$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a633a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a633a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: fDVX+I2FOcVQ3obyZzr1wYMDmOo3Rr2BPcuXXsp6Ccw= Subject key identifier: 5D:00:97:84:CB:CF:C1:DC:3D:CD:1A:13:67:CD:E6:63:74:D1:97:F8 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 46AA9520CFE886EE733B77C3351E5C7C622D63B6 Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a633a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:34 +0000 ROA not before: Fri 10 Apr 2026 02:55:34 +0000 ROA not after: Fri 09 Apr 2027 03:00:34 +0000 asID: 56040 IP address blocks: 2401:71c0:c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:aa:95:20:cf:e8:86:ee:73:3b:77:c3:35:1e:5c:7c:62:2d:63:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:34 2026 GMT Not After : Apr 9 03:00:34 2027 GMT Subject: CN=5D009784CBCFC1DC3DCD1A1367CDE66374D197F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b6:1b:a2:2c:00:aa:c5:21:09:b6:40:a0:ba: fd:42:24:f8:36:aa:42:2b:99:83:c7:02:bb:84:80: fb:87:fe:4a:49:32:1c:86:23:c9:ae:39:91:c8:99: 3d:01:8d:9c:c0:95:0a:56:c1:cd:99:0d:d0:38:be: e9:dd:85:46:07:61:a9:44:e6:60:34:87:1b:89:3b: 0c:3f:75:98:31:ee:9f:95:e4:ba:b7:a2:e9:d5:51: fd:01:ff:8b:d9:18:e8:aa:18:ed:18:b1:59:97:60: 53:01:78:9e:ca:59:4d:53:9e:d2:e1:1d:c1:70:64: 7e:0f:7f:a7:99:05:78:d9:a9:30:d0:5b:19:72:9c: 9c:cd:75:e8:b3:49:42:e9:9c:c4:9c:e4:21:fe:0a: 89:91:bb:f2:35:bc:47:fc:b5:27:f2:58:3e:ea:be: 89:e9:d9:08:b0:9e:64:c1:37:f3:da:15:9f:49:bf: 27:6b:21:37:55:3a:fc:b5:63:1a:31:a2:16:96:2d: 0c:b7:53:b2:1c:27:69:84:48:ad:ad:08:61:74:8c: 75:ed:1e:3e:2b:0c:1d:88:c9:41:9d:e6:56:70:98: fc:21:57:47:a6:97:51:83:f2:f8:50:32:85:99:bd: 62:e4:88:4c:b1:90:29:00:4a:e4:63:c9:3f:85:78: 04:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:00:97:84:CB:CF:C1:DC:3D:CD:1A:13:67:CD:E6:63:74:D1:97:F8 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a633a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:c::/48 Signature Algorithm: sha256WithRSAEncryption a5:d4:77:f2:64:14:6b:e9:11:69:06:6f:97:2f:8d:2e:f9:5a: b9:08:4c:48:62:a7:bb:e0:1b:01:35:8d:ae:34:8d:57:a4:1c: f1:a4:fd:50:77:b4:8e:11:f5:89:e7:e5:82:3e:a5:0f:d5:35: 0d:82:41:f6:bc:3d:9d:7b:2b:16:a6:30:7f:7e:96:99:56:e8: cd:4b:50:a7:68:05:3e:06:cb:f7:e8:08:8b:db:01:e9:bb:27: 73:d6:d3:c4:14:b2:bb:5e:d0:f0:6c:24:44:3f:4a:ab:b5:b9: 9f:47:d6:e1:7d:8c:07:25:e5:73:fa:4f:22:fa:ed:41:67:ef: d6:d1:57:7f:6c:0c:ab:0d:f6:8c:c5:89:77:00:c9:b5:4a:67: 06:8a:ce:71:a4:40:1f:5b:9a:2c:82:bf:b3:2f:d4:09:77:fd: 20:4b:75:f0:92:4b:ab:94:54:fc:03:8f:5b:56:01:e4:66:d5: 76:d2:be:71:b2:6e:8f:85:45:51:46:af:ad:8a:d2:6f:f4:28: 0c:15:7d:88:f0:7c:db:68:6a:0e:ac:99:57:ca:f4:14:41:38: 48:3e:bf:db:80:e9:09:a9:d8:71:c2:a8:bf:08:c7:7f:f3:83: 75:11:2c:35:c4:92:a7:68:88:e1:fe:01:27:b0:ef:31:ff:dc: 92:fa:4d:ac -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIURqqVIM/ohu5zO3fDNR5cfGItY7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzRaFw0yNzA0MDkwMzAwMzRaMDMxMTAvBgNV BAMTKDVEMDA5Nzg0Q0JDRkMxREMzRENEMUExMzY3Q0RFNjYzNzREMTk3RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcthuiLACqxSEJtkCguv1CJPg2 qkIrmYPHAruEgPuH/kpJMhyGI8muOZHImT0BjZzAlQpWwc2ZDdA4vundhUYHYalE 5mA0hxuJOww/dZgx7p+V5Lq3ounVUf0B/4vZGOiqGO0YsVmXYFMBeJ7KWU1TntLh HcFwZH4Pf6eZBXjZqTDQWxlynJzNdeizSULpnMSc5CH+ComRu/I1vEf8tSfyWD7q vonp2QiwnmTBN/PaFZ9JvydrITdVOvy1YxoxohaWLQy3U7IcJ2mESK2tCGF0jHXt Hj4rDB2IyUGd5lZwmPwhV0eml1GD8vhQMoWZvWLkiEyxkCkASuRjyT+FeATzAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUXQCXhMvPwdw9zRoTZ83mY3TRl/gwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTYzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAADDANBgkqhkiG9w0BAQsFAAOCAQEApdR38mQUa+kRaQZv ly+NLvlauQhMSGKnu+AbATWNrjSNV6Qc8aT9UHe0jhH1ieflgj6lD9U1DYJB9rw9 nXsrFqYwf36WmVbozUtQp2gFPgbL9+gIi9sB6bsnc9bTxBSyu17Q8GwkRD9Kq7W5 n0fW4X2MByXlc/pPIvrtQWfv1tFXf2wMqw32jMWJdwDJtUpnBorOcaRAH1uaLIK/ sy/UCXf9IEt18JJLq5RU/AOPW1YB5GbVdtK+cbJuj4VFUUavrYrSb/QoDBV9iPB8 22hqDqyZV8r0FEE4SD6/24DpCanYccKovwjHf/ODdREsNcSSp2iI4f4BJ7DvMf/c kvpNrA== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:20 2026 by rpki-client