$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a31313a3a2f34382d3438203d3e203536303431.roa File: 323430323a396238303a31313a3a2f34382d3438203d3e203536303431.roa (raw, json) Hash identifier: eef2OnVgRyc83DugXlOhHP+8KXbkphHbt+s0Nth6lu0= Subject key identifier: 1C:99:F8:20:FE:FF:6E:DE:A0:DB:7F:ED:B8:56:C3:7E:B2:F0:0D:04 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 0B0FCAB7CE1CEFDFCBF70ACDC27163D52624AFD1 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a31313a3a2f34382d3438203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:35:30 +0000 ROA not before: Wed 15 Apr 2026 09:30:30 +0000 ROA not after: Wed 14 Apr 2027 09:35:30 +0000 asID: 56041 IP address blocks: 2402:9b80:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:0f:ca:b7:ce:1c:ef:df:cb:f7:0a:cd:c2:71:63:d5:26:24:af:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:30:30 2026 GMT Not After : Apr 14 09:35:30 2027 GMT Subject: CN=1C99F820FEFF6EDEA0DB7FEDB856C37EB2F00D04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e7:12:f7:eb:3f:ff:9b:79:fa:ee:9d:34:11: 0b:6a:1e:71:7a:6b:e2:d9:d7:3e:bf:83:36:be:33: 1c:34:7f:4b:97:fa:4b:56:54:9d:40:76:e4:dd:f2: bb:c9:e4:c4:76:fc:fd:c4:40:bf:24:59:64:02:4d: 83:4f:da:06:06:09:fe:dd:40:bb:27:ed:da:e2:4c: 1c:91:46:fa:6b:6d:a4:20:a1:2e:37:3d:dc:fb:6b: e9:63:66:25:fb:8a:4c:62:f7:ce:b0:a4:8f:ae:a5: ca:05:11:02:dc:0c:7d:10:4a:9b:f8:c1:7c:b1:f4: ac:82:bf:d1:2b:d6:8d:75:70:e9:91:73:96:9a:90: db:ef:a2:4f:f3:8f:f2:99:ea:a8:17:88:a2:90:53: 1a:22:37:22:22:e8:86:d6:61:5e:3b:ca:c7:6c:b7: 5d:37:22:6c:24:54:10:37:9a:67:00:2f:99:7f:c7: 27:93:e6:7f:04:9c:11:a8:ee:de:b3:ac:c8:b2:ae: 83:54:ef:cd:6d:b6:29:3c:2c:81:dc:fa:3f:bc:fc: 9e:29:a8:f8:9f:18:29:06:fd:9c:99:a9:21:34:ec: bd:41:44:a5:33:51:2c:7a:91:40:8b:94:a1:41:ef: b8:0f:75:ca:f9:2a:7a:54:4a:96:ff:8d:50:31:91: 83:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:99:F8:20:FE:FF:6E:DE:A0:DB:7F:ED:B8:56:C3:7E:B2:F0:0D:04 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a31313a3a2f34382d3438203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9b80:11::/48 Signature Algorithm: sha256WithRSAEncryption 27:45:fa:b3:ce:3a:a1:27:85:50:56:43:43:fd:50:5a:14:bc: 39:25:97:39:04:c6:c3:71:f7:81:d7:ab:92:56:b6:9c:46:48: a1:9b:f0:03:12:73:bb:29:66:00:62:70:7c:fd:1d:35:fb:ca: 3d:32:86:a7:63:f2:d1:76:cb:6e:56:2e:4d:00:8a:8e:19:0c: ee:89:d0:39:58:49:d6:d8:34:64:98:3a:e0:16:11:4c:31:4c: 6e:3f:b6:3b:48:ea:90:76:61:bb:74:6b:77:ce:11:47:61:63: c4:c3:98:57:2a:7a:32:b5:6f:11:76:4a:3b:85:1e:79:46:11: d7:1c:01:fe:92:7e:22:09:dc:80:00:e1:b9:b8:85:87:1a:c7: 3c:e2:e3:03:2b:21:75:6c:87:a4:89:5a:ce:25:a7:6b:75:d2: ed:69:29:29:fd:61:d4:6a:39:e7:a4:ba:23:fb:b6:5b:e3:b4: ca:be:e3:b6:1f:71:9c:2f:aa:55:23:cf:6e:5a:dd:e4:02:86: c4:46:d6:72:9b:f7:6b:59:cc:13:cb:ae:8d:00:99:fc:a7:13: 7a:4f:66:c4:c2:15:ed:e5:df:72:2b:5a:6e:3b:e1:6d:6c:ed: a6:ad:8f:41:ce:8f:8e:74:be:6a:5e:e0:85:cd:54:9e:3d:59: 8c:23:3d:54 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUCw/Kt84c79/L9wrNwnFj1SYkr9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTMwMzBaFw0yNzA0MTQwOTM1MzBaMDMxMTAvBgNV BAMTKDFDOTlGODIwRkVGRjZFREVBMERCN0ZFREI4NTZDMzdFQjJGMDBEMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK5xL36z//m3n67p00EQtqHnF6 a+LZ1z6/gza+Mxw0f0uX+ktWVJ1AduTd8rvJ5MR2/P3EQL8kWWQCTYNP2gYGCf7d QLsn7driTByRRvprbaQgoS43Pdz7a+ljZiX7ikxi986wpI+upcoFEQLcDH0QSpv4 wXyx9KyCv9Er1o11cOmRc5aakNvvok/zj/KZ6qgXiKKQUxoiNyIi6IbWYV47ysds t103ImwkVBA3mmcAL5l/xyeT5n8EnBGo7t6zrMiyroNU781ttik8LIHc+j+8/J4p qPifGCkG/ZyZqSE07L1BRKUzUSx6kUCLlKFB77gPdcr5KnpUSpb/jVAxkYNxAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQUHJn4IP7/bt6g23/tuFbDfrLwDQQwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk2NzI3NzUyMzUxOTQwNjA5LzAvMzIzNDMwMzIz YTM5NjIzODMwM2EzMTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQz MS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQCm4AAETANBgkqhkiG9w0BAQsFAAOCAQEAJ0X6s846oSeF UFZDQ/1QWhS8OSWXOQTGw3H3gderkla2nEZIoZvwAxJzuylmAGJwfP0dNfvKPTKG p2Py0XbLblYuTQCKjhkM7onQOVhJ1tg0ZJg64BYRTDFMbj+2O0jqkHZhu3Rrd84R R2FjxMOYVyp6MrVvEXZKO4UeeUYR1xwB/pJ+IgncgADhubiFhxrHPOLjAyshdWyH pIlaziWna3XS7WkpKf1h1Go556S6I/u2W+O0yr7jth9xnC+qVSPPblrd5AKGxEbW cpv3a1nME8uujQCZ/KcTek9mxMIV7eXfcitabjvhbWztpq2PQc6PjnS+al7ghc1U nj1ZjCM9VA== -----END CERTIFICATE-----Generated at Fri Apr 17 21:43:51 2026 by rpki-client