$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a3830303a3a2f34322d3432203d3e203539303738.roa File: 323430323a653763303a3830303a3a2f34322d3432203d3e203539303738.roa (raw, json) Hash identifier: YbfsCeRn1ULmX7StvSC732iltEvUTW6MKWivsDgY88M= Subject key identifier: F2:C0:61:9D:B8:AA:FE:B4:54:E1:6F:47:46:0B:1D:14:E2:71:0C:F4 Certificate issuer: /CN=3685DAC8828B3EB4989761422A77AA7B265F96CE Certificate serial: 3896153D241E26F671C7EC9C1531724B783D6B3C Authority key identifier: 36:85:DA:C8:82:8B:3E:B4:98:97:61:42:2A:77:AA:7B:26:5F:96:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a3830303a3a2f34322d3432203d3e203539303738.roa Signing time: Wed 15 Apr 2026 07:51:54 +0000 ROA not before: Wed 15 Apr 2026 07:46:54 +0000 ROA not after: Wed 14 Apr 2027 07:51:54 +0000 asID: 59078 IP address blocks: 2402:e7c0:800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:96:15:3d:24:1e:26:f6:71:c7:ec:9c:15:31:72:4b:78:3d:6b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3685DAC8828B3EB4989761422A77AA7B265F96CE Validity Not Before: Apr 15 07:46:54 2026 GMT Not After : Apr 14 07:51:54 2027 GMT Subject: CN=F2C0619DB8AAFEB454E16F47460B1D14E2710CF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:94:4f:f9:ef:f5:9e:43:b9:91:fe:86:8a:36: 02:34:91:10:ae:b3:b2:44:28:7b:ec:79:05:a6:13: f6:8c:ed:bf:48:45:cc:c8:71:b0:2b:e2:2d:e9:90: 1f:9a:ad:3c:ec:37:ec:9c:02:68:c1:28:cf:f6:26: c9:08:85:81:fa:89:dc:ff:44:08:35:8e:f1:34:f1: b1:cf:1e:23:c9:3d:b5:37:a3:7e:bb:76:69:27:bf: 01:3a:f1:56:76:f4:da:2b:36:10:dd:b1:6e:64:5b: 32:31:fa:c7:ec:a4:bb:fb:96:c5:21:e2:7f:8d:06: 6f:03:7d:19:36:87:46:9b:31:8a:64:02:7f:1f:b3: dd:a1:84:5b:1c:d0:8a:0e:0b:bd:8c:2d:26:dc:b7: 8c:a8:ef:4b:78:60:3f:15:64:bf:9b:32:e5:ce:08: 0e:7a:d0:ec:b3:ea:ca:95:06:37:f0:8c:45:a0:dc: 1d:67:e7:6a:3c:b2:4b:3e:96:9b:a3:32:db:b8:84: 26:fb:84:cc:86:7b:77:18:6e:33:06:8f:ed:76:c9: 48:02:2c:7b:0a:5d:1d:24:c8:60:dd:8f:49:cb:54: 37:68:22:fe:24:25:e6:5d:2a:c8:5f:34:bf:3e:9c: 7b:c5:04:84:c4:5b:81:90:5e:22:72:36:60:3d:2a: f6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C0:61:9D:B8:AA:FE:B4:54:E1:6F:47:46:0B:1D:14:E2:71:0C:F4 X509v3 Authority Key Identifier: keyid:36:85:DA:C8:82:8B:3E:B4:98:97:61:42:2A:77:AA:7B:26:5F:96:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a3830303a3a2f34322d3432203d3e203539303738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e7c0:800::/42 Signature Algorithm: sha256WithRSAEncryption 41:e2:ce:33:a9:7a:27:ae:5c:25:2b:93:8c:a9:31:cf:04:9a: