$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a343a3a2f34382d3438203d3e203338333435.roa File: 323430313a386430303a343a3a2f34382d3438203d3e203338333435.roa (raw, json) Hash identifier: /V40I2ByyEfFlUGp/weCqhDvL3GAjEe6nOeFQz9nCN4= Subject key identifier: 01:1F:A9:16:AF:E0:D7:2D:C2:B8:E0:C4:33:18:A7:9B:06:FD:9E:C5 Certificate issuer: /CN=A48290B7B4443542D0460FD49BDF1B444360AE86 Certificate serial: 62B210DE08413348C74EF970E79C01146CC40B37 Authority key identifier: A4:82:90:B7:B4:44:35:42:D0:46:0F:D4:9B:DF:1B:44:43:60:AE:86 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a343a3a2f34382d3438203d3e203338333435.roa Signing time: Fri 10 Apr 2026 08:13:08 +0000 ROA not before: Fri 10 Apr 2026 08:08:08 +0000 ROA not after: Fri 09 Apr 2027 08:13:08 +0000 asID: 38345 IP address blocks: 2401:8d00:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.crl rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 12:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:b2:10:de:08:41:33:48:c7:4e:f9:70:e7:9c:01:14:6c:c4:0b:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A48290B7B4443542D0460FD49BDF1B444360AE86 Validity Not Before: Apr 10 08:08:08 2026 GMT Not After : Apr 9 08:13:08 2027 GMT Subject: CN=011FA916AFE0D72DC2B8E0C43318A79B06FD9EC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8e:ae:57:99:3d:01:ad:31:90:05:0b:3b:2f: f7:c3:32:99:89:02:7b:36:26:a1:4d:2d:37:c0:39: e4:ed:e9:7d:df:89:83:c1:34:46:01:30:fd:6e:5f: 62:eb:07:19:59:86:b2:38:7d:b1:8d:fc:48:91:73: 27:3a:4a:9d:fd:43:80:af:b9:55:a5:8b:00:0d:f8: 2d:ca:9d:4d:c7:19:de:72:4f:e1:36:e9:ea:11:f5: c9:b7:e2:da:f9:fe:71:b9:51:a4:6b:cf:eb:43:1a: 4a:14:e8:85:70:bd:8a:5c:29:d9:92:bf:11:4d:ae: 6a:d2:b1:26:a3:30:13:35:41:38:d3:df:b9:e8:52: 3a:e8:87:fa:b1:36:7d:68:54:c1:8e:4b:a7:ed:bc: ce:31:e3:3a:34:56:1e:54:2d:b6:b2:11:d7:2c:3f: fc:a3:88:d0:58:04:05:5b:61:49:a6:89:74:6b:33: 59:12:9e:28:73:6d:ce:86:dc:c0:15:a2:94:12:ff: bd:46:8b:5e:40:9f:26:30:c3:9a:7d:3a:5b:44:1a: a8:c1:4e:6c:70:40:b3:f7:7d:03:54:ac:b1:bc:3b: 61:ec:58:41:88:c0:18:ba:e6:9a:b1:e1:52:b2:a3: 4a:09:c7:3b:d8:21:31:52:f8:18:27:51:cf:69:e6: af:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1F:A9:16:AF:E0:D7:2D:C2:B8:E0:C4:33:18:A7:9B:06:FD:9E:C5 X509v3 Authority Key Identifier: keyid:A4:82:90:B7:B4:44:35:42:D0:46:0F:D4:9B:DF:1B:44:43:60:AE:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/A48290B7B4443542D0460FD49BDF1B444360AE86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A48290B7B4443542D0460FD49BDF1B444360AE86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094884727254482947/0/323430313a386430303a343a3a2f34382d3438203d3e203338333435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8d00:4::/48 