$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094823639288709122/0/323430303a646565303a3a2f33322d3332203d3e2030.roa File: 323430303a646565303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: EdjUimtwDmmEb/7qnPllHoQilNinJIy02221yPSiAD4= Subject key identifier: F1:4F:BF:22:8A:09:84:DD:C9:A6:FF:AC:44:37:B8:B1:39:C7:5C:67 Certificate issuer: /CN=EB221959BAB62CA0F2C1844E764159F081AE413B Certificate serial: 7F94AE0CE887E8B00E227A30174F3112C89BC478 Authority key identifier: EB:22:19:59:BA:B6:2C:A0:F2:C1:84:4E:76:41:59:F0:81:AE:41:3B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EB221959BAB62CA0F2C1844E764159F081AE413B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094823639288709122/0/323430303a646565303a3a2f33322d3332203d3e2030.roa Signing time: Fri 10 Apr 2026 03:36:06 +0000 ROA not before: Fri 10 Apr 2026 03:31:06 +0000 ROA not after: Fri 09 Apr 2027 03:36:06 +0000 asID: 0 IP address blocks: 2400:dee0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094823639288709122/0/EB221959BAB62CA0F2C1844E764159F081AE413B.crl rsync://rpki-rps.cnnic.cn/repo/A1094823639288709122/0/EB221959BAB62CA0F2C1844E764159F081AE413B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EB221959BAB62CA0F2C1844E764159F081AE413B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 09:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:94:ae:0c:e8:87:e8:b0:0e:22:7a:30:17:4f:31:12:c8:9b:c4:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB221959BAB62CA0F2C1844E764159F081AE413B Validity Not Before: Apr 10 03:31:06 2026 GMT Not After : Apr 9 03:36:06 2027 GMT Subject: CN=F14FBF228A0984DDC9A6FFAC4437B8B139C75C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:19:b9:c4:64:2f:63:49:e8:c9:58:46:fd:e9: 82:a5:5b:2d:14:b8:da:6e:fa:e2:dd:42:22:65:4b: 6b:aa:90:17:e7:04:b3:f2:42:15:46:82:02:dc:af: fe:ae:83:11:72:d8:86:00:12:a0:91:5d:a7:bf:c5: a5:a8:b0:e2:44:fb:3e:c8:31:2b:90:b7:fe:fb:51: 7f:d4:26:b2:50:34:39:13:25:d7:25:4f:a0:0e:3a: ff:a1:62:4b:19:b1:30:92:41:48:6e:43:0c:e0:e3: 8f:2b:1d:58:23:e5:26:ac:bd:52:2a:38:0e:4b:80: be:5c:27:a1:ab:0f:61:13:47:2d:e5:cd:0f:db:a2: d4:a3:f9:94:2e:f5:7b:52:5e:d8:e4:9a:da:7c:06: 27:f8:a5:12:04:7c:30:b7:b3:0e:32:37:ab:0f:36: 3e:09:68:22:ff:19:e8:ac:87:e3:72:b3:4d:ec:df: b5:b6:84:ff:8d:af:57:3e:22:b1:8d:98:25:38:31: 84:87:06:ff:13:21:0a:47:e9:04:a2:fe:cd:ee:06: d6:23:7d:be:27:de:55:d6:78:1d:5e:60:d5:27:4e: c0:86:35:8a:3a:77:ee:4b:1d:68:fe:79:8d:4f:38: 60:77:a7:5c:19:02:e4:1f:7b:db:26:27:fc:fd:20: 8b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4F:BF:22:8A:09:84:DD:C9:A6:FF:AC:44:37:B8:B1:39:C7:5C:67 X509v3 Authority Key Identifier: