$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a313030313a3a2f34382d3438203d3e203234313431.roa File: 323430303a393630303a313030313a3a2f34382d3438203d3e203234313431.roa (raw, json) Hash identifier: 2F7BeRm8DPPVLV9TdHFLrOjIwwic5CevOkWcESL5qPw= Subject key identifier: 3B:76:9E:61:6C:8E:40:58:C6:EA:BF:BF:94:E9:71:14:39:0B:7C:E6 Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 7AABEFBF110669D9099F85F15D18B143BEC34AAD Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a313030313a3a2f34382d3438203d3e203234313431.roa Signing time: Mon 13 Apr 2026 03:07:35 +0000 ROA not before: Mon 13 Apr 2026 03:02:35 +0000 ROA not after: Mon 12 Apr 2027 03:07:35 +0000 asID: 24141 IP address blocks: 2400:9600:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ab:ef:bf:11:06:69:d9:09:9f:85:f1:5d:18:b1:43:be:c3:4a:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 13 03:02:35 2026 GMT Not After : Apr 12 03:07:35 2027 GMT Subject: CN=3B769E616C8E4058C6EABFBF94E97114390B7CE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f8:12:67:d8:c6:17:77:cd:9c:2d:a3:fe:76: 9b:81:9f:b4:0e:22:32:4e:4d:85:64:69:4e:cb:2c: 89:60:db:05:74:a4:0f:ea:cf:38:24:b8:c4:1d:72: ae:ad:10:6b:99:66:40:60:40:71:b3:8e:7f:ef:7a: 85:d6:fb:1a:b9:0b:f5:cf:5f:5a:59:2c:f9:ec:de: de:0f:73:a2:55:92:f6:1c:94:f6:74:e8:f2:2f:36: 6f:4c:7f:84:bb:6c:88:cb:32:27:04:4b:2c:b6:47: 36:b4:6f:5f:c0:15:a3:0f:61:a5:3e:c6:30:f8:ae: 06:81:89:c0:59:32:b4:84:b4:b8:5d:47:03:b2:bb: 3a:1b:0d:59:b9:81:dd:35:d3:5e:6c:31:39:76:90: 5d:6c:76:6d:07:bc:5f:d8:63:87:01:9b:84:cf:96: 3c:8b:f9:1f:07:75:50:cd:19:c4:d3:a0:f8:1a:e4: 21:45:24:94:0f:1b:e1:6c:1d:77:2c:92:90:be:d1: 05:1e:7a:d4:ed:10:87:1f:8d:30:09:eb:51:43:5e: af:91:b5:b0:a3:4d:58:9e:84:0d:59:d0:99:df:af: 5a:9d:5e:b3:fa:bc:77:f4:20:e2:57:91:65:a3:83: 7c:1f:bd:4a:93:18:7f:6a:f1:3e:43:f1:d2:b0:57: 14:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:76:9E:61:6C:8E:40:58:C6:EA:BF:BF:94:E9:71:14:39:0B:7C:E6 X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a313030313a3a2f34382d3438203d3e203234313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9600:1001::/48 Signature Algorithm: sha256WithRSAEncryption c2:ff:93:52:73:3b:98:af:7c:00:12:45:ac:01:a3:ce:75:bd: f5:15:b3:d0:e3:26:53:40:a6:09:3f:01:43:54:90:d2:e4:a4: e0:8f:f6:7c:88:93:7c:ce:78:c7:9a:6c:df:69:27:60:02:f6: 53:c4:84:eb:a5:3f:49:f7:8a:7d:60:f5:e0:81:f8:af:12:b8: 49:f3:4e:ea:86:20:86:0f:5d:03:35:38:24:82:da:f1:60:a7: af:28:93:8c:04:89:1f:68:e6:93:17:5f:42:df:7c:2d:05:c9: 5a:73:44:da:9d:87:de:e9:c9:1b:0a:12:04:fb:2b:4f:fb:15: 8a:14:83:46:6d:dd:07:49:0c:8a:19:b9:80:d4:1b:90:6f:37: 93:68:5a:e6:7d:53:fa:31:ef:9e:42:be:d6:47:7d:3c:c7:3f: 07:f9:0d:9c:36:95:88:84:9e:a7:b0:3f:ce:ff:07:8f:19:37: 75:60:04:c5:18:b5:9b:f7:36:99:6a:b4:ef:74:c4:c1:47:62: 28:4f:dd:37:3c:45:59:29:ce:f0:13:ee:5d:fe:55:a4:a3:02: df:25:33:41:d7:22:22:6b:78:32:08:6f:87:3a:17:e7:84:23: f3:76:7c:ad:ea:e7:fd:e4:e6:1a:84:b0:a6:50:b2:b6:7e:39: f7:e6:13:53 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUeqvvvxEGadkJn4XxXRixQ77DSq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MTMwMzAyMzVaFw0yNzA0MTIwMzA3MzVaMDMxMTAvBgNV BAMTKDNCNzY5RTYxNkM4RTQwNThDNkVBQkZCRjk0RTk3MTE0MzkwQjdDRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3+BJn2MYXd82cLaP+dpuBn7QO IjJOTYVkaU7LLIlg2wV0pA/qzzgkuMQdcq6tEGuZZkBgQHGzjn/veoXW+xq5C/XP X1pZLPns3t4Pc6JVkvYclPZ06PIvNm9Mf4S7bIjLMicESyy2Rza0b1/AFaMPYaU+ xjD4rgaBicBZMrSEtLhdRwOyuzobDVm5gd01015sMTl2kF1sdm0HvF/YY4cBm4TP ljyL+R8HdVDNGcTToPga5CFFJJQPG+FsHXcskpC+0QUeetTtEIcfjTAJ61FDXq+R tbCjTViehA1Z0Jnfr1qdXrP6vHf0IOJXkWWjg3wfvUqTGH9q8T5D8dKwVxSPAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUO3aeYWyOQFjG6r+/lOlxFDkLfOYwHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk1ODg3ODgwMDgzMDEzNjM1LzAvMzIzNDMwMzAz YTM5MzYzMDMwM2EzMTMwMzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQz MTM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAJYAEAEwDQYJKoZIhvcNAQELBQADggEBAML/k1Jz O5ivfAASRawBo851vfUVs9DjJlNApgk/AUNUkNLkpOCP9nyIk3zOeMeabN9pJ2AC 9lPEhOulP0n3in1g9eCB+K8SuEnzTuqGIIYPXQM1OCSC2vFgp68ok4wEiR9o5pMX X0LffC0FyVpzRNqdh97pyRsKEgT7K0/7FYoUg0Zt3QdJDIoZuYDUG5BvN5NoWuZ9 U/ox755CvtZHfTzHPwf5DZw2lYiEnqewP87/B48ZN3VgBMUYtZv3NplqtO90xMFH YihP3Tc8RVkpzvAT7l3+VaSjAt8lM0HXIiJreDIIb4c6F+eEI/N2fK3q5/3k5hqE sKZQsrZ+OffmE1M= -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:50 2026 by rpki-client