$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a653a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a653a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: T4FDqX8/hQnhVU1b2mr7YxNDZjPVQ/tmsX5xKa2oJOE= Subject key identifier: E2:4E:73:6B:09:D6:BA:48:31:35:1B:C4:ED:F9:D4:15:CA:A4:DF:B8 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 6B6AB37A274D5284DDF61EAECBF8F01838CB188A Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a653a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:34 +0000 ROA not before: Fri 10 Apr 2026 02:55:34 +0000 ROA not after: Fri 09 Apr 2027 03:00:34 +0000 asID: 56040 IP address blocks: 2401:71c0:e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6a:b3:7a:27:4d:52:84:dd:f6:1e:ae:cb:f8:f0:18:38:cb:18:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:34 2026 GMT Not After : Apr 9 03:00:34 2027 GMT Subject: CN=E24E736B09D6BA4831351BC4EDF9D415CAA4DFB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a5:70:05:9b:65:a6:52:5c:5d:28:7e:2f:e7: 25:5d:bf:33:64:61:10:99:b9:70:c2:cd:10:38:0b: 17:51:e0:be:60:71:15:27:8a:23:fc:5b:4d:02:a4: a3:15:ae:bb:2f:03:61:ea:5b:fe:f6:0b:52:08:bd: 15:fa:c7:de:a9:a8:ac:99:22:60:3e:cf:59:1a:c9: 2d:e8:e1:c0:4a:ec:13:0f:f0:97:85:38:fd:15:09: 32:fe:36:17:5b:d3:ef:60:1f:49:9b:db:9f:db:a4: 58:65:62:18:66:e5:9a:eb:80:5f:e5:9e:a9:53:d3: ef:a2:64:64:81:23:78:2e:d8:01:59:a2:8f:cc:4e: 75:03:16:46:2b:2f:bd:25:3f:28:9b:38:70:6d:b8: f0:0e:cd:00:a8:dd:3c:d3:80:cb:3b:d1:bb:17:3b: f4:98:c5:02:8e:e1:fa:35:e9:cc:32:d9:41:16:39: 2a:03:74:47:6f:d8:bc:d7:24:3e:7b:fc:14:e1:54: 6f:a3:bc:fa:46:a9:c4:b3:47:42:64:54:cd:04:e8: c1:8b:07:14:35:09:05:31:a9:09:cd:bc:79:a3:6b: 19:ec:7d:7a:09:9e:cc:fb:44:16:3b:1f:14:30:c6: af:db:0d:f1:08:43:a8:7d:8d:39:f1:8a:cf:3a:b3: f4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:4E:73:6B:09:D6:BA:48:31:35:1B:C4:ED:F9:D4:15:CA:A4:DF:B8 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a653a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:e::/48 Signature Algorithm: sha256WithRSAEncryption 32:82:f2:c7:3c:2e:9b:8b:5d:2b:8c:ad:62:f9:ec:d1:dd:2f: f3:13:c8:1c:cc:14:3b:da:5d:4f:07:da:a4:f3:7b:7c:33:a0: d4:d8:92:d9:1b:59:80:c4:5a:97:bc:20:ac:8d:7a:a6:80:00: ba:f4:96:c1:c4:dd:91:e7:21:93:49:c9:b2:19:8a:a4:57:4c: 17:0f:31:42:d9:57:22:62:f4:c9:a5:2d:c5:b1:78:16:07:e9: e8:72:ba:8f:bf:7b:2b:55:33:da:03:79:eb:b4:d3:de:fa:a2: 12:e2:0a:46:98:41:a7:79:bd:46:b3:37:45:af:f8:04:9e:9d: c3:0f:06:cd:38:da:7e:55:cf:86:00:b3:4b:3e:1a:05:a3:ad: b4:05:35:aa:37:8d:3b:06:34:70:3f:73:13:be:67:29:12:d1: 20:a7:9f:dd:da:b5:4d:e7:60:10:cf:67:31:d3:0b:ab:7e:9f: 0c:e2:b6:4f:5a:16:58:13:e9:19:23:e8:21:b2:0f:84:10:36: 35:11:09:64:a7:6d:a3:c5:3f:fb:fb:c6:c1:df:41:a4:14:78: d3:ab:8a:2d:19:09:7f:32:11:93:dc:f9:c8:2d:88:5a:c0:d5: 99:33:63:57:eb:a1:ed:13:cd:bb:8d:48:14:05:6d:28:5e:8d: 79:4e:58:e9 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUa2qzeidNUoTd9h6uy/jwGDjLGIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzRaFw0yNzA0MDkwMzAwMzRaMDMxMTAvBgNV BAMTKEUyNEU3MzZCMDlENkJBNDgzMTM1MUJDNEVERjlENDE1Q0FBNERGQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6pXAFm2WmUlxdKH4v5yVdvzNk YRCZuXDCzRA4CxdR4L5gcRUniiP8W00CpKMVrrsvA2HqW/72C1IIvRX6x96pqKyZ ImA+z1kayS3o4cBK7BMP8JeFOP0VCTL+Nhdb0+9gH0mb25/bpFhlYhhm5ZrrgF/l nqlT0++iZGSBI3gu2AFZoo/MTnUDFkYrL70lPyibOHBtuPAOzQCo3TzTgMs70bsX O/SYxQKO4fo16cwy2UEWOSoDdEdv2LzXJD57/BThVG+jvPpGqcSzR0JkVM0E6MGL BxQ1CQUxqQnNvHmjaxnsfXoJnsz7RBY7HxQwxq/bDfEIQ6h9jTnxis86s/RHAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQU4k5zawnWukgxNRvE7fnUFcqk37gwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAADjANBgkqhkiG9w0BAQsFAAOCAQEAMoLyxzwum4tdK4yt Yvns0d0v8xPIHMwUO9pdTwfapPN7fDOg1NiS2RtZgMRal7wgrI16poAAuvSWwcTd kechk0nJshmKpFdMFw8xQtlXImL0yaUtxbF4Fgfp6HK6j797K1Uz2gN567TT3vqi EuIKRphBp3m9RrM3Ra/4BJ6dww8GzTjaflXPhgCzSz4aBaOttAU1qjeNOwY0cD9z E75nKRLRIKef3dq1TedgEM9nMdMLq36fDOK2T1oWWBPpGSPoIbIPhBA2NREJZKdt o8U/+/vGwd9BpBR406uKLRkJfzIRk9z5yC2IWsDVmTNjV+uh7RPNu41IFAVtKF6N eU5Y6Q== -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:56 2026 by rpki-client