$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a623a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a623a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: EiUlUXENh5O/l09AkBho3o84rGG7+s6KB5lZQApJruk= Subject key identifier: 4B:ED:31:7B:9D:17:0D:07:AF:13:A8:0E:67:93:1F:CB:13:4B:F9:4B Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 7B39CDD2297D314D4473D5AAFE872CB09C059084 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a623a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:34 +0000 ROA not before: Fri 10 Apr 2026 02:55:34 +0000 ROA not after: Fri 09 Apr 2027 03:00:34 +0000 asID: 56040 IP address blocks: 2401:71c0:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:39:cd:d2:29:7d:31:4d:44:73:d5:aa:fe:87:2c:b0:9c:05:90:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:34 2026 GMT Not After : Apr 9 03:00:34 2027 GMT Subject: CN=4BED317B9D170D07AF13A80E67931FCB134BF94B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e7:ec:a7:7f:9c:97:30:fb:ab:0d:df:6a:81: 7e:90:b0:90:bd:27:c4:b8:c6:d9:3b:30:c4:31:b4: 8b:51:7a:41:ad:5b:46:90:db:d1:6b:01:26:2e:5d: a8:5d:91:88:a8:e3:e4:49:a1:26:dd:61:0e:3c:dd: 84:1a:04:b4:9b:87:fe:4c:7e:75:8d:c6:6c:1c:c1: c2:04:55:ae:bc:3a:2d:5d:0c:b5:bb:27:32:8c:40: ba:e1:fc:54:05:6e:f7:44:da:ec:d9:ab:17:0c:c0: d0:c8:c9:64:9d:6b:db:34:4b:4c:80:8e:b2:c9:a1: 00:7c:69:70:c6:4c:3c:c7:4c:d5:e3:ff:63:20:0d: 72:02:83:71:2d:97:11:d7:8b:fe:8a:14:76:d3:ec: 25:18:20:72:bf:fa:77:8c:28:ae:bf:9d:b9:9d:b7: 98:35:10:57:ab:f9:5d:10:6a:bd:39:90:dd:d6:af: 82:42:3d:90:04:48:ce:15:da:af:19:bc:2d:8d:1d: 1d:d4:26:f2:83:81:72:63:47:0c:a3:58:03:09:6a: 10:30:7b:24:80:94:4b:2e:f9:0b:52:c1:7c:da:78: b0:53:58:ac:27:e6:41:31:40:e2:c5:6c:7c:b4:87: 74:bd:8b:f6:87:de:ff:a2:16:96:a8:e9:ab:cd:c9: 7d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:ED:31:7B:9D:17:0D:07:AF:13:A8:0E:67:93:1F:CB:13:4B:F9:4B X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a623a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:b::/48 Signature Algorithm: sha256WithRSAEncryption 37:3d:71:c0:36:6c:fe:11:2b:95:84:df:79:f2:50:38:1b:81: 5d:cc:3e:4a:d9:d4:9b:b3:43:08:01:9a:22:a4:04:92:05:96: 2c:53:f0:34:88:ce:c8:42:45:ad:9b:29:74:cc:e9:77:98:aa: 3a:f4:90:d1:51:8c:30:80:5d:9b:d0:32:dd:15:d1:10:95:bb: 3f:71:b8:01:07:da:2d:2d:6a:ec:51:2c:2b:0b:1f:c0:6f:a8: d8:08:9e:3c:8f:73:e7:43:cc:2e:9d:1b:63:76:04:b0:2c:74: 43:52:71:46:b9:71:a8:ee:99:78:de:c7:30:9d:af:fc:16:6b: ee:37:67:46:3f:91:bb:f6:7c:30:1b:0e:d5:f0:01:55:8f:66: 3d:db:cb:27:7c:b1:56:16:aa:59:0d:60:e5:47:86:45:bb:d6: ed:ea:6e:84:4b:92:d9:fd:36:71:c9:25:b8:ea:a2:21:9c:87: 12:90:4d:ee:08:49:32:f6:2d:f9:98:cd:b4:b9:64:a4:47:d2: 64:d0:12:0f:64:68:97:9f:0a:7c:98:4f:d8:e9:f9:d1:84:7e: 54:0c:d4:f5:39:31:a9:e9:a8:3e:38:43:96:f9:a5:4f:b1:32: ac:7e:12:e0:30:fc:60:bd:f3:ff:9d:b2:fd:b1:52:8e:1c:f1: 5e:79:22:df -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUeznN0il9MU1Ec9Wq/ocssJwFkIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzRaFw0yNzA0MDkwMzAwMzRaMDMxMTAvBgNV BAMTKDRCRUQzMTdCOUQxNzBEMDdBRjEzQTgwRTY3OTMxRkNCMTM0QkY5NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF5+ynf5yXMPurDd9qgX6QsJC9 J8S4xtk7MMQxtItRekGtW0aQ29FrASYuXahdkYio4+RJoSbdYQ483YQaBLSbh/5M fnWNxmwcwcIEVa68Oi1dDLW7JzKMQLrh/FQFbvdE2uzZqxcMwNDIyWSda9s0S0yA jrLJoQB8aXDGTDzHTNXj/2MgDXICg3EtlxHXi/6KFHbT7CUYIHK/+neMKK6/nbmd t5g1EFer+V0Qar05kN3Wr4JCPZAESM4V2q8ZvC2NHR3UJvKDgXJjRwyjWAMJahAw eySAlEsu+QtSwXzaeLBTWKwn5kExQOLFbHy0h3S9i/aH3v+iFpao6avNyX3jAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUS+0xe50XDQevE6gOZ5MfyxNL+UswHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAACzANBgkqhkiG9w0BAQsFAAOCAQEANz1xwDZs/hErlYTf efJQOBuBXcw+StnUm7NDCAGaIqQEkgWWLFPwNIjOyEJFrZspdMzpd5iqOvSQ0VGM MIBdm9Ay3RXREJW7P3G4AQfaLS1q7FEsKwsfwG+o2AiePI9z50PMLp0bY3YEsCx0 Q1JxRrlxqO6ZeN7HMJ2v/BZr7jdnRj+Ru/Z8MBsO1fABVY9mPdvLJ3yxVhaqWQ1g 5UeGRbvW7epuhEuS2f02cckluOqiIZyHEpBN7ghJMvYt+ZjNtLlkpEfSZNASD2Ro l58KfJhP2On50YR+VAzU9TkxqemoPjhDlvmlT7EyrH4S4DD8YL3z/52y/bFSjhzx Xnki3w== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:24 2026 by rpki-client