$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a353535353a3a2f34382d3438203d3e203234313431.roa File: 323430303a393630303a353535353a3a2f34382d3438203d3e203234313431.roa (raw, json) Hash identifier: QnEXBIp2dcoVeZXFWkqPwQNyz63QSKnTx67crNKfxXQ= Subject key identifier: D2:D0:1D:22:C5:70:46:CA:70:3B:12:74:04:8B:6E:DE:1E:64:66:77 Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 25BD0D7C8B4E885677FE535F3BEB6C2891F9B3B0 Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a353535353a3a2f34382d3438203d3e203234313431.roa Signing time: Mon 13 Apr 2026 03:08:51 +0000 ROA not before: Mon 13 Apr 2026 03:03:51 +0000 ROA not after: Mon 12 Apr 2027 03:08:51 +0000 asID: 24141 IP address blocks: 2400:9600:5555::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:bd:0d:7c:8b:4e:88:56:77:fe:53:5f:3b:eb:6c:28:91:f9:b3:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 13 03:03:51 2026 GMT Not After : Apr 12 03:08:51 2027 GMT Subject: CN=D2D01D22C57046CA703B1274048B6EDE1E646677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0b:c5:f4:39:f4:80:28:82:0c:74:b3:96:d8: 70:4a:dc:2b:82:d4:c7:f7:26:b1:59:b9:5e:eb:7a: 7e:d8:0a:e9:e7:fb:a0:87:e5:62:c5:80:2e:5c:f8: 76:d7:a7:58:ad:99:e6:e4:22:51:aa:b1:5c:ae:53: c0:07:e8:c7:95:73:33:67:ed:dc:c7:d5:ed:f9:97: af:11:2d:62:f4:26:3d:bb:6a:d6:2f:42:84:55:2c: f7:9a:95:11:a8:6f:3e:a2:c9:74:25:67:b8:91:7e: 05:4f:b4:8b:13:c3:70:aa:1f:6c:12:31:40:2d:2f: bb:ce:50:7e:e4:30:e9:55:ad:d0:38:1c:fd:b4:b3: c3:d1:a6:08:83:a7:9a:0a:8e:4a:15:56:ae:20:2a: 2b:7d:e5:a5:fb:9c:e1:91:41:23:09:24:c2:c7:a3: 8a:ae:8a:20:a5:25:4d:10:fa:cd:f4:05:ae:5b:89: 22:5d:65:87:6c:ec:e2:44:52:01:4c:fc:35:06:66: 82:91:ce:32:1b:a9:c8:93:9b:27:9f:99:95:89:e0: bc:ff:03:4a:44:fe:66:de:80:b3:4d:63:fd:33:50: f6:bb:80:e6:a0:15:42:1a:ce:e6:4d:a6:28:cd:cc: 52:51:7d:80:db:d4:d1:be:1c:e7:0d:d7:17:07:3b: 1c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D0:1D:22:C5:70:46:CA:70:3B:12:74:04:8B:6E:DE:1E:64:66:77 X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a353535353a3a2f34382d3438203d3e203234313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9600:5555::/48 Signature Algorithm: sha256WithRSAEncryption 17:3a:e0:d3:e0:12:8a:5c:03:96:0d:f4:82:01:68:e3:f2:b5: f5:a0:92:a2:22:a2:0a:ce:d5:a9:4f:d7:e8:16:3e:1c:f0:ce: d6:87:cf:3d:f1:56:ef:43:94:9f:4c:f9:ee:72:7c:14:53:c1: d5:86:0b:2e:ae:ca:84:08:e6:70:60:ef:d3:21:1b:af:f0:40: da:af:df:d2:98:b9:b2:b0:1e:22:40:d8:1b:27:24:b6:af:b8: c2:9d:70:bf:fd:67:9e:51:4b:21:f4:9b:36:52:e6:9e:93:01: 36:43:1f:50:64:31:05:52:83:c2:03:0f:e5:5b:25:90:d9:84: 19:ca:c0:77:52:d4:27:29:a8:33:da:ee:01:b7:97:22:0e:9f: 81:89:33:73:c1:64:16:41:5c:8d:94:c9:30:39:2a:3c:38:5f: cc:8d:c4:1b:72:e8:a5:ba:a4:fa:76:a1:5f:3e:e3:64:98:27: e2:c1:02:2c:26:38:89:b1:bd:c6:cf:d2:af:22:9d:18:9e:4a: b9:94:c1:75:7f:4a:6a:49:1e:56:e8:da:fd:a0:36:08:0b:26: e9:67:14:17:35:bc:c0:b2:50:e4:1d:50:a8:9e:53:c1:97:80: f8:69:53:c3:75:92:94:df:25:2b:2e:32:b8:bc:86:d5:97:52: f3:99:60:72 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUJb0NfItOiFZ3/lNfO+tsKJH5s7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MTMwMzAzNTFaFw0yNzA0MTIwMzA4NTFaMDMxMTAvBgNV BAMTKEQyRDAxRDIyQzU3MDQ2Q0E3MDNCMTI3NDA0OEI2RURFMUU2NDY2NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhC8X0OfSAKIIMdLOW2HBK3CuC 1Mf3JrFZuV7ren7YCunn+6CH5WLFgC5c+HbXp1itmebkIlGqsVyuU8AH6MeVczNn 7dzH1e35l68RLWL0Jj27atYvQoRVLPealRGobz6iyXQlZ7iRfgVPtIsTw3CqH2wS MUAtL7vOUH7kMOlVrdA4HP20s8PRpgiDp5oKjkoVVq4gKit95aX7nOGRQSMJJMLH o4quiiClJU0Q+s30Ba5biSJdZYds7OJEUgFM/DUGZoKRzjIbqciTmyefmZWJ4Lz/ A0pE/mbegLNNY/0zUPa7gOagFUIazuZNpijNzFJRfYDb1NG+HOcN1xcHOxwBAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQU0tAdIsVwRspwOxJ0BItu3h5kZncwHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk1ODg3ODgwMDgzMDEzNjM1LzAvMzIzNDMwMzAz YTM5MzYzMDMwM2EzNTM1MzUzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQz MTM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAJYAVVUwDQYJKoZIhvcNAQELBQADggEBABc64NPg EopcA5YN9IIBaOPytfWgkqIiogrO1alP1+gWPhzwztaHzz3xVu9DlJ9M+e5yfBRT wdWGCy6uyoQI5nBg79MhG6/wQNqv39KYubKwHiJA2BsnJLavuMKdcL/9Z55RSyH0 mzZS5p6TATZDH1BkMQVSg8IDD+VbJZDZhBnKwHdS1CcpqDPa7gG3lyIOn4GJM3PB ZBZBXI2UyTA5Kjw4X8yNxBty6KW6pPp2oV8+42SYJ+LBAiwmOImxvcbP0q8inRie SrmUwXV/SmpJHlbo2v2gNggLJulnFBc1vMCyUOQdUKieU8GXgPhpU8N1kpTfJSsu Mri8htWXUvOZYHI= -----END CERTIFICATE-----Generated at Mon Apr 13 12:26:03 2026 by rpki-client