$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a343a3a2f34382d3438203d3e203536303431.roa File: 323430323a396238303a343a3a2f34382d3438203d3e203536303431.roa (raw, json) Hash identifier: ZCdbYj3hLRJsXlWFp4Hq0YM4/oCbOWmdFJvjqzQ+ZRI= Subject key identifier: B4:C7:16:2F:4B:53:E4:AE:B1:F4:3D:A9:30:66:6C:D4:2E:84:A2:D9 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 3C403BEE56D3B0CC37404327436197D8BA3218EB Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a343a3a2f34382d3438203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:35:30 +0000 ROA not before: Wed 15 Apr 2026 09:30:30 +0000 ROA not after: Wed 14 Apr 2027 09:35:30 +0000 asID: 56041 IP address blocks: 2402:9b80:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:40:3b:ee:56:d3:b0:cc:37:40:43:27:43:61:97:d8:ba:32:18:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:30:30 2026 GMT Not After : Apr 14 09:35:30 2027 GMT Subject: CN=B4C7162F4B53E4AEB1F43DA930666CD42E84A2D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:79:d5:32:3d:5d:21:01:96:b2:94:81:c5:a4: 60:b5:8a:c2:38:88:bc:28:4e:b4:fc:df:f2:db:2e: 30:06:54:04:28:8b:c1:a7:4e:60:a5:8a:cd:02:a6: 96:f4:e0:f1:f2:81:dc:0b:c5:2e:d6:82:83:4d:a9: 3a:74:13:81:6d:d9:91:f8:e4:97:a4:8f:70:f2:8c: 5a:af:d9:95:ff:19:3f:7b:85:57:ce:6d:8c:34:18: 9f:ad:a8:3c:68:14:7f:70:f0:1a:92:54:91:ae:aa: bd:5a:8f:94:95:30:9f:43:c8:37:b8:b9:48:e4:f3: 44:48:7f:8e:f5:1e:f0:66:38:f4:d8:d0:c1:f0:8a: 8d:64:22:93:c0:59:04:ff:85:25:a8:2d:3f:5c:51: 08:fd:9f:58:75:f4:e3:cb:b5:22:1b:2a:5e:1e:13: d6:87:97:78:d0:d7:d0:d0:c1:14:ff:d7:5e:be:a3: 03:d7:4b:e6:36:78:5c:33:57:50:3d:e8:9f:d8:47: b4:98:da:71:4c:d8:e2:71:8a:0b:bf:b3:55:19:6b: 41:2c:3d:cf:21:b6:4a:21:18:ff:e9:18:a4:55:f3: 6d:a6:e0:1c:95:c5:ba:a1:9d:24:33:c5:8a:5f:f1: ca:d9:54:31:43:d5:8b:3f:77:20:8e:a7:cc:c2:95: 2c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C7:16:2F:4B:53:E4:AE:B1:F4:3D:A9:30:66:6C:D4:2E:84:A2:D9 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a343a3a2f34382d3438203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9b80:4::/48 Signature Algorithm: sha256WithRSAEncryption 9a:8a:d0:d9:65:c2:e0:1a:a1:94:d1:73:2a:33:d5:53:cf:7c: ed:ae:69:3e:f9:31:01:f1:85:ce:94:b2:7d:f7:13:e6:e1:b6: f8:c4:97:a0:10:91:6f:d1:e2:45:df:d5:22:47:06:ac:67:9c: d2:8c:4b:25:67:a2:13:72:07:0c:40:29:f4:11:81:fd:b7:71: c6:95:b7:68:05:6e:ce:b1:28:e7:6f:b6:e9:cf:87:4c:39:ea: 4e:40:7a:b6:91:73:cc:91:d5:ed:50:7f:d1:eb:e9:10:a4:4a: e1:32:7c:ad:7b:be:4c:02:7b:fc:6c:6b:05:a0:7f:ed:3a:4e: fa:3d:b3:57:52:be:4a:8b:cc:0c:ca:a2:1a:e6:0b:a2:a4:81: 2a:93:b3:a0:07:1e:8d:39:4d:bd:97:13:1c:46:d1:bb:cd:f0: b9:78:26:44:50:9d:cf:14:43:f8:6d:0d:41:c9:00:e0:c5:ce: bb:4a:31:0c:7d:22:b7:99:a1:20:c3:b6:72:9e:01:45:3e:4b: 06:45:c2:93:26:a7:59:c6:ca:e9:e1:e5:f8:1d:81:1c:8c:59: d9:09:0e:37:86:eb:ec:6c:92:c5:fa:32:c4:fd:66:aa:3d:cb: 1d:82:1b:a9:0f:7a:3e:60:6c:1a:f8:52:a4:14:6d:84:68:d8: 64:cc:41:5e -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUPEA77lbTsMw3QEMnQ2GX2LoyGOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTMwMzBaFw0yNzA0MTQwOTM1MzBaMDMxMTAvBgNV BAMTKEI0QzcxNjJGNEI1M0U0QUVCMUY0M0RBOTMwNjY2Q0Q0MkU4NEEyRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAedUyPV0hAZaylIHFpGC1isI4 iLwoTrT83/LbLjAGVAQoi8GnTmClis0Cppb04PHygdwLxS7WgoNNqTp0E4Ft2ZH4 5Jekj3DyjFqv2ZX/GT97hVfObYw0GJ+tqDxoFH9w8BqSVJGuqr1aj5SVMJ9DyDe4 uUjk80RIf471HvBmOPTY0MHwio1kIpPAWQT/hSWoLT9cUQj9n1h19OPLtSIbKl4e E9aHl3jQ19DQwRT/116+owPXS+Y2eFwzV1A96J/YR7SY2nFM2OJxigu/s1UZa0Es Pc8htkohGP/pGKRV822m4ByVxbqhnSQzxYpf8crZVDFD1Ys/dyCOp8zClSzvAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUtMcWL0tT5K6x9D2pMGZs1C6EotkwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3Mjc3NTIzNTE5NDA2MDkvMC8zMjM0MzAzMjNh Mzk2MjM4MzAzYTM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQCm4AABDANBgkqhkiG9w0BAQsFAAOCAQEAmorQ2WXC4BqhlNFz KjPVU8987a5pPvkxAfGFzpSyffcT5uG2+MSXoBCRb9HiRd/VIkcGrGec0oxLJWei E3IHDEAp9BGB/bdxxpW3aAVuzrEo52+26c+HTDnqTkB6tpFzzJHV7VB/0evpEKRK 4TJ8rXu+TAJ7/GxrBaB/7TpO+j2zV1K+SovMDMqiGuYLoqSBKpOzoAcejTlNvZcT HEbRu83wuXgmRFCdzxRD+G0NQckA4MXOu0oxDH0it5mhIMO2cp4BRT5LBkXCkyan WcbK6eHl+B2BHIxZ2QkON4br7GySxfoyxP1mqj3LHYIbqQ96PmBsGvhSpBRthGjY ZMxBXg== -----END CERTIFICATE-----Generated at Fri Apr 17 20:32:44 2026 by rpki-client