$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a393a3a2f34382d3438203d3e203536303431.roa File: 323430323a396238303a393a3a2f34382d3438203d3e203536303431.roa (raw, json) Hash identifier: GCTGPa8s7uTG3DXqvq678y8Gwh2MfL/Vfh4lS+aMoGc= Subject key identifier: 37:31:54:AC:BE:55:C3:AC:4F:D2:17:9F:3D:55:96:06:37:09:60:69 Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 2E37613B18177602F78D207D5716C5982151EE60 Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a393a3a2f34382d3438203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:35:30 +0000 ROA not before: Wed 15 Apr 2026 09:30:30 +0000 ROA not after: Wed 14 Apr 2027 09:35:30 +0000 asID: 56041 IP address blocks: 2402:9b80:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:37:61:3b:18:17:76:02:f7:8d:20:7d:57:16:c5:98:21:51:ee:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:30:30 2026 GMT Not After : Apr 14 09:35:30 2027 GMT Subject: CN=373154ACBE55C3AC4FD2179F3D55960637096069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b3:5a:03:ff:80:1e:e5:ac:84:71:b6:01:f2: a6:f6:95:13:b5:d7:e2:ea:89:66:74:07:70:7e:1a: c5:a2:4a:47:f8:18:4f:c0:be:bd:88:cc:0b:d8:c0: ee:2b:8c:3c:b9:92:82:11:2c:a6:38:32:bd:a5:32: 19:a9:a2:a7:45:7b:52:02:c0:d7:e0:2d:36:4f:37: 31:06:7e:7c:ef:a4:3f:84:a8:06:63:80:2d:e8:5c: ae:2b:d4:b2:8d:cf:0f:04:f9:1a:26:d2:95:60:9f: 37:c1:96:28:fe:c3:56:18:d9:5a:18:d7:9b:7a:6c: 5a:7b:ca:cf:97:95:ce:ac:72:72:2c:23:76:19:5d: d9:33:82:64:0e:b6:92:f7:95:7c:39:7a:c0:3b:23: fd:d9:44:a6:b4:f4:44:dc:ee:a6:7d:92:f0:eb:f5: 52:69:74:40:2c:51:80:1a:ba:a6:74:bb:99:66:6d: 71:1b:be:3f:44:61:8c:f7:36:57:7d:65:2c:b0:e3: 02:a4:c5:2b:6f:30:9c:aa:ec:37:b5:70:27:1c:7d: b6:25:2c:9c:96:17:60:00:c4:15:31:b3:3c:a2:1d: b6:6e:32:c1:49:e7:e5:d8:06:09:b6:be:f2:ad:7d: 04:19:b8:8c:b9:d7:bb:8b:dd:dc:6e:5f:40:08:89: 25:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:31:54:AC:BE:55:C3:AC:4F:D2:17:9F:3D:55:96:06:37:09:60:69 X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a393a3a2f34382d3438203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9b80:9::/48 Signature Algorithm: sha256WithRSAEncryption 9c:61:83:c0:fe:2e:96:48:37:38:cb:33:bc:15:2a:3e:d6:79: 02:b8:e0:e1:54:1f:66:8f:0c:e5:03:0b:09:40:ae:8d:19:cc: 43:a5:fe:4b:4f:25:16:12:b4:45:0f:f8:67:44:83:9a:4d:83: 78:0f:e8:de:41:c7:52:9f:8a:4a:48:ee:24:d6:a5:2c:c7:82: 99:88:3d:6e:c2:2e:bc:ac:b4:36:23:f0:b3:e0:64:2c:fe:de: 8a:9c:66:98:1e:3a:ab:28:9c:27:35:5f:09:71:b0:1e:82:1c: 59:d3:2a:9d:6e:46:17:f6:68:6c:4f:90:36:81:ea:e9:9f:68: 79:ba:9b:47:5e:58:e5:8b:68:e8:84:64:27:98:7f:8c:a0:65: 61:f7:2e:60:89:f7:fd:34:bf:8c:e5:54:fe:a4:57:e3:dd:d6: b0:12:ff:37:c9:5c:6b:22:84:94:0d:2b:72:32:13:95:10:bf: 97:dc:4c:84:29:7a:0d:eb:0f:b6:34:d1:9b:08:5b:ea:0c:bc: 8e:a7:59:9e:be:df:59:fd:7c:99:68:62:e5:a0:2e:45:f9:ee: 2a:06:5c:ce:bf:e4:07:c6:9b:c1:e2:e1:16:e1:b0:96:9b:3f: 99:de:6a:50:b2:96:6c:17:30:f6:aa:f9:c5:43:e0:af:75:14: 9d:b1:cd:72 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIULjdhOxgXdgL3jSB9VxbFmCFR7mAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTMwMzBaFw0yNzA0MTQwOTM1MzBaMDMxMTAvBgNV BAMTKDM3MzE1NEFDQkU1NUMzQUM0RkQyMTc5RjNENTU5NjA2MzcwOTYwNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFs1oD/4Ae5ayEcbYB8qb2lRO1 1+LqiWZ0B3B+GsWiSkf4GE/Avr2IzAvYwO4rjDy5koIRLKY4Mr2lMhmpoqdFe1IC wNfgLTZPNzEGfnzvpD+EqAZjgC3oXK4r1LKNzw8E+Rom0pVgnzfBlij+w1YY2VoY 15t6bFp7ys+Xlc6scnIsI3YZXdkzgmQOtpL3lXw5esA7I/3ZRKa09ETc7qZ9kvDr 9VJpdEAsUYAauqZ0u5lmbXEbvj9EYYz3Nld9ZSyw4wKkxStvMJyq7De1cCccfbYl LJyWF2AAxBUxszyiHbZuMsFJ5+XYBgm2vvKtfQQZuIy517uL3dxuX0AIiSX7AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUNzFUrL5Vw6xP0hefPVWWBjcJYGkwHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3Mjc3NTIzNTE5NDA2MDkvMC8zMjM0MzAzMjNh Mzk2MjM4MzAzYTM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQCm4AACTANBgkqhkiG9w0BAQsFAAOCAQEAnGGDwP4ulkg3OMsz vBUqPtZ5Arjg4VQfZo8M5QMLCUCujRnMQ6X+S08lFhK0RQ/4Z0SDmk2DeA/o3kHH Up+KSkjuJNalLMeCmYg9bsIuvKy0NiPws+BkLP7eipxmmB46qyicJzVfCXGwHoIc WdMqnW5GF/ZobE+QNoHq6Z9oebqbR15Y5Yto6IRkJ5h/jKBlYfcuYIn3/TS/jOVU /qRX493WsBL/N8lcayKElA0rcjITlRC/l9xMhCl6DesPtjTRmwhb6gy8jqdZnr7f Wf18mWhi5aAuRfnuKgZczr/kB8abweLhFuGwlps/md5qULKWbBcw9qr5xUPgr3UU nbHNcg== -----END CERTIFICATE-----Generated at Fri Apr 17 20:32:19 2026 by rpki-client