$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a353a3a2f34382d3438203d3e203536303431.roa File: 323430323a396238303a353a3a2f34382d3438203d3e203536303431.roa (raw, json) Hash identifier: hr17gwvo/M+MjWRRMbBTWIyKvrcihvWBdMO5LM9bLlg= Subject key identifier: FE:55:0B:BE:FC:EC:BC:F0:DA:73:08:93:1E:7F:0D:3E:7B:07:DC:18 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 2F9B46F1D29FAD867BA407B01C6F72DF7F9CCDD5 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a353a3a2f34382d3438203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:35:30 +0000 ROA not before: Wed 15 Apr 2026 09:30:30 +0000 ROA not after: Wed 14 Apr 2027 09:35:30 +0000 asID: 56041 IP address blocks: 2402:9b80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:9b:46:f1:d2:9f:ad:86:7b:a4:07:b0:1c:6f:72:df:7f:9c:cd:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:30:30 2026 GMT Not After : Apr 14 09:35:30 2027 GMT Subject: CN=FE550BBEFCECBCF0DA7308931E7F0D3E7B07DC18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:43:9d:fa:1c:85:a1:a1:d5:28:6e:7a:05:95: a4:77:58:42:ec:ea:96:99:f6:48:f8:4b:1b:46:20: a1:43:66:88:ad:de:dc:86:0b:46:eb:af:c9:2d:59: fc:75:df:62:9a:40:50:6c:3f:24:72:0f:64:5e:96: 26:79:48:f7:da:a2:34:01:eb:8c:f1:f0:96:93:7c: 34:a8:c8:18:5a:a2:15:57:66:75:09:07:01:f8:dc: cb:fb:13:c2:9c:7c:f1:3e:fe:90:98:a4:43:ea:0d: a0:9d:02:93:d7:a9:ed:a7:c8:0c:f8:c4:c3:17:63: f7:fa:61:d5:21:67:90:cd:de:e6:c3:c7:1b:53:f9: 00:4c:31:29:48:39:f8:26:78:ce:14:80:fc:9c:0e: da:7f:6d:b3:9d:69:ac:b0:3b:22:c8:77:b5:54:6c: 29:1d:0b:92:05:da:66:c8:1d:19:9b:8e:d4:ac:ca: c8:1d:ab:f9:e6:43:21:47:0c:f4:ae:fe:08:f1:49: 32:6b:82:61:db:4c:1d:60:4d:68:3d:2c:b1:aa:65: 47:3b:21:31:f4:a5:e7:6d:40:2b:24:67:90:df:0b: 4d:2a:50:92:15:b4:1f:da:7e:ea:b8:a3:d4:9b:b0: 27:df:d1:4e:e7:60:58:7e:f6:0c:34:f4:4b:ed:57: 3c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:55:0B:BE:FC:EC:BC:F0:DA:73:08:93:1E:7F:0D:3E:7B:07:DC:18 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a353a3a2f34382d3438203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9b80:5::/48 Signature Algorithm: sha256WithRSAEncryption b9:b9:7d:a9:67:30:4b:c3:5e:c2:b0:65:fe:ea:99:f0:63:56: 1f:38:1a:d5:6f:32:97:4e:fa:57:1a:33:35:59:9a:39:f0:22: de:e7:26:05:fe:8c:1b:ce:95:58:ac:5b:87:85:0a:a0:42:00: dc:e0:41:1c:53:53:6c:0b:e5:a5:b3:5e:8f:db:88:3a:81:be: f0:b8:dd:4f:c7:6b:49:f0:cb:7b:e0:29:c6:5f:fa:b0:2f:7c: 2c:72:53:9b:8a:98:95:1d:ea:30:71:7e:8b:d3:35:51:be:fd: 9b:9b:66:4d:63:19:54:7a:31:c7:9b:08:7e:81:50:29:db:03: 2c:4e:cf:d7:13:34:ad:f5:62:1d:7d:ca:07:7e:bd:5f:7e:28: 11:04:d2:07:a7:12:f5:12:34:fe:6c:87:e5:fb:ea:b0:7e:f4: 72:c9:58:50:62:c2:a0:11:f1:42:24:29:d3:18:16:38:70:16: 3b:19:52:63:a0:80:dc:d1:13:8e:a2:db:85:67:a4:06:30:4a: b2:2f:a2:9c:1a:c4:d4:c2:af:a9:74:99:67:4a:3d:e8:b1:dc: 7c:e3:60:e8:1e:c1:09:07:d6:02:42:20:42:56:4d:5e:96:88: b4:62:7f:fc:a8:2a:a2:81:9a:47:84:ad:e3:93:c4:8f:5b:90: c4:ca:01:31 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUL5tG8dKfrYZ7pAewHG9y33+czdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTMwMzBaFw0yNzA0MTQwOTM1MzBaMDMxMTAvBgNV BAMTKEZFNTUwQkJFRkNFQ0JDRjBEQTczMDg5MzFFN0YwRDNFN0IwN0RDMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVQ536HIWhodUobnoFlaR3WELs 6paZ9kj4SxtGIKFDZoit3tyGC0brr8ktWfx132KaQFBsPyRyD2ReliZ5SPfaojQB 64zx8JaTfDSoyBhaohVXZnUJBwH43Mv7E8KcfPE+/pCYpEPqDaCdApPXqe2nyAz4 xMMXY/f6YdUhZ5DN3ubDxxtT+QBMMSlIOfgmeM4UgPycDtp/bbOdaaywOyLId7VU bCkdC5IF2mbIHRmbjtSsysgdq/nmQyFHDPSu/gjxSTJrgmHbTB1gTWg9LLGqZUc7 ITH0pedtQCskZ5DfC00qUJIVtB/afuq4o9SbsCff0U7nYFh+9gw09EvtVzzTAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQU/lULvvzsvPDacwiTHn8NPnsH3BgwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3Mjc3NTIzNTE5NDA2MDkvMC8zMjM0MzAzMjNh Mzk2MjM4MzAzYTM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQCm4AABTANBgkqhkiG9w0BAQsFAAOCAQEAubl9qWcwS8NewrBl /uqZ8GNWHzga1W8yl076VxozNVmaOfAi3ucmBf6MG86VWKxbh4UKoEIA3OBBHFNT bAvlpbNej9uIOoG+8LjdT8drSfDLe+Apxl/6sC98LHJTm4qYlR3qMHF+i9M1Ub79 m5tmTWMZVHoxx5sIfoFQKdsDLE7P1xM0rfViHX3KB369X34oEQTSB6cS9RI0/myH 5fvqsH70cslYUGLCoBHxQiQp0xgWOHAWOxlSY6CA3NETjqLbhWekBjBKsi+inBrE 1MKvqXSZZ0o96LHcfONg6B7BCQfWAkIgQlZNXpaItGJ//KgqooGaR4St45PEj1uQ xMoBMQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:32:20 2026 by rpki-client