$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a31323a3a2f34382d3438203d3e203338333435.roa File: 323430313a386430303a31323a3a2f34382d3438203d3e203338333435.roa (raw, json) Hash identifier: qYM/pSMK+Kg9j9huP+ETK5NymprHabnwf7U4hVpMqTY= Subject key identifier: D4:2F:8B:11:71:14:41:9A:32:B2:76:31:F1:9C:FD:DA:0B:43:CE:40 Certificate issuer: /CN=A48290B7B4443542D0460FD49BDF1B444360AE86 Certificate serial: 72F15197D2DCE9EC8CC49B7FA966C9AEA1D79C26 Authority key identifier: A4:82:90:B7:B4:44:35:42:D0:46:0F:D4:9B:DF:1B:44:43:60:AE:86 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a31323a3a2f34382d3438203d3e203338333435.roa Signing time: Fri 10 Apr 2026 08:13:08 +0000 ROA not before: Fri 10 Apr 2026 08:08:08 +0000 ROA not after: Fri 09 Apr 2027 08:13:08 +0000 asID: 38345 IP address blocks: 2401:8d00:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.crl rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f1:51:97:d2:dc:e9:ec:8c:c4:9b:7f:a9:66:c9:ae:a1:d7:9c:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A48290B7B4443542D0460FD49BDF1B444360AE86 Validity Not Before: Apr 10 08:08:08 2026 GMT Not After : Apr 9 08:13:08 2027 GMT Subject: CN=D42F8B117114419A32B27631F19CFDDA0B43CE40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ce:f8:f3:ec:b8:df:d9:c0:90:7c:95:94:fb: da:38:af:6d:80:c1:02:b1:53:90:c0:57:b9:ff:7d: cb:30:cf:93:58:88:1d:4c:59:57:6b:40:41:b3:48: 7f:fc:c5:f3:51:67:a5:7c:8b:42:2b:83:1e:c0:27: 00:7b:72:31:7f:90:91:91:4a:14:c5:36:86:51:16: ff:29:76:8f:e2:ba:34:24:16:12:5f:fd:d6:4c:a6: 51:ca:5d:81:83:ee:39:25:d6:42:4c:bf:4a:c5:53: 44:b7:81:1d:47:a9:4b:ef:6c:e9:93:f7:9f:20:3c: e0:a2:cb:69:95:ce:df:68:a5:c1:8e:36:7f:42:d9: 0b:4d:e1:0a:cb:cc:ea:cd:01:c2:7d:d7:8b:a9:fa: 3a:e9:c7:97:a4:af:23:47:8a:0c:95:20:3f:fd:dd: 2d:47:61:b8:f2:07:3d:10:cc:0b:ba:7e:68:4e:83: dd:54:0b:ba:3c:e6:5e:b7:20:76:7a:64:11:69:46: 4f:07:ce:1d:a3:80:ed:ee:3a:be:a6:e4:02:93:bc: b0:03:58:cf:11:f0:8d:85:41:4f:75:6e:67:c8:a8: 67:8d:51:f5:b2:73:50:9e:3a:b5:b0:1d:fe:b9:c3: ba:39:01:44:67:7c:78:36:9e:5e:9a:d2:f3:34:39: 29:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2F:8B:11:71:14:41:9A:32:B2:76:31:F1:9C:FD:DA:0B:43:CE:40 X509v3 Authority Key Identifier: keyid:A4:82:90:B7:B4:44:35:42:D0:46:0F:D4:9B:DF:1B:44:43:60:AE:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a31323a3a2f34382d3438203d3e203338333435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8d00:12::/48 Signature Algorithm: sha256WithRSAEncryption 87:56:9c:b4:bd:a0:0d:b6:26:c8:56:b5:c1:57:fd:1e:fd:4a: