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a343a3a2f34382d3438203d3e20313531333131.roa Signing time: Thu 04 Jun 2026 02:22:51 +0000 ROA not before: Thu 04 Jun 2026 02:17:51 +0000 ROA not after: Thu 03 Jun 2027 02:22:51 +0000 asID: 151311 IP address blocks: 2401:71c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 02:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d3:c7:2a:97:27:3d:cf:3c:14:7d:b3:a2:a9:26:5d:cb:4c:b1:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Jun 4 02:17:51 2026 GMT Not After : Jun 3 02:22:51 2027 GMT Subject: CN=E0C1BDD41F7448EF7279F59938EEBC716147C45C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4d:dc:03:2d:49:c7:76:ef:1b:73:51:59:48: ae:61:44:e4:dc:d4:91:0f:47:9c:e1:aa:2b:f3:51: c8:90:e8:7a:6d:28:09:5b:57:43:a0:2c:d5:33:57: aa:32:ba:62:26:6f:24:03:a7:43:14:a2:89:4d:55: 42:57:12:34:f4:d5:f1:11:7e:8b:f2:39:77:2d:67: c1:75:29:8d:b3:ca:aa:cd:eb:cb:14:51:20:54:7f: fd:08:ab:62:7f:07:6d:17:a6:66:d7:a1:6d:47:bc: 54:7a:13:a6:ac:71:5c:83:4b:64:12:67:30:92:99: ae:54:ee:76:90:af:8c:b4:e1:8f:47:e0:8d:b1:81: e4:7f:27:03:ac:93:dd:47:df:44:4a:70:d3:d3:5d: 0b:06:51:f5:01:6a:a8:a4:d2:ef:e3:9a:1b:9b:c3: a1:c1:15:09:fb:e7:51:7f:fa:ad:b1:cb:2b:51:d9: 15:5f:29:c3:43:02:ad:61:fa:1c:c1:04:4c:b8:84: 76:ce:29:bb:01:76:dd:25:35:39:83:6b:a4:93:5f: 18:41:4a:37:97:ad:75:a9:e6:6f:d1:52:31:37:fb: 85:7e:34:75:af:bc:5a:96:2e:d1:67:fb:1c:a3:64: 7d:a3:2b:9b:e6:9f:77:de:ec:cc:c6:c3:31:3b:b4: e8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C1:BD:D4:1F:74:48:EF:72:79:F5:99:38:EE:BC:71:61:47:C4:5C X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a343a3a2f34382d3438203d3e20313531333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:4::/48 Signature Algorithm: sha256WithRSAEncryption 61:2d:da:2f:26:63:bf:9b:52:eb:2d:48:77:9c:2d:fa:7d:72: 5d:4f:33:7a:c5:52:3c:65:cb:d0:ae:cd:a4:01:9b:44:02:0c: e1:75:bd:1f:5d:7d:37:42:7f:19:62:8c:52:1b:63:a6:d5:da: 8a:a1:1f:d5:f7:f1:82:c6:30:0f:d9:09:dc:d6:6e:41:1d:69: cd:32:d8:d2:35:d8:08:54:e1:48:39:c5:d2:65:03:ac:dc:76: 01:ba:df:51:fd:5f:d9:cc:04:71:7c:4d:4e:82:28:80:eb:dc: e0:15:e4:e6:68:9a:13:5c:f5:17:09:20:f6:a6:55:8a:99:eb: 2c:55:58:0c:96:4d:8f:c3:66:c1:57:d7:5a:01:d4:28:c7:31: 51:d2:73:f2:f4:50:6c:98:05:dc:86:39:4a:2e:af:bd:d7:78: e7:9e:d0:19:19:f7:84:22:cf:72:86:99:c7:40:4c:2b:aa:0f: 02:96:15:a9:34:61:07:22:5a:d7:40:c5:95:27:9e:94:50:34: 4b:71:ff:3b:a3:01:62:e0:2f:47:07:1b:cc:d4:52:b2:72:15: fe:c8:b8:2d:23:6f:2f:43:c4:50:45:4c:ea:72:8d:e8:b9:1e: 14:30:78:73:c6:19:39:c7:5f:f9:ff:4e:64:2e:43:3e:f6:40: 7a:6a:b0:d3 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIULdPHKpcnPc88FH2zoqkmXctMsewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA2MDQwMjE3NTFaFw0yNzA2MDMwMjIyNTFaMDMxMTAvBgNV BAMTKEUwQzFCREQ0MUY3NDQ4RUY3Mjc5RjU5OTM4RUVCQzcxNjE0N0M0NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2TdwDLUnHdu8bc1FZSK5hROTc 1JEPR5zhqivzUciQ6HptKAlbV0OgLNUzV6oyumImbyQDp0MUoolNVUJXEjT01fER fovyOXctZ8F1KY2zyqrN68sUUSBUf/0Iq2J/B20XpmbXoW1HvFR6E6ascVyDS2QS ZzCSma5U7naQr4y04Y9H4I2xgeR/JwOsk91H30RKcNPTXQsGUfUBaqik0u/jmhub w6HBFQn751F/+q2xyytR2RVfKcNDAq1h+hzBBEy4hHbOKbsBdt0lNTmDa6STXxhB SjeXrXWp5m/RUjE3+4V+NHWvvFqWLtFn+xyjZH2jK5vmn3fe7MzGwzE7tOgHAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU4MG91B90SO9yefWZOO68cWFHxFwwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3ODU4MTc5LzAvMzIzNDMwMzEz YTM3MzE2MzMwM2EzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTMzMzEz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBccAABDANBgkqhkiG9w0BAQsFAAOCAQEAYS3aLyZjv5tS 6y1Id5wt+n1yXU8zesVSPGXL0K7NpAGbRAIM4XW9H119N0J/GWKMUhtjptXaiqEf 1ffxgsYwD9kJ3NZuQR1pzTLY0jXYCFThSDnF0mUDrNx2AbrfUf1f2cwEcXxNToIo gOvc4BXk5miaE1z1Fwkg9qZVipnrLFVYDJZNj8NmwVfXWgHUKMcxUdJz8vRQbJgF 3IY5Si6vvdd4557QGRn3hCLPcoaZx0BMK6oPApYVqTRhByJa10DFlSeelFA0S3H/ O6MBYuAvRwcbzNRSsnIV/si4LSNvL0PEUEVM6nKN6LkeFDB4c8YZOcdf+f9OZC5D PvZAemqw0w== -----END CERTIFICATE-----Generated at Fri Jun 12 06:45:16 2026 by rpki-client