$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a613a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a613a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: BkDr/YuA+kh4okfJETQbMwLftUsJWE41p5O0oV5ceNI= Subject key identifier: 73:AB:28:47:02:5C:C2:BF:A5:B5:B5:2A:0F:5F:71:0D:76:0D:68:D4 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 6937511946A8BE40C8CB1306E12F871CBEFA2B4E Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a613a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:34 +0000 ROA not before: Fri 10 Apr 2026 02:55:34 +0000 ROA not after: Fri 09 Apr 2027 03:00:34 +0000 asID: 56040 IP address blocks: 2401:71c0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:37:51:19:46:a8:be:40:c8:cb:13:06:e1:2f:87:1c:be:fa:2b:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:34 2026 GMT Not After : Apr 9 03:00:34 2027 GMT Subject: CN=73AB2847025CC2BFA5B5B52A0F5F710D760D68D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:12:85:ac:e0:5c:c2:8f:21:db:41:07:b7:c3: fe:a2:26:ee:0d:39:94:eb:48:ea:d1:3e:be:a1:e5: d8:8d:a5:6e:19:7a:8a:94:d2:fb:6b:38:64:1d:4a: 06:9b:78:71:5f:90:e0:6d:96:3c:7a:43:f8:bc:bf: 13:29:aa:e7:be:80:e3:ae:da:07:69:33:12:96:9e: d6:09:2c:0d:2a:c0:c2:c9:49:77:49:b4:02:9d:43: 3d:0c:86:fb:0a:ff:e8:e2:3d:5a:3b:23:4d:74:f3: 53:d0:fd:32:b3:c7:f6:b3:1c:99:72:46:4c:c8:5a: ec:6d:00:bb:26:c6:d2:24:d5:5d:84:de:7c:28:f5: c6:0f:3b:42:90:d6:bf:e3:2b:f0:97:25:26:a4:03: 88:82:87:21:28:c0:ec:82:d0:4d:b3:e2:0d:71:a2: 12:df:6d:bb:c3:da:6b:91:eb:af:95:7e:b9:19:43: 27:42:72:34:1c:0b:84:60:bb:c6:59:27:9a:c2:5f: 34:b9:2c:b5:a8:3a:3a:b4:a5:02:09:30:41:92:6a: 30:13:61:66:c5:d6:55:f9:ca:2b:b7:c4:68:91:11: 07:9e:a9:54:5b:9d:40:50:95:e6:45:34:4f:77:ad: 4b:22:7d:55:95:0a:b0:88:0f:a9:b9:4c:2f:97:52: e0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:AB:28:47:02:5C:C2:BF:A5:B5:B5:2A:0F:5F:71:0D:76:0D:68:D4 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a613a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:a::/48 Signature Algorithm: sha256WithRSAEncryption 8d:ef:0f:9d:87:61:c0:a8:5e:28:1c:c2:ba:8c:f2:99:05:52: 5b:f3:43:ad:d0:eb:f1:a8:66:7a:02:9a:d4:cb:30:f9:99:c2: 8f:1e:54:ee:ee:95:0d:17:23:9b:ea:80:5c:94:a4:7b:d5:e1: 0b:03:ad:c2:2c:5c:39:9e:6d:ac:50:06:b8:d2:15:3d:9a:bb: 68:20:c9:7c:1c:b5:d3:25:fe:49:56:44:e1:9e:26:54:11:6d: 38:37:93:f8:21:91:0e:b4:b5:a4:dd:5b:f0:de:9b:04:34:b9: 2e:ed:bf:43:a6:39:4c:10:6c:a8:0e:87:1c:1b:97:92:6e:74: 6b:11:49:fa:a1:3a:ba:05:2c:3a:19:a0:2d:8f:4e:d8:ad:c0: 66:46:5e:cd:7f:2a:51:f0:04:c3:1e:14:50:1c:47:de:ac:d7: e8:6d:25:38:83:5e:9e:9b:ab:5f:ba:de:7f:dc:8d:8a:8e:08: 0c:52:a1:9e:2b:28:01:df:04:28:e9:cb:11:6d:65:03:3f:5a: ad:e8:a0:ca:a9:b2:6b:1d:11:92:97:0a:62:ad:ff:bd:da:67: de:5e:98:c5:1c:9c:a8:6f:d7:8f:6d:e7:b5:1a:8d:ed:cc:68: 0d:09:cd:97:8a:6b:4c:15:56:8e:7f:4d:20:81:c6:9a:bc:29: b1:1b:91:9a -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUaTdRGUaovkDIyxMG4S+HHL76K04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzRaFw0yNzA0MDkwMzAwMzRaMDMxMTAvBgNV BAMTKDczQUIyODQ3MDI1Q0MyQkZBNUI1QjUyQTBGNUY3MTBENzYwRDY4RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLEoWs4FzCjyHbQQe3w/6iJu4N OZTrSOrRPr6h5diNpW4ZeoqU0vtrOGQdSgabeHFfkOBtljx6Q/i8vxMpque+gOOu 2gdpMxKWntYJLA0qwMLJSXdJtAKdQz0MhvsK/+jiPVo7I01081PQ/TKzx/azHJly RkzIWuxtALsmxtIk1V2E3nwo9cYPO0KQ1r/jK/CXJSakA4iChyEowOyC0E2z4g1x ohLfbbvD2muR66+VfrkZQydCcjQcC4Rgu8ZZJ5rCXzS5LLWoOjq0pQIJMEGSajAT YWbF1lX5yiu3xGiREQeeqVRbnUBQleZFNE93rUsifVWVCrCID6m5TC+XUuBHAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUc6soRwJcwr+ltbUqD19xDXYNaNQwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTYxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAACjANBgkqhkiG9w0BAQsFAAOCAQEAje8PnYdhwKheKBzC uozymQVSW/NDrdDr8ahmegKa1Msw+ZnCjx5U7u6VDRcjm+qAXJSke9XhCwOtwixc OZ5trFAGuNIVPZq7aCDJfBy10yX+SVZE4Z4mVBFtODeT+CGRDrS1pN1b8N6bBDS5 Lu2/Q6Y5TBBsqA6HHBuXkm50axFJ+qE6ugUsOhmgLY9O2K3AZkZezX8qUfAEwx4U UBxH3qzX6G0lOINenpurX7ref9yNio4IDFKhnisoAd8EKOnLEW1lAz9areigyqmy ax0RkpcKYq3/vdpn3l6YxRycqG/Xj23ntRqN7cxoDQnNl4prTBVWjn9NIIHGmrwp sRuRmg== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:06 2026 by rpki-client