$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/323430303a613836303a323a3a2f34382d3438203d3e2034383038.roa File: 323430303a613836303a323a3a2f34382d3438203d3e2034383038.roa (raw, json) Hash identifier: OKFyZ0noKFQzPjadj+vTmmI839G12P+h27OorRvltNA= Subject key identifier: FE:CB:59:BE:88:5B:36:BF:9C:2D:3B:F8:25:5A:61:8B:85:31:10:C7 Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 25F1942A28B3D20FD4B1C7EB836E0A117DF85E5C Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/323430303a613836303a323a3a2f34382d3438203d3e2034383038.roa Signing time: Mon 13 Apr 2026 08:06:59 +0000 ROA not before: Mon 13 Apr 2026 08:01:59 +0000 ROA not after: Mon 12 Apr 2027 08:06:59 +0000 asID: 4808 IP address blocks: 2400:a860:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 07:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f1:94:2a:28:b3:d2:0f:d4:b1:c7:eb:83:6e:0a:11:7d:f8:5e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:01:59 2026 GMT Not After : Apr 12 08:06:59 2027 GMT Subject: CN=FECB59BE885B36BF9C2D3BF8255A618B853110C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:c5:14:f9:a8:d0:55:61:91:36:3b:d5:f1:6a: 5c:84:9e:94:b0:6d:78:4c:ca:ea:8d:64:c5:81:1e: 6f:0d:67:06:37:02:08:b5:70:5c:4a:07:b9:32:ac: 22:b3:8b:13:ce:f9:8a:01:ef:bd:76:23:7c:45:3e: 8a:d0:ff:cb:e3:31:b1:76:7e:25:03:10:3c:d2:4b: 4e:cf:fe:79:29:00:32:cb:04:77:f0:01:04:4f:b6: 7b:fe:b9:65:c8:6d:8a:a9:19:ea:1a:1d:e4:b9:ed: 0a:47:11:6e:7d:00:10:f3:a9:82:4f:62:10:8f:41: bc:e5:d3:1d:30:fd:a4:60:40:cc:c6:aa:ae:ba:c1: 52:c2:44:48:1a:e2:4e:aa:79:79:fc:1a:d7:c3:28: 7b:e6:37:21:a1:9c:10:7f:67:7a:a0:b7:d3:d9:6e: 6e:35:b6:1a:7f:66:c7:5a:0e:91:77:bc:d9:77:f2: 83:28:c0:83:d0:32:82:e2:c2:11:3e:02:c2:a6:0d: 59:5c:c7:23:fa:44:ce:7f:ec:0b:1a:4d:12:8a:8d: 43:70:10:d0:85:12:6f:bb:44:9e:55:28:3c:f0:f3: de:81:5d:70:ff:8d:b7:ac:da:6d:35:4b:ba:76:c9: e4:25:bd:cf:11:89:f9:58:91:79:ac:e5:2d:6c:3c: 44:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CB:59:BE:88:5B:36:BF:9C:2D:3B:F8:25:5A:61:8B:85:31:10:C7 X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/323430303a613836303a323a3a2f34382d3438203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:a860:2::/48 Signature Algorithm: sha256WithRSAEncryption 5c:c9:51:0e:15:67:d3:b0:f4:e5:39:70:cb:24:c5:00:87:a3: 77:6f:d1:04:3b:b0:4a:68:2f:82:47:30:f5:cf:d2:7d:26:2e: 9c:8b:d6:a4:fc:f5:e0:80:54:38:0f:dd:5b:91:b6:17:25:16: 20:00:84:25:1c:23:0e:30:96:bf:d9:20:de:fa:fd:3e:13:d4: ff:ad:e9:4e:95:14:df:ac:15:c8:24:06:62:e9:59:6f:ab:7c: 5d:c4:1e:e3:a0:9f:f3:bd:ad:4e:d3:a2:69:93:35:03:1d:a4: 81:a0:69:15:20:40:39:24:ea:39:e6:71:da:cf:00:f4:45:73: 61:5d:bb:94:5c:71:cd:a2:5e:8d:0b:ef:3f:cd:42:d0:cc:28: 4a:be:f9:21:84:63:fa:49:48:65:e2:80:5f:cb:05:d9:04:23: 3b:bb:63:29:3f:32:9c:ac:d0:0c:8e:e2:a8:15:5e:32:08:39: 74:a4:33:6e:7e:fd:3c:51:9b:b2:bc:1c:98:d9:1a:fa:48:fb: df:9d:aa:eb:44:ee:9c:9a:45:35:e5:44:10:96:7b:60:00:e5: d4:81:8e:c0:2c:39:67:89:5a:d4:cb:ed:3a:70:78:2d:91:24: 78:22:0c:18:94:bb:ec:8f:0b:13:3c:9f:c9:d1:5c:88:a2:bf: b0:ee:98:cd -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUJfGUKiiz0g/Uscfrg24KEX34XlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAxNTlaFw0yNzA0MTIwODA2NTlaMDMxMTAvBgNV BAMTKEZFQ0I1OUJFODg1QjM2QkY5QzJEM0JGODI1NUE2MThCODUzMTEwQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOxRT5qNBVYZE2O9XxalyEnpSw bXhMyuqNZMWBHm8NZwY3Agi1cFxKB7kyrCKzixPO+YoB7712I3xFPorQ/8vjMbF2 fiUDEDzSS07P/nkpADLLBHfwAQRPtnv+uWXIbYqpGeoaHeS57QpHEW59ABDzqYJP YhCPQbzl0x0w/aRgQMzGqq66wVLCREga4k6qeXn8GtfDKHvmNyGhnBB/Z3qgt9PZ bm41thp/ZsdaDpF3vNl38oMowIPQMoLiwhE+AsKmDVlcxyP6RM5/7AsaTRKKjUNw ENCFEm+7RJ5VKDzw896BXXD/jbes2m01S7p2yeQlvc8RiflYkXms5S1sPESVAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU/stZvohbNr+cLTv4JVphi4UxEMcwHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5NTk3ODMxNjg4NTY1NTU1NS8wLzMyMzQzMDMwM2E2 MTM4MzYzMDNhMzIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzOC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQAqGAAAjANBgkqhkiG9w0BAQsFAAOCAQEAXMlRDhVn07D05TlwyyTF AIejd2/RBDuwSmgvgkcw9c/SfSYunIvWpPz14IBUOA/dW5G2FyUWIACEJRwjDjCW v9kg3vr9PhPU/63pTpUU36wVyCQGYulZb6t8XcQe46Cf872tTtOiaZM1Ax2kgaBp FSBAOSTqOeZx2s8A9EVzYV27lFxxzaJejQvvP81C0MwoSr75IYRj+klIZeKAX8sF 2QQjO7tjKT8ynKzQDI7iqBVeMgg5dKQzbn79PFGbsrwcmNka+kj7352q60TunJpF NeVEEJZ7YADl1IGOwCw5Z4la1MvtOnB4LZEkeCIMGJS77I8LEzyfydFciKK/sO6Y zQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:32:31 2026 by rpki-client