$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094815969324302337/0/323430343a316363303a3a2f33322d3332203d3e2030.roa File: 323430343a316363303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: t2O30ZfJktprwukjrWSWu64WBRm/8SYsWwuKBzBgC7w= Subject key identifier: 40:AC:F7:47:76:43:89:03:02:3D:76:85:BA:C3:47:FF:3A:08:7E:90 Certificate issuer: /CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Certificate serial: 3B602D6B71ACAF7F2248F46D8FD88CA2EE859E8C Authority key identifier: 32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/323430343a316363303a3a2f33322d3332203d3e2030.roa Signing time: Fri 10 Apr 2026 03:47:15 +0000 ROA not before: Fri 10 Apr 2026 03:42:15 +0000 ROA not after: Fri 09 Apr 2027 03:47:15 +0000 asID: 0 IP address blocks: 2404:1cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:60:2d:6b:71:ac:af:7f:22:48:f4:6d:8f:d8:8c:a2:ee:85:9e:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5 Validity Not Before: Apr 10 03:42:15 2026 GMT Not After : Apr 9 03:47:15 2027 GMT Subject: CN=40ACF74776438903023D7685BAC347FF3A087E90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:3d:4f:96:31:1a:23:6b:b0:19:30:99:f2:a6: eb:19:f9:53:89:ed:fd:b5:9a:81:2c:c3:b5:50:65: e2:da:dd:63:0c:03:cb:21:35:22:79:14:58:ff:1a: eb:58:95:0d:d8:81:85:48:04:7e:06:65:31:d7:05: d8:a7:61:9c:be:5d:4c:5c:b8:43:0a:31:06:cc:7b: 68:84:25:23:52:57:9b:4f:cc:8a:96:58:72:b0:e3: ef:07:12:4a:1c:b2:7b:16:e2:38:c4:bd:58:42:46: b4:7f:61:b2:1b:9b:b7:82:92:c2:a5:25:e8:d4:2f: 27:75:ca:b4:e5:75:24:43:1c:0a:c4:bc:30:72:9c: 40:84:88:ae:3a:1c:5b:e0:93:a2:4e:53:5d:68:41: fd:72:08:45:bf:dd:62:d6:fc:f9:3c:f6:25:a7:9a: 18:3a:cf:a3:32:11:e3:f3:76:f1:45:21:0a:62:a0: d3:04:75:f6:da:cf:65:a6:5a:7c:01:95:3a:4a:fe: c6:1e:83:29:2d:b1:ad:28:7a:ba:79:87:5c:f5:3c: 4d:02:e1:a8:ee:7f:51:8b:43:55:91:65:f5:36:43: e1:6b:bb:db:84:84:54:b9:d8:3a:ef:1d:20:5c:c4: 11:4c:48:c4:d2:98:9d:12:7f:ae:49:15:ff:c0:1b: b7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AC:F7:47:76:43:89:03:02:3D:76:85:BA:C3:47:FF:3A:08:7E:90 X509v3 Authority Key Identifier: keyid:32:C6:BE:DB:CA:2F:53:4D:41:32:20:06:E3:9A:6E:51:B1:A9:A9:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/32C6BEDBCA2F534D41322006E39A6E51B1A9A9D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094815969324302337/0/323430343a316363303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:1cc0::/32 Signature Algorithm: sha256WithRSAEncryption 