$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a383a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a383a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: J0xigY65ck9pjSejCDnpLgmDLrC/wOQKNFSvKbDpEiM= Subject key identifier: C4:08:F2:AC:8B:9B:67:C9:75:76:71:D9:2A:B3:95:1F:CD:95:1E:96 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 64015645FE34C1CC94BE11073D53016163CDDA02 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a383a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:34 +0000 ROA not before: Fri 10 Apr 2026 02:55:34 +0000 ROA not after: Fri 09 Apr 2027 03:00:34 +0000 asID: 56040 IP address blocks: 2401:71c0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 21:30:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:01:56:45:fe:34:c1:cc:94:be:11:07:3d:53:01:61:63:cd:da:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:34 2026 GMT Not After : Apr 9 03:00:34 2027 GMT Subject: CN=C408F2AC8B9B67C9757671D92AB3951FCD951E96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:d1:17:1f:1c:d4:55:7d:cb:34:da:53:e4:10: a8:64:15:95:95:92:bd:0a:9f:49:e8:04:b1:69:31: 22:a6:15:1c:f2:fa:24:46:17:02:6f:03:7d:1f:96: 6d:57:72:89:74:24:fc:28:3f:f0:56:88:32:d5:42: 19:62:c1:3a:88:5f:3c:ff:41:0f:c6:b5:0f:d3:69: 04:c6:56:89:7f:a3:14:57:ee:dc:5e:cb:a2:1d:e2: 57:6d:41:1c:d7:68:92:5d:f3:bc:cd:56:3e:90:6e: 2b:82:8d:15:73:28:19:3e:d6:09:fc:4c:6d:20:b1: 92:ac:85:3f:fa:86:3b:b9:09:cc:63:9a:4a:40:e2: fc:35:76:45:95:ca:74:3f:96:d8:e0:93:f7:d6:ed: a2:43:2c:bf:32:cd:21:88:92:76:1e:86:51:57:63: 14:7c:94:e5:f6:08:2f:13:9e:1d:1c:0f:27:34:f6: 4f:5e:5a:dc:98:b2:93:f0:d8:dc:0d:06:40:53:ff: 4f:a0:00:00:17:5a:ad:8a:5a:8b:e0:92:e8:f4:a0: 98:99:b3:af:43:ac:cb:50:36:1a:48:6a:83:5b:97: 57:12:fa:17:ec:8a:9c:d6:59:fc:b0:01:97:83:b4: a4:e2:0d:7c:51:61:69:71:6c:d2:cb:09:f3:66:8f: af:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:08:F2:AC:8B:9B:67:C9:75:76:71:D9:2A:B3:95:1F:CD:95:1E:96 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a383a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:8::/48 Signature Algorithm: sha256WithRSAEncryption 17:f9:d3:10:52:b0:cd:a6:cd:51:14:b9:d8:db:78:7f:b0:7a: 29:40:f6:83:a8:61:1f:fd:89:1d:fe:fb:5a:33:c1:2f:e0:1f: 0f:7a:ba:52:7d:c3:58:08:fe:1d:84:04:7b:28:e6:e4:0f:f2: 36:55:69:e4:a8:a3:ba:ce:09:f5:f1:80:a4:0f:e8:96:f1:72: 05:2e:24:b8:8e:eb:58:74:e8:d5:e7:9c:c7:94:61:9f:08:14: 12:b0:ad:4d:c5:46:0d:80:9b:9d:ff:c3:bd:61:8b:2b:08:2c: de:51:64:b1:a3:07:9c:03:0e:c4:56:ac:b4:69:f2:d0:6b:18: 9b:e6:d9:00:88:f7:2b:18:da:16:55:25:87:04:21:04:5f:b7: a9:d1:ef:ab:c5:6d:4e:88:d2:93:16:27:2b:0e:95:54:e7:4d: a9:0f:d0:05:eb:b6:7c:aa:4b:03:aa:9a:7a:0a:ca:74:4b:b8: 37:a1:fd:d2:f6:73:44:cd:5a:22:5c:3f:0f:db:81:02:31:d5: 67:3d:84:69:71:fd:6f:e3:38:a0:e7:97:34:b7:7c:ba:c4:26: a4:f9:9a:3c:96:26:53:46:74:aa:e5:0e:1b:de:b3:35:b0:d2: 3b:6e:07:03:0d:35:f0:d2:50:74:e8:29:99:34:92:ef:bc:c6: 1a:a3:a3:6b -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUZAFWRf40wcyUvhEHPVMBYWPN2gIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzRaFw0yNzA0MDkwMzAwMzRaMDMxMTAvBgNV BAMTKEM0MDhGMkFDOEI5QjY3Qzk3NTc2NzFEOTJBQjM5NTFGQ0Q5NTFFOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD70RcfHNRVfcs02lPkEKhkFZWV kr0Kn0noBLFpMSKmFRzy+iRGFwJvA30flm1Xcol0JPwoP/BWiDLVQhliwTqIXzz/ QQ/GtQ/TaQTGVol/oxRX7txey6Id4ldtQRzXaJJd87zNVj6QbiuCjRVzKBk+1gn8 TG0gsZKshT/6hju5CcxjmkpA4vw1dkWVynQ/ltjgk/fW7aJDLL8yzSGIknYehlFX YxR8lOX2CC8Tnh0cDyc09k9eWtyYspPw2NwNBkBT/0+gAAAXWq2KWovgkuj0oJiZ s69DrMtQNhpIaoNbl1cS+hfsipzWWfywAZeDtKTiDXxRYWlxbNLLCfNmj6/vAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUxAjyrIubZ8l1dnHZKrOVH82VHpYwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTM4M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAACDANBgkqhkiG9w0BAQsFAAOCAQEAF/nTEFKwzabNURS5 2Nt4f7B6KUD2g6hhH/2JHf77WjPBL+AfD3q6Un3DWAj+HYQEeyjm5A/yNlVp5Kij us4J9fGApA/olvFyBS4kuI7rWHTo1eecx5RhnwgUErCtTcVGDYCbnf/DvWGLKwgs 3lFksaMHnAMOxFastGny0GsYm+bZAIj3KxjaFlUlhwQhBF+3qdHvq8VtTojSkxYn Kw6VVOdNqQ/QBeu2fKpLA6qaegrKdEu4N6H90vZzRM1aIlw/D9uBAjHVZz2EaXH9 b+M4oOeXNLd8usQmpPmaPJYmU0Z0quUOG96zNbDSO24HAw018NJQdOgpmTSS77zG GqOjaw== -----END CERTIFICATE-----Generated at Wed Apr 15 08:49:11 2026 by rpki-client