$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097433789786750977/0/323430333a346563303a3a2f33322d313238203d3e20313533393131.roa File: 323430333a346563303a3a2f33322d313238203d3e20313533393131.roa (raw, json) Hash identifier: +vAKNesRJpkeK2fmkHIfQhTubjoGkEWxAQJbsVi8ILY= Subject key identifier: D2:8F:14:B1:F3:6F:B7:4B:4C:67:43:00:C9:56:DE:2E:CB:21:A6:FC Certificate issuer: /CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Certificate serial: 3E0F7E1761DC3D93CF80F0EEB1F14610F3A66FFF Authority key identifier: 96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/323430333a346563303a3a2f33322d313238203d3e20313533393131.roa Signing time: Mon 20 Apr 2026 05:51:45 +0000 ROA not before: Mon 20 Apr 2026 05:46:45 +0000 ROA not after: Mon 19 Apr 2027 05:51:45 +0000 asID: 153911 IP address blocks: 2403:4ec0::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0f:7e:17:61:dc:3d:93:cf:80:f0:ee:b1:f1:46:10:f3:a6:6f:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96E9344F9168341F216708A437FB9801FEBBBBB6 Validity Not Before: Apr 20 05:46:45 2026 GMT Not After : Apr 19 05:51:45 2027 GMT Subject: CN=D28F14B1F36FB74B4C674300C956DE2ECB21A6FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:be:f5:df:2c:1d:85:4e:be:16:6d:7a:95:36: 7a:37:f3:6d:6a:5d:42:bb:46:e7:e9:ba:cd:3a:01: 41:e9:21:37:f2:1e:23:81:c9:b5:2d:6a:9c:0d:70: 10:79:67:7f:b5:18:b9:cf:af:f0:de:eb:f8:b9:13: 7a:d8:84:c0:84:1f:17:94:70:42:5e:04:a9:fd:9a: f9:e1:95:8b:6a:f1:01:9d:a2:06:22:31:a8:6e:77: 4f:0a:b5:0b:fc:44:79:50:e2:12:06:be:9a:45:7f: 1a:7c:db:af:44:97:4c:a1:b4:c0:4e:17:da:63:2c: 08:a7:4d:6b:ba:7f:c9:09:90:22:12:95:1e:ea:9c: 10:97:92:8e:88:f4:50:3d:94:9b:a8:b0:da:7d:33: ee:3b:d1:4c:8d:9c:45:b8:6e:34:e5:ee:d6:de:05: 69:8a:6d:0d:3a:8e:c8:00:57:61:fb:6d:ad:f5:c6: 78:49:1e:cd:ea:d8:6b:19:c4:c1:a7:c2:0c:99:6f: 72:c7:05:38:c6:84:df:ec:f2:8e:b8:69:75:09:68: 99:34:03:ad:21:f0:70:82:5d:60:1b:77:22:5d:1b: a6:1d:7d:da:e8:41:40:9b:d9:63:3f:6e:14:39:b9: 89:64:0c:dd:0c:1c:eb:3c:19:91:e5:1e:4e:11:40: 1e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:8F:14:B1:F3:6F:B7:4B:4C:67:43:00:C9:56:DE:2E:CB:21:A6:FC X509v3 Authority Key Identifier: keyid:96:E9:34:4F:91:68:34:1F:21:67:08:A4:37:FB:98:01:FE:BB:BB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/96E9344F9168341F216708A437FB9801FEBBBBB6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/96E9344F9168341F216708A437FB9801FEBBBBB6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097433789786750977/0/323430333a346563303a3a2f33322d313238203d3e20313533393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:4ec0::/32 