$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099963811500130307/0/323430373a343838303a3a2f33322d3332203d3e2030.roa File: 323430373a343838303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: ijCaVomoD4Gp49iRFc8q+IjUsH7ACZllQmvyC2Sz9cQ= Subject key identifier: CB:EB:2D:47:6E:4E:65:B4:9E:9B:BD:37:BB:81:B9:E4:4B:0D:89:A5 Certificate issuer: /CN=A91EFAA20000/serialNumber=6A38799E7FD21985ED882E88FFC0DAFEFF87F54C Certificate serial: 798EABAD57B1F788974CF3704E0E29D5243C15AB Authority key identifier: 6A:38:79:9E:7F:D2:19:85:ED:88:2E:88:FF:C0:DA:FE:FF:87:F5:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajh5nn_SGYXtiC6I_8Da_v-H9Uw.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099963811500130307/0/323430373a343838303a3a2f33322d3332203d3e2030.roa Signing time: Fri 24 Apr 2026 09:56:55 +0000 ROA not before: Fri 24 Apr 2026 09:51:55 +0000 ROA not after: Fri 23 Apr 2027 09:56:55 +0000 asID: 0 IP address blocks: 2407:4880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099963811500130307/0/6A38799E7FD21985ED882E88FFC0DAFEFF87F54C.crl rsync://rpki-rps.cnnic.cn/repo/A1099963811500130307/0/6A38799E7FD21985ED882E88FFC0DAFEFF87F54C.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajh5nn_SGYXtiC6I_8Da_v-H9Uw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 09:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:8e:ab:ad:57:b1:f7:88:97:4c:f3:70:4e:0e:29:d5:24:3c:15:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFAA20000, serialNumber=6A38799E7FD21985ED882E88FFC0DAFEFF87F54C Validity Not Before: Apr 24 09:51:55 2026 GMT Not After : Apr 23 09:56:55 2027 GMT Subject: CN=CBEB2D476E4E65B49E9BBD37BB81B9E44B0D89A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:19:45:a9:8f:82:96:4f:17:ef:fd:5b:69: a2:22:46:0c:aa:f5:bf:94:82:5d:90:21:45:5c:e6: 18:cb:a9:9b:fe:16:88:f8:91:69:3a:bd:06:8f:05: 56:7a:13:78:c5:b3:fd:bd:12:15:aa:7c:fe:e1:8a: d1:84:85:c1:75:bb:77:9a:3a:95:97:84:cb:1b:e7: ed:1e:51:f7:d1:b0:9d:2f:12:16:8c:29:e5:13:9a: fe:4b:91:30:78:b4:c4:1d:02:53:b3:82:79:67:96: 1a:8f:cc:e4:a2:31:ef:8a:5d:75:f6:63:c6:17:a2: 61:0e:c2:73:58:58:4c:b2:a0:dc:b2:30:b1:32:da: e9:e4:8f:80:02:82:ed:11:6d:69:10:52:7e:fb:5f: c8:8d:81:d2:b6:43:f1:00:0b:ab:b8:24:2e:76:6a: 40:30:0a:d7:88:a2:db:86:1a:d5:44:38:df:5f:af: 66:e1:6f:72:61:0a:99:14:35:97:a3:b1:e2:a4:12: 57:e5:cd:73:52:29:9e:0e:28:db:e6:66:db:d2:09: ee:83:de:8f:2e:37:31:d6:55:03:f4:4d:51:94:56: 85:b2:d8:44:d8:1a:cf:98:d5:f1:80:40:a9:a4:53: c1:c1:17:79:0c:f8:20:f0:ba:f5:2f:50:96:b4:83: 44:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:EB:2D:47:6E:4E:65:B4:9E:9B:BD:37:BB:81:B9:E4:4B:0D:89:A5 X509v3 Authority Key Identifier: