$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948271619/0/323430373a353530303a3a2f33322d3438203d3e2030.roa File: 323430373a353530303a3a2f33322d3438203d3e2030.roa (raw, json) Hash identifier: WYHViIuDes/6sbTSZ/RR9ShvsYjzc87JjcSUwXC2Uzo= Subject key identifier: 28:EB:B6:32:9D:0D:5E:2F:4D:63:6F:9A:07:4E:74:C9:EA:34:D4:A2 Certificate issuer: /CN=A51408E97010BDB44146281B8A78BCFA4E0E4C5E Certificate serial: 4803426862390E27A3A1C27420D46AA65CE32779 Authority key identifier: A5:14:08:E9:70:10:BD:B4:41:46:28:1B:8A:78:BC:FA:4E:0E:4C:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/323430373a353530303a3a2f33322d3438203d3e2030.roa Signing time: Thu 16 Apr 2026 08:03:41 +0000 ROA not before: Thu 16 Apr 2026 07:58:41 +0000 ROA not after: Thu 15 Apr 2027 08:03:41 +0000 asID: 0 IP address blocks: 2407:5500::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 08:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:03:42:68:62:39:0e:27:a3:a1:c2:74:20:d4:6a:a6:5c:e3:27:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51408E97010BDB44146281B8A78BCFA4E0E4C5E Validity Not Before: Apr 16 07:58:41 2026 GMT Not After : Apr 15 08:03:41 2027 GMT Subject: CN=28EBB6329D0D5E2F4D636F9A074E74C9EA34D4A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:2b:b9:35:f1:03:9d:10:9f:e6:00:7d:cc:c8: 30:e3:69:27:58:16:5d:fc:92:93:0a:34:02:de:42: da:62:83:77:5e:0e:ac:49:91:fd:00:13:9f:b9:ad: 4a:b9:3a:06:3b:f3:41:e3:fc:17:9b:d1:d1:04:eb: 19:62:d8:49:de:01:da:7c:ee:de:49:c3:04:c2:0d: c1:83:bd:5b:68:2c:f8:c6:df:6d:d8:36:68:72:c1: 1f:9c:df:5b:82:e3:8f:d2:73:60:b7:bd:4d:0a:8f: d4:b8:32:ed:43:42:b7:74:10:69:19:89:5f:cc:64: 9c:63:de:89:5b:09:5e:15:be:0c:0d:8b:ee:c1:97: f2:dd:52:d3:ab:84:3b:18:1e:27:7e:d6:b5:74:8b: 8d:e8:5e:67:e0:cf:28:1a:1d:3f:ba:a7:2d:ad:2d: 0d:db:a8:12:fa:c6:10:ee:93:b6:7c:8f:ab:ad:46: 8a:3a:30:3f:62:59:69:17:bd:5c:05:5c:8c:4a:1b: a1:b4:f4:f4:78:51:bf:e1:96:ff:6b:0c:08:cf:f1: 25:95:cd:13:06:cb:e9:38:4c:28:0a:36:27:a2:33: 22:d5:c9:76:50:33:ae:6e:c3:0a:77:a0:5b:26:10: b4:ed:92:44:cd:3c:45:38:5d:d1:86:d9:9b:28:11: e4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:EB:B6:32:9D:0D:5E:2F:4D:63:6F:9A:07:4E:74:C9:EA:34:D4:A2 X509v3 Authority Key Identifier: keyid:A5:14:08:E9:70:10:BD:B4:41:46:28:1B:8A:78:BC:FA:4E:0E:4C:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A51408E97010BDB44146281B8A78BCFA4E0E4C5E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948271619/0/323430373a353530303a3a2f33322d3438203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:5500::/32 