Signature Algorithm: sha256WithRSAEncryption 74:47:90:86:47:71:e5:a8:31:6e:e0:26:d9:3f:cf:80:a3:e4: c0:d7:3f:dc:5d:77:8f:ed:fb:e7:5d:17:c1:26:7a:39:bc:dc: 0e:c5:7a:7d:3b:06:e1:f6:de:a0:06:90:b9:82:e1:01:23:84: c2:ce:a2:7c:e1:db:b4:9f:bc:db:f7:a6:04:b3:af:bc:c2:4e: dd:d0:2d:76:6b:c8:78:e9:ff:3d:2d:3b:61:1e:2d:f2:53:ee: c3:14:b7:20:39:7a:e4:0c:4f:7e:be:18:12:55:b5:98:a0:3d: 31:54:88:94:90:67:ca:38:a2:26:26:75:a2:dd:0b:3b:ad:7c: fd:da:c5:fa:84:dc:d0:0b:fe:76:93:50:cd:45:93:ea:80:4d: 38:f5:b9:fc:4f:85:e4:2e:f5:1e:fa:0f:68:f5:fe:0b:6e:0f: c5:41:2c:af:20:33:25:4f:81:19:10:8b:93:1b:92:03:68:f7: d7:45:0d:8f:74:b1:b0:2e:95:b8:9c:0b:54:7c:3f:50:c2:b0: 01:e0:c3:78:2e:00:28:75:11:2b:4e:e6:eb:ab:c4:56:87:c5: 39:47:e3:cf:0f:1a:ae:68:1b:57:89:1d:24:74:a6:2c:c9:22: e9:97:9a:2d:a1:c0:04:0a:c7:3d:8b:1f:d3:64:9b:1b:eb:fc: 85:5d:4f:b0 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIUPg9+F2HcPZPPgPDusfFGEPOmb/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFG RUJCQkJCNjAeFw0yNjA0MjAwNTQ2NDVaFw0yNzA0MTkwNTUxNDVaMDMxMTAvBgNV BAMTKEQyOEYxNEIxRjM2RkI3NEI0QzY3NDMwMEM5NTZERTJFQ0IyMUE2RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8vvXfLB2FTr4WbXqVNno3821q XUK7Rufpus06AUHpITfyHiOBybUtapwNcBB5Z3+1GLnPr/De6/i5E3rYhMCEHxeU cEJeBKn9mvnhlYtq8QGdogYiMahud08KtQv8RHlQ4hIGvppFfxp8269El0yhtMBO F9pjLAinTWu6f8kJkCISlR7qnBCXko6I9FA9lJuosNp9M+470UyNnEW4bjTl7tbe BWmKbQ06jsgAV2H7ba31xnhJHs3q2GsZxMGnwgyZb3LHBTjGhN/s8o64aXUJaJk0 A60h8HCCXWAbdyJdG6YdfdroQUCb2WM/bhQ5uYlkDN0MHOs8GZHlHk4RQB57AgMB AAGjggIYMIICFDAdBgNVHQ4EFgQU0o8UsfNvt0tMZ0MAyVbeLsshpvwwHwYDVR0j BBgwFoAUluk0T5FoNB8hZwikN/uYAf67u7YwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzQzMzc4OTc4Njc1MDk3Ny8wLzk2RTkzNDRGOTE2ODM0MUYyMTY3MDhBNDM3RkI5 ODAxRkVCQkJCQjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTZFOTM0NEY5MTY4MzQxRjIxNjcwOEE0MzdGQjk4MDFGRUJCQkJCNi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTc0MzM3ODk3ODY3NTA5NzcvMC8zMjM0MzAzMzNh MzQ2NTYzMzAzYTNhMmYzMzMyMmQzMTMyMzgyMDNkM2UyMDMxMzUzMzM5MzEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQDTsAwDQYJKoZIhvcNAQELBQADggEBAHRHkIZHceWoMW7gJtk/ z4Cj5MDXP9xdd4/t++ddF8Emejm83A7Fen07BuH23qAGkLmC4QEjhMLOonzh27Sf vNv3pgSzr7zCTt3QLXZryHjp/z0tO2EeLfJT7sMUtyA5euQMT36+GBJVtZigPTFU iJSQZ8o4oiYmdaLdCzutfP3axfqE3NAL/naTUM1Fk+qATTj1ufxPheQu9R76D2j1 /gtuD8VBLK8gMyVPgRkQi5MbkgNo99dFDY90sbAulbicC1R8P1DCsAHgw3guACh1 EStO5uurxFaHxTlH488PGq5oG1eJHSR0pizJIumXmi2hwAQKxz2LH9Nkmxvr/IVd T7A= -----END CERTIFICATE-----Generated at Wed Apr 22 01:39:10 2026 by rpki-client