$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a373a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a373a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: pFG2KRWIRL52dYY3jCoq3RVFJ1BGL3wMe9XU4PmUVsY= Subject key identifier: 8D:0B:55:2E:B7:0D:6C:FB:11:F9:0C:D4:89:92:CD:E3:E5:C1:B2:B4 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 1410D1DE9D3C9EF2B3C8C41425C1B5192F252210 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a373a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:33 +0000 ROA not before: Fri 10 Apr 2026 02:55:33 +0000 ROA not after: Fri 09 Apr 2027 03:00:33 +0000 asID: 56040 IP address blocks: 2401:71c0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:10:d1:de:9d:3c:9e:f2:b3:c8:c4:14:25:c1:b5:19:2f:25:22:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:33 2026 GMT Not After : Apr 9 03:00:33 2027 GMT Subject: CN=8D0B552EB70D6CFB11F90CD48992CDE3E5C1B2B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:df:24:91:9e:03:03:2a:da:3a:88:d6:9e:b9: 3b:d1:6f:29:0f:56:17:67:02:ba:8c:e1:ad:92:d7: d2:9e:e0:75:27:68:c7:91:25:4d:32:15:09:03:4a: 3d:2e:ed:f1:e3:ea:f3:1a:80:dc:3c:ff:3b:9b:47: 2a:91:d8:8c:cd:d4:bb:49:32:2f:70:9d:49:82:a7: 92:df:85:30:03:8c:34:86:7c:c3:bb:71:d1:96:e9: ef:30:01:91:03:fb:5c:26:4c:a3:57:3b:6d:0b:21: e1:e1:d2:98:66:55:41:c8:a2:54:21:25:8d:f0:d0: fb:08:6d:73:b3:2c:ec:86:82:1b:00:c6:5f:f5:da: 5e:3f:f4:d2:ea:7b:d1:1b:6f:93:eb:87:86:ae:b6: c3:cb:a5:af:7d:9b:4d:28:96:8e:0e:45:39:8b:c7: b8:01:d9:52:30:61:e2:04:43:16:a9:08:b0:22:12: 37:8d:39:4d:9d:57:a9:57:73:af:d6:e4:f4:6b:ad: e4:3b:c8:14:f2:64:b6:af:fb:80:d4:73:d8:c4:24: cc:93:f9:7b:a1:50:3b:fb:0f:88:8d:22:5c:83:70: 72:7b:27:8a:1b:03:92:0f:96:66:74:00:f2:ab:28: 55:97:ea:38:b5:1d:8f:82:53:b6:c4:fe:24:4f:0e: 9d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0B:55:2E:B7:0D:6C:FB:11:F9:0C:D4:89:92:CD:E3:E5:C1:B2:B4 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a373a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:7::/48 Signature Algorithm: sha256WithRSAEncryption 56:a1:d9:64:fe:ce:54:19:29:f0:37:66:2c:fd:ee:9e:2c:4e: 45:e3:f4:9d:b2:17:8e:fc:7a:c2:30:53:d9:d0:6b:4d:e5:3f: a2:0b:ab:a5:92:6d:a5:bf:46:02:e9:ef:94:dc:66:23:2a:a8: ff:a9:e9:a2:7b:fd:eb:fd:99:65:e2:0e:8d:e1:74:0d:d5:2e: af:1f:5b:22:74:75:0f:c0:58:1d:69:31:5c:4b:ab:2e:95:81: 64:d9:e3:a5:02:d2:f2:43:2a:4f:2e:91:76:1f:1c:85:6a:19: 64:10:a1:c6:9b:d4:c5:53:72:d1:35:b5:ee:52:8f:3c:90:52: 3f:63:9e:76:ad:c0:61:1f:81:4a:1c:42:08:b1:e3:71:8f:47: 41:11:43:fd:a3:74:55:65:d0:a7:8d:67:df:e2:17:45:3f:5b: f4:00:ba:dd:8a:ca:6a:39:fc:2c:cc:b5:55:10:99:df:2e:48: 21:57:67:3b:8f:44:1a:06:08:03:17:a0:5b:9f:2c:f8:79:bc: 1f:7a:a2:cd:bb:2b:53:22:3b:85:9a:8f:a4:97:51:a5:8d:2a: 1e:94:5b:5e:c8:a9:3e:6f:ae:e9:0c:eb:ff:23:05:68:3c:79: 7d:ce:ed:ae:72:c5:ba:95:82:6e:c1:78:9e:66:bf:6f:cc:21: 52:5c:1a:fb -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUFBDR3p08nvKzyMQUJcG1GS8lIhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzNaFw0yNzA0MDkwMzAwMzNaMDMxMTAvBgNV BAMTKDhEMEI1NTJFQjcwRDZDRkIxMUY5MENENDg5OTJDREUzRTVDMUIyQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY3ySRngMDKto6iNaeuTvRbykP VhdnArqM4a2S19Ke4HUnaMeRJU0yFQkDSj0u7fHj6vMagNw8/zubRyqR2IzN1LtJ Mi9wnUmCp5LfhTADjDSGfMO7cdGW6e8wAZED+1wmTKNXO20LIeHh0phmVUHIolQh JY3w0PsIbXOzLOyGghsAxl/12l4/9NLqe9Ebb5Prh4autsPLpa99m00olo4ORTmL x7gB2VIwYeIEQxapCLAiEjeNOU2dV6lXc6/W5PRrreQ7yBTyZLav+4DUc9jEJMyT +XuhUDv7D4iNIlyDcHJ7J4obA5IPlmZ0APKrKFWX6ji1HY+CU7bE/iRPDp2JAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUjQtVLrcNbPsR+QzUiZLN4+XBsrQwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTM3M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAABzANBgkqhkiG9w0BAQsFAAOCAQEAVqHZZP7OVBkp8Ddm LP3unixOReP0nbIXjvx6wjBT2dBrTeU/ogurpZJtpb9GAunvlNxmIyqo/6nponv9 6/2ZZeIOjeF0DdUurx9bInR1D8BYHWkxXEurLpWBZNnjpQLS8kMqTy6Rdh8chWoZ ZBChxpvUxVNy0TW17lKPPJBSP2Oedq3AYR+BShxCCLHjcY9HQRFD/aN0VWXQp41n 3+IXRT9b9AC63YrKajn8LMy1VRCZ3y5IIVdnO49EGgYIAxegW58s+Hm8H3qizbsr UyI7hZqPpJdRpY0qHpRbXsipPm+u6Qzr/yMFaDx5fc7trnLFupWCbsF4nma/b8wh Ulwa+w== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:10 2026 by rpki-client