$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a373a3a2f34382d3438203d3e20313531333131.roa File: 323430313a373163303a373a3a2f34382d3438203d3e20313531333131.roa (raw, json) Hash identifier: GaI6/pM/coI+ZC4Jm1oa6W57eYAoLDMWeQRNT8NU6Xo= Subject key identifier: 4B:E3:66:51:4C:0F:53:8D:4A:E6:46:B8:C8:7A:4D:C5:2D:84:15:97 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 3C6DF5083A39FC0F574BCE22871F7DEC21B91132 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a373a3a2f34382d3438203d3e20313531333131.roa Signing time: Thu 04 Jun 2026 02:23:17 +0000 ROA not before: Thu 04 Jun 2026 02:18:17 +0000 ROA not after: Thu 03 Jun 2027 02:23:17 +0000 asID: 151311 IP address blocks: 2401:71c0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 02:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:6d:f5:08:3a:39:fc:0f:57:4b:ce:22:87:1f:7d:ec:21:b9:11:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Jun 4 02:18:17 2026 GMT Not After : Jun 3 02:23:17 2027 GMT Subject: CN=4BE366514C0F538D4AE646B8C87A4DC52D841597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e3:cd:38:9f:b4:48:54:53:5d:a0:da:f2:eb: fe:3e:92:74:3c:1f:74:ef:fa:b4:74:80:4a:a6:49: 1f:9e:3a:e9:68:ff:a0:97:42:1b:b0:1d:6f:3e:33: 01:56:13:e6:c7:9a:28:e7:82:93:80:0c:a6:e8:ca: 70:c1:74:b5:d5:b8:03:ff:63:8e:57:a0:a4:39:36: 80:6d:8f:0c:7f:4a:21:96:82:c9:02:75:e8:c0:b9: 65:0e:2a:53:a6:fd:ca:77:0c:66:77:83:ee:49:ee: 3d:b4:28:ed:12:70:e3:51:46:45:85:ea:6f:19:bd: bc:31:2a:14:85:bc:9b:cd:cd:14:12:64:cb:21:58: 8d:73:86:bb:31:6c:6b:b6:53:82:06:af:1e:cd:01: 95:5c:96:42:2a:50:a1:83:3c:ef:8b:76:00:62:87: 6b:aa:01:c0:8d:1a:66:23:23:76:ae:22:b7:b7:48: 35:34:bc:1b:60:fd:9d:bb:6b:ab:c9:ca:8a:0b:cb: 25:58:cc:a8:ec:a7:d9:76:64:45:5a:87:a7:77:8d: b3:e0:33:11:bb:10:2c:7d:df:e8:a7:6f:eb:f5:10: fc:90:8f:0e:43:8f:3c:a2:cd:5f:60:b9:c9:6f:84: ec:2c:bf:fb:f9:75:b7:bd:0a:c1:b2:01:86:f9:30: 0f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:E3:66:51:4C:0F:53:8D:4A:E6:46:B8:C8:7A:4D:C5:2D:84:15:97 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a373a3a2f34382d3438203d3e20313531333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:7::/48 Signature Algorithm: sha256WithRSAEncryption 01:db:88:1c:0b:40:8c:62:b4:56:1c:3d:5f:bf:d5:37:3c:28: 8a:24:3d:8c:f5:45:f9:23:a5:99:47:7f:59:0b:aa:3e:9b:ec: 4a:9a:a1:8a:9a:f5:36:7d:7a:3a:53:27:3e:30:d9:8e:16:65: a6:fd:81:94:3e:90:ab:44:63:d0:79:e5:ec:2c:f8:8a:0b:fb: 27:42:a8:8c:27:b9:09:5e:3d:4e:ab:64:70:fc:66:b1:54:7d: 41:87:f4:59:63:1f:54:b0:46:7f:79:b5:27:60:5e:28:52:27: 21:38:12:d2:e9:6a:d1:f8:1e:bf:9e:31:8e:a0:b7:1c:f0:51: 9e:9e:93:1e:d8:fe:af:ac:1f:f2:01:26:00:ac:8a:97:ed:2a: 27:d1:af:9d:6f:39:90:57:7b:4a:8c:df:07:4c:a1:84:b9:ba: c4:02:af:03:63:7a:ee:86:36:fe:67:71:1f:de:8f:42:b7:18: 52:5c:bd:82:a5:3d:f8:76:44:ea:d2:70:a5:ce:90:02:3d:bd: 8a:a1:04:81:46:d7:bb:77:ff:e4:8a:fd:9c:6d:3a:fd:ee:32: 6f:6a:70:c6:6a:94:67:cd:9b:67:fa:d0:56:56:73:14:f0:39: b4:e2:dc:1f:14:66:2c:b0:4f:94:a7:0e:4d:a7:a8:5b:a7:1a: 50:32:15:ae -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUPG31CDo5/A9XS84ihx997CG5ETIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA2MDQwMjE4MTdaFw0yNzA2MDMwMjIzMTdaMDMxMTAvBgNV BAMTKDRCRTM2NjUxNEMwRjUzOEQ0QUU2NDZCOEM4N0E0REM1MkQ4NDE1OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm4804n7RIVFNdoNry6/4+knQ8 H3Tv+rR0gEqmSR+eOulo/6CXQhuwHW8+MwFWE+bHmijngpOADKboynDBdLXVuAP/ Y45XoKQ5NoBtjwx/SiGWgskCdejAuWUOKlOm/cp3DGZ3g+5J7j20KO0ScONRRkWF 6m8ZvbwxKhSFvJvNzRQSZMshWI1zhrsxbGu2U4IGrx7NAZVclkIqUKGDPO+LdgBi h2uqAcCNGmYjI3auIre3SDU0vBtg/Z27a6vJyooLyyVYzKjsp9l2ZEVah6d3jbPg MxG7ECx93+inb+v1EPyQjw5DjzyizV9guclvhOwsv/v5dbe9CsGyAYb5MA+3AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUS+NmUUwPU41K5ka4yHpNxS2EFZcwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3ODU4MTc5LzAvMzIzNDMwMzEz YTM3MzE2MzMwM2EzNzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTMzMzEz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBccAABzANBgkqhkiG9w0BAQsFAAOCAQEAAduIHAtAjGK0 Vhw9X7/VNzwoiiQ9jPVF+SOlmUd/WQuqPpvsSpqhipr1Nn16OlMnPjDZjhZlpv2B lD6Qq0Rj0Hnl7Cz4igv7J0KojCe5CV49TqtkcPxmsVR9QYf0WWMfVLBGf3m1J2Be KFInITgS0ulq0fgev54xjqC3HPBRnp6THtj+r6wf8gEmAKyKl+0qJ9GvnW85kFd7 SozfB0yhhLm6xAKvA2N67oY2/mdxH96PQrcYUly9gqU9+HZE6tJwpc6QAj29iqEE gUbXu3f/5Ir9nG06/e4yb2pwxmqUZ82bZ/rQVlZzFPA5tOLcHxRmLLBPlKcOTaeo W6caUDIVrg== -----END CERTIFICATE-----Generated at Fri Jun 12 06:45:15 2026 by rpki-client