d5:36:6c:cf:40:b9:f8:07:1e:c8:3f:0e:77:55:5f:f7:d5:05: c3:18:2e:fc:c3:05:4c:13:00:7a:03:fa:1a:6d:d2:8d:a7:5d: fe:31:aa:ba:7e:3b:82:76:86:69:98:6e:bf:38:31:3b:9a:98: 50:c6:ab:06:25:12:1c:89:aa:70:64:06:d1:32:04:ac:ab:28: 83:ff:27:41:c4:a2:b4:82:ef:2d:9a:d0:53:1d:0c:1e:a9:92: 1b:98:9c:15:6a:07:50:1d:30:dd:ab:73:a6:33:38:90:20:3e: f4:65:9c:5a:87:a6:b4:f2:4a:5b:0e:27:57:d5:5b:dd:52:e9: cb:6f:25:8b:77:ce:73:ed:ae:17:e8:32:84:da:9a:f2:94:c2: 52:c6:93:db:a0:79:5b:0c:8d:92:5f:d7:da:70:97:9a:67:d8: 2d:8a:9c:12:1c:4d:1e:79:41:d1:b2:99:70:3a:0a:95:d7:07: c1:26:77:fc:7f:ea:ae:85:87:f6:bd:86:95:02:12:4a:7f:6e: b0:9a:57:ab:8e:0a:9c:db:99:98:2b:71:d7:3e:bd:fb:86:0a: cd:f2:bb:1b:eb:aa:1a:55:a4:c4:f5:81:6a:ef:ac:e7:ad:23: 6f:56:d6:01 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgIUOJYVPSQeJvZxx+ycFTFyS3g9azwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY4NURBQzg4MjhCM0VCNDk4OTc2MTQyMkE3N0FBN0Iy NjVGOTZDRTAeFw0yNjA0MTUwNzQ2NTRaFw0yNzA0MTQwNzUxNTRaMDMxMTAvBgNV BAMTKEYyQzA2MTlEQjhBQUZFQjQ1NEUxNkY0NzQ2MEIxRDE0RTI3MTBDRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCslE/57/WeQ7mR/oaKNgI0kRCu s7JEKHvseQWmE/aM7b9IRczIcbAr4i3pkB+arTzsN+ycAmjBKM/2JskIhYH6idz/ RAg1jvE08bHPHiPJPbU3o367dmknvwE68VZ29NorNhDdsW5kWzIx+sfspLv7lsUh 4n+NBm8DfRk2h0abMYpkAn8fs92hhFsc0IoOC72MLSbct4yo70t4YD8VZL+bMuXO CA560Oyz6sqVBjfwjEWg3B1n52o8sks+lpujMtu4hCb7hMyGe3cYbjMGj+12yUgC LHsKXR0kyGDdj0nLVDdoIv4kJeZdKshfNL8+nHvFBITEW4GQXiJyNmA9KvaxAgMB AAGjggIfMIICGzAdBgNVHQ4EFgQU8sBhnbiq/rRU4W9HRgsdFOJxDPQwHwYDVR0j BBgwFoAUNoXayIKLPrSYl2FCKneqeyZfls4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8wLzM2ODVEQUM4ODI4QjNFQjQ5ODk3NjE0MjJBNzdB QTdCMjY1Rjk2Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzY4NURBQzg4MjhCM0VCNDk4OTc2MTQyMkE3N0FBN0IyNjVGOTZDRS5jZXIw gZUGCCsGAQUFBwELBIGIMIGFMIGCBggrBgEFBQcwC4Z2cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0NTIzNjUxLzAvMzIzNDMwMzIz YTY1Mzc2MzMwM2EzODMwMzAzYTNhMmYzNDMyMmQzNDMyMjAzZDNlMjAzNTM5MzAz NzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcGJALnwAgAMA0GCSqGSIb3DQEBCwUAA4IBAQBB4s4zqXon rlwlK5OMqTHPBJrVNmzPQLn4Bx7IPw53VV/31QXDGC78wwVMEwB6A/oabdKNp13+ Maq6fjuCdoZpmG6/ODE7mphQxqsGJRIciapwZAbRMgSsqyiD/ydBxKK0gu8tmtBT HQweqZIbmJwVagdQHTDdq3OmMziQID70ZZxah6a08kpbDidX1VvdUunLbyWLd85z 7a4X6DKE2prylMJSxpPboHlbDI2SX9facJeaZ9gtipwSHE0eeUHRsplwOgqV1wfB Jnf8f+quhYf2vYaVAhJKf26wmlerjgqc25mYK3HXPr37hgrN8rsb66oaVaTE9YFq 76znrSNvVtYB -----END CERTIFICATE-----Generated at Fri Apr 17 20:38:56 2026 by rpki-client