$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a313030323a3a2f34382d3438203d3e203234313431.roa File: 323430303a393630303a313030323a3a2f34382d3438203d3e203234313431.roa (raw, json) Hash identifier: gv01Cobcrr+nkefx7aMMdKfyW9zqkrOes4lnfGveOPo= Subject key identifier: 52:17:87:2C:4F:F3:05:B7:AF:DE:2D:FC:BB:46:F7:A3:C8:1C:59:1C Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 5FF3D1970C792448CCB75E888BB7B90CE69FCC5D Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a313030323a3a2f34382d3438203d3e203234313431.roa Signing time: Mon 13 Apr 2026 03:07:35 +0000 ROA not before: Mon 13 Apr 2026 03:02:35 +0000 ROA not after: Mon 12 Apr 2027 03:07:35 +0000 asID: 24141 IP address blocks: 2400:9600:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:f3:d1:97:0c:79:24:48:cc:b7:5e:88:8b:b7:b9:0c:e6:9f:cc:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 13 03:02:35 2026 GMT Not After : Apr 12 03:07:35 2027 GMT Subject: CN=5217872C4FF305B7AFDE2DFCBB46F7A3C81C591C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:40:6d:32:75:90:a9:eb:0a:44:cf:ae:f4:50: b2:5c:d2:1d:45:91:33:c8:40:ff:8a:9c:a3:ba:34: f0:be:bc:c8:4c:70:ed:a5:72:30:66:59:1b:40:65: 01:ec:7c:56:b2:87:c1:1d:ca:d0:dd:9c:84:3b:72: 51:59:55:2a:d9:27:4d:b0:fc:97:81:98:fa:d6:d7: 66:a8:ff:0b:a0:dd:29:83:1c:97:f2:6d:83:2f:3d: 16:98:7a:55:30:6d:00:2c:51:02:a4:ae:87:21:19: 37:f4:70:16:4d:93:88:53:3f:ec:9a:b0:b0:78:4f: 11:89:d5:14:ef:af:6f:b0:05:1e:75:27:db:47:fe: f1:c3:94:ce:ac:e7:52:27:89:ce:05:f7:e3:bb:09: 2a:0f:c9:da:6e:12:89:f5:24:1c:4a:78:fa:db:6a: ee:4e:fa:af:fe:c2:aa:79:e1:b6:6e:35:92:60:00: c3:fa:d3:4a:ec:e2:98:89:da:48:00:ba:e0:3a:c9: 4d:8c:b0:4d:74:bf:24:90:3c:b4:a1:ee:20:4f:6e: 61:f2:ef:88:97:0b:b7:47:f3:49:aa:f9:d8:b7:9f: 64:55:7e:40:6c:4f:f2:35:fd:5a:46:9a:f3:c8:23: 04:2f:53:76:5a:2c:a3:10:e4:bd:0f:4f:03:15:49: 35:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:17:87:2C:4F:F3:05:B7:AF:DE:2D:FC:BB:46:F7:A3:C8:1C:59:1C X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a313030323a3a2f34382d3438203d3e203234313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9600:1002::/48 Signature Algorithm: sha256WithRSAEncryption 95:40:4b:b7:da:68:89:a1:be:18:f9:c9:22:d2:83:d2:52:b7: 59:81:30:c7:ce:b2:81:2c:d3:6f:ca:0d:84:a3:69:39:ce:92: b2:9c:e5:97:a0:11:6c:7b:3a:61:70:be:dd:36:4f:36:f7:49: ef:04:91:73:c1:02:79:b1:66:5b:03:9a:be:f5:8f:98:fb:26: df:c6:52:72:12:23:8e:c6:79:90:55:f3:16:b0:94:8b:b3:0b: 99:91:2f:ca:eb:de:0a:c1:08:0c:7c:f6:11:6c:fb:98:5c:91: 6d:29:bf:89:ac:9c:93:a0:47:9a:12:a9:ef:63:1e:94:51:1d: 20:b2:f1:cb:9c:75:29:1f:07:cd:89:70:f0:93:a1:b5:43:8f: 01:c0:78:a3:3e:36:8c:7f:ff:19:3a:0b:d7:ec:29:7e:f2:c6: 91:52:77:e3:a1:05:7f:ca:8f:41:4a:b1:89:c0:30:31:fc:66: 23:4e:dd:17:32:db:dd:49:3c:c8:77:8c:55:c6:36:03:26:a6: ac:70:7e:8f:c7:86:df:eb:d7:8c:aa:49:a4:c8:20:91:42:11: ae:0a:51:52:a5:f9:50:22:5a:59:2d:19:af:36:26:4b:94:5e: e9:78:2e:30:f8:8f:a0:50:0a:70:f3:43:51:de:90:21:2d:20: 2c:38:d3:fd -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUX/PRlwx5JEjMt16Ii7e5DOafzF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MTMwMzAyMzVaFw0yNzA0MTIwMzA3MzVaMDMxMTAvBgNV BAMTKDUyMTc4NzJDNEZGMzA1QjdBRkRFMkRGQ0JCNDZGN0EzQzgxQzU5MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeQG0ydZCp6wpEz670ULJc0h1F kTPIQP+KnKO6NPC+vMhMcO2lcjBmWRtAZQHsfFayh8EdytDdnIQ7clFZVSrZJ02w /JeBmPrW12ao/wug3SmDHJfybYMvPRaYelUwbQAsUQKkrochGTf0cBZNk4hTP+ya sLB4TxGJ1RTvr2+wBR51J9tH/vHDlM6s51Inic4F9+O7CSoPydpuEon1JBxKePrb au5O+q/+wqp54bZuNZJgAMP600rs4piJ2kgAuuA6yU2MsE10vySQPLSh7iBPbmHy 74iXC7dH80mq+di3n2RVfkBsT/I1/VpGmvPIIwQvU3ZaLKMQ5L0PTwMVSTWvAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUUheHLE/zBbev3i38u0b3o8gcWRwwHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk1ODg3ODgwMDgzMDEzNjM1LzAvMzIzNDMwMzAz YTM5MzYzMDMwM2EzMTMwMzAzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQz MTM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAJYAEAIwDQYJKoZIhvcNAQELBQADggEBAJVAS7fa aImhvhj5ySLSg9JSt1mBMMfOsoEs02/KDYSjaTnOkrKc5ZegEWx7OmFwvt02Tzb3 Se8EkXPBAnmxZlsDmr71j5j7Jt/GUnISI47GeZBV8xawlIuzC5mRL8rr3grBCAx8 9hFs+5hckW0pv4msnJOgR5oSqe9jHpRRHSCy8cucdSkfB82JcPCTobVDjwHAeKM+ Nox//xk6C9fsKX7yxpFSd+OhBX/Kj0FKsYnAMDH8ZiNO3Rcy291JPMh3jFXGNgMm pqxwfo/Hht/r14yqSaTIIJFCEa4KUVKl+VAiWlktGa82JkuUXul4LjD4j6BQCnDz Q1HekCEtICw40/0= -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:52 2026 by rpki-client