keyid:EB:22:19:59:BA:B6:2C:A0:F2:C1:84:4E:76:41:59:F0:81:AE:41:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094823639288709122/0/EB221959BAB62CA0F2C1844E764159F081AE413B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/EB221959BAB62CA0F2C1844E764159F081AE413B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094823639288709122/0/323430303a646565303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:dee0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:a3:df:66:b8:56:06:ca:a5:e9:2e:44:74:97:16:c2:3e:98: 19:46:04:0f:ae:47:02:a7:0c:03:a4:14:bc:60:7a:36:a4:a3: bd:80:d0:ec:71:05:7d:59:9f:dd:48:e9:9b:bb:d2:1f:1d:ab: 0e:14:72:ee:45:18:35:da:eb:ae:17:58:91:0d:22:22:27:e7: 48:bd:c2:09:80:3a:01:12:b4:47:ac:c6:c2:8e:cf:0b:3e:b0: 41:66:86:cf:0b:d4:c0:13:c4:30:71:c8:29:5c:fc:da:ee:78: 2e:96:e4:24:49:69:5d:ce:f6:8c:09:66:35:e6:35:72:7e:12: 48:ca:34:09:a9:da:18:d1:c4:e9:4a:f1:df:c7:d1:d5:ea:a2: 15:a3:3d:7b:d8:bb:17:62:22:ba:a9:ee:03:5d:3a:1f:a5:a4: 36:97:67:34:95:b0:40:ce:55:9a:73:74:5a:f6:de:6e:4a:08: 04:a8:6d:c4:80:eb:74:7b:22:bb:7c:1b:5d:2a:c4:02:c9:18: 40:64:2e:51:be:87:93:01:f5:31:d0:19:ee:b7:64:d3:f8:5c: f6:60:20:3b:cf:4d:fd:1e:60:bf:18:da:a4:28:c8:5c:93:47: 7a:90:d3:6b:10:ad:b7:75:40:9e:1c:63:fe:bc:c8:0a:b5:bd: 6c:aa:4c:4a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUf5SuDOiH6LAOInowF08xEsibxHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUIyMjE5NTlCQUI2MkNBMEYyQzE4NDRFNzY0MTU5RjA4 MUFFNDEzQjAeFw0yNjA0MTAwMzMxMDZaFw0yNzA0MDkwMzM2MDZaMDMxMTAvBgNV BAMTKEYxNEZCRjIyOEEwOTg0RERDOUE2RkZBQzQ0MzdCOEIxMzlDNzVDNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2GbnEZC9jSejJWEb96YKlWy0U uNpu+uLdQiJlS2uqkBfnBLPyQhVGggLcr/6ugxFy2IYAEqCRXae/xaWosOJE+z7I MSuQt/77UX/UJrJQNDkTJdclT6AOOv+hYksZsTCSQUhuQwzg448rHVgj5SasvVIq OA5LgL5cJ6GrD2ETRy3lzQ/botSj+ZQu9XtSXtjkmtp8Bif4pRIEfDC3sw4yN6sP Nj4JaCL/Geish+Nys03s37W2hP+Nr1c+IrGNmCU4MYSHBv8TIQpH6QSi/s3uBtYj fb4n3lXWeB1eYNUnTsCGNYo6d+5LHWj+eY1POGB3p1wZAuQfe9smJ/z9IIs5AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQU8U+/IooJhN3Jpv+sRDe4sTnHXGcwHwYDVR0j BBgwFoAU6yIZWbq2LKDywYROdkFZ8IGuQTswDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDgyMzYzOTI4ODcwOTEyMi8wL0VCMjIxOTU5QkFCNjJDQTBGMkMxODQ0RTc2NDE1 OUYwODFBRTQxM0IuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRUIyMjE5NTlCQUI2MkNBMEYyQzE4NDRFNzY0MTU5RjA4MUFFNDEzQi5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0ODIzNjM5Mjg4NzA5MTIyLzAvMzIzNDMwMzAzYTY0 NjU2NTMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAN7g MA0GCSqGSIb3DQEBCwUAA4IBAQBNo99muFYGyqXpLkR0lxbCPpgZRgQPrkcCpwwD pBS8YHo2pKO9gNDscQV9WZ/dSOmbu9IfHasOFHLuRRg12uuuF1iRDSIiJ+dIvcIJ gDoBErRHrMbCjs8LPrBBZobPC9TAE8QwccgpXPza7nguluQkSWldzvaMCWY15jVy fhJIyjQJqdoY0cTpSvHfx9HV6qIVoz172LsXYiK6qe4DXTofpaQ2l2c0lbBAzlWa c3Ra9t5uSggEqG3EgOt0eyK7fBtdKsQCyRhAZC5RvoeTAfUx0Bnut2TT+Fz2YCA7 z039HmC/GNqkKMhck0d6kNNrEK23dUCeHGP+vMgKtb1sqkxK -----END CERTIFICATE-----Generated at Mon Apr 13 13:53:26 2026 by rpki-client