$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a663a3a2f34382d3438203d3e203536303430.roa File: 323430313a373163303a663a3a2f34382d3438203d3e203536303430.roa (raw, json) Hash identifier: r7s+Zo1yZPVkRH+mE9SlExouQlXJFy6iETfLDNjLT+8= Subject key identifier: E9:90:03:5F:9D:17:EC:D5:A2:00:99:DF:C5:AB:55:AE:23:92:AF:18 Certificate issuer: /CN=3D426BEA44C56109707602923668D40F4458FBEF Certificate serial: 01AD665B7A0C461BBF3D8403483BB149297302CB Authority key identifier: 3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a663a3a2f34382d3438203d3e203536303430.roa Signing time: Fri 10 Apr 2026 03:00:33 +0000 ROA not before: Fri 10 Apr 2026 02:55:33 +0000 ROA not after: Fri 09 Apr 2027 03:00:33 +0000 asID: 56040 IP address blocks: 2401:71c0:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:ad:66:5b:7a:0c:46:1b:bf:3d:84:03:48:3b:b1:49:29:73:02:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D426BEA44C56109707602923668D40F4458FBEF Validity Not Before: Apr 10 02:55:33 2026 GMT Not After : Apr 9 03:00:33 2027 GMT Subject: CN=E990035F9D17ECD5A20099DFC5AB55AE2392AF18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:84:47:95:d7:25:67:74:37:5e:e9:65:58:0d: 2f:9a:ce:9e:4d:7c:bf:36:d0:59:7a:54:fd:a4:56: fb:9c:e9:16:c2:09:7c:31:2a:0a:a4:93:b1:c2:e0: bc:a3:cc:ec:27:e6:da:0c:a4:37:b9:de:da:ee:59: f1:14:19:d9:2c:4a:61:20:f0:5e:8a:e2:04:96:ec: 57:8a:6d:3c:70:af:01:7b:d2:53:59:a4:81:11:d0: b4:00:b4:b7:79:40:61:ae:e5:1a:b2:77:48:db:42: 12:75:c2:a1:00:95:fc:54:35:bf:50:a9:8b:04:3a: 3a:89:58:c5:9d:9a:da:cb:28:d8:eb:7f:c5:c4:88: 9d:10:b6:3f:91:6b:6e:4d:68:77:20:60:3b:1c:f0: 6c:6f:20:96:5d:a8:e8:3f:d3:76:81:fd:ea:26:3b: 91:6e:af:05:5b:9a:55:1a:b8:58:e3:85:31:ad:e6: a7:ab:b3:57:89:52:77:d2:ea:56:bc:f8:7e:62:bb: d7:b6:02:92:e9:5e:c1:cf:9a:61:4f:24:67:e9:c9: 82:1f:1f:3e:51:a8:46:12:ea:73:3e:6f:39:79:4c: e6:f0:f8:17:8d:48:66:0a:87:b4:b1:62:59:1c:a2: 6a:b7:8d:6c:ce:9a:ed:b5:cb:c4:13:52:4c:64:a3: e4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:90:03:5F:9D:17:EC:D5:A2:00:99:DF:C5:AB:55:AE:23:92:AF:18 X509v3 Authority Key Identifier: keyid:3D:42:6B:EA:44:C5:61:09:70:76:02:92:36:68:D4:0F:44:58:FB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/3D426BEA44C56109707602923668D40F4458FBEF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D426BEA44C56109707602923668D40F4458FBEF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094808409447858179/0/323430313a373163303a663a3a2f34382d3438203d3e203536303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:71c0:f::/48 