$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a31303a3a2f34382d3438203d3e203536303431.roa File: 323430323a396238303a31303a3a2f34382d3438203d3e203536303431.roa (raw, json) Hash identifier: WRlnVSvtafShSyFgj0/STMZKuqCdS+YOGVcI6nbcUrs= Subject key identifier: 23:4B:3D:6E:C6:62:D5:20:61:BD:F2:AD:6F:0F:20:1B:EA:B3:F2:73 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 2A15376025247290202E2E356D27B0924834C2A6 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a31303a3a2f34382d3438203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:35:30 +0000 ROA not before: Wed 15 Apr 2026 09:30:30 +0000 ROA not after: Wed 14 Apr 2027 09:35:30 +0000 asID: 56041 IP address blocks: 2402:9b80:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:15:37:60:25:24:72:90:20:2e:2e:35:6d:27:b0:92:48:34:c2:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:30:30 2026 GMT Not After : Apr 14 09:35:30 2027 GMT Subject: CN=234B3D6EC662D52061BDF2AD6F0F201BEAB3F273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d1:44:8e:92:31:76:09:d0:1f:6e:10:62:60: 37:4d:5b:46:f1:5a:0c:59:fd:ab:35:81:27:2c:29: a9:70:5e:cb:91:f7:88:ec:5f:d0:64:de:d1:f6:15: b7:77:44:47:b3:a8:62:f7:44:4c:58:82:a0:a6:29: cc:3d:af:4a:cd:48:b5:15:06:5e:ec:e1:f0:1a:55: 6a:c9:e3:f4:92:7b:89:65:8c:04:fe:ca:7d:7c:99: d3:19:5a:09:5a:8d:69:38:b9:54:57:20:00:f0:8f: cf:84:a5:12:6f:25:8c:76:83:87:f2:a8:1a:7f:04: c7:93:6a:09:5f:14:df:73:aa:6f:42:b0:29:17:20: fc:ca:53:4a:bc:41:90:51:78:b1:ce:cf:99:ee:95: e1:37:b4:3f:6c:2d:2d:d6:01:2a:0f:b3:6c:79:f0: cb:0a:d3:08:59:15:c3:99:8d:f4:d6:ee:16:62:a2: 34:8b:d9:ed:f7:cb:cc:a2:fb:ab:a2:8e:af:97:22: 56:0b:93:cf:d1:01:c3:59:f5:3e:0a:06:f6:0c:d6: fd:db:9e:4d:12:ac:ee:dc:78:9c:73:7b:b6:6e:88: 8c:3f:4e:dd:61:92:c2:ee:71:ed:8c:dc:3b:e9:a2: cf:23:16:71:5b:56:b5:aa:33:99:44:73:2c:3b:71: 61:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4B:3D:6E:C6:62:D5:20:61:BD:F2:AD:6F:0F:20:1B:EA:B3:F2:73 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a31303a3a2f34382d3438203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9b80:10::/48 Signature Algorithm: sha256WithRSAEncryption 5e:85:53:a1:85:94:25:61:d4:91:f3:38:d8:f7:5e:66:5e:c1: 09:56:2b:3f:0a:6b:f3:1e:fd:73:71:fe:01:9e:11:e4:78:a2: 7e:d6:aa:91:9b:bd:33:29:71:24:6a:ea:9f:8f:5e:c9:33:e0: b7:32:28:8e:19:d1:99:ef:30:b4:5e:8c:3e:25:87:08:06:4f: 25:44:10:be:b2:0e:90:43:65:eb:4c:11:35:22:d9:fb:13:ce: 65:1c:0a:4e:9d:10:21:5f:a9:71:35:3c:00:0d:09:97:d1:6d: b9:1c:73:1c:71:64:8d:bf:5e:74:f4:f4:1c:18:18:e2:2b:b4: 6c:66:c9:9c:93:73:08:30:35:11:93:06:30:7f:6e:43:44:36: 90:f9:22:22:1e:0e:0f:e6:6a:09:d5:20:c8:5b:d3:b0:05:f3: 1f:d3:a5:9a:f6:35:b5:1f:2c:49:ac:ec:48:ec:b8:a4:ee:57: 1c:e6:de:4a:9c:d9:57:e0:27:8f:88:e8:01:33:71:b9:c0:9f: 5f:4f:de:c6:0f:10:66:8c:78:9b:ec:03:5e:b5:6a:d1:7e:2e: 49:8b:38:cd:de:aa:d8:c1:48:b5:cc:30:fa:4c:a4:34:e0:2d: 76:9e:db:48:08:ff:b1:51:99:a1:44:19:8d:16:8b:1d:f1:ae: ae:da:7c:d7 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUKhU3YCUkcpAgLi41bSewkkg0wqYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTMwMzBaFw0yNzA0MTQwOTM1MzBaMDMxMTAvBgNV BAMTKDIzNEIzRDZFQzY2MkQ1MjA2MUJERjJBRDZGMEYyMDFCRUFCM0YyNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC50USOkjF2CdAfbhBiYDdNW0bx WgxZ/as1gScsKalwXsuR94jsX9Bk3tH2Fbd3REezqGL3RExYgqCmKcw9r0rNSLUV Bl7s4fAaVWrJ4/SSe4lljAT+yn18mdMZWglajWk4uVRXIADwj8+EpRJvJYx2g4fy qBp/BMeTaglfFN9zqm9CsCkXIPzKU0q8QZBReLHOz5nuleE3tD9sLS3WASoPs2x5 8MsK0whZFcOZjfTW7hZiojSL2e33y8yi+6uijq+XIlYLk8/RAcNZ9T4KBvYM1v3b nk0SrO7ceJxze7ZuiIw/Tt1hksLuce2M3Dvpos8jFnFbVrWqM5lEcyw7cWEdAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUI0s9bsZi1SBhvfKtbw8gG+qz8nMwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk2NzI3NzUyMzUxOTQwNjA5LzAvMzIzNDMwMzIz YTM5NjIzODMwM2EzMTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQCm4AAEDANBgkqhkiG9w0BAQsFAAOCAQEAXoVToYWUJWHU kfM42PdeZl7BCVYrPwpr8x79c3H+AZ4R5HiiftaqkZu9MylxJGrqn49eyTPgtzIo jhnRme8wtF6MPiWHCAZPJUQQvrIOkENl60wRNSLZ+xPOZRwKTp0QIV+pcTU8AA0J l9FtuRxzHHFkjb9edPT0HBgY4iu0bGbJnJNzCDA1EZMGMH9uQ0Q2kPkiIh4OD+Zq CdUgyFvTsAXzH9OlmvY1tR8sSazsSOy4pO5XHObeSpzZV+Anj4joATNxucCfX0/e xg8QZox4m+wDXrVq0X4uSYs4zd6q2MFItcww+kykNOAtdp7bSAj/sVGZoUQZjRaL HfGurtp81w== -----END CERTIFICATE-----Generated at Fri Apr 17 20:39:01 2026 by rpki-client