f9:7a:ad:88:8d:a1:a7:a1:08:e0:84:c0:98:aa:bd:24:d8:f1: 74:9e:45:76:d8:53:34:58:6a:da:0d:37:52:a5:02:77:6d:9b: 53:98:7e:ea:d6:1a:5a:f3:b7:a2:58:56:31:1d:46:7a:d0:d6: 2a:45:3f:fb:0a:eb:55:48:64:53:68:34:ff:c7:b3:d7:3b:06: 29:e2:9e:48:44:bf:36:5a:5e:47:ed:83:2f:15:d4:fa:7d:2c: ed:2a:7e:0b:8c:7a:29:1d:e4:77:b0:d3:59:92:eb:02:b8:db: f7:d6:a3:d9:5d:50:2b:d2:a0:ed:76:ff:74:15:67:ca:fc:f0: bc:0b:07:59:59:02:c2:6c:b8:d1:da:9a:ef:3c:35:90:48:a6: 69:8d:be:f2:ac:a5:fe:a4:16:6f:84:dd:43:09:b8:56:d1:7b: c5:b9:be:d2:21:4c:fe:f5:ea:37:92:27:ca:ec:bc:54:6d:e4: 09:f8:81:83:d2:7d:dc:b7:e4:23:cd:34:f5:7a:3a:d9:19:d1: fa:fe:c3:ac:bc:d9:54:0b:04:e5:ff:5a:2b:24:7d:d0:c7:69: 3a:7e:76:ec:6b:07:14:1b:b6:3b:ae:d7:90:b4:e9:96:42:9a: ab:b3:40:b2 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUcvFRl9Lc6eyMxJt/qWbJrqHXnCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQ4MjkwQjdCNDQ0MzU0MkQwNDYwRkQ0OUJERjFCNDQ0 MzYwQUU4NjAeFw0yNjA0MTAwODA4MDhaFw0yNzA0MDkwODEzMDhaMDMxMTAvBgNV BAMTKEQ0MkY4QjExNzExNDQxOUEzMkIyNzYzMUYxOUNGRERBMEI0M0NFNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPzvjz7Ljf2cCQfJWU+9o4r22A wQKxU5DAV7n/fcswz5NYiB1MWVdrQEGzSH/8xfNRZ6V8i0Irgx7AJwB7cjF/kJGR ShTFNoZRFv8pdo/iujQkFhJf/dZMplHKXYGD7jkl1kJMv0rFU0S3gR1HqUvvbOmT 958gPOCiy2mVzt9opcGONn9C2QtN4QrLzOrNAcJ914up+jrpx5ekryNHigyVID/9 3S1HYbjyBz0QzAu6fmhOg91UC7o85l63IHZ6ZBFpRk8Hzh2jgO3uOr6m5AKTvLAD WM8R8I2FQU91bmfIqGeNUfWyc1CeOrWwHf65w7o5AURnfHg2nl6a0vM0OSn9AgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU1C+LEXEUQZoysnYx8Zz92gtDzkAwHwYDVR0j BBgwFoAUpIKQt7RENULQRg/Um98bRENgroYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg4NDcyNzI1NDQ4Mjk0Ny8wL0E0ODI5MEI3QjQ0NDM1NDJEMDQ2MEZENDlCREYx QjQ0NDM2MEFFODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTQ4MjkwQjdCNDQ0MzU0MkQwNDYwRkQ0OUJERjFCNDQ0MzYwQUU4Ni5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk0ODg0NzI3MjU0NDgyOTQ3LzAvMzIzNDMwMzEz YTM4NjQzMDMwM2EzMTMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODMzMzQz NS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBjQAAEjANBgkqhkiG9w0BAQsFAAOCAQEAh1actL2gDbYm yFa1wVf9Hv1K+XqtiI2hp6EI4ITAmKq9JNjxdJ5FdthTNFhq2g03UqUCd22bU5h+ 6tYaWvO3olhWMR1GetDWKkU/+wrrVUhkU2g0/8ez1zsGKeKeSES/NlpeR+2DLxXU +n0s7Sp+C4x6KR3kd7DTWZLrArjb99aj2V1QK9Kg7Xb/dBVnyvzwvAsHWVkCwmy4 0dqa7zw1kEimaY2+8qyl/qQWb4TdQwm4VtF7xbm+0iFM/vXqN5Inyuy8VG3kCfiB g9J93LfkI8009Xo62RnR+v7DrLzZVAsE5f9aKyR90MdpOn527GsHFBu2O67XkLTp lkKaq7NAsg== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:33 2026 by rpki-client