$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a323a3a2f34382d3438203d3e203536303431.roa File: 323430323a396238303a323a3a2f34382d3438203d3e203536303431.roa (raw, json) Hash identifier: SoNXclX8wxWVeepKqOcZPu8lOCtu+Zxifyj/XW+rTD8= Subject key identifier: 24:41:DE:A7:A0:C2:B8:22:B7:75:96:C0:B3:46:67:7F:D3:00:E0:BD Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 0A655AECD2DD20B72C294788846A90176F95076D Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a323a3a2f34382d3438203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:35:29 +0000 ROA not before: Wed 15 Apr 2026 09:30:29 +0000 ROA not after: Wed 14 Apr 2027 09:35:29 +0000 asID: 56041 IP address blocks: 2402:9b80:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:65:5a:ec:d2:dd:20:b7:2c:29:47:88:84:6a:90:17:6f:95:07:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:30:29 2026 GMT Not After : Apr 14 09:35:29 2027 GMT Subject: CN=2441DEA7A0C2B822B77596C0B346677FD300E0BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:93:76:fe:6c:f7:50:35:0a:2d:5e:27:e7:34: 6a:39:97:df:ad:73:ca:fd:77:15:32:ec:d8:9d:59: 9b:74:f3:e8:77:1c:7a:a3:0c:94:8d:83:47:87:0a: a3:b5:cc:9c:38:88:da:2e:1d:c8:24:b1:5a:db:16: 0e:77:a8:cf:cc:db:77:b0:9a:f9:79:51:66:82:23: 55:69:9d:0f:40:fc:a4:3b:a8:2b:bd:e1:3b:20:5b: 2b:1b:4f:fc:34:52:70:6b:ba:65:ca:fe:5f:02:26: 04:26:44:c8:be:26:ee:fe:4c:a0:9a:64:03:47:ca: e0:ad:3f:ae:98:65:34:52:91:94:2f:d4:9f:17:5f: 67:4b:5f:b7:61:d1:08:34:fe:dc:b2:5f:4f:b3:81: d1:65:17:33:e6:f2:c7:c7:01:35:ac:09:26:e8:e3: e0:a9:f8:e3:da:f8:48:ec:bf:1f:f2:a9:d4:18:16: d8:ab:e1:da:44:f3:82:fd:47:b0:2d:5f:98:cb:4c: 5d:59:2f:a2:50:15:d6:e3:84:c7:0f:24:b9:97:a6: 7d:52:31:5e:53:38:e8:20:0b:7e:f4:c6:71:17:84: 2e:44:ed:05:39:76:0d:bf:40:ee:70:05:8f:5e:bf: f8:07:ed:e1:b5:20:4c:23:ba:e6:da:98:c5:fd:c3: 29:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:41:DE:A7:A0:C2:B8:22:B7:75:96:C0:B3:46:67:7F:D3:00:E0:BD X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a323a3a2f34382d3438203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9b80:2::/48 Signature Algorithm: sha256WithRSAEncryption 3d:e3:4a:c7:76:12:1e:f2:61:67:ea:a4:a0:59:ad:d3:d2:11: a7:45:b6:5e:ea:6c:d8:e5:dc:7d:31:60:8d:55:72:86:c4:9f: 65:f9:b4:ed:87:f4:b3:b3:4f:b6:df:0c:7b:e7:5b:8a:08:4c: 6d:f0:c4:5e:0f:b4:10:65:79:6b:f9:e0:fa:81:1d:9a:4b:3e: 0a:59:d9:30:d2:21:cf:ff:b4:d3:82:b2:d6:18:91:3c:97:23: f2:fa:76:ee:56:33:10:6d:ad:de:bc:ae:b0:c4:15:bb:92:74: b3:6e:a8:32:13:33:14:47:0e:65:d1:50:6b:58:46:d5:1c:9a: 37:1d:52:db:57:fd:bd:30:b8:6f:5e:4a:16:6e:80:cf:9c:02: 1b:2e:06:5a:40:ab:69:03:03:dd:29:e4:9f:da:da:b4:2e:a4: 76:8d:2d:92:71:06:2d:28:5c:12:21:66:38:e3:8e:6c:87:0c: 63:d2:c9:ee:58:be:7b:2f:0d:22:dd:dc:65:77:ce:c0:4a:01: b3:28:b7:04:fa:77:6c:ab:d1:4d:e3:99:22:2b:93:c6:12:cc: cf:78:85:fc:6d:b9:39:62:39:16:d5:f9:35:02:dc:17:dd:1b: 97:c5:ec:91:98:b1:eb:f5:4c:59:e6:c3:c3:57:4a:ff:17:48: 4a:94:33:01 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUCmVa7NLdILcsKUeIhGqQF2+VB20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTMwMjlaFw0yNzA0MTQwOTM1MjlaMDMxMTAvBgNV BAMTKDI0NDFERUE3QTBDMkI4MjJCNzc1OTZDMEIzNDY2NzdGRDMwMEUwQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDk3b+bPdQNQotXifnNGo5l9+t c8r9dxUy7NidWZt08+h3HHqjDJSNg0eHCqO1zJw4iNouHcgksVrbFg53qM/M23ew mvl5UWaCI1VpnQ9A/KQ7qCu94TsgWysbT/w0UnBrumXK/l8CJgQmRMi+Ju7+TKCa ZANHyuCtP66YZTRSkZQv1J8XX2dLX7dh0Qg0/tyyX0+zgdFlFzPm8sfHATWsCSbo 4+Cp+OPa+Ejsvx/yqdQYFtir4dpE84L9R7AtX5jLTF1ZL6JQFdbjhMcPJLmXpn1S MV5TOOggC370xnEXhC5E7QU5dg2/QO5wBY9ev/gH7eG1IEwjuubamMX9wynTAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUJEHep6DCuCK3dZbAs0Znf9MA4L0wHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3Mjc3NTIzNTE5NDA2MDkvMC8zMjM0MzAzMjNh Mzk2MjM4MzAzYTMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQCm4AAAjANBgkqhkiG9w0BAQsFAAOCAQEAPeNKx3YSHvJhZ+qk oFmt09IRp0W2Xups2OXcfTFgjVVyhsSfZfm07Yf0s7NPtt8Me+dbighMbfDEXg+0 EGV5a/ng+oEdmks+ClnZMNIhz/+004Ky1hiRPJcj8vp27lYzEG2t3ryusMQVu5J0 s26oMhMzFEcOZdFQa1hG1RyaNx1S21f9vTC4b15KFm6Az5wCGy4GWkCraQMD3Snk n9ratC6kdo0tknEGLShcEiFmOOOObIcMY9LJ7li+ey8NIt3cZXfOwEoBsyi3BPp3 bKvRTeOZIiuTxhLMz3iF/G25OWI5FtX5NQLcF90bl8XskZix6/VMWebDw1dK/xdI SpQzAQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:32:33 2026 by rpki-client