$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1100968758509305858/0/323430333a623430303a333030353a3a2f34382d3438203d3e203130323132.roa File: 323430333a623430303a333030353a3a2f34382d3438203d3e203130323132.roa (raw, json) Hash identifier: +jZkgkfKk5yC619fAJG2t8NcjzmfHu0+ztK0WtwyyVc= Subject key identifier: 1A:7C:F4:49:98:78:CB:0C:EF:FF:81:D8:76:B1:F7:53:C8:6D:0F:FE Certificate issuer: /CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Certificate serial: 32800919EED332B14A86D2E0DD41815929F4891B Authority key identifier: 93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/323430333a623430303a333030353a3a2f34382d3438203d3e203130323132.roa Signing time: Mon 27 Apr 2026 08:37:06 +0000 ROA not before: Mon 27 Apr 2026 08:32:06 +0000 ROA not after: Mon 26 Apr 2027 08:37:06 +0000 asID: 10212 IP address blocks: 2403:b400:3005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 09:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:80:09:19:ee:d3:32:b1:4a:86:d2:e0:dd:41:81:59:29:f4:89:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF Validity Not Before: Apr 27 08:32:06 2026 GMT Not After : Apr 26 08:37:06 2027 GMT Subject: CN=1A7CF4499878CB0CEFFF81D876B1F753C86D0FFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7a:c0:c2:36:05:cf:3f:6b:e7:81:ba:8d:b8: 05:39:26:91:81:46:b3:76:d9:55:6a:4f:80:bd:aa: 5f:5d:97:e0:c9:90:6a:79:53:ca:65:e5:de:e0:a9: c2:a2:70:13:94:f8:1c:20:9a:1c:4f:94:78:46:d9: e3:a9:a6:2c:bb:98:96:e4:93:eb:da:48:dd:81:a7: 47:5a:2e:3e:ca:a6:e6:58:86:b6:5a:ce:53:1f:73: 66:eb:df:44:ed:51:8b:da:e5:f2:b9:ce:68:c4:df: 56:06:62:90:7b:95:fb:e1:ca:43:76:b1:ab:f1:fc: 5a:6d:7c:b7:36:db:50:54:59:7c:57:90:5f:23:80: 6a:0e:ef:c3:82:fb:70:65:f7:dc:e7:dd:7f:70:64: 4e:ee:19:f4:1f:55:46:aa:13:bd:fc:f6:8e:3f:86: 19:9c:15:1d:22:d8:19:ff:87:fe:83:81:20:f5:44: 9e:23:6a:ce:04:33:3f:b8:81:a1:9f:c7:93:8c:b8: 06:4b:49:54:2f:98:c1:06:08:6a:ab:1d:bd:9c:75: 8e:48:73:9f:21:b9:0e:ad:21:6f:c6:62:4c:f7:13: e8:c3:fa:c1:92:73:ac:44:ee:94:3f:41:1a:eb:72: fe:89:1a:9d:66:22:92:78:ab:9a:1f:23:d2:b1:46: 71:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7C:F4:49:98:78:CB:0C:EF:FF:81:D8:76:B1:F7:53:C8:6D:0F:FE X509v3 Authority Key Identifier: keyid:93:13:66:50:20:BD:F9:5D:FA:4A:AC:0E:1E:4A:9A:8E:16:F3:A7:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9313665020BDF95DFA4AAC0E1E4A9A8E16F3A7EF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1100968758509305858/0/323430333a623430303a333030353a3a2f34382d3438203d3e203130323132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b400:3005::/48 