Signature Algorithm: sha256WithRSAEncryption 47:75:4e:8e:0b:2d:a9:42:98:0a:27:60:a4:20:e2:a3:c7:1f: 00:fb:11:8b:b8:d8:be:ab:df:37:e2:a6:72:56:14:f4:3d:eb: 10:0b:12:4d:b2:86:50:52:97:cf:49:bc:4b:b8:45:5e:03:70: b8:a7:b0:81:2b:e2:ab:ea:34:a8:3f:86:3d:61:6c:97:f3:68: 76:4f:af:0e:86:a7:60:63:4e:13:59:0f:5b:f8:37:31:08:06: 7a:0a:53:ad:7e:1b:61:66:cb:34:f8:31:40:30:f2:9b:1e:7f: 5b:0f:8a:61:84:6e:18:21:05:35:07:d1:5b:b7:e9:7f:8e:c2: c8:8a:6b:1e:29:ce:39:2d:54:b0:9e:6e:a3:6a:56:77:c0:91: 43:0b:34:90:cb:b4:bf:ea:86:8a:21:f4:fb:34:a9:92:3f:07: 37:e6:b1:6b:6f:f2:ce:75:d3:d9:30:3c:06:6e:fa:e0:b0:22: e7:b9:7a:29:0b:7e:eb:1f:a3:62:3b:71:c3:a3:7b:18:35:16: 24:e0:d2:88:7d:57:79:e9:f0:43:b2:67:7e:fd:5e:7a:88:8b: d7:44:f3:6f:5e:07:a7:b3:e5:e2:95:d1:a8:9e:d3:1a:35:37: 21:bb:ac:22:ab:2e:b1:4a:5b:9d:a6:d2:61:99:3a:66:49:7a: 21:d3:a7:0b -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUYrIQ3ghBM0jHTvlw55wBFGzECzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQ4MjkwQjdCNDQ0MzU0MkQwNDYwRkQ0OUJERjFCNDQ0 MzYwQUU4NjAeFw0yNjA0MTAwODA4MDhaFw0yNzA0MDkwODEzMDhaMDMxMTAvBgNV BAMTKDAxMUZBOTE2QUZFMEQ3MkRDMkI4RTBDNDMzMThBNzlCMDZGRDlFQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8jq5XmT0BrTGQBQs7L/fDMpmJ Ans2JqFNLTfAOeTt6X3fiYPBNEYBMP1uX2LrBxlZhrI4fbGN/EiRcyc6Sp39Q4Cv uVWliwAN+C3KnU3HGd5yT+E26eoR9cm34tr5/nG5UaRrz+tDGkoU6IVwvYpcKdmS vxFNrmrSsSajMBM1QTjT37noUjroh/qxNn1oVMGOS6ftvM4x4zo0Vh5ULbayEdcs P/yjiNBYBAVbYUmmiXRrM1kSnihzbc6G3MAVopQS/71Gi15AnyYww5p9OltEGqjB TmxwQLP3fQNUrLG8O2HsWEGIwBi65pqx4VKyo0oJxzvYITFS+BgnUc9p5q8dAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUAR+pFq/g1y3CuODEMxinmwb9nsUwHwYDVR0j BBgwFoAUpIKQt7RENULQRg/Um98bRENgroYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg4NDcyNzI1NDQ4Mjk0Ny8wL0E0ODI5MEI3QjQ0NDM1NDJEMDQ2MEZENDlCREYx QjQ0NDM2MEFFODYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTQ4MjkwQjdCNDQ0MzU0MkQwNDYwRkQ0OUJERjFCNDQ0MzYwQUU4Ni5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4ODQ3MjcyNTQ0ODI5NDcvMC8zMjM0MzAzMTNh Mzg2NDMwMzAzYTM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODMzMzQzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBjQAABDANBgkqhkiG9w0BAQsFAAOCAQEAR3VOjgstqUKYCidg pCDio8cfAPsRi7jYvqvfN+KmclYU9D3rEAsSTbKGUFKXz0m8S7hFXgNwuKewgSvi q+o0qD+GPWFsl/Nodk+vDoanYGNOE1kPW/g3MQgGegpTrX4bYWbLNPgxQDDymx5/ Ww+KYYRuGCEFNQfRW7fpf47CyIprHinOOS1UsJ5uo2pWd8CRQws0kMu0v+qGiiH0 +zSpkj8HN+axa2/yznXT2TA8Bm764LAi57l6KQt+6x+jYjtxw6N7GDUWJODSiH1X eenwQ7Jnfv1eeoiL10Tzb14Hp7Pl4pXRqJ7TGjU3IbusIqsusUpbnabSYZk6Zkl6 IdOnCw== -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:39 2026 by rpki-client