Signature Algorithm: sha256WithRSAEncryption 98:2d:1e:88:e7:8d:37:4a:10:01:9b:72:6e:12:84:66:86:b4: dd:48:07:18:50:ce:99:d7:cb:a2:6e:c0:63:42:67:76:df:f2: 77:8f:ff:ee:19:38:d7:4f:a7:30:c7:b4:49:7b:e0:a5:6d:4b: 19:e2:18:64:4d:2f:69:a0:53:9a:fb:63:3d:49:37:83:63:40: b7:ed:b0:3b:08:62:aa:85:62:8e:7b:39:af:fa:13:5c:8c:01: c2:8b:f4:cb:93:80:7e:37:0c:34:a7:67:53:a6:c7:dd:ab:e2: 1c:25:46:3a:4a:91:dd:e4:6f:67:bd:80:46:58:fe:1b:95:19: ac:49:46:79:3d:2f:29:d7:60:04:18:d4:d1:3e:60:62:00:a2: 35:da:e9:42:0a:06:9b:28:3c:ca:db:97:e2:23:61:b3:ab:7c: 7e:12:75:40:a8:3a:7e:84:63:46:bc:b2:47:9b:93:17:c2:1f: fc:93:f2:f8:69:67:86:22:c6:85:5e:70:cf:5b:99:2f:0f:63: d3:fb:04:af:86:90:51:91:94:32:b8:19:5f:59:0b:4e:4f:76: ea:f5:9f:cf:33:45:db:94:47:10:64:21:8c:90:a4:cc:ba:52: 17:fc:e5:22:9e:f2:d4:eb:a4:9b:4d:26:24:66:99:17:25:6b: 1a:60:65:63 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUSANCaGI5DiejocJ0INRqplzjJ3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxNDA4RTk3MDEwQkRCNDQxNDYyODFCOEE3OEJDRkE0 RTBFNEM1RTAeFw0yNjA0MTYwNzU4NDFaFw0yNzA0MTUwODAzNDFaMDMxMTAvBgNV BAMTKDI4RUJCNjMyOUQwRDVFMkY0RDYzNkY5QTA3NEU3NEM5RUEzNEQ0QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtK7k18QOdEJ/mAH3MyDDjaSdY Fl38kpMKNALeQtpig3deDqxJkf0AE5+5rUq5OgY780Hj/Beb0dEE6xli2EneAdp8 7t5JwwTCDcGDvVtoLPjG323YNmhywR+c31uC44/Sc2C3vU0Kj9S4Mu1DQrd0EGkZ iV/MZJxj3olbCV4VvgwNi+7Bl/LdUtOrhDsYHid+1rV0i43oXmfgzygaHT+6py2t LQ3bqBL6xhDuk7Z8j6utRoo6MD9iWWkXvVwFXIxKG6G09PR4Ub/hlv9rDAjP8SWV zRMGy+k4TCgKNieiMyLVyXZQM65uwwp3oFsmELTtkkTNPEU4XdGG2ZsoEeSPAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUKOu2Mp0NXi9NY2+aB050yeo01KIwHwYDVR0j BBgwFoAUpRQI6XAQvbRBRigbini8+k4OTF4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODI3MTYxOS8wL0E1MTQwOEU5NzAxMEJEQjQ0MTQ2MjgxQjhBNzhC Q0ZBNEUwRTRDNUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTUxNDA4RTk3MDEwQkRCNDQxNDYyODFCOEE3OEJDRkE0RTBFNEM1RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MjcxNjE5LzAvMzIzNDMwMzczYTM1 MzUzMDMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB1UA MA0GCSqGSIb3DQEBCwUAA4IBAQCYLR6I5403ShABm3JuEoRmhrTdSAcYUM6Z18ui bsBjQmd23/J3j//uGTjXT6cwx7RJe+ClbUsZ4hhkTS9poFOa+2M9STeDY0C37bA7 CGKqhWKOezmv+hNcjAHCi/TLk4B+Nww0p2dTpsfdq+IcJUY6SpHd5G9nvYBGWP4b lRmsSUZ5PS8p12AEGNTRPmBiAKI12ulCCgabKDzK25fiI2Gzq3x+EnVAqDp+hGNG vLJHm5MXwh/8k/L4aWeGIsaFXnDPW5kvD2PT+wSvhpBRkZQyuBlfWQtOT3bq9Z/P M0XblEcQZCGMkKTMulIX/OUinvLU66SbTSYkZpkXJWsaYGVj -----END CERTIFICATE-----Generated at Thu Apr 16 22:36:09 2026 by rpki-client