$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a323a3a2f34382d3438203d3e203234313439.roa File: 323430313a386430303a323a3a2f34382d3438203d3e203234313439.roa (raw, json) Hash identifier: 2NCIfx7zp3BNIgnXtOMf2pttCj97pJulIyYvUXhB8bw= Subject key identifier: 00:85:56:89:19:3F:2B:C6:85:1E:DB:5E:E8:19:E4:9E:2B:A1:29:30 Certificate issuer: /CN=A48290B7B4443542D0460FD49BDF1B444360AE86 Certificate serial: 1C94549D0049EF6C11E957AA20697E1C40506B98 Authority key identifier: A4:82:90:B7:B4:44:35:42:D0:46:0F:D4:9B:DF:1B:44:43:60:AE:86 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a323a3a2f34382d3438203d3e203234313439.roa Signing time: Fri 10 Apr 2026 08:13:07 +0000 ROA not before: Fri 10 Apr 2026 08:08:07 +0000 ROA not after: Fri 09 Apr 2027 08:13:07 +0000 asID: 24149 IP address blocks: 2401:8d00:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.crl rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:94:54:9d:00:49:ef:6c:11:e9:57:aa:20:69:7e:1c:40:50:6b:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A48290B7B4443542D0460FD49BDF1B444360AE86 Validity Not Before: Apr 10 08:08:07 2026 GMT Not After : Apr 9 08:13:07 2027 GMT Subject: CN=00855689193F2BC6851EDB5EE819E49E2BA12930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d8:04:75:a3:a8:42:f9:db:ed:8b:70:67:cf: 8b:b5:b4:c2:cb:81:13:94:e9:94:58:c3:28:8f:db: d3:34:cd:3c:42:fd:da:19:09:a6:ba:6c:6b:67:af: 26:c6:dc:51:0c:70:c9:c6:f4:62:e7:75:27:51:b4: 26:3c:33:9c:c2:39:11:b2:b5:d2:d9:ba:fe:50:a0: ce:72:74:43:4c:d5:1a:1f:cd:cc:39:58:2a:12:ef: 4c:fe:08:11:be:78:02:44:91:06:4e:66:c6:c3:b8: d8:4f:c9:89:0c:af:9d:bb:f1:07:b3:02:1d:93:59: b4:84:d0:bd:c4:ca:6f:72:09:5b:ed:2e:bc:dc:ad: 14:9e:9a:d2:9d:78:75:63:9c:92:b7:3a:1d:17:64: 79:49:f2:26:04:7a:3c:49:9f:b2:5b:c1:e0:c6:e8: 9e:0f:de:4c:16:55:d7:01:28:ce:b9:c0:36:70:1b: 6b:09:3c:9a:3c:a3:18:e0:a3:65:ad:92:69:54:97: 48:35:31:6e:28:e6:78:82:ca:2a:b7:11:58:10:4f: 09:75:14:b6:f1:3e:dc:48:ce:da:2b:95:ac:ba:3b: 31:fb:9f:c7:3d:d2:5b:72:9c:be:50:9f:c1:fe:9b: ac:e8:6c:d1:9b:05:6d:f1:ca:0e:37:88:c6:47:1f: d9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:85:56:89:19:3F:2B:C6:85:1E:DB:5E:E8:19:E4:9E:2B:A1:29:30 X509v3 Authority Key Identifier: keyid:A4:82:90:B7:B4:44:35:42:D0:46:0F:D4:9B:DF:1B:44:43:60:AE:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a323a3a2f34382d3438203d3e203234313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8d00:2::/48 Signature Algorithm: sha256WithRSAEncryption 7d:b7:d4:34:12:3b:25:e6:8f:1d:03:1e:d3:e9:b1:81:43:0f: 