$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a363a3a2f34382d3438203d3e20313531333131.roa File: 323430313a373163303a363a3a2f34382d3438203d3e20313531333131.roa (raw, json) Hash identifier: g0/GRCVaeuLWP6128XlO3VTtnyJvlnVd53TwiBTKlbQ= Subject key identifier: 3B:E2:2A:53:07:40:D3:6A:13:23:EB:CA:60:24:26:15:23:40:52:E2 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 32B8DC621E89DE8D3BC6FA59B0310975550017DC Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a363a3a2f34382d3438203d3e20313531333131.roa Signing time: Thu 04 Jun 2026 02:23:09 +0000 ROA not before: Thu 04 Jun 2026 02:18:09 +0000 ROA not after: Thu 03 Jun 2027 02:23:09 +0000 asID: 151311 IP address blocks: 2401:71c0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 02:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:b8:dc:62:1e:89:de:8d:3b:c6:fa:59:b0:31:09:75:55:00:17:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Jun 4 02:18:09 2026 GMT Not After : Jun 3 02:23:09 2027 GMT Subject: CN=3BE22A530740D36A1323EBCA60242615234052E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2c:fb:05:e3:5a:f9:05:14:9e:65:65:e6:ec: 5d:57:11:ac:76:3b:bd:a5:f6:04:58:4b:7f:08:df: e0:11:40:bb:5d:94:b7:94:95:14:21:c8:58:80:bf: ab:06:34:4c:28:0e:ca:a8:7f:16:c5:6a:24:d7:cb: 01:68:fd:7d:09:fa:cb:da:45:f9:75:36:06:e7:50: 57:2a:4b:7e:c0:35:51:04:48:e1:f9:31:7b:9e:94: 63:20:01:74:07:c0:57:b1:7c:da:20:1c:92:46:20: b2:9d:9e:f5:1f:74:d2:73:ca:52:99:a3:f5:3c:f7: a8:c1:63:98:b0:d5:bb:5e:fb:06:0f:6f:d6:bc:7a: 25:af:b6:cc:8f:3a:cb:0a:93:33:d2:18:c8:16:67: 2d:d7:b9:e1:03:d8:57:d5:94:a6:5a:b0:ad:90:99: 6d:85:9e:7f:6d:62:bd:22:c8:5c:68:43:e6:bb:41: 5a:55:cd:81:69:8a:25:6c:4e:4c:da:c9:1d:ec:77: 4c:3d:ef:40:7d:7d:d7:20:09:72:fc:67:aa:c9:21: 94:70:0d:df:67:ab:ee:2d:ea:e1:b1:68:b2:fd:fa: b1:bc:f3:b3:8e:d7:d2:7b:98:b9:3c:58:29:5e:c1: 99:6b:e7:c3:17:86:3f:0e:44:95:f6:81:6d:af:29: 68:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E2:2A:53:07:40:D3:6A:13:23:EB:CA:60:24:26:15:23:40:52:E2 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a363a3a2f34382d3438203d3e20313531333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:6::/48 Signature Algorithm: sha256WithRSAEncryption 23:61:78:7e:8d:46:2a:9a:9b:ca:dc:5a:9d:05:ab:26:26:8c: da:fd:3f:66:da:8c:04:59:9c:9b:15:c5:ec:c6:b0:8b:e8:22: 2a:d9:55:ac:6e:a4:37:3c:cf:bd:d9:f4:7e:23:b5:1c:db:0e: 84:16:3f:16:e8:f7:8a:04:55:06:60:d4:99:20:b5:0a:01:22: e3:17:02:8b:52:cb:4b:b4:12:0b:84:c9:18:19:95:34:0d:25: e7:11:f3:98:d9:12:b2:b8:46:5c:cb:e0:1b:76:2d:73:ae:ec: 7f:8b:3e:ab:ec:87:0e:5e:53:23:53:52:50:32:3c:f1:e5:22: 3a:dd:d7:b6:1f:80:1b:f2:85:48:0b:8a:c6:88:3d:ef:29:cc: 6a:f3:1c:4f:03:f2:61:31:7d:dd:1f:cf:f3:af:ff:8a:6e:e2: 34:99:a9:6f:f9:14:91:2d:26:97:e8:8f:b9:7d:fd:35:01:89: 6e:b6:69:a2:11:c9:ca:24:71:4d:cb:d5:15:0e:5e:c5:ba:f2: e0:5e:15:ce:a9:0f:9e:a7:0d:4f:b7:de:4f:cc:15:f5:08:ed: ba:b9:35:39:14:4a:45:cc:e1:bd:03:24:83:8a:61:99:2c:9f: 0e:5a:72:2c:0b:e7:19:86:62:50:4f:f0:f1:b9:34:4f:e8:9c: 90:a0:8c:b5 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUMrjcYh6J3o07xvpZsDEJdVUAF9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA2MDQwMjE4MDlaFw0yNzA2MDMwMjIzMDlaMDMxMTAvBgNV BAMTKDNCRTIyQTUzMDc0MEQzNkExMzIzRUJDQTYwMjQyNjE1MjM0MDUyRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdLPsF41r5BRSeZWXm7F1XEax2 O72l9gRYS38I3+ARQLtdlLeUlRQhyFiAv6sGNEwoDsqofxbFaiTXywFo/X0J+sva Rfl1NgbnUFcqS37ANVEESOH5MXuelGMgAXQHwFexfNogHJJGILKdnvUfdNJzylKZ o/U896jBY5iw1bte+wYPb9a8eiWvtsyPOssKkzPSGMgWZy3XueED2FfVlKZasK2Q mW2Fnn9tYr0iyFxoQ+a7QVpVzYFpiiVsTkzayR3sd0w970B9fdcgCXL8Z6rJIZRw Dd9nq+4t6uGxaLL9+rG887OO19J7mLk8WClewZlr58MXhj8ORJX2gW2vKWhbAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUO+IqUwdA02oTI+vKYCQmFSNAUuIwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3ODU4MTc5LzAvMzIzNDMwMzEz YTM3MzE2MzMwM2EzNjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTMzMzEz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBccAABjANBgkqhkiG9w0BAQsFAAOCAQEAI2F4fo1GKpqb ytxanQWrJiaM2v0/ZtqMBFmcmxXF7Mawi+giKtlVrG6kNzzPvdn0fiO1HNsOhBY/ Fuj3igRVBmDUmSC1CgEi4xcCi1LLS7QSC4TJGBmVNA0l5xHzmNkSsrhGXMvgG3Yt c67sf4s+q+yHDl5TI1NSUDI88eUiOt3Xth+AG/KFSAuKxog97ynMavMcTwPyYTF9 3R/P86//im7iNJmpb/kUkS0ml+iPuX39NQGJbrZpohHJyiRxTcvVFQ5exbry4F4V zqkPnqcNT7feT8wV9Qjturk1ORRKRczhvQMkg4phmSyfDlpyLAvnGYZiUE/w8bk0 T+ickKCMtQ== -----END CERTIFICATE-----Generated at Fri Jun 12 06:45:16 2026 by rpki-client