$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095963215377989635/0/323430343a316338303a3a2f33322d3332203d3e2034383437.roa File: 323430343a316338303a3a2f33322d3332203d3e2034383437.roa (raw, json) Hash identifier: qniJqdABEPKWbBWbMH5dcdCFW4tLL9L8SMHgAMd+4YE= Subject key identifier: B7:27:A1:FF:9A:63:18:FB:41:61:44:BC:8D:64:D6:38:A0:15:F7:2B Certificate issuer: /CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Certificate serial: 2EBF4A27B27FFF3ACD234F3222FDFDD8CA521077 Authority key identifier: C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/323430343a316338303a3a2f33322d3332203d3e2034383437.roa Signing time: Mon 13 Apr 2026 07:13:16 +0000 ROA not before: Mon 13 Apr 2026 07:08:16 +0000 ROA not after: Mon 12 Apr 2027 07:13:16 +0000 asID: 4847 IP address blocks: 2404:1c80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 08:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:bf:4a:27:b2:7f:ff:3a:cd:23:4f:32:22:fd:fd:d8:ca:52:10:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6 Validity Not Before: Apr 13 07:08:16 2026 GMT Not After : Apr 12 07:13:16 2027 GMT Subject: CN=B727A1FF9A6318FB416144BC8D64D638A015F72B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:77:1a:ed:b4:ab:02:cb:d1:0c:79:aa:51:66: 01:7a:36:1a:8a:cb:5a:aa:b9:ef:c3:33:45:7d:2e: 7d:cc:bb:77:7c:10:53:a1:2a:6e:30:e7:04:7a:35: 3e:6b:c3:a9:96:fa:e4:8d:aa:96:e5:d5:0e:4e:9c: 80:82:31:5b:25:69:16:05:d4:a8:a3:d0:ee:15:b3: 76:34:f7:1b:c5:46:66:8c:b0:3f:64:94:38:ea:2e: 29:40:92:5f:94:bd:12:10:a0:79:0b:42:7b:28:f2: 40:79:d3:71:51:0a:83:5b:12:d0:16:6a:e5:5b:dc: b4:a0:8a:92:77:23:cf:2f:ff:b1:72:d0:fc:03:9c: e3:b6:5a:65:ea:f2:a5:65:5e:45:dc:2f:09:ff:06: b7:69:fc:bf:21:fd:4d:74:74:53:c4:cd:c5:ee:0a: cd:af:23:dc:ec:17:07:26:8b:dc:c1:b3:07:0e:3f: 2e:39:8e:d8:09:db:29:66:3e:6e:e5:7f:26:41:8d: dc:8a:51:d4:47:27:47:60:ac:cd:e7:a0:28:0f:4e: 1f:d1:e0:7c:9c:bc:62:f5:af:e5:66:63:5f:26:63: 85:0d:09:6c:7e:b9:f6:26:bf:cd:d1:e2:be:c3:60: 5f:dc:8a:a1:e1:6a:d0:ff:9d:c4:1d:aa:4f:55:48: 1e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:27:A1:FF:9A:63:18:FB:41:61:44:BC:8D:64:D6:38:A0:15:F7:2B X509v3 Authority Key Identifier: keyid:C2:CA:12:03:9A:28:07:0B:0F:BB:EA:FD:E7:FF:C0:5E:1F:8E:6C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C2CA12039A28070B0FBBEAFDE7FFC05E1F8E6CC6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095963215377989635/0/323430343a316338303a3a2f33322d3332203d3e2034383437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:1c80::/32 Signature Algorithm: sha256WithRSAEncryption 92:06:60:8d:fc:56:57:26:30:33:dc:bc:3d:4c:e9:44:80:f0: de:60:f3:61:99:b2:4e:76:07:29:7d:f3:3d:08:55:f0:00:38: b9:ca:19:e3:f3:c7:0d:ba:7d:b8:22:15:b6:53:8a:5f:b7:6a: 3b:9d:ff:af:14:53:0a:f4:6c:2c:9d:ee:85:b2:44:4d:e5:ad: ac:16:aa:9c:73:c0:6e:91:cb:3a:07:1e:fb:29:22:c6:2f:c2: 4f:97:25:c3:9e:80:61:10:c0:4d:34:a5:49:62:c0:dd:f8:0e: 0a:82:fa:fa:e1:73:dd:5f:44:6f:ed:77:bc:1c:d9:a4:a2:14: 5d:01:91:5e:10:5b:7d:46:e7:c2:8c:39:57:54:aa:d3:6e:b3: f6:1d:12:4b:2b:43:5c:03:30:3b:9e:4f:a3:7c:d0:91:df:bd: 4a:cb:62:f9:bc:c4:86:c4:ef:9a:56:e0:9b:b6:d4:6a:05:32: ab:f6:71:61:c7:11:f4:e5:2a:cf:5d:4a:d5:7b:3a:1e:a8:6a: 22:7c:83:5b:61:65:d6:93:1e:dc:6d:59:8f:be:d3:36:7b:6d: cf:e9:80:b0:b4:cb:6a:bd:dc:83:82:81:b0:bf:9a:44:7d:12: dc:b7:2a:0e:9a:e0:0e:fb:75:25:51:5e:80:96:e9:4c:86:15: 51:ed:f8:26 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIULr9KJ7J//zrNI08yIv392MpSEHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUx RjhFNkNDNjAeFw0yNjA0MTMwNzA4MTZaFw0yNzA0MTIwNzEzMTZaMDMxMTAvBgNV BAMTKEI3MjdBMUZGOUE2MzE4RkI0MTYxNDRCQzhENjRENjM4QTAxNUY3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpdxrttKsCy9EMeapRZgF6NhqK y1qque/DM0V9Ln3Mu3d8EFOhKm4w5wR6NT5rw6mW+uSNqpbl1Q5OnICCMVslaRYF 1Kij0O4Vs3Y09xvFRmaMsD9klDjqLilAkl+UvRIQoHkLQnso8kB503FRCoNbEtAW auVb3LSgipJ3I88v/7Fy0PwDnOO2WmXq8qVlXkXcLwn/Brdp/L8h/U10dFPEzcXu Cs2vI9zsFwcmi9zBswcOPy45jtgJ2ylmPm7lfyZBjdyKUdRHJ0dgrM3noCgPTh/R 4HycvGL1r+VmY18mY4UNCWx+ufYmv83R4r7DYF/ciqHhatD/ncQdqk9VSB6jAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUtyeh/5pjGPtBYUS8jWTWOKAV9yswHwYDVR0j BBgwFoAUwsoSA5ooBwsPu+r95//AXh+ObMYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk2MzIxNTM3Nzk4OTYzNS8wL0MyQ0ExMjAzOUEyODA3MEIwRkJCRUFGREU3RkZD MDVFMUY4RTZDQzYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzJDQTEyMDM5QTI4MDcwQjBGQkJFQUZERTdGRkMwNUUxRjhFNkNDNi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1OTYzMjE1Mzc3OTg5NjM1LzAvMzIzNDMwMzQzYTMx NjMzODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzQzODM0Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBByAMA0GCSqGSIb3DQEBCwUAA4IBAQCSBmCN/FZXJjAz3Lw9TOlEgPDeYPNh mbJOdgcpffM9CFXwADi5yhnj88cNun24IhW2U4pft2o7nf+vFFMK9Gwsne6FskRN 5a2sFqqcc8Bukcs6Bx77KSLGL8JPlyXDnoBhEMBNNKVJYsDd+A4Kgvr64XPdX0Rv 7Xe8HNmkohRdAZFeEFt9RufCjDlXVKrTbrP2HRJLK0NcAzA7nk+jfNCR371Ky2L5 vMSGxO+aVuCbttRqBTKr9nFhxxH05SrPXUrVezoeqGoifINbYWXWkx7cbVmPvtM2 e23P6YCwtMtqvdyDgoGwv5pEfRLctyoOmuAO+3UlUV6AlulMhhVR7fgm -----END CERTIFICATE-----Generated at Mon Apr 13 17:48:09 2026 by rpki-client