Signature Algorithm: sha256WithRSAEncryption 7a:93:db:53:33:8f:8a:81:ce:b5:46:01:a9:35:e0:f1:21:60: 80:5b:34:ba:75:b4:ac:f8:e0:7e:46:a9:9e:c4:28:c7:fe:b4: a9:e2:6c:7d:e7:57:ed:d3:f3:21:43:b4:9f:33:dc:ff:b2:c9: 12:f2:de:63:62:d1:f2:69:ec:72:25:d3:b6:cc:48:e0:72:b1: 6b:17:60:1f:e5:23:79:90:46:9e:0c:26:8f:8b:e7:88:3a:ee: dc:65:25:53:4b:ca:bc:e6:75:cd:a6:6a:d0:5c:c2:89:2a:48: 2e:bb:8b:6f:8b:8b:25:31:ab:45:8d:5f:1f:c3:34:52:af:4f: 7f:9f:a7:66:68:f6:28:27:aa:33:b1:71:d3:ff:25:2e:58:20: 0b:18:cc:21:6d:50:98:07:e9:c9:a3:fd:95:7b:7f:a1:d6:5c: 11:9f:4e:a0:31:5e:21:ea:ac:2b:9f:d5:41:a4:61:24:01:ef: 8d:ec:9f:54:f8:bf:a3:1a:3a:7d:2d:9a:4c:7d:09:d9:65:3e: 16:77:37:d5:4f:06:9f:38:13:6f:b1:0a:af:8d:13:36:47:18: 92:58:c7:c5:ec:92:d4:9a:0e:7f:e0:03:2b:62:a4:51:35:97: 20:88:92:5f:ff:6e:7c:ed:9f:92:87:b7:87:7c:e5:0e:87:0b: a7:21:49:df -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUAa1mW3oMRhu/PYQDSDuxSSlzAsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0 NDU4RkJFRjAeFw0yNjA0MTAwMjU1MzNaFw0yNzA0MDkwMzAwMzNaMDMxMTAvBgNV BAMTKEU5OTAwMzVGOUQxN0VDRDVBMjAwOTlERkM1QUI1NUFFMjM5MkFGMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnhEeV1yVndDde6WVYDS+azp5N fL820Fl6VP2kVvuc6RbCCXwxKgqkk7HC4LyjzOwn5toMpDe53truWfEUGdksSmEg 8F6K4gSW7FeKbTxwrwF70lNZpIER0LQAtLd5QGGu5Rqyd0jbQhJ1wqEAlfxUNb9Q qYsEOjqJWMWdmtrLKNjrf8XEiJ0Qtj+Ra25NaHcgYDsc8GxvIJZdqOg/03aB/eom O5FurwVbmlUauFjjhTGt5qers1eJUnfS6la8+H5iu9e2ApLpXsHPmmFPJGfpyYIf Hz5RqEYS6nM+bzl5TObw+BeNSGYKh7SxYlkcomq3jWzOmu21y8QTUkxko+SxAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQU6ZADX50X7NWiAJnfxatVriOSrxgwHwYDVR0j BBgwFoAUPUJr6kTFYQlwdgKSNmjUD0RY++8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgwODQwOTQ0Nzg1ODE3OS8wLzNENDI2QkVBNDRDNTYxMDk3MDc2MDI5MjM2NjhE NDBGNDQ1OEZCRUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0Q0MjZCRUE0NEM1NjEwOTcwNzYwMjkyMzY2OEQ0MEY0NDU4RkJFRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4MDg0MDk0NDc4NTgxNzkvMC8zMjM0MzAzMTNh MzczMTYzMzAzYTY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBccAADzANBgkqhkiG9w0BAQsFAAOCAQEAepPbUzOPioHOtUYB qTXg8SFggFs0unW0rPjgfkapnsQox/60qeJsfedX7dPzIUO0nzPc/7LJEvLeY2LR 8mnsciXTtsxI4HKxaxdgH+UjeZBGngwmj4vniDru3GUlU0vKvOZ1zaZq0FzCiSpI LruLb4uLJTGrRY1fH8M0Uq9Pf5+nZmj2KCeqM7Fx0/8lLlggCxjMIW1QmAfpyaP9 lXt/odZcEZ9OoDFeIeqsK5/VQaRhJAHvjeyfVPi/oxo6fS2aTH0J2WU+Fnc31U8G nzgTb7EKr40TNkcYkljHxeyS1JoOf+ADK2KkUTWXIIiSX/9ufO2fkoe3h3zlDocL pyFJ3w== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:23 2026 by rpki-client