Signature Algorithm: sha256WithRSAEncryption 99:fc:0c:b4:ea:ba:6e:55:94:af:49:5f:9f:d4:0a:80:bf:39: d6:d0:71:78:e6:03:7d:c5:e9:5e:e6:3a:89:9b:88:b9:66:1e: 53:d9:89:55:00:85:60:cd:c3:a9:fa:58:53:f8:64:5c:ed:6a: b9:76:5a:84:49:fb:47:f3:fb:a9:82:5d:d7:87:3a:8c:a5:76: 12:88:4c:cb:e0:94:67:0f:88:b4:4c:b9:67:6f:77:4e:c4:bc: 3d:ba:2d:43:d1:90:06:13:61:3f:99:78:0a:76:6c:4f:9c:da: 98:ec:97:3b:d8:c4:2d:36:7d:29:30:a6:87:f1:ca:77:f4:5e: 67:e0:a6:f6:6f:83:fd:f6:a7:bf:d0:db:1d:d6:64:1c:b7:e1: ee:de:b4:c7:00:ef:ed:11:8f:69:c6:c3:53:1b:fd:14:9b:6c: ae:5d:df:60:1a:6e:10:6c:14:ba:4a:65:07:00:e0:4e:ee:e6: 89:9a:d5:7a:34:b6:dd:bc:5e:76:f7:f8:e9:39:e6:db:55:9c: 36:00:1a:81:90:e2:a2:6a:19:26:e8:06:df:6c:0a:cb:03:85: 8e:4e:9b:33:ad:2d:cf:f8:cb:7e:92:9f:68:11:80:b6:f7:a5: e5:af:74:37:e5:28:ed:10:88:20:93:c8:34:86:01:43:9a:85: fe:e8:65:12 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUMoAJGe7TMrFKhtLg3UGBWSn0iRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUx NkYzQTdFRjAeFw0yNjA0MjcwODMyMDZaFw0yNzA0MjYwODM3MDZaMDMxMTAvBgNV BAMTKDFBN0NGNDQ5OTg3OENCMENFRkZGODFEODc2QjFGNzUzQzg2RDBGRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWesDCNgXPP2vngbqNuAU5JpGB RrN22VVqT4C9ql9dl+DJkGp5U8pl5d7gqcKicBOU+BwgmhxPlHhG2eOppiy7mJbk k+vaSN2Bp0daLj7KpuZYhrZazlMfc2br30TtUYva5fK5zmjE31YGYpB7lfvhykN2 savx/FptfLc221BUWXxXkF8jgGoO78OC+3Bl99zn3X9wZE7uGfQfVUaqE7389o4/ hhmcFR0i2Bn/h/6DgSD1RJ4jas4EMz+4gaGfx5OMuAZLSVQvmMEGCGqrHb2cdY5I c58huQ6tIW/GYkz3E+jD+sGSc6xE7pQ/QRrrcv6JGp1mIpJ4q5ofI9KxRnGVAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUGnz0SZh4ywzv/4HYdrH3U8htD/4wHwYDVR0j BBgwFoAUkxNmUCC9+V36SqwOHkqajhbzp+8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MDk2ODc1ODUwOTMwNTg1OC8wLzkzMTM2NjUwMjBCREY5NURGQTRBQUMwRTFFNEE5 QThFMTZGM0E3RUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTMxMzY2NTAyMEJERjk1REZBNEFBQzBFMUU0QTlBOEUxNkYzQTdFRi5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTAwOTY4NzU4NTA5MzA1ODU4LzAvMzIzNDMwMzMz YTYyMzQzMDMwM2EzMzMwMzAzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzAz MjMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkA7QAMAUwDQYJKoZIhvcNAQELBQADggEBAJn8DLTq um5VlK9JX5/UCoC/OdbQcXjmA33F6V7mOombiLlmHlPZiVUAhWDNw6n6WFP4ZFzt arl2WoRJ+0fz+6mCXdeHOoyldhKITMvglGcPiLRMuWdvd07EvD26LUPRkAYTYT+Z eAp2bE+c2pjslzvYxC02fSkwpofxynf0XmfgpvZvg/32p7/Q2x3WZBy34e7etMcA 7+0Rj2nGw1Mb/RSbbK5d32AabhBsFLpKZQcA4E7u5oma1Xo0tt28Xnb3+Ok55ttV nDYAGoGQ4qJqGSboBt9sCssDhY5OmzOtLc/4y36Sn2gRgLb3peWvdDflKO0QiCCT yDSGAUOahf7oZRI= -----END CERTIFICATE-----Generated at Mon Apr 27 13:23:09 2026 by rpki-client