keyid:6A:38:79:9E:7F:D2:19:85:ED:88:2E:88:FF:C0:DA:FE:FF:87:F5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099963811500130307/0/6A38799E7FD21985ED882E88FFC0DAFEFF87F54C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajh5nn_SGYXtiC6I_8Da_v-H9Uw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099963811500130307/0/323430373a343838303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:4880::/32 Signature Algorithm: sha256WithRSAEncryption 9f:fc:29:84:59:b4:2b:40:67:21:07:1a:d2:83:e0:34:90:69: 2d:a7:78:b8:93:9a:6f:61:6e:cb:d7:d7:ef:88:04:21:c5:94: 34:9b:79:7c:46:4c:e7:55:1c:8b:03:1b:2a:81:43:e7:09:0f: 6d:44:9f:24:7a:3c:1e:ea:cb:ac:fa:cb:ad:90:14:0f:65:73: d7:20:15:e8:c5:65:12:2c:52:b5:f5:c3:7b:0e:5e:63:04:b1: 67:cf:c5:63:0d:60:f5:33:3c:8f:46:61:26:9a:97:4c:2a:3d: 72:c0:60:e7:fe:0e:7d:6f:e8:b1:4c:9c:fe:8e:01:82:e1:50: 39:5d:46:67:f5:48:46:b2:3e:91:ba:42:99:4a:21:89:1c:25: e0:4c:f4:03:66:b0:6c:10:c6:b4:6c:c6:79:00:f3:5c:20:1a: 03:da:4b:b7:c1:69:8b:46:45:dd:3c:0f:01:f7:fd:e9:6b:aa: 87:7f:78:b4:5b:a2:de:78:a4:50:fb:85:1b:b9:4a:d7:84:72: a4:48:79:63:b7:a5:0b:83:6c:31:36:31:22:86:01:53:d7:89: 8e:f5:68:f9:6b:fd:d7:f0:06:14:d3:cc:09:a2:30:3b:f8:f7: 79:25:32:93:f3:ea:3c:93:3d:77:df:85:57:6c:3e:94:f8:f0: 7e:92:8b:ed -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUeY6rrVex94iXTPNwTg4p1SQ8FaswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRUZBQTIwMDAwMTEwLwYDVQQFEyg2QTM4Nzk5RTdG RDIxOTg1RUQ4ODJFODhGRkMwREFGRUZGODdGNTRDMB4XDTI2MDQyNDA5NTE1NVoX DTI3MDQyMzA5NTY1NVowMzExMC8GA1UEAxMoQ0JFQjJENDc2RTRFNjVCNDlFOUJC RDM3QkI4MUI5RTQ0QjBEODlBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9/GUWpj4KWTxfv/VtpoiJGDKr1v5SCXZAhRVzmGMupm/4WiPiRaTq9Bo8F VnoTeMWz/b0SFap8/uGK0YSFwXW7d5o6lZeEyxvn7R5R99GwnS8SFowp5ROa/kuR MHi0xB0CU7OCeWeWGo/M5KIx74pddfZjxheiYQ7Cc1hYTLKg3LIwsTLa6eSPgAKC 7RFtaRBSfvtfyI2B0rZD8QALq7gkLnZqQDAK14ii24Ya1UQ431+vZuFvcmEKmRQ1 l6Ox4qQSV+XNc1Ipng4o2+Zm29IJ7oPejy43MdZVA/RNUZRWhbLYRNgaz5jV8YBA qaRTwcEXeQz4IPC69S9QlrSDRAECAwEAAaOCAgowggIGMB0GA1UdDgQWBBTL6y1H bk5ltJ6bvTe7gbnkSw2JpTAfBgNVHSMEGDAWgBRqOHmef9IZhe2ILoj/wNr+/4f1 TDAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk5OTYzODExNTAwMTMwMzA3LzAvNkEzODc5 OUU3RkQyMTk4NUVEODgyRTg4RkZDMERBRkVGRjg3RjU0Qy5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvYWpoNW5uX1NH WVh0aUM2SV84RGFfdi1IOVV3LmNlcjCBggYIKwYBBQUHAQsEdjB0MHIGCCsGAQUF BzALhmZyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTk5NjM4MTE1 MDAxMzAzMDcvMC8zMjM0MzAzNzNhMzQzODM4MzAzYTNhMmYzMzMyMmQzMzMyMjAz ZDNlMjAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcB BwEB/wQRMA8wDQQCAAIwBwMFACQHSIAwDQYJKoZIhvcNAQELBQADggEBAJ/8KYRZ tCtAZyEHGtKD4DSQaS2neLiTmm9hbsvX1++IBCHFlDSbeXxGTOdVHIsDGyqBQ+cJ D21EnyR6PB7qy6z6y62QFA9lc9cgFejFZRIsUrX1w3sOXmMEsWfPxWMNYPUzPI9G YSaal0wqPXLAYOf+Dn1v6LFMnP6OAYLhUDldRmf1SEayPpG6QplKIYkcJeBM9ANm sGwQxrRsxnkA81wgGgPaS7fBaYtGRd08DwH3/elrqod/eLRbot54pFD7hRu5SteE cqRIeWO3pQuDbDE2MSKGAVPXiY71aPlr/dfwBhTTzAmiMDv493klMpPz6jyTPXff hVdsPpT48H6Si+0= -----END CERTIFICATE-----Generated at Mon Apr 27 11:00:48 2026 by rpki-client