$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a6330303a3a2f33382d3338203d3e20313334333636.roa File: 323430323a653763303a6330303a3a2f33382d3338203d3e20313334333636.roa (raw, json) Hash identifier: hkZ5Ep886+9a5g9fGIQ5HddIZ9Cys8XnbUoAQ11p0TA= Subject key identifier: 35:71:9A:5C:2E:08:4C:60:F1:A0:BF:F2:71:C4:F6:F5:2A:E8:3A:56 Certificate issuer: /CN=3685DAC8828B3EB4989761422A77AA7B265F96CE Certificate serial: 0B3468EB2CE8E3C2AB51D3F3F517B75DCB05ADEF Authority key identifier: 36:85:DA:C8:82:8B:3E:B4:98:97:61:42:2A:77:AA:7B:26:5F:96:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a6330303a3a2f33382d3338203d3e20313334333636.roa Signing time: Wed 15 Apr 2026 07:54:52 +0000 ROA not before: Wed 15 Apr 2026 07:49:52 +0000 ROA not after: Wed 14 Apr 2027 07:54:52 +0000 asID: 134366 IP address blocks: 2402:e7c0:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:34:68:eb:2c:e8:e3:c2:ab:51:d3:f3:f5:17:b7:5d:cb:05:ad:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3685DAC8828B3EB4989761422A77AA7B265F96CE Validity Not Before: Apr 15 07:49:52 2026 GMT Not After : Apr 14 07:54:52 2027 GMT Subject: CN=35719A5C2E084C60F1A0BFF271C4F6F52AE83A56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:65:50:8d:41:0a:97:75:21:79:89:49:94:4a: c9:dd:a9:69:ea:65:ed:05:9c:27:46:04:0b:2d:90: 8f:bc:e1:7f:73:49:75:a9:aa:d6:51:fa:d6:67:ba: 29:f0:58:15:77:cc:d1:8f:c3:76:70:41:a8:4a:15: b5:86:63:2f:ce:3b:b0:6f:2b:6d:58:8d:aa:57:29: 49:18:c0:e8:1a:5c:6f:43:5f:ac:59:6c:a9:bc:8e: 61:c6:e3:6e:3c:9e:41:89:0d:af:f2:78:29:ab:87: ea:42:04:ed:a2:54:9b:e3:72:21:d1:c2:a9:99:17: 55:dc:2b:74:dc:1e:f6:c6:c1:6a:f7:9f:7d:3e:f5: fa:12:77:51:ce:21:67:af:87:54:28:45:79:73:f7: 99:10:b4:49:3d:d8:91:95:6f:aa:40:31:f8:b6:a0: 87:42:c3:9a:f9:6b:76:26:95:90:2d:79:7c:a9:de: 23:1c:31:40:0c:a5:b5:71:4b:23:f6:5f:65:bf:7b: 55:19:9c:88:cf:4d:70:01:12:60:13:c6:67:96:3e: 3c:6e:95:45:ab:74:41:a9:b7:4e:78:23:34:47:9a: 16:23:71:cf:cc:04:3b:5a:58:6b:ac:fc:aa:3e:e3: 3c:c6:c2:81:f2:e9:4d:3d:6d:17:b9:cf:44:4a:2a: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:71:9A:5C:2E:08:4C:60:F1:A0:BF:F2:71:C4:F6:F5:2A:E8:3A:56 X509v3 Authority Key Identifier: keyid:36:85:DA:C8:82:8B:3E:B4:98:97:61:42:2A:77:AA:7B:26:5F:96:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/3685DAC8828B3EB4989761422A77AA7B265F96CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3685DAC8828B3EB4989761422A77AA7B265F96CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394523651/0/323430323a653763303a6330303a3a2f33382d3338203d3e20313334333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e7c0:c00::/38 