$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095978316885655555/0/323430303a613836303a363a3a2f34382d3438203d3e203633363437.roa File: 323430303a613836303a363a3a2f34382d3438203d3e203633363437.roa (raw, json) Hash identifier: foZYUYrtwuyFYE9YAYNGxYp3wXsxo09oBtrPx8ymreQ= Subject key identifier: 81:AF:F9:6B:79:26:23:EC:F2:3F:D0:E2:80:BB:57:D0:4D:3F:81:E4 Certificate issuer: /CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Certificate serial: 45A0F432D63B250E96ACA65AB52F0AAFEE374C6F Authority key identifier: C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/323430303a613836303a363a3a2f34382d3438203d3e203633363437.roa Signing time: Mon 13 Apr 2026 08:06:59 +0000 ROA not before: Mon 13 Apr 2026 08:01:59 +0000 ROA not after: Mon 12 Apr 2027 08:06:59 +0000 asID: 63647 IP address blocks: 2400:a860:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a0:f4:32:d6:3b:25:0e:96:ac:a6:5a:b5:2f:0a:af:ee:37:4c:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398 Validity Not Before: Apr 13 08:01:59 2026 GMT Not After : Apr 12 08:06:59 2027 GMT Subject: CN=81AFF96B792623ECF23FD0E280BB57D04D3F81E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:3a:1e:1a:6e:a4:77:52:08:e4:d7:f0:bf:5f: 1e:ec:99:95:05:24:51:dc:93:25:ce:f9:fc:83:b3: dc:43:95:6c:9b:a9:49:cb:02:8f:59:3b:cd:00:27: 02:4b:b8:47:1c:6e:3c:64:4d:78:57:3c:a4:fd:61: 1b:e7:ee:9b:19:b3:7f:0e:87:58:1b:4f:dd:3d:fd: b7:3a:03:b3:43:83:b6:af:0f:ad:20:68:26:4b:05: 9a:d6:2a:cc:ce:79:71:f7:28:ba:86:9c:83:b3:a4: d0:57:a9:2a:c9:d2:6b:5a:b5:f3:b2:77:ae:20:17: d8:54:96:03:75:c8:90:8c:e0:06:07:92:19:02:4e: 78:41:68:81:ff:6d:c3:c7:79:e0:8c:d0:31:eb:47: f0:88:0e:29:ae:d4:bd:0a:f0:55:78:79:ab:1b:8a: 7c:b3:5f:46:47:30:aa:de:55:c1:cf:70:d7:36:19: 3f:a7:42:db:15:e8:8b:18:a9:1f:cc:c7:5e:a9:5b: 33:85:50:05:45:b9:16:df:c0:2d:f5:38:6c:34:41: 14:26:8c:8f:6d:bf:d7:6a:82:87:3c:03:08:fa:c0: f5:32:2c:4c:f1:8f:37:ea:9a:65:f0:7f:68:cf:34: 72:74:4e:a5:98:a7:51:f0:33:72:8f:2e:df:6d:08: be:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AF:F9:6B:79:26:23:EC:F2:3F:D0:E2:80:BB:57:D0:4D:3F:81:E4 X509v3 Authority Key Identifier: keyid:C1:C4:8F:95:93:D6:A1:9D:BD:3F:AC:A9:C6:EF:A5:B5:5A:D3:F3:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C1C48F9593D6A19DBD3FACA9C6EFA5B55AD3F398.