$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a3a2f34382d3438203d3e20313335303631.roa File: 323430313a373163303a3a2f34382d3438203d3e20313335303631.roa (raw, json) Hash identifier: 0QCRszottpYWCzp/P2Rmd/oK46nTxxUD050MMSbTirU= Subject key identifier: 4D:06:84:1D:13:9B:F5:59:AB:5E:0F:9E:62:7D:A4:75:7C:15:17:F7 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 202106AD49E9AF1B8681380FAD97F32D84309E44 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a3a2f34382d3438203d3e20313335303631.roa Signing time: Fri 10 Apr 2026 03:00:35 +0000 ROA not before: Fri 10 Apr 2026 02:55:35 +0000 ROA not after: Fri 09 Apr 2027 03:00:35 +0000 asID: 135061 IP address blocks: 2401:71c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:21:06:ad:49:e9:af:1b:86:81:38:0f:ad:97:f3:2d:84:30:9e:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:35 2026 GMT Not After : Apr 9 03:00:35 2027 GMT Subject: CN=4D06841D139BF559AB5E0F9E627DA4757C1517F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:82:06:9a:8e:fd:15:86:70:38:41:90:4a:ed: e9:90:97:49:98:d2:a4:c8:7a:ae:77:b8:dc:4f:e7: cd:9d:44:b7:50:3e:d1:04:57:18:d8:55:bb:45:81: 7e:ff:e7:07:0f:6c:eb:9f:26:f7:10:03:71:e9:4a: 27:fe:91:50:d6:d2:08:27:3a:26:b0:b2:c9:3d:7c: 74:21:f4:3e:33:46:88:5b:88:c7:f2:d5:a6:8a:9a: 43:ec:c2:2a:5b:a6:14:98:7f:00:4f:9e:2f:e1:dc: 71:24:f3:7f:be:21:2e:7b:69:3d:48:53:e1:5f:07: 00:b8:a6:1e:f1:3c:df:36:9e:02:38:5f:ce:5a:17: c6:ca:36:f2:0d:20:02:0b:f8:14:6a:7c:8f:7d:9d: fb:42:9e:bb:48:e3:02:df:cd:dd:80:48:9c:04:45: 25:2a:2d:68:7d:0f:00:2e:09:3f:a0:c3:34:52:49: fc:fe:32:90:70:6e:6a:3f:41:27:03:88:62:a9:7c: 7d:81:63:fd:83:17:e9:bb:6f:be:15:12:4d:ad:ef: 14:4c:bd:a6:f3:18:af:da:8d:34:8b:bc:32:68:09: d9:88:8a:b8:1d:e2:89:b5:a2:54:c4:aa:b0:9e:74: 1c:54:48:6f:45:03:e1:6d:90:e2:9c:11:14:da:79: d0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:06:84:1D:13:9B:F5:59:AB:5E:0F:9E:62:7D:A4:75:7C:15:17:F7 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a3a2f34382d3438203d3e20313335303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0::/48 Signature Algorithm: sha256WithRSAEncryption a7:01:2d:67:65:77:02:6a:54:ac:cc:53:c2:d2:f5:dc:4d:81: bd:0b:c9:bf:bb:74:fd:7e:f7:16:a7:3a:b8:91:70:3b:07:f9: 02:49:7a:0d:fd:ec:0b:c8:66:91:07:de:17:20:b8:b3:75:fe: 8d:19:54:89:c9:ff:a7:46:b2:a7:f0:4e:30:25:6f:bb:4e:2d: 14:62:ac:40:93:bf:af:07:3c:fd:a7:b1:a8:70:52:0a:3d:17: 1b:4a:1d:64:8c:be:9b:f1:96:73:45:0d:7b:ba:a2:d1:f9:fb: fd:ca:e1:09:82:ea:fa:fc:b7:26:d6:2d:60:c1:2e:01:65:e5: 1c:85:9a:12:3f:45:0d:0e:f7:30:3e:bd:a3:1a:3a:3c:a1:9b: 79:7a:fb:fe:9e:11:b7:82:3f:99:c8:28:d1:95:09:e0:d4:44: df:c8:4e:a8:c8:5f:8e:10:57:5d:a0:04:ca:8a:b1:42:58:c7: de:4e:8e:93:86:38:e8:47:f7:7a:47:be:0f:cc:95:ab:37:23: 7a:36:d8:52:b3:7d:68:24:10:d3:a1:68:77:72:59:11:d4:5c: 2c:c1:32:cc:5a:52:da:c2:c8:89:f5:63:a7:e9:8f:cb:11:58: e8:82:02:7c:67:0c:6f:2b:de:36:e6:e2:19:d6:f0:6d:7d:bd: 3d:3f:23:e5 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUICEGrUnprxuGgTgPrZfzLYQwnkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzVaFw0yNzA0MDkwMzAwMzVaMDMxMTAvBgNV BAMTKDREMDY4NDFEMTM5QkY1NTlBQjVFMEY5RTYyN0RBNDc1N0MxNTE3RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyggaajv0VhnA4QZBK7emQl0mY 0qTIeq53uNxP582dRLdQPtEEVxjYVbtFgX7/5wcPbOufJvcQA3HpSif+kVDW0ggn Oiawssk9fHQh9D4zRohbiMfy1aaKmkPswipbphSYfwBPni/h3HEk83++IS57aT1I U+FfBwC4ph7xPN82ngI4X85aF8bKNvINIAIL+BRqfI99nftCnrtI4wLfzd2ASJwE RSUqLWh9DwAuCT+gwzRSSfz+MpBwbmo/QScDiGKpfH2BY/2DF+m7b74VEk2t7xRM vabzGK/ajTSLvDJoCdmIirgd4om1olTEqrCedBxUSG9FA+FtkOKcERTaedCfAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUTQaEHROb9VmrXg+eYn2kdXwVF/cwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NDgwODQwOTQ0Nzg1ODE3OS8wLzMyMzQzMDMxM2Ez NzMxNjMzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNTMwMzYzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQBccAAADANBgkqhkiG9w0BAQsFAAOCAQEApwEtZ2V3AmpUrMxTwtL1 3E2BvQvJv7t0/X73Fqc6uJFwOwf5Akl6Df3sC8hmkQfeFyC4s3X+jRlUicn/p0ay p/BOMCVvu04tFGKsQJO/rwc8/aexqHBSCj0XG0odZIy+m/GWc0UNe7qi0fn7/crh CYLq+vy3JtYtYMEuAWXlHIWaEj9FDQ73MD69oxo6PKGbeXr7/p4Rt4I/mcgo0ZUJ 4NRE38hOqMhfjhBXXaAEyoqxQljH3k6Ok4Y46Ef3eke+D8yVqzcjejbYUrN9aCQQ 06Fod3JZEdRcLMEyzFpS2sLIifVjp+mPyxFY6IICfGcMbyveNubiGdbwbX29PT8j 5Q== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:17 2026 by rpki-client