$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a383838383a3a2f34382d3438203d3e203234313431.roa File: 323430303a393630303a383838383a3a2f34382d3438203d3e203234313431.roa (raw, json) Hash identifier: E8e0rLKU+wh2G9XduWtlKNBr5V/s9lb2G+OFrt4HwHA= Subject key identifier: 1F:74:65:BC:56:97:04:8B:45:DD:86:F3:6C:52:4C:65:95:D8:C7:1D Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 5C835E857452A8C8BE57CF3AEB2C9B2E201A0F89 Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a383838383a3a2f34382d3438203d3e203234313431.roa Signing time: Mon 13 Apr 2026 03:08:51 +0000 ROA not before: Mon 13 Apr 2026 03:03:51 +0000 ROA not after: Mon 12 Apr 2027 03:08:51 +0000 asID: 24141 IP address blocks: 2400:9600:8888::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:83:5e:85:74:52:a8:c8:be:57:cf:3a:eb:2c:9b:2e:20:1a:0f:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 13 03:03:51 2026 GMT Not After : Apr 12 03:08:51 2027 GMT Subject: CN=1F7465BC5697048B45DD86F36C524C6595D8C71D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:da:b4:cc:b6:b4:51:2d:0d:15:d6:2f:de:90: e7:13:2e:86:4b:f4:90:39:1b:1f:70:c8:d6:d1:8a: d9:53:ca:48:ef:0e:cf:46:ca:7b:2a:c4:ad:c6:df: 43:fa:eb:c3:9d:b0:b9:92:0b:8b:8d:30:d7:15:26: 32:bf:47:f7:d3:57:55:40:c9:08:82:fd:62:76:2f: 4b:e8:06:dd:d5:ab:d4:3e:c3:a0:89:a6:48:1e:63: 0b:b2:3d:61:fd:ba:f0:79:16:a2:0c:0e:f2:65:16: 72:42:2f:a0:06:72:67:2d:a8:46:1e:87:02:d2:08: d8:1a:70:0e:31:ca:69:c3:59:7d:98:33:14:d8:95: a7:bb:29:92:73:96:7b:70:d9:b3:3d:02:42:aa:4f: 8a:fa:17:26:36:41:a3:88:fe:41:4e:6c:5b:7b:d4: b8:63:1d:24:bf:5e:39:67:1d:f7:1a:47:49:50:43: 38:f0:f6:1f:9a:33:ad:b3:0b:3b:47:3a:eb:9e:00: f4:b2:13:81:a1:c2:35:60:e7:b5:62:84:b0:b2:13: b5:5a:c6:7f:8e:4e:72:cb:d6:93:8b:27:d1:16:e6: 73:ea:30:5a:cf:8c:08:1e:df:6f:c9:92:e9:e5:34: 6c:b1:ff:d7:69:99:d9:44:e6:8a:90:7b:5e:d5:3b: 60:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:74:65:BC:56:97:04:8B:45:DD:86:F3:6C:52:4C:65:95:D8:C7:1D X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a383838383a3a2f34382d3438203d3e203234313431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9600:8888::/48 Signature Algorithm: sha256WithRSAEncryption 9b:b0:d8:74:83:e4:41:0d:f3:a8:88:71:40:34:88:59:34:87: 25:54:1e:27:09:b5:ec:7d:61:f4:ae:3e:ef:ee:e1:6b:ec:d5: a4:bf:e6:45:80:23:9d:35:ff:d7:61:64:7c:7f:af:53:67:29: 6e:a8:a6:93:63:9c:6e:da:6e:a0:19:26:11:63:d3:69:4f:b5: 16:ea:c4:9b:f4:e3:09:dd:b8:6e:c1:ad:d4:46:aa:44:18:a2: d8:fb:57:78:3f:08:7c:8f:a8:32:da:c2:4f:b7:58:3a:99:33: d8:09:12:a5:17:1c:25:72:e0:b2:25:e1:63:cb:7a:44:47:3f: c5:c0:ff:ac:ee:da:d9:7f:02:eb:5f:77:31:09:97:a6:4f:21: e0:21:ca:14:60:6d:a4:ec:c4:a0:f7:1c:09:f8:52:85:52:2b: 4f:c1:d3:b5:c0:c2:7e:ea:9d:83:9b:47:89:82:37:86:3c:d9: aa:73:81:4b:1a:7b:14:ff:7f:8d:0e:39:67:2d:46:82:09:58: 79:54:d6:bd:16:7d:c5:2a:7e:75:6d:4f:1f:ad:7f:4d:39:7c: d9:af:5f:7f:91:a2:99:47:7e:23:1b:63:a7:32:fc:36:49:17: 4c:a5:a6:65:ac:29:fc:b3:3c:72:f3:29:05:56:e1:3b:9f:cc: a4:10:6b:08 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUXINehXRSqMi+V8866yybLiAaD4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MTMwMzAzNTFaFw0yNzA0MTIwMzA4NTFaMDMxMTAvBgNV BAMTKDFGNzQ2NUJDNTY5NzA0OEI0NUREODZGMzZDNTI0QzY1OTVEOEM3MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA2rTMtrRRLQ0V1i/ekOcTLoZL 9JA5Gx9wyNbRitlTykjvDs9GynsqxK3G30P668OdsLmSC4uNMNcVJjK/R/fTV1VA yQiC/WJ2L0voBt3Vq9Q+w6CJpkgeYwuyPWH9uvB5FqIMDvJlFnJCL6AGcmctqEYe hwLSCNgacA4xymnDWX2YMxTYlae7KZJzlntw2bM9AkKqT4r6FyY2QaOI/kFObFt7 1LhjHSS/XjlnHfcaR0lQQzjw9h+aM62zCztHOuueAPSyE4GhwjVg57VihLCyE7Va xn+OTnLL1pOLJ9EW5nPqMFrPjAge32/JkunlNGyx/9dpmdlE5oqQe17VO2DnAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUH3RlvFaXBItF3YbzbFJMZZXYxx0wHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk1ODg3ODgwMDgzMDEzNjM1LzAvMzIzNDMwMzAz YTM5MzYzMDMwM2EzODM4MzgzODNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQz MTM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAJYAiIgwDQYJKoZIhvcNAQELBQADggEBAJuw2HSD 5EEN86iIcUA0iFk0hyVUHicJtex9YfSuPu/u4Wvs1aS/5kWAI501/9dhZHx/r1Nn KW6oppNjnG7abqAZJhFj02lPtRbqxJv04wnduG7BrdRGqkQYotj7V3g/CHyPqDLa wk+3WDqZM9gJEqUXHCVy4LIl4WPLekRHP8XA/6zu2tl/AutfdzEJl6ZPIeAhyhRg baTsxKD3HAn4UoVSK0/B07XAwn7qnYObR4mCN4Y82apzgUsaexT/f40OOWctRoIJ WHlU1r0WfcUqfnVtTx+tf005fNmvX3+RoplHfiMbY6cy/DZJF0ylpmWsKfyzPHLz KQVW4TufzKQQawg= -----END CERTIFICATE-----Generated at Mon Apr 13 13:54:35 2026 by rpki-client