26:16:45:ed:60:be:5c:a6:2d:37:e9:2b:ac:5f:60:90:09:81: a6:9d:bb:5d:bd:47:57:37:f1:7d:b4:89:b9:a9:9c:75:38:bb: 43:1e:61:6c:df:4a:80:f4:c9:07:ef:36:ef:58:db:56:78:e6: 7f:fe:f9:a2:b0:60:55:5d:dd:dd:f9:92:d8:80:9c:34:5b:fa: 6d:0b:48:de:7a:83:6f:b4:2a:a7:d8:7d:53:34:bd:55:27:b9: c2:f0:13:9c:be:f3:8b:0f:e2:88:3b:c5:49:63:b8:ad:ad:7f: 46:ad:7e:fa:8e:b4:ae:cd:63:d1:91:04:68:86:d6:80:68:59: 49:6d:8d:c0:8d:4d:4e:ce:6f:90:ed:58:46:aa:ed:53:94:35: 6d:1c:9c:e7:fd:60:5a:49:08:59:b3:cb:8e:36:ae:a2:63:a5: 7f:c8:40:8a:a9:f7:b0:e2:2c:72:c5:43:d3:0f:9c:9e:71:66: 45:9f:b2:3a:00:8e:62:e2:2b:d2:ba:bb:01:c8:1d:ed:f5:22: 45:27:16:86:2e:ae:b7:d3:08:9e:80:53:04:41:5a:9c:7f:70: 09:99:6b:a6:6e:ed:4e:04:82:90:3f:f8:12:36:d8:49:1c:13: fd:d6:0e:33 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUHJRUnQBJ72wR6VeqIGl+HEBQa5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQ4MjkwQjdCNDQ0MzU0MkQwNDYwRkQ0OUJERjFCNDQ0 MzYwQUU4NjAeFw0yNjA0MTAwODA4MDdaFw0yNzA0MDkwODEzMDdaMDMxMTAvBgNV BAMTKDAwODU1Njg5MTkzRjJCQzY4NTFFREI1RUU4MTlFNDlFMkJBMTI5MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ2AR1o6hC+dvti3Bnz4u1tMLL gROU6ZRYwyiP29M0zTxC/doZCaa6bGtnrybG3FEMcMnG9GLndSdRtCY8M5zCORGy tdLZuv5QoM5ydENM1Rofzcw5WCoS70z+CBG+eAJEkQZOZsbDuNhPyYkMr5278Qez Ah2TWbSE0L3Eym9yCVvtLrzcrRSemtKdeHVjnJK3Oh0XZHlJ8iYEejxJn7JbweDG 6J4P3kwWVdcBKM65wDZwG2sJPJo8oxjgo2WtkmlUl0g1MW4o5niCyiq3EVgQTwl1 FLbxPtxIztorlay6OzH7n8c90ltynL5Qn8H+m6zobNGbBW3xyg43iMZHH9lHAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUAIVWiRk/K8aFHtte6BnkniuhKTAwHwYDVR0j BBgwFoAUpIKQt7RENULQRg/Um98bRENgroYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg4NDcyNzI1NDQ4Mjk0Ny8wL0E0ODI5MEI3QjQ0NDM1NDJEMDQ2MEZENDlCREYx QjQ0NDM2MEFFODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTQ4MjkwQjdCNDQ0MzU0MkQwNDYwRkQ0OUJERjFCNDQ0MzYwQUU4Ni5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4ODQ3MjcyNTQ0ODI5NDcvMC8zMjM0MzAzMTNh Mzg2NDMwMzAzYTMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzNDMxMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBjQAAAjANBgkqhkiG9w0BAQsFAAOCAQEAfbfUNBI7JeaPHQMe 0+mxgUMPJhZF7WC+XKYtN+krrF9gkAmBpp27Xb1HVzfxfbSJuamcdTi7Qx5hbN9K gPTJB+8271jbVnjmf/75orBgVV3d3fmS2ICcNFv6bQtI3nqDb7Qqp9h9UzS9VSe5 wvATnL7ziw/iiDvFSWO4ra1/Rq1++o60rs1j0ZEEaIbWgGhZSW2NwI1NTs5vkO1Y RqrtU5Q1bRyc5/1gWkkIWbPLjjauomOlf8hAiqn3sOIscsVD0w+cnnFmRZ+yOgCO YuIr0rq7Acgd7fUiRScWhi6ut9MInoBTBEFanH9wCZlrpm7tTgSCkD/4EjbYSRwT /dYOMw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:25 2026 by rpki-client