$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a623a3a2f34382d3438203d3e203536303431.roa File: 323430323a396238303a623a3a2f34382d3438203d3e203536303431.roa (raw, json) Hash identifier: TeXJ5iS/B699vmaNBdvoS+sx6P4d473GFdEee0mE1N0= Subject key identifier: 59:6E:8E:63:6D:02:1B:05:82:B8:5D:B5:C1:BE:D3:C3:C5:B2:EB:1E Certificate issuer: /CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Certificate serial: 6480486394DD2EAF732FD76405FC7BDAC2BF98BF Authority key identifier: 10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a623a3a2f34382d3438203d3e203536303431.roa Signing time: Wed 15 Apr 2026 09:35:30 +0000 ROA not before: Wed 15 Apr 2026 09:30:30 +0000 ROA not after: Wed 14 Apr 2027 09:35:30 +0000 asID: 56041 IP address blocks: 2402:9b80:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:80:48:63:94:dd:2e:af:73:2f:d7:64:05:fc:7b:da:c2:bf:98:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1065E9E54D1C1537CE34B5EE445B93476EFDD00F Validity Not Before: Apr 15 09:30:30 2026 GMT Not After : Apr 14 09:35:30 2027 GMT Subject: CN=596E8E636D021B0582B85DB5C1BED3C3C5B2EB1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5d:f4:68:fb:b0:58:31:58:44:ff:60:54:78: 9d:5e:73:1e:98:0b:22:9a:e2:d1:e8:5a:e7:53:ba: f6:8e:38:58:53:18:da:c8:52:d0:b8:f1:7f:96:53: 91:33:5e:a8:f4:22:b8:91:8c:25:56:b1:f0:eb:bd: 54:b2:91:e0:a5:1d:b9:19:89:5c:aa:70:9e:b3:6a: f1:ba:1f:81:b4:b3:0f:b3:d6:90:c2:8a:bb:43:00: d7:81:ed:62:47:61:b6:a4:f5:b6:3e:96:b7:57:c1: e9:2f:f1:eb:68:2a:e2:72:7c:52:02:10:a1:3d:54: 17:9b:3e:48:68:55:b8:ff:e8:d5:64:ef:27:f2:4c: bb:41:5e:1d:1a:85:a7:37:e7:2f:73:9b:b5:61:da: 26:bb:7a:31:05:d8:cf:40:08:9f:50:81:41:f8:be: 4b:8c:62:33:79:42:b1:69:ca:f1:74:af:29:d9:fc: 77:2f:b5:30:55:7f:61:51:39:11:07:13:ba:53:6d: b7:b2:4f:d6:c2:07:d2:67:0c:6b:7d:20:37:06:46: 66:7e:ba:89:3a:2f:3e:ed:7e:de:82:22:c0:fb:16: 5f:9e:c1:a7:df:9e:9d:51:60:50:ed:0a:27:11:ba: 2d:6a:8c:fa:42:56:93:e9:12:2e:bf:ee:85:4f:ec: 2f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6E:8E:63:6D:02:1B:05:82:B8:5D:B5:C1:BE:D3:C3:C5:B2:EB:1E X509v3 Authority Key Identifier: keyid:10:65:E9:E5:4D:1C:15:37:CE:34:B5:EE:44:5B:93:47:6E:FD:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1065E9E54D1C1537CE34B5EE445B93476EFDD00F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096727752351940609/0/323430323a396238303a623a3a2f34382d3438203d3e203536303431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9b80:b::/48 Signature Algorithm: sha256WithRSAEncryption