$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/323430353a623330303a3a2f33322d3634203d3e20313331323734.roa File: 323430353a623330303a3a2f33322d3634203d3e20313331323734.roa (raw, json) Hash identifier: tgi59WhDGqNpxkHNlJwZ7AyKFq0dP0ZmlPtNmrKDq/M= Subject key identifier: BB:03:FF:37:18:A9:3A:FA:E7:6E:3A:F3:F3:0F:27:D2:5A:5F:85:66 Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 717E726DEA8D314488C9E55EB7AF57534DC6E95E Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/323430353a623330303a3a2f33322d3634203d3e20313331323734.roa Signing time: Fri 17 Apr 2026 02:18:46 +0000 ROA not before: Fri 17 Apr 2026 02:13:46 +0000 ROA not after: Fri 16 Apr 2027 02:18:46 +0000 asID: 131274 IP address blocks: 2405:b300::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 04:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7e:72:6d:ea:8d:31:44:88:c9:e5:5e:b7:af:57:53:4d:c6:e9:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: Apr 17 02:13:46 2026 GMT Not After : Apr 16 02:18:46 2027 GMT Subject: CN=BB03FF3718A93AFAE76E3AF3F30F27D25A5F8566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3a:bc:e2:91:68:2c:14:9d:a7:14:77:a1:0e: fa:f9:4e:7a:f9:15:81:57:6e:77:6f:6e:b7:65:14: fe:08:f0:8b:ab:7e:45:1b:f3:5c:8e:0f:79:91:ad: 5b:27:90:64:06:50:76:67:79:a8:d2:78:c5:75:38: 0d:c4:a4:92:41:12:a9:61:b1:cf:c2:6a:00:53:d4: 24:5e:52:38:59:7e:6d:69:52:44:9d:d5:a6:17:5a: 85:13:ac:74:a3:86:49:e1:d7:0c:b6:b9:23:15:61: e7:89:64:20:47:d6:df:96:c2:2c:ea:8c:cd:a8:d3: 5e:e4:d0:d4:59:b1:9b:ee:e7:da:4a:7b:e6:9b:cf: f9:a4:89:c4:97:76:56:38:01:e7:fd:f2:cc:e0:1a: 86:fc:35:b8:a3:d8:52:4c:1b:8c:4e:e3:aa:34:c4: 7d:66:5e:40:08:2b:41:f7:7c:91:1c:3b:eb:fa:62: 7d:4a:6f:91:2e:f7:ed:3b:8c:f1:a1:72:2f:03:d1: 19:c8:e3:30:5b:e9:e6:f2:55:c4:ad:5d:52:cd:4a: ea:87:43:df:9c:d1:43:af:f5:fe:1e:8e:84:eb:15: 94:bb:6d:d7:7b:5e:aa:6b:b2:5c:a4:84:cb:27:b1: 77:7e:5e:ba:2a:fc:2b:f7:46:78:74:4b:67:7c:7a: 1f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:03:FF:37:18:A9:3A:FA:E7:6E:3A:F3:F3:0F:27:D2:5A:5F:85:66 X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/323430353a623330303a3a2f33322d3634203d3e20313331323734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b300::/32 Signature Algorithm: sha256WithRSAEncryption a6:07:fb:d0:55:fa:24:0d:50:05:8b:b3:ee:c5:8d:3e:ab:bd: 74:f7:59:ff:da:7b:c3:53:ef:cf:bb:7e:30:ef:c3:72:6f:8b: dc:6e:77:6d:93:ae:4b:fc:68:0c:fd:60:75:1b:ca:e2:36:b4: fb:f5:73:a4:0c:fe:5e:d1:ac:17:41:b0:34:9a:40:a8:55:c6: 89:44:2f:3c:be:9f:57:0d:77:91:5d:c6:0d:78:a4:10:ad:0d: e0:ed:25:ae:ea:e0:63:f0:0d:41:38:3b:f1:41:9c:f8:01:81: a6:80:85:5c:b5:a7:49:f5:24:e8:80:de:8b:12:68:cd:32:e5: 40:ae:45:eb:ba:13:86:ad:cb:d1:78:e5:65:7f:ff:8a:e7:09: cc:9f:8e:e5:be:27:93:ed:b8:87:0b:e8:1b:5c:ac:20:e6:4a: 3f:8a:1e:75:e0:2f:48:58:2b:1e:bb:df:09:3d:07:2d:0c:74: 80:f8:ee:7b:8e:72:dc:95:44:1e:2a:8c:25:df:f6:52:39:12: d9:2a:7c:1a:f3:a7:e5:96:93:1b:c7:82:5e:68:3e:b6:c9:62: df:69:d5:a4:b6:be:2d:51:6c:e0:ca:86:9b:45:e3:b0:fd:e4: 10:96:30:11:d6:d6:2d:6d:ec:10:79:63:8c:10:ee:8d:8b:22: d7:1f:94:a6 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUcX5ybeqNMUSIyeVet69XU03G6V4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA0MTcwMjEzNDZaFw0yNzA0MTYwMjE4NDZaMDMxMTAvBgNV BAMTKEJCMDNGRjM3MThBOTNBRkFFNzZFM0FGM0YzMEYyN0QyNUE1Rjg1NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKOrzikWgsFJ2nFHehDvr5Tnr5 FYFXbndvbrdlFP4I8IurfkUb81yOD3mRrVsnkGQGUHZneajSeMV1OA3EpJJBEqlh sc/CagBT1CReUjhZfm1pUkSd1aYXWoUTrHSjhknh1wy2uSMVYeeJZCBH1t+Wwizq jM2o017k0NRZsZvu59pKe+abz/mkicSXdlY4Aef98szgGob8Nbij2FJMG4xO46o0 xH1mXkAIK0H3fJEcO+v6Yn1Kb5Eu9+07jPGhci8D0RnI4zBb6ebyVcStXVLNSuqH Q9+c0UOv9f4ejoTrFZS7bdd7XqprslykhMsnsXd+Xroq/Cv3Rnh0S2d8eh8fAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUuwP/NxipOvrnbjrz8w8n0lpfhWYwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NzI0MTk0NzYwMjk0NS8wLzMyMzQzMDM1M2E2 MjMzMzAzMDNhM2EyZjMzMzIyZDM2MzQyMDNkM2UyMDMxMzMzMTMyMzczNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQFswAwDQYJKoZIhvcNAQELBQADggEBAKYH+9BV+iQNUAWLs+7FjT6r vXT3Wf/ae8NT78+7fjDvw3Jvi9xud22Trkv8aAz9YHUbyuI2tPv1c6QM/l7RrBdB sDSaQKhVxolELzy+n1cNd5Fdxg14pBCtDeDtJa7q4GPwDUE4O/FBnPgBgaaAhVy1 p0n1JOiA3osSaM0y5UCuReu6E4aty9F45WV//4rnCcyfjuW+J5PtuIcL6BtcrCDm Sj+KHnXgL0hYKx673wk9By0MdID47nuOctyVRB4qjCXf9lI5EtkqfBrzp+WWkxvH gl5oPrbJYt9p1aS2vi1RbODKhptF47D95BCWMBHW1i1t7BB5Y4wQ7o2LItcflKY= -----END CERTIFICATE-----Generated at Fri Apr 17 19:25:39 2026 by rpki-client