$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a3430303a3a2f34322d3432203d3e203539303738.roa File: 323430323a653763303a3430303a3a2f34322d3432203d3e203539303738.roa (raw, json) Hash identifier: EqDp0BAfwIkJ/Hrp0K5IEau637qczsJdigzGmOq8OFs= Subject key identifier: B1:F2:0B:07:47:70:B1:04:25:95:40:7D:AC:19:FC:0C:42:03:A8:3A Certificate issuer: /CN=3685DAC8828B3EB4989761422A77AA7B265F96CE Certificate serial: 69BF01158BB16B8C5CDB20386E7372B44386B56F Authority key identifier: 36:85:DA:C8:82:8B:3E:B4:98:97:61:42:2A:77:AA:7B:26:5F:96:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a3430303a3a2f34322d3432203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:51:54 +0000 ROA not before: Wed 15 Apr 2026 07:46:54 +0000 ROA not after: Wed 14 Apr 2027 07:51:54 +0000 asID: 59078 IP address blocks: 2402:e7c0:400::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:bf:01:15:8b:b1:6b:8c:5c:db:20:38:6e:73:72:b4:43:86:b5:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3685DAC8828B3EB4989761422A77AA7B265F96CE Validity Not Before: Apr 15 07:46:54 2026 GMT Not After : Apr 14 07:51:54 2027 GMT Subject: CN=B1F20B074770B1042595407DAC19FC0C4203A83A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:db:85:41:8b:7d:a9:98:0d:e9:2c:ae:88:90: b4:e9:bb:a2:3a:43:53:b7:ac:ff:86:73:c5:f6:f3: c1:e1:86:70:ca:57:96:2f:b4:70:35:ab:f4:2a:4e: 19:f6:e7:43:fb:9f:11:54:c8:32:9b:84:2b:08:44: ed:93:a7:cc:b7:13:72:08:c4:02:77:4b:78:aa:ed: e3:e3:b1:75:af:d6:bf:5c:74:5b:ac:aa:0e:82:e9: 6a:4f:32:06:ed:4f:30:62:47:94:d5:69:88:7c:33: 78:45:59:61:3d:2c:ed:65:ef:18:9b:b0:0c:0e:60: b9:3f:03:a2:4a:10:31:30:3a:ef:3b:e0:18:f4:d9: 6d:2f:a2:5a:ca:22:da:b6:26:aa:6a:9b:29:a4:81: 9d:5a:f0:16:1e:65:c8:84:15:d3:19:6a:d6:13:48: 23:d5:20:2f:3d:51:9b:a3:ca:db:bb:94:98:0c:4e: e7:3a:6c:9e:42:7c:8d:13:0e:d0:27:ca:01:e5:92: b3:4b:cb:04:eb:a0:f6:1d:75:90:a4:a4:79:e0:5d: 06:e4:37:98:e4:e3:c2:10:e4:0f:5d:88:61:b2:70: e0:b5:73:0e:74:65:2c:83:af:e1:78:c9:35:85:ee: ad:ac:07:6a:b9:52:5d:be:50:5e:1e:cf:d7:2b:13: aa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F2:0B:07:47:70:B1:04:25:95:40:7D:AC:19:FC:0C:42:03:A8:3A X509v3 Authority Key Identifier: keyid:36:85:DA:C8:82:8B:3E:B4:98:97:61:42:2A:77:AA:7B:26:5F:96:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a3430303a3a2f34322d3432203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e7c0:400::/42 Signature Algorithm: sha256WithRSAEncryption aa:1e:40:5b:43:6d:f8:99:98:11:8e:9d:41:8f:74:22:d6:86: 