$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a383a3a2f34382d3438203d3e20313531333131.roa File: 323430313a373163303a383a3a2f34382d3438203d3e20313531333131.roa (raw, json) Hash identifier: KNdN02spXbMIZXQnuqvN6fyhZE/l/xOP3IvFwtZTNVM= Subject key identifier: 2C:9B:2A:EF:BE:DB:6A:E9:48:60:7A:F4:EF:27:0D:A3:48:F9:1F:6F Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 0DAA44AF8F98B5DD1387154C369E88F76F7E620E Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a383a3a2f34382d3438203d3e20313531333131.roa Signing time: Thu 04 Jun 2026 02:23:26 +0000 ROA not before: Thu 04 Jun 2026 02:18:26 +0000 ROA not after: Thu 03 Jun 2027 02:23:26 +0000 asID: 151311 IP address blocks: 2401:71c0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 02:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:aa:44:af:8f:98:b5:dd:13:87:15:4c:36:9e:88:f7:6f:7e:62:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Jun 4 02:18:26 2026 GMT Not After : Jun 3 02:23:26 2027 GMT Subject: CN=2C9B2AEFBEDB6AE948607AF4EF270DA348F91F6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fb:7c:f2:07:d5:7a:15:47:ca:33:e4:c6:ea: 71:d9:9a:38:58:81:90:19:8e:af:a6:9e:83:d3:9e: 90:c9:5c:93:3a:6d:f8:24:14:7a:ea:37:99:f2:21: dc:83:d9:ee:50:0a:32:ef:62:e1:26:cf:2a:4f:ef: 18:74:8d:da:bc:25:27:1e:b1:b2:92:dc:98:7f:68: 28:3c:82:a7:40:ec:aa:13:3e:6b:3c:07:4f:c2:59: 56:ae:a3:05:32:9e:ae:90:28:92:f7:01:e3:aa:d9: f2:43:9d:eb:c9:cd:25:04:25:eb:81:50:9e:72:34: ed:c7:22:82:28:c9:b3:cd:57:fb:77:5f:3a:4c:14: c8:13:ad:7b:7e:93:9b:d7:64:07:31:91:38:9a:4e: 1c:17:c2:c5:cc:8f:e4:47:49:07:6f:a7:b5:bf:73: 3d:6b:8c:68:8b:8e:e3:0f:ec:f1:fe:59:0e:c2:0e: 47:70:2f:02:5c:46:04:69:39:2f:d4:07:4e:13:5d: 83:56:a3:28:aa:c1:00:d6:75:b0:0c:77:68:dc:f2: f5:27:e9:95:1c:c5:46:5d:4d:31:06:a2:b5:5f:b5: 62:f6:ef:e0:fb:29:22:b3:42:58:7b:19:6c:b3:1f: 1b:10:47:d1:4e:bb:97:6f:8f:89:be:1e:4f:8c:7d: 98:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9B:2A:EF:BE:DB:6A:E9:48:60:7A:F4:EF:27:0D:A3:48:F9:1F:6F X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a383a3a2f34382d3438203d3e20313531333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:8::/48 Signature Algorithm: sha256WithRSAEncryption 89:bf:78:39:f1:31:f8:31:76:64:1b:b0:4f:c3:d4:d4:5a:3b: f3:07:7c:f3:75:42:cc:8d:d2:0d:33:3c:a8:98:0f:b4:34:b8: 3e:b9:56:c0:9c:5d:d9:92:38:e2:27:f7:93:93:d0:a0:4b:65: 61:27:32:77:89:65:50:ff:a0:37:fc:ef:c5:06:01:8b:e1:1f: ed:e3:11:30:8c:20:66:ba:a9:6c:da:0d:48:77:9f:93:a3:11: c2:ad:74:62:03:8c:39:ad:2a:96:58:23:cc:a2:69:e1:7b:d9: 0b:21:a6:7f:ea:0e:fc:c8:a8:f5:d7:15:c7:3d:a4:43:ce:64: 86:79:0c:01:fe:78:6d:8a:1c:a7:a9:9e:6a:05:5f:e8:ca:bb: 5c:d9:18:14:30:a7:f9:a7:3e:72:e4:2d:4f:4b:0e:60:31:10: 10:d3:da:15:03:7c:0e:fe:3b:29:ca:20:29:35:ff:48:da:de: 17:46:54:1c:52:46:11:99:6c:27:58:ce:bf:fc:65:1b:dc:57: 3a:25:0e:f3:7e:eb:b8:5b:e6:7d:a2:8c:6d:c8:7a:b7:fa:bc: 1d:e5:85:fb:8f:df:26:97:93:32:cb:d4:c3:95:da:2a:df:27: 98:ec:79:e2:a7:18:57:ca:ba:97:82:ba:af:eb:26:b7:c7:d2: 4b:58:5d:80 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUDapEr4+Ytd0ThxVMNp6I929+Yg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA2MDQwMjE4MjZaFw0yNzA2MDMwMjIzMjZaMDMxMTAvBgNV BAMTKDJDOUIyQUVGQkVEQjZBRTk0ODYwN0FGNEVGMjcwREEzNDhGOTFGNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA+3zyB9V6FUfKM+TG6nHZmjhY gZAZjq+mnoPTnpDJXJM6bfgkFHrqN5nyIdyD2e5QCjLvYuEmzypP7xh0jdq8JSce sbKS3Jh/aCg8gqdA7KoTPms8B0/CWVauowUynq6QKJL3AeOq2fJDnevJzSUEJeuB UJ5yNO3HIoIoybPNV/t3XzpMFMgTrXt+k5vXZAcxkTiaThwXwsXMj+RHSQdvp7W/ cz1rjGiLjuMP7PH+WQ7CDkdwLwJcRgRpOS/UB04TXYNWoyiqwQDWdbAMd2jc8vUn 6ZUcxUZdTTEGorVftWL27+D7KSKzQlh7GWyzHxsQR9FOu5dvj4m+Hk+MfZgNAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQULJsq777baulIYHr07ycNo0j5H28wHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3ODU4MTc5LzAvMzIzNDMwMzEz YTM3MzE2MzMwM2EzODNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTMzMzEz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBccAACDANBgkqhkiG9w0BAQsFAAOCAQEAib94OfEx+DF2 ZBuwT8PU1Fo78wd883VCzI3SDTM8qJgPtDS4PrlWwJxd2ZI44if3k5PQoEtlYScy d4llUP+gN/zvxQYBi+Ef7eMRMIwgZrqpbNoNSHefk6MRwq10YgOMOa0qllgjzKJp 4XvZCyGmf+oO/Mio9dcVxz2kQ85khnkMAf54bYocp6meagVf6Mq7XNkYFDCn+ac+ cuQtT0sOYDEQENPaFQN8Dv47KcogKTX/SNreF0ZUHFJGEZlsJ1jOv/xlG9xXOiUO 837ruFvmfaKMbch6t/q8HeWF+4/fJpeTMsvUw5XaKt8nmOx54qcYV8q6l4K6r+sm t8fSS1hdgA== -----END CERTIFICATE-----Generated at Fri Jun 12 06:45:15 2026 by rpki-client