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095978316885655555/0/323430303a613836303a363a3a2f34382d3438203d3e203633363437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:a860:6::/48 Signature Algorithm: sha256WithRSAEncryption 50:2e:39:14:da:90:e4:87:27:5b:cf:49:6f:b8:25:eb:a3:7a: 6b:cd:26:f1:0e:ac:88:93:b7:59:f2:6a:68:23:5f:94:bf:22: 2d:76:c1:43:55:dc:f4:f6:c6:52:f9:d8:56:73:91:a5:7f:e8: 1c:64:b8:ab:a4:7b:72:9f:57:f9:5f:d1:6f:f9:ea:3f:10:9d: b2:a8:08:56:84:10:60:82:12:a6:42:1a:2f:35:79:67:f1:14: f3:ed:40:3b:10:0e:be:fd:96:50:63:f4:3a:08:5a:95:d7:8c: 71:13:6a:ee:a7:60:05:04:76:96:28:2b:f3:2f:fb:31:68:a3: 58:d4:d0:74:35:33:7c:b1:d7:21:9c:23:f7:7c:bf:91:24:7c: b4:f1:03:9b:a0:47:97:bd:f6:3b:10:46:31:b8:41:90:eb:cf: c5:1d:25:98:db:69:9e:f8:ba:71:d7:5e:d2:84:4e:f3:73:3e: 0b:2e:d5:3c:dd:b5:b7:4d:c9:3a:92:e6:ed:f3:6f:fd:f7:d9: 2f:ef:e2:3c:f1:88:ac:9f:fc:40:05:5a:af:f7:ac:83:a3:a9: 45:45:1b:dc:76:a7:37:69:38:a7:d0:d8:a3:df:95:47:e8:bb: b6:68:0b:7c:ba:da:1a:7d:c6:ba:d2:85:6c:55:81:fb:74:c5: e6:b9:00:5f -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIURaD0MtY7JQ6WrKZatS8Kr+43TG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1 QUQzRjM5ODAeFw0yNjA0MTMwODAxNTlaFw0yNzA0MTIwODA2NTlaMDMxMTAvBgNV BAMTKDgxQUZGOTZCNzkyNjIzRUNGMjNGRDBFMjgwQkI1N0QwNEQzRjgxRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6Oh4abqR3Ugjk1/C/Xx7smZUF JFHckyXO+fyDs9xDlWybqUnLAo9ZO80AJwJLuEccbjxkTXhXPKT9YRvn7psZs38O h1gbT909/bc6A7NDg7avD60gaCZLBZrWKszOeXH3KLqGnIOzpNBXqSrJ0mtatfOy d64gF9hUlgN1yJCM4AYHkhkCTnhBaIH/bcPHeeCM0DHrR/CIDimu1L0K8FV4easb inyzX0ZHMKreVcHPcNc2GT+nQtsV6IsYqR/Mx16pWzOFUAVFuRbfwC31OGw0QRQm jI9tv9dqgoc8Awj6wPUyLEzxjzfqmmXwf2jPNHJ0TqWYp1HwM3KPLt9tCL65AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUga/5a3kmI+zyP9DigLtX0E0/geQwHwYDVR0j BBgwFoAUwcSPlZPWoZ29P6ypxu+ltVrT85gwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTk3ODMxNjg4NTY1NTU1NS8wL0MxQzQ4Rjk1OTNENkExOURCRDNGQUNBOUM2RUZB NUI1NUFEM0YzOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzFDNDhGOTU5M0Q2QTE5REJEM0ZBQ0E5QzZFRkE1QjU1QUQzRjM5OC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTU5NzgzMTY4ODU2NTU1NTUvMC8zMjM0MzAzMDNh NjEzODM2MzAzYTM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzYzMzM2MzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQAqGAABjANBgkqhkiG9w0BAQsFAAOCAQEAUC45FNqQ5IcnW89J b7gl66N6a80m8Q6siJO3WfJqaCNflL8iLXbBQ1Xc9PbGUvnYVnORpX/oHGS4q6R7 cp9X+V/Rb/nqPxCdsqgIVoQQYIISpkIaLzV5Z/EU8+1AOxAOvv2WUGP0OghaldeM cRNq7qdgBQR2ligr8y/7MWijWNTQdDUzfLHXIZwj93y/kSR8tPEDm6BHl732OxBG MbhBkOvPxR0lmNtpnvi6cdde0oRO83M+Cy7VPN21t03JOpLm7fNv/ffZL+/iPPGI rJ/8QAVar/esg6OpRUUb3HanN2k4p9DYo9+VR+i7tmgLfLraGn3GutKFbFWB+3TF 5rkAXw== -----END CERTIFICATE-----Generated at Sat Apr 18 02:42:55 2026 by rpki-client