15:a4:d5:dc:f9:d2:bd:84:f1:4e:d6:02:57:14:51:50:99:04: 06:bc:51:bc:22:6b:18:be:86:e6:f7:2d:18:62:4a:71:5f:77: 20:4c:73:90:e3:75:56:ca:0d:ea:89:38:9f:ae:8c:90:29:c4: 6e:ea:02:46:f0:95:ba:84:4d:35:05:51:68:82:7a:56:a7:4e: 80:ad:49:e5:82:e7:98:78:9b:73:9b:70:d1:e1:b1:30:07:ab: b7:39:b9:ef:11:a4:a5:c5:80:8c:c6:ee:b3:6a:c1:d9:48:ce: 52:00:0a:c2:88:47:5a:ef:02:ef:5f:c2:1f:51:d0:62:17:d0: c5:c0:ed:6d:d4:d1:a5:6d:fb:2f:5b:8c:08:73:96:c5:47:a5: a8:1f:d9:49:cd:a1:0f:94:5d:9f:4f:5c:ef:8a:62:6f:ef:f5: d3:28:07:9f:5e:24:c4:f0:31:1d:b8:6e:d9:2c:40:b3:3b:f5: 63:e0:48:a3:fd:af:3d:60:75:a4:3e:bd:1c:34:f7:7e:e9:bd: 75:cd:ce:23:d9:cf:6e:60:a4:aa:78:11:fb:53:82:07:dd:65: a3:0a:03:d9:aa:30:fa:c7:3b:ad:1c:a4:da:fd:41:ae:b6:fc: d1:64:87:0d:82:ac:10:80:66:7f:04:16:a8:85:58:11:b9:f8: 90:9e:9d:dd -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUO2Ata3Gsr38iSPRtj9iMou6FnowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFC MUE5QTlENTAeFw0yNjA0MTAwMzQyMTVaFw0yNzA0MDkwMzQ3MTVaMDMxMTAvBgNV BAMTKDQwQUNGNzQ3NzY0Mzg5MDMwMjNENzY4NUJBQzM0N0ZGM0EwODdFOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIPU+WMRoja7AZMJnypusZ+VOJ 7f21moEsw7VQZeLa3WMMA8shNSJ5FFj/GutYlQ3YgYVIBH4GZTHXBdinYZy+XUxc uEMKMQbMe2iEJSNSV5tPzIqWWHKw4+8HEkocsnsW4jjEvVhCRrR/YbIbm7eCksKl JejULyd1yrTldSRDHArEvDBynECEiK46HFvgk6JOU11oQf1yCEW/3WLW/Pk89iWn mhg6z6MyEePzdvFFIQpioNMEdfbaz2WmWnwBlTpK/sYegyktsa0oerp5h1z1PE0C 4ajuf1GLQ1WRZfU2Q+Fru9uEhFS52DrvHSBcxBFMSMTSmJ0Sf65JFf/AG7dJAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUQKz3R3ZDiQMCPXaFusNH/zoIfpAwHwYDVR0j BBgwFoAUMsa+28ovU01BMiAG45puUbGpqdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgxNTk2OTMyNDMwMjMzNy8wLzMyQzZCRURCQ0EyRjUzNEQ0MTMyMjAwNkUzOUE2 RTUxQjFBOUE5RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzJDNkJFREJDQTJGNTM0RDQxMzIyMDA2RTM5QTZFNTFCMUE5QTlENS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODE1OTY5MzI0MzAyMzM3LzAvMzIzNDMwMzQzYTMx NjM2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBBzA MA0GCSqGSIb3DQEBCwUAA4IBAQAVpNXc+dK9hPFO1gJXFFFQmQQGvFG8ImsYvobm 9y0YYkpxX3cgTHOQ43VWyg3qiTifroyQKcRu6gJG8JW6hE01BVFognpWp06ArUnl gueYeJtzm3DR4bEwB6u3ObnvEaSlxYCMxu6zasHZSM5SAArCiEda7wLvX8IfUdBi F9DFwO1t1NGlbfsvW4wIc5bFR6WoH9lJzaEPlF2fT1zvimJv7/XTKAefXiTE8DEd uG7ZLECzO/Vj4Eij/a89YHWkPr0cNPd+6b11zc4j2c9uYKSqeBH7U4IH3WWjCgPZ qjD6xzutHKTa/UGutvzRZIcNgqwQgGZ/BBaohVgRufiQnp3d -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:34 2026 by rpki-client