$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a353a3a2f34382d3438203d3e20313531333131.roa File: 323430313a373163303a353a3a2f34382d3438203d3e20313531333131.roa (raw, json) Hash identifier: kBAwhFi8LZm3HzY/AF+1EGdjKBm9XOL1Cyv/dhtxqaM= Subject key identifier: 78:C4:94:A0:FD:7B:B6:5E:91:D3:74:2A:27:D5:44:75:E4:A6:34:CF Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 7D99AB8D2E202746E4CE94E7D361C87FC9C2FE0B Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a353a3a2f34382d3438203d3e20313531333131.roa Signing time: Thu 04 Jun 2026 02:23:00 +0000 ROA not before: Thu 04 Jun 2026 02:18:00 +0000 ROA not after: Thu 03 Jun 2027 02:23:00 +0000 asID: 151311 IP address blocks: 2401:71c0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 02:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:99:ab:8d:2e:20:27:46:e4:ce:94:e7:d3:61:c8:7f:c9:c2:fe:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Jun 4 02:18:00 2026 GMT Not After : Jun 3 02:23:00 2027 GMT Subject: CN=78C494A0FD7BB65E91D3742A27D54475E4A634CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:ba:e7:d6:da:95:8d:d4:fb:d6:1d:3a:08: ab:bb:03:2d:c1:87:08:db:75:2e:1f:5c:34:c0:d4: ca:ec:15:a9:ad:43:6d:7b:f1:94:47:94:ce:31:6c: 1b:38:cf:39:6c:4c:ce:27:77:d3:0c:c1:e5:15:3c: 00:7f:0c:f7:d6:d1:1e:de:60:82:73:ac:3f:aa:73: 5e:80:ec:b3:74:5e:c5:55:4e:5a:34:2b:88:39:cf: 7e:ac:27:32:ee:a6:51:4d:70:61:04:33:30:d8:8b: ae:4c:97:ac:8a:f7:55:6d:a2:31:3b:fb:90:e8:62: 39:bd:d1:eb:34:23:9e:22:30:83:dc:77:98:31:1b: 34:32:e5:90:a2:b6:07:c2:5f:af:1c:a8:46:f4:5f: e7:94:1c:ea:f4:55:b1:0a:23:8e:4b:b8:4f:98:80: 62:84:f6:7a:2b:2c:21:04:8b:e9:79:4c:97:31:5d: ed:8d:09:55:93:77:06:6c:27:90:1e:f6:40:86:a5: 4f:ef:d3:de:8b:e0:c4:0c:91:74:d1:75:1e:60:16: 16:e0:d7:d4:ce:96:d7:25:3f:8d:2c:27:24:9e:ed: 66:5c:92:43:03:f9:d8:ee:fc:16:fd:7e:1e:9d:57: da:21:88:4b:68:94:d5:4a:28:b6:86:22:d3:c3:a9: cc:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C4:94:A0:FD:7B:B6:5E:91:D3:74:2A:27:D5:44:75:E4:A6:34:CF X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a353a3a2f34382d3438203d3e20313531333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:5::/48 Signature Algorithm: sha256WithRSAEncryption 13:eb:16:c0:21:3d:d3:97:da:05:49:90:48:8c:c4:97:7a:1f: 5a:1f:5e:75:37:0b:f6:76:39:86:d0:99:87:0d:4c:e8:a5:25: 1b:6f:3a:59:21:cc:de:60:51:bb:7f:c1:89:24:42:1f:45:45: d4:09:0e:52:f6:2c:30:81:5d:05:a9:d3:fc:3c:55:95:4e:45: 42:78:62:61:d1:8b:27:69:25:d9:14:06:82:ae:a1:e9:98:ec: 02:53:24:76:cb:71:c9:2c:ff:34:21:58:28:ff:b5:ae:83:98: 0a:47:30:10:15:c3:28:e7:c4:99:b9:87:13:67:ab:4a:a6:8e: 75:b9:f0:98:ef:25:97:33:6b:e6:c5:9a:87:a4:e7:f4:13:d4: 9d:da:79:b7:a3:de:d6:5a:ba:c0:62:69:3c:37:47:da:f5:a2: 9f:58:5c:6c:2d:a4:f7:20:ec:a2:a1:13:c6:3f:04:cd:37:e9: 18:5f:4a:b6:e4:13:d7:c4:4b:6f:de:7b:02:2b:1b:67:ac:5d: 1e:79:60:93:fe:10:3f:de:c0:ad:b0:73:0c:a0:36:96:db:25: 3b:2d:af:dc:8e:5d:52:28:fb:e9:8c:04:db:0e:3b:27:53:48: a2:24:f3:d4:2d:bf:87:f3:9d:f0:84:68:43:2b:13:d2:67:4a: bd:fe:32:d2 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUfZmrjS4gJ0bkzpTn02HIf8nC/gswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA2MDQwMjE4MDBaFw0yNzA2MDMwMjIzMDBaMDMxMTAvBgNV BAMTKDc4QzQ5NEEwRkQ3QkI2NUU5MUQzNzQyQTI3RDU0NDc1RTRBNjM0Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9XLrn1tqVjdT71h06CKu7Ay3B hwjbdS4fXDTA1MrsFamtQ2178ZRHlM4xbBs4zzlsTM4nd9MMweUVPAB/DPfW0R7e YIJzrD+qc16A7LN0XsVVTlo0K4g5z36sJzLuplFNcGEEMzDYi65Ml6yK91VtojE7 +5DoYjm90es0I54iMIPcd5gxGzQy5ZCitgfCX68cqEb0X+eUHOr0VbEKI45LuE+Y gGKE9norLCEEi+l5TJcxXe2NCVWTdwZsJ5Ae9kCGpU/v096L4MQMkXTRdR5gFhbg 19TOltclP40sJySe7WZckkMD+dju/Bb9fh6dV9ohiEtolNVKKLaGItPDqcxFAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUeMSUoP17tl6R03QqJ9VEdeSmNM8wHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3ODU4MTc5LzAvMzIzNDMwMzEz YTM3MzE2MzMwM2EzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTMzMzEz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBccAABTANBgkqhkiG9w0BAQsFAAOCAQEAE+sWwCE905fa BUmQSIzEl3ofWh9edTcL9nY5htCZhw1M6KUlG286WSHM3mBRu3/BiSRCH0VF1AkO UvYsMIFdBanT/DxVlU5FQnhiYdGLJ2kl2RQGgq6h6ZjsAlMkdstxySz/NCFYKP+1 roOYCkcwEBXDKOfEmbmHE2erSqaOdbnwmO8llzNr5sWah6Tn9BPUndp5t6Pe1lq6 wGJpPDdH2vWin1hcbC2k9yDsoqETxj8EzTfpGF9KtuQT18RLb957AisbZ6xdHnlg k/4QP97ArbBzDKA2ltslOy2v3I5dUij76YwE2w47J1NIoiTz1C2/h/Od8IRoQysT 0mdKvf4y0g== -----END CERTIFICATE-----Generated at Fri Jun 12 06:45:15 2026 by rpki-client