b7:77:09:70:59:f0:46:10:81:36:9c:4e:8d:a8:d7:8e:a2:d9: b0:1d:45:e3:7f:f3:5f:12:21:64:a2:42:cf:07:13:f9:3a:5e: 27:4d:13:aa:63:e2:75:45:9f:b8:b7:35:76:37:52:a8:8b:0d: 32:e8:7f:fc:85:de:60:21:b3:f2:7f:57:dc:a5:6d:60:b5:b8: 09:e5:db:fb:94:78:a0:1f:95:6d:0b:8a:42:b2:9f:f2:b5:26: 37:45:c8:3b:bd:ba:50:34:16:0f:12:ab:64:90:cc:8d:7c:78: cf:77:16:8d:28:b4:9f:e2:d3:ad:0d:17:24:5a:a5:5c:81:13: 4d:4a:ee:98:df:e4:b9:a7:56:09:ee:9c:9c:d1:7c:28:35:f9: 6f:f8:9a:e5:b0:25:74:65:23:93:c3:91:79:b4:d6:8a:ab:5f: 52:72:6d:4b:96:86:58:3b:02:43:31:0f:70:38:be:8e:f8:f4: da:e9:70:b2:3e:5d:4b:32:91:f3:9c:d2:a1:d0:8b:b6:db:27: 70:e1:37:d9:a6:6e:d1:8c:78:4a:a6:4d:8d:ca:91:0f:46:3c: 23:94:83:89:dd:52:4c:aa:ea:07:09:65:61:e1:0e:90:f7:9c: 5b:97:23:c7:37:06:8e:12:65:5a:0a:f2:c2:52:8b:b3:e5:54: f7:c6:70:eb -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUZIBIY5TdLq9zL9dkBfx72sK/mL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2 RUZERDAwRjAeFw0yNjA0MTUwOTMwMzBaFw0yNzA0MTQwOTM1MzBaMDMxMTAvBgNV BAMTKDU5NkU4RTYzNkQwMjFCMDU4MkI4NURCNUMxQkVEM0MzQzVCMkVCMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZXfRo+7BYMVhE/2BUeJ1ecx6Y CyKa4tHoWudTuvaOOFhTGNrIUtC48X+WU5EzXqj0IriRjCVWsfDrvVSykeClHbkZ iVyqcJ6zavG6H4G0sw+z1pDCirtDANeB7WJHYbak9bY+lrdXwekv8etoKuJyfFIC EKE9VBebPkhoVbj/6NVk7yfyTLtBXh0ahac35y9zm7Vh2ia7ejEF2M9ACJ9QgUH4 vkuMYjN5QrFpyvF0rynZ/HcvtTBVf2FROREHE7pTbbeyT9bCB9JnDGt9IDcGRmZ+ uok6Lz7tft6CIsD7Fl+ewaffnp1RYFDtCicRui1qjPpCVpPpEi6/7oVP7C9LAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUWW6OY20CGwWCuF21wb7Tw8Wy6x4wHwYDVR0j BBgwFoAUEGXp5U0cFTfONLXuRFuTR2790A8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjcyNzc1MjM1MTk0MDYwOS8wLzEwNjVFOUU1NEQxQzE1MzdDRTM0QjVFRTQ0NUI5 MzQ3NkVGREQwMEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTA2NUU5RTU0RDFDMTUzN0NFMzRCNUVFNDQ1QjkzNDc2RUZERDAwRi5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTY3Mjc3NTIzNTE5NDA2MDkvMC8zMjM0MzAzMjNh Mzk2MjM4MzAzYTYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNjMwMzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQCm4AACzANBgkqhkiG9w0BAQsFAAOCAQEAt3cJcFnwRhCBNpxO jajXjqLZsB1F43/zXxIhZKJCzwcT+TpeJ00TqmPidUWfuLc1djdSqIsNMuh//IXe YCGz8n9X3KVtYLW4CeXb+5R4oB+VbQuKQrKf8rUmN0XIO726UDQWDxKrZJDMjXx4 z3cWjSi0n+LTrQ0XJFqlXIETTUrumN/kuadWCe6cnNF8KDX5b/ia5bAldGUjk8OR ebTWiqtfUnJtS5aGWDsCQzEPcDi+jvj02ulwsj5dSzKR85zSodCLttsncOE32aZu 0Yx4SqZNjcqRD0Y8I5SDid1STKrqBwllYeEOkPecW5cjxzcGjhJlWgrywlKLs+VU 98Zw6w== -----END CERTIFICATE-----Generated at Fri Apr 17 23:30:28 2026 by rpki-client