$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a373a3a2f34382d3438203d3e203536303431.roa File: 323430323a396238303a373a3a2f34382d3438203d3e203536303431.roa (raw, json) Hash identifier: 6sZse0Aw+lwqoiene9qB6Fahnle5DwhoDeELfTsxgGA= Subject key identifier: 57:48:15:72:45:70:D6:EC:58:29:3D:54:39:AF:6A:3D:43:5F:7B:93 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 6630EB161967092FD76055AF45615DAF6992C98C Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a373a3a2f34382d3438203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:35:29 +0000 ROA not before: Wed 15 Apr 2026 09:30:29 +0000 ROA not after: Wed 14 Apr 2027 09:35:29 +0000 asID: 56041 IP address blocks: 2402:9b80:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:30:eb:16:19:67:09:2f:d7:60:55:af:45:61:5d:af:69:92:c9:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:30:29 2026 GMT Not After : Apr 14 09:35:29 2027 GMT Subject: CN=574815724570D6EC58293D5439AF6A3D435F7B93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0e:11:4f:67:f9:08:4e:02:96:fa:65:1b:64: 2b:a1:96:70:c0:68:11:fc:5f:3d:45:1f:42:82:5a: 23:de:b9:dc:af:ce:a1:25:b4:10:69:39:25:06:7c: 0b:52:1d:6a:32:bc:e9:09:11:2f:77:b5:f9:7e:61: 3a:6c:45:ef:9f:a6:d2:6d:be:05:63:b3:46:3f:25: e1:25:22:52:5e:3a:2a:9d:d0:de:1c:1c:5d:e0:bb: f2:37:95:7d:f7:d7:68:96:8a:66:32:c1:d3:a5:5f: 7c:9f:95:28:93:a2:a2:94:95:26:01:83:63:da:d9: ce:ce:44:1b:39:88:44:81:43:0c:22:a2:76:d5:e7: 39:b7:f5:2d:98:77:2f:e4:ef:cf:a3:28:f8:f1:70: d5:5c:2e:8e:b1:bc:38:fb:c4:59:69:b6:92:54:41: fe:fb:d1:dd:fd:58:2b:06:78:b7:ec:62:7c:df:c8: 53:15:7a:4e:72:f4:fd:69:fc:65:eb:3a:11:8e:00: db:81:1b:9a:d3:bf:bc:fb:c6:62:f1:66:20:c5:f5: c7:08:a5:29:30:17:28:8d:cd:eb:6f:d8:6b:1d:a4: d6:ca:48:e7:7b:55:0b:c6:7e:dd:ce:ea:f7:8c:f2: 70:7a:f7:74:1e:39:a0:0b:4c:08:ff:94:3c:9f:09: dc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:48:15:72:45:70:D6:EC:58:29:3D:54:39:AF:6A:3D:43:5F:7B:93 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a373a3a2f34382d3438203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9b80:7::/48 Signature Algorithm: sha256WithRSAEncryption c7:f3:bc:58:ba:42:0c:b3:f8:9e:d4:ce:c1:09:98:38:f1:44: b2:58:3c:51:0b:06:c2:8f:b7:64:ca:3b:2d:68:15:d0:39:e0: 8b:39:d2:06:f5:96:6c:9b:1b:b9:1c:ce:29:cc:31:cb:9b:ef: 9b:d6:3a:ae:a9:6b:66:07:fa:b8:ac:c1:77:5e:98:c4:2e:5d: dc:78:77:88:6e:5e:74:39:42:89:7d:64:74:27:37:da:ad:73: 97:14:8b:d8:fb:a6:3b:b1:12:ad:67:cc:46:94:a0:d5:22:6c: 65:48:c1:4e:e0:87:80:ab:9f:48:a2:f3:1e:31:0f:62:11:a4: 6b:41:2a:2c:76:f6:22:47:bc:24:c4:67:44:2e:90:6c:fc:05: 36:fe:87:8d:60:38:0a:89:69:f3:3b:43:73:a0:2e:79:6e:3b: 0c:92:b5:48:84:9b:c9:a0:53:80:21:45:cd:3f:5e:3e:f0:e3: 3c:bd:78:b1:4e:9e:a3:3a:fc:03:70:a1:b5:85:0b:42:9e:d2: d6:80:b8:cb:68:e8:f0:83:b8:c4:bb:be:8a:cc:5e:14:21:9b: 37:bc:1f:b4:74:d1:e9:41:7a:fa:ca:40:5d:28:55:5c:f9:bb: c0:52:0b:b6:84:c6:bf:45:28:83:1f:48:57:be:3d:3e:a6:44: 10:73:c4:51 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUZjDrFhlnCS/XYFWvRWFdr2mSyYwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTMwMjlaFw0yNzA0MTQwOTM1MjlaMDMxMTAvBgNV BAMTKDU3NDgxNTcyNDU3MEQ2RUM1ODI5M0Q1NDM5QUY2QTNENDM1RjdCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvDhFPZ/kITgKW+mUbZCuhlnDA aBH8Xz1FH0KCWiPeudyvzqEltBBpOSUGfAtSHWoyvOkJES93tfl+YTpsRe+fptJt vgVjs0Y/JeElIlJeOiqd0N4cHF3gu/I3lX3312iWimYywdOlX3yflSiToqKUlSYB g2Pa2c7ORBs5iESBQwwionbV5zm39S2Ydy/k78+jKPjxcNVcLo6xvDj7xFlptpJU Qf770d39WCsGeLfsYnzfyFMVek5y9P1p/GXrOhGOANuBG5rTv7z7xmLxZiDF9ccI pSkwFyiNzetv2GsdpNbKSOd7VQvGft3O6veM8nB693QeOaALTAj/lDyfCdx/AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUV0gVckVw1uxYKT1UOa9qPUNfe5MwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3Mjc3NTIzNTE5NDA2MDkvMC8zMjM0MzAzMjNh Mzk2MjM4MzAzYTM3M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQCm4AABzANBgkqhkiG9w0BAQsFAAOCAQEAx/O8WLpCDLP4ntTO wQmYOPFEslg8UQsGwo+3ZMo7LWgV0DngiznSBvWWbJsbuRzOKcwxy5vvm9Y6rqlr Zgf6uKzBd16YxC5d3Hh3iG5edDlCiX1kdCc32q1zlxSL2PumO7ESrWfMRpSg1SJs ZUjBTuCHgKufSKLzHjEPYhGka0EqLHb2Ike8JMRnRC6QbPwFNv6HjWA4Colp8ztD c6AueW47DJK1SISbyaBTgCFFzT9ePvDjPL14sU6eozr8A3ChtYULQp7S1oC4y2jo 8IO4xLu+isxeFCGbN7wftHTR6UF6+spAXShVXPm7wFILtoTGv0Uogx9IV749PqZE EHPEUQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:32:15 2026 by rpki-client