$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a3a2f33322d3332203d3e2030.roa File: 323430303a393630303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: qYpetUirBdZkWClubflhJXT8wvgjzSRaXKzICEAC+VE= Subject key identifier: 83:08:59:54:01:39:BF:6F:9C:BC:69:A8:7C:63:EB:07:D0:D3:33:4F Certificate issuer: /CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Certificate serial: 4992456BAD775CF9E5989350171356E1127D427C Authority key identifier: BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a3a2f33322d3332203d3e2030.roa Signing time: Mon 13 Apr 2026 03:11:18 +0000 ROA not before: Mon 13 Apr 2026 03:06:18 +0000 ROA not after: Mon 12 Apr 2027 03:11:18 +0000 asID: 0 IP address blocks: 2400:9600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:92:45:6b:ad:77:5c:f9:e5:98:93:50:17:13:56:e1:12:7d:42:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F Validity Not Before: Apr 13 03:06:18 2026 GMT Not After : Apr 12 03:11:18 2027 GMT Subject: CN=830859540139BF6F9CBC69A87C63EB07D0D3334F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:24:f4:3c:5e:72:ed:8e:5a:d1:ea:89:6c:f1: 8d:85:38:1c:eb:c1:91:4c:ba:62:1a:52:e5:d7:49: 02:92:29:72:44:3e:02:38:a2:58:21:f2:64:db:65: dc:4b:dd:36:9f:79:65:9c:96:82:8b:88:d2:0f:8f: 59:fc:20:08:e6:6b:9e:e1:24:e1:1f:61:4e:62:6d: 13:40:89:9a:0c:2c:c8:fc:6c:b2:c7:8c:50:99:3c: 05:7d:b5:cf:34:80:08:0c:52:76:8d:6a:06:0e:65: 88:a8:b7:13:d8:0d:b7:7a:8b:4d:5a:5c:c6:f0:57: 10:80:a1:d6:8c:0e:14:5e:57:54:ba:89:61:99:04: 19:ed:f4:4d:bc:c7:61:c4:3c:10:6c:71:03:a5:c3: 73:6e:e3:fb:d8:c6:6c:06:26:e5:c8:cd:93:18:c7: 90:f0:31:a8:ae:7f:d3:cd:fa:8c:da:e0:d6:94:d5: 58:59:bf:c2:57:14:96:3b:5a:bf:f4:03:31:20:f0: 95:01:d3:23:3e:92:af:20:3d:ac:be:4e:e3:e3:cb: 50:e2:d1:2a:ab:87:8d:fa:0a:fe:76:da:0a:f8:29: a7:5e:31:0c:f5:33:d0:d4:6d:0b:02:6c:7e:49:3b: c0:6a:70:e6:4b:01:c3:6b:91:57:56:9d:c3:18:40: a8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:08:59:54:01:39:BF:6F:9C:BC:69:A8:7C:63:EB:07:D0:D3:33:4F X509v3 Authority Key Identifier: keyid:BA:46:61:FF:AF:7B:AA:7A:94:8C:DA:87:F6:61:C5:BB:F7:54:BF:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BA4661FFAF7BAA7A948CDA87F661C5BBF754BF3F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095887880083013635/0/323430303a393630303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9600::/32 Signature Algorithm: sha256WithRSAEncryption 93:4e:57:6f:2f:72:c1:10:d1:6e:72:15:48:e6:71:d9:7b:2a: d4:a3:53:f2:99:b5:c4:67:70:78:fa:47:64:20:cc:c2:ca:49: 45:db:20:b3:b2:88:c3:a5:86:d2:0e:c8:ae:1b:f7:e0:a6:2f: ff:6b:a2:54:81:4a:56:b9:e6:46:d5:0b:25:b7:c7:bf:c5:07: 5d:35:89:10:56:72:f4:91:ec:77:f1:91:20:d4:b8:7e:b7:49: 37:fe:1e:e1:ca:6e:e2:d3:ef:8d:51:6a:b1:53:c0:96:7e:60: 47:e7:12:40:f0:03:5c:bf:95:2e:8b:df:b6:05:2c:71:7a:5f: c8:81:f4:4b:a3:93:97:cb:db:d8:16:01:5d:9a:7a:05:7e:38: 90:27:0a:b7:d3:ae:e0:9e:46:59:23:54:e5:7c:29:f6:8e:05: 13:73:29:44:91:01:d0:f4:10:5e:d4:95:b7:7c:be:c9:9a:eb: 5e:89:e9:eb:14:be:44:fa:e4:67:74:4a:c8:b3:d7:3f:19:43: 1b:0f:90:14:f7:09:6b:2f:39:fc:33:96:20:03:ec:99:61:2c: 7d:18:d5:b8:30:9f:3c:a3:5d:2d:9d:e0:bc:43:ee:d7:39:a5: 52:bb:61:09:12:b0:fd:09:71:ee:a7:42:94:60:dc:77:41:e3: 61:cc:c5:a2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUSZJFa613XPnlmJNQFxNW4RJ9QnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJG NzU0QkYzRjAeFw0yNjA0MTMwMzA2MThaFw0yNzA0MTIwMzExMThaMDMxMTAvBgNV BAMTKDgzMDg1OTU0MDEzOUJGNkY5Q0JDNjlBODdDNjNFQjA3RDBEMzMzNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzJPQ8XnLtjlrR6ols8Y2FOBzr wZFMumIaUuXXSQKSKXJEPgI4olgh8mTbZdxL3TafeWWcloKLiNIPj1n8IAjma57h JOEfYU5ibRNAiZoMLMj8bLLHjFCZPAV9tc80gAgMUnaNagYOZYiotxPYDbd6i01a XMbwVxCAodaMDhReV1S6iWGZBBnt9E28x2HEPBBscQOlw3Nu4/vYxmwGJuXIzZMY x5DwMaiuf9PN+oza4NaU1VhZv8JXFJY7Wr/0AzEg8JUB0yM+kq8gPay+TuPjy1Di 0Sqrh436Cv522gr4KadeMQz1M9DUbQsCbH5JO8BqcOZLAcNrkVdWncMYQKhDAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUgwhZVAE5v2+cvGmofGPrB9DTM08wHwYDVR0j BBgwFoAUukZh/697qnqUjNqH9mHFu/dUvz8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg4Nzg4MDA4MzAxMzYzNS8wL0JBNDY2MUZGQUY3QkFBN0E5NDhDREE4N0Y2NjFD NUJCRjc1NEJGM0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkE0NjYxRkZBRjdCQUE3QTk0OENEQTg3RjY2MUM1QkJGNzU0QkYzRi5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1ODg3ODgwMDgzMDEzNjM1LzAvMzIzNDMwMzAzYTM5 MzYzMDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAJYA MA0GCSqGSIb3DQEBCwUAA4IBAQCTTldvL3LBENFuchVI5nHZeyrUo1PymbXEZ3B4 +kdkIMzCyklF2yCzsojDpYbSDsiuG/fgpi//a6JUgUpWueZG1Qslt8e/xQddNYkQ VnL0kex38ZEg1Lh+t0k3/h7hym7i0++NUWqxU8CWfmBH5xJA8ANcv5Uui9+2BSxx el/IgfRLo5OXy9vYFgFdmnoFfjiQJwq3067gnkZZI1TlfCn2jgUTcylEkQHQ9BBe 1JW3fL7JmuteienrFL5E+uRndErIs9c/GUMbD5AU9wlrLzn8M5YgA+yZYSx9GNW4 MJ88o10tneC8Q+7XOaVSu2EJErD9CXHup0KUYNx3QeNhzMWi -----END CERTIFICATE-----Generated at Mon Apr 13 12:24:26 2026 by rpki-client