$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/323430333a346563303a3a2f33322d313238203d3e20313331343833.roa File: 323430333a346563303a3a2f33322d313238203d3e20313331343833.roa (raw, json) Hash identifier: YIU2CmkLXb+BejZAyCUpflttZ3bwK24l0VWQW6oqEJY= Subject key identifier: FD:D3:7F:6F:FD:C9:7D:99:91:F9:CB:7D:04:E5:C9:B5:81:AE:8F:6E Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 66F782435F4081F3CF9CBF68629B1F12C163B04D Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/323430333a346563303a3a2f33322d313238203d3e20313331343833.roa Signing time: Mon 20 Apr 2026 05:51:46 +0000 ROA not before: Mon 20 Apr 2026 05:46:46 +0000 ROA not after: Mon 19 Apr 2027 05:51:46 +0000 asID: 131483 IP address blocks: 2403:4ec0::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:f7:82:43:5f:40:81:f3:cf:9c:bf:68:62:9b:1f:12:c1:63:b0:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:46:46 2026 GMT Not After : Apr 19 05:51:46 2027 GMT Subject: CN=FDD37F6FFDC97D9991F9CB7D04E5C9B581AE8F6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c4:cc:1c:bd:aa:29:14:45:1e:35:60:98:08: 14:f4:7a:b2:76:85:7a:be:15:2e:a2:9e:ba:fc:e6: 76:e4:22:ca:79:59:ff:fb:20:d7:2d:48:3a:2b:a6: 06:69:cf:8b:29:bb:30:81:8b:c3:8e:3f:ca:57:f4: e0:8d:b6:bb:81:1b:61:74:32:78:34:f4:fe:e0:1a: da:76:0b:bf:b3:8b:06:a9:66:91:8c:47:49:e1:fc: a1:bf:20:d0:0d:b5:ad:73:9f:82:9c:f5:a3:ba:6e: 9c:94:0c:c4:56:66:a8:37:7e:4e:ff:64:0b:cf:1e: 4c:cf:a2:55:30:c7:7d:49:a1:3e:da:1f:b6:44:a7: 03:55:ce:2c:2d:0b:1b:4e:1a:fa:1f:d1:a6:df:35: 7d:1f:d4:10:d8:a5:35:c3:47:58:51:fd:5e:b0:ec: f7:26:02:8e:99:aa:c7:1e:6a:75:3c:6d:bf:48:65: 2a:b3:74:91:56:d0:76:11:fa:af:a5:68:7b:20:f1: 39:75:a7:12:23:ff:40:87:19:58:fc:14:51:56:cf: 57:c1:ef:2c:30:2c:41:27:a6:60:b6:7d:68:ac:7c: 53:a6:63:2e:7a:a5:45:10:9d:19:f4:81:87:82:4b: ba:7d:61:80:b4:22:5c:2e:66:54:90:fa:9f:3d:a9: 88:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D3:7F:6F:FD:C9:7D:99:91:F9:CB:7D:04:E5:C9:B5:81:AE:8F:6E X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/323430333a346563303a3a2f33322d313238203d3e20313331343833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:4ec0::/32 Signature Algorithm: sha256WithRSAEncryption 57:c9:2f:23:26:96:f6:7a:31:a9:ac:10:3d:36:c9:2a:2c:5e: a2:8b:39:3d:f6:5a:75:f9:9f:cd:08:86:c4:9d:59:3c:00:0d: 58:c2:07:31:87:cc:31:ff:3b:95:05:7a:eb:1e:b6:4b:1d:cf: 9f:9f:51:eb:90:83:b6:cc:b8:46:4c:02:13:bc:6a:6a:89:e9: 2a:89:3c:4f:2b:15:23:7d:0e:31:49:89:df:97:fd:56:f5:1b: e8:e0:59:57:94:be:1f:ba:9a:61:71:38:16:b9:c4:97:97:f8: 24:c6:ca:5e:92:00:9f:17:b8:49:cb:a8:41:b5:32:e4:c9:2f: 65:dc:a9:a7:36:d8:43:29:b8:ea:9d:34:88:ab:0b:27:85:6f: 35:78:52:98:c3:12:91:7c:e8:2a:cb:e3:45:d8:ec:58:9f:1c: 32:cb:f9:2e:f5:42:9f:24:8e:40:7c:51:c4:1b:3c:62:5a:38: 25:8a:08:a3:41:18:b3:df:fc:e9:97:4f:18:60:53:4e:8b:4f: 91:0a:cf:63:90:d1:bd:b4:b4:2b:9a:a9:64:29:fd:58:02:1f: c4:ab:59:89:33:ce:17:8f:0e:f2:97:76:ac:50:1a:59:43:6f: 05:52:2f:bb:44:1c:e8:ee:f5:29:e5:bb:26:b5:c5:e0:12:ee: c9:c7:34:ae -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUZveCQ19AgfPPnL9oYpsfEsFjsE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTQ2NDZaFw0yNzA0MTkwNTUxNDZaMDMxMTAvBgNV BAMTKEZERDM3RjZGRkRDOTdEOTk5MUY5Q0I3RDA0RTVDOUI1ODFBRThGNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYxMwcvaopFEUeNWCYCBT0erJ2 hXq+FS6inrr85nbkIsp5Wf/7INctSDorpgZpz4spuzCBi8OOP8pX9OCNtruBG2F0 Mng09P7gGtp2C7+ziwapZpGMR0nh/KG/INANta1zn4Kc9aO6bpyUDMRWZqg3fk7/ ZAvPHkzPolUwx31JoT7aH7ZEpwNVziwtCxtOGvof0abfNX0f1BDYpTXDR1hR/V6w 7PcmAo6ZqsceanU8bb9IZSqzdJFW0HYR+q+laHsg8Tl1pxIj/0CHGVj8FFFWz1fB 7ywwLEEnpmC2fWisfFOmYy56pUUQnRn0gYeCS7p9YYC0IlwuZlSQ+p89qYj9AgMB AAGjggIYMIICFDAdBgNVHQ4EFgQU/dN/b/3JfZmR+ct9BOXJtYGuj24wHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0MzM3ODk3ODY3NTA5NzcvMC8zMjM0MzAzMzNh MzQ2NTYzMzAzYTNhMmYzMzMyMmQzMTMyMzgyMDNkM2UyMDMxMzMzMTM0MzgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQDTsAwDQYJKoZIhvcNAQELBQADggEBAFfJLyMmlvZ6MamsED02 ySosXqKLOT32WnX5n80IhsSdWTwADVjCBzGHzDH/O5UFeusetksdz5+fUeuQg7bM uEZMAhO8amqJ6SqJPE8rFSN9DjFJid+X/Vb1G+jgWVeUvh+6mmFxOBa5xJeX+CTG yl6SAJ8XuEnLqEG1MuTJL2Xcqac22EMpuOqdNIirCyeFbzV4UpjDEpF86CrL40XY 7FifHDLL+S71Qp8kjkB8UcQbPGJaOCWKCKNBGLPf/OmXTxhgU06LT5EKz2OQ0b20 tCuaqWQp/VgCH8SrWYkzzhePDvKXdqxQGllDbwVSL7tEHOju9Snluya1xeAS7snH NK4= -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:09 2026 by rpki-client