$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a3a2f33322d3332203d3e2030.roa File: 323430313a373163303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: haAtLB1VTlk1tt9Q21pBhRp1GcLhrMsKEAEy9T2B1dc= Subject key identifier: EE:81:E6:21:BA:B1:ED:7A:E1:11:05:4B:0B:5C:12:01:F5:46:30:45 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 2036EA0AC9A0D239EBB89C87113D7AA815317BB4 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a3a2f33322d3332203d3e2030.roa Signing time: Fri 10 Apr 2026 05:58:42 +0000 ROA not before: Fri 10 Apr 2026 05:53:42 +0000 ROA not after: Fri 09 Apr 2027 05:58:42 +0000 asID: 0 IP address blocks: 2401:71c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 21:30:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:36:ea:0a:c9:a0:d2:39:eb:b8:9c:87:11:3d:7a:a8:15:31:7b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 05:53:42 2026 GMT Not After : Apr 9 05:58:42 2027 GMT Subject: CN=EE81E621BAB1ED7AE111054B0B5C1201F5463045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8d:09:b5:45:d1:fa:9b:a2:9a:38:3b:05:35: 02:c7:ed:6e:11:88:37:a5:12:a9:0c:b9:b4:ce:63: 25:d6:0a:be:7a:c2:47:52:49:37:fa:ad:fd:22:a9: 5c:f6:e1:66:7f:23:34:28:43:16:ce:4a:7d:48:e3: 9e:a9:07:7c:db:e9:d2:0f:a3:0c:2f:6c:5b:e7:57: ed:00:88:d7:fb:cd:ab:d6:31:06:1d:e4:b6:f9:db: ce:55:b5:14:db:39:7a:bb:db:b0:b2:f4:18:85:1a: 0a:d1:5e:9e:60:31:84:de:28:16:dd:7a:30:f9:ad: 28:18:a9:d7:62:54:6c:ec:36:7e:82:05:fa:9f:3c: 17:a3:5e:72:ba:8c:bb:6b:61:97:46:5a:24:a9:12: 39:47:f5:25:50:dd:43:9c:65:0c:8d:a1:39:3c:ba: fd:97:ab:86:de:7a:08:52:ff:98:23:7a:d8:70:24: 6d:26:c2:33:14:e5:97:9d:6e:03:e7:f9:b3:84:ad: b4:70:d6:eb:12:87:d8:67:a3:d3:82:67:33:11:91: 31:03:77:64:94:4b:11:6e:41:96:ec:7e:32:4e:6e: 4f:e2:d5:54:8e:41:30:32:32:b6:68:6c:8b:85:26: 93:69:17:b8:df:a6:e3:90:41:1c:59:f1:29:21:2b: b8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:81:E6:21:BA:B1:ED:7A:E1:11:05:4B:0B:5C:12:01:F5:46:30:45 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0::/32 Signature Algorithm: sha256WithRSAEncryption 58:53:8d:5d:2f:2c:91:91:f2:af:c8:dd:68:10:b0:c8:18:51: 5d:94:79:93:6a:d0:52:1c:65:b6:a7:f0:83:0c:f1:79:b1:7c: 0c:41:32:8d:8f:b5:18:13:91:b3:b6:04:49:57:e1:3d:5d:c1: 2b:2d:d1:ed:db:01:66:25:c2:f2:f6:f2:ef:1d:cd:65:70:6f: e1:42:76:44:5b:0a:43:80:e9:1c:29:db:0f:aa:e0:b1:81:b6: 09:ad:15:98:48:d0:87:3b:50:a6:27:e1:1f:cf:97:2f:43:dc: ea:ed:68:e6:00:aa:ca:59:a3:ab:dc:ca:ed:e6:c8:ae:2d:98: f6:6b:61:a9:4c:a7:13:21:57:bc:bb:70:f4:19:5e:66:26:d8: df:be:48:3d:8e:2c:6b:40:f6:15:31:fd:b3:38:1d:04:74:28: a1:27:a9:49:57:ff:a1:54:18:c4:5f:84:4b:38:a6:37:8f:59: d5:4f:4c:66:1f:02:8f:46:dc:dd:13:e4:9e:74:3f:28:60:48: 6b:8b:a1:40:4e:c3:af:4d:31:a9:75:37:08:2d:8b:c0:4d:b4: 4e:ea:f4:55:e8:9f:ed:2c:6a:a1:9e:2d:fd:3f:32:ac:b3:43: cf:8a:8e:19:a9:f4:1a:37:ef:e9:fe:4e:0f:76:c6:9a:18:de: db:15:df:2a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUIDbqCsmg0jnruJyHET16qBUxe7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwNTUzNDJaFw0yNzA0MDkwNTU4NDJaMDMxMTAvBgNV BAMTKEVFODFFNjIxQkFCMUVEN0FFMTExMDU0QjBCNUMxMjAxRjU0NjMwNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChjQm1RdH6m6KaODsFNQLH7W4R iDelEqkMubTOYyXWCr56wkdSSTf6rf0iqVz24WZ/IzQoQxbOSn1I456pB3zb6dIP owwvbFvnV+0AiNf7zavWMQYd5Lb5285VtRTbOXq727Cy9BiFGgrRXp5gMYTeKBbd ejD5rSgYqddiVGzsNn6CBfqfPBejXnK6jLtrYZdGWiSpEjlH9SVQ3UOcZQyNoTk8 uv2Xq4beeghS/5gjethwJG0mwjMU5ZedbgPn+bOErbRw1usSh9hno9OCZzMRkTED d2SUSxFuQZbsfjJObk/i1VSOQTAyMrZobIuFJpNpF7jfpuOQQRxZ8SkhK7hXAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQU7oHmIbqx7XrhEQVLC1wSAfVGMEUwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODA4NDA5NDQ3ODU4MTc5LzAvMzIzNDMwMzEzYTM3 MzE2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAXHA MA0GCSqGSIb3DQEBCwUAA4IBAQBYU41dLyyRkfKvyN1oELDIGFFdlHmTatBSHGW2 p/CDDPF5sXwMQTKNj7UYE5GztgRJV+E9XcErLdHt2wFmJcLy9vLvHc1lcG/hQnZE WwpDgOkcKdsPquCxgbYJrRWYSNCHO1CmJ+Efz5cvQ9zq7WjmAKrKWaOr3Mrt5siu LZj2a2GpTKcTIVe8u3D0GV5mJtjfvkg9jixrQPYVMf2zOB0EdCihJ6lJV/+hVBjE X4RLOKY3j1nVT0xmHwKPRtzdE+SedD8oYEhri6FATsOvTTGpdTcILYvATbRO6vRV 6J/tLGqhni39PzKss0PPio4ZqfQaN+/p/k4PdsaaGN7bFd8q -----END CERTIFICATE-----Generated at Wed Apr 15 08:38:28 2026 by rpki-client