Signature Algorithm: sha256WithRSAEncryption a1:91:45:4e:7d:08:45:13:c6:ad:84:44:2a:cd:57:94:26:03: 50:f3:d1:1c:5a:93:44:50:60:87:be:81:45:9c:6d:79:76:60: e5:ce:4e:2e:2e:d5:f0:f4:c8:f6:64:4a:ca:2a:41:70:bd:e9: ed:57:4d:3c:af:12:01:83:6c:b6:2b:87:b9:5a:53:bc:52:ee: 72:59:00:49:48:df:85:fa:cb:05:3f:f3:ef:84:50:30:cb:88: 6e:ff:66:b5:54:02:a6:fa:80:d7:f2:a0:b7:bb:8e:f9:48:0e: 97:43:1b:84:ad:3c:a3:20:56:12:98:b6:5b:94:f3:fd:88:53: 9d:74:db:2e:1e:5f:ea:b5:ed:68:80:aa:76:2e:dd:a6:37:93: bf:01:bb:73:49:22:f8:e3:7f:57:29:52:78:06:26:9e:f3:d2: 45:ee:fb:47:de:b5:40:e8:33:99:51:c0:04:a3:33:e3:cf:a1: 4d:bd:b8:c8:50:61:60:06:6e:70:3f:f7:89:ee:92:b7:c6:c4: 47:ae:e0:a1:b4:96:fc:c5:b3:d9:1d:e6:c0:3e:a7:6b:7e:1c: bf:92:82:27:59:6f:37:b6:59:86:e1:e9:70:b6:e8:b7:26:76: a7:06:4b:df:e7:b5:8d:0d:69:9f:e6:39:ac:65:56:35:76:fa: 40:07:47:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgIUCzRo6yzo48KrUdPz9Re3XcsFre8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY4NURBQzg4MjhCM0VCNDk4OTc2MTQyMkE3N0FBN0Iy NjVGOTZDRTAeFw0yNjA0MTUwNzQ5NTJaFw0yNzA0MTQwNzU0NTJaMDMxMTAvBgNV BAMTKDM1NzE5QTVDMkUwODRDNjBGMUEwQkZGMjcxQzRGNkY1MkFFODNBNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ZVCNQQqXdSF5iUmUSsndqWnq Ze0FnCdGBAstkI+84X9zSXWpqtZR+tZnuinwWBV3zNGPw3ZwQahKFbWGYy/OO7Bv K21YjapXKUkYwOgaXG9DX6xZbKm8jmHG4248nkGJDa/yeCmrh+pCBO2iVJvjciHR wqmZF1XcK3TcHvbGwWr3n30+9foSd1HOIWevh1QoRXlz95kQtEk92JGVb6pAMfi2 oIdCw5r5a3YmlZAteXyp3iMcMUAMpbVxSyP2X2W/e1UZnIjPTXABEmATxmeWPjxu lUWrdEGpt054IzRHmhYjcc/MBDtaWGus/Ko+4zzGwoHy6U09bRe5z0RKKkWtAgMB AAGjggIgMIICHDAdBgNVHQ4EFgQUNXGaXC4ITGDxoL/yccT29SroOlYwHwYDVR0j BBgwFoAUNoXayIKLPrSYl2FCKneqeyZfls4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDUyMzY1MS8wLzM2ODVEQUM4ODI4QjNFQjQ5ODk3NjE0MjJBNzdB QTdCMjY1Rjk2Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzY4NURBQzg4MjhCM0VCNDk4OTc2MTQyMkE3N0FBN0IyNjVGOTZDRS5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0NTIzNjUxLzAvMzIzNDMwMzIz YTY1Mzc2MzMwM2E2MzMwMzAzYTNhMmYzMzM4MmQzMzM4MjAzZDNlMjAzMTMzMzQz MzM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcB Af8EEjAQMA4EAgACMAgDBgIkAufADDANBgkqhkiG9w0BAQsFAAOCAQEAoZFFTn0I RRPGrYREKs1XlCYDUPPRHFqTRFBgh76BRZxteXZg5c5OLi7V8PTI9mRKyipBcL3p 7VdNPK8SAYNstiuHuVpTvFLuclkASUjfhfrLBT/z74RQMMuIbv9mtVQCpvqA1/Kg t7uO+UgOl0MbhK08oyBWEpi2W5Tz/YhTnXTbLh5f6rXtaICqdi7dpjeTvwG7c0ki +ON/VylSeAYmnvPSRe77R961QOgzmVHABKMz48+hTb24yFBhYAZucD/3ie6St8bE R67gobSW/MWz2R3mwD6na34cv5KCJ1lvN7ZZhuHpcLbotyZ2pwZL3+e1jQ1pn+Y5 rGVWNXb6QAdHoQ== -----END CERTIFICATE-----Generated at Sat Apr 18 01:01:31 2026 by rpki-client