71:16:a7:1c:20:c2:9d:f0:dd:9e:07:7c:3b:15:98:4c:db:fc: 62:da:f1:fd:38:3b:5d:94:25:d2:15:fe:b9:c3:e8:b7:66:6c: 59:dc:82:b0:d1:0b:e4:be:6c:e2:04:d5:62:57:41:64:fc:fb: 7e:75:8b:06:a7:df:a0:1c:99:6c:8d:56:34:ce:72:c4:49:8f: b1:36:6f:07:7c:86:53:4f:0c:76:15:ec:5a:d2:e8:80:57:6c: 07:44:65:f6:d9:b8:32:b9:65:07:a7:0e:19:54:ab:68:69:27: 7e:e3:21:23:87:0f:80:a3:30:9f:1f:8c:5c:aa:96:f8:bb:ae: 67:f8:ce:40:65:ed:b4:20:a3:0d:11:7e:f4:9c:a1:ba:81:1c: fe:15:f1:a2:52:4f:16:4d:2f:15:04:93:53:98:02:d6:63:22: c4:0e:df:01:e7:b8:d6:41:f8:e2:75:e6:32:cd:58:9b:7e:d0: 3a:13:50:02:67:9f:9f:50:45:23:88:d6:e3:74:4c:7a:9d:1a: e8:cc:b6:3a:aa:b6:4f:db:96:38:6c:e0:0d:65:5c:47:dd:03: 55:71:e9:a9:2a:6d:3c:19:cd:dc:8b:1c:d3:01:9e:36:27:d3: a0:93:4f:eb -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgIUab8BFYuxa4xc2yA4bnNytEOGtW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY4NURBQzg4MjhCM0VCNDk4OTc2MTQyMkE3N0FBN0Iy NjVGOTZDRTAeFw0yNjA0MTUwNzQ2NTRaFw0yNzA0MTQwNzUxNTRaMDMxMTAvBgNV BAMTKEIxRjIwQjA3NDc3MEIxMDQyNTk1NDA3REFDMTlGQzBDNDIwM0E4M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg24VBi32pmA3pLK6IkLTpu6I6 Q1O3rP+Gc8X288HhhnDKV5YvtHA1q/QqThn250P7nxFUyDKbhCsIRO2Tp8y3E3II xAJ3S3iq7ePjsXWv1r9cdFusqg6C6WpPMgbtTzBiR5TVaYh8M3hFWWE9LO1l7xib sAwOYLk/A6JKEDEwOu874Bj02W0volrKItq2JqpqmymkgZ1a8BYeZciEFdMZatYT SCPVIC89UZujytu7lJgMTuc6bJ5CfI0TDtAnygHlkrNLywTroPYddZCkpHngXQbk N5jk48IQ5A9diGGycOC1cw50ZSyDr+F4yTWF7q2sB2q5Ul2+UF4ez9crE6rnAgMB AAGjggIfMIICGzAdBgNVHQ4EFgQUsfILB0dwsQQllUB9rBn8DEIDqDowHwYDVR0j BBgwFoAUNoXayIKLPrSYl2FCKneqeyZfls4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8wLzM2ODVEQUM4ODI4QjNFQjQ5ODk3NjE0MjJBNzdB QTdCMjY1Rjk2Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzY4NURBQzg4MjhCM0VCNDk4OTc2MTQyMkE3N0FBN0IyNjVGOTZDRS5jZXIw gZUGCCsGAQUFBwELBIGIMIGFMIGCBggrBgEFBQcwC4Z2cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0NTIzNjUxLzAvMzIzNDMwMzIz YTY1Mzc2MzMwM2EzNDMwMzAzYTNhMmYzNDMyMmQzNDMyMjAzZDNlMjAzNTM5MzAz NzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcGJALnwAQAMA0GCSqGSIb3DQEBCwUAA4IBAQCqHkBbQ234 mZgRjp1Bj3Qi1oZxFqccIMKd8N2eB3w7FZhM2/xi2vH9ODtdlCXSFf65w+i3ZmxZ 3IKw0QvkvmziBNViV0Fk/Pt+dYsGp9+gHJlsjVY0znLESY+xNm8HfIZTTwx2Fexa 0uiAV2wHRGX22bgyuWUHpw4ZVKtoaSd+4yEjhw+AozCfH4xcqpb4u65n+M5AZe20 IKMNEX70nKG6gRz+FfGiUk8WTS8VBJNTmALWYyLEDt8B57jWQfjideYyzVibftA6 E1ACZ5+fUEUjiNbjdEx6nRrozLY6qrZP25Y4bOANZVxH3QNVcempKm08Gc3cixzT AZ42J9Ogk0/r -----END CERTIFICATE-----Generated at Fri Apr 17 20:38:58 2026 by rpki-client