$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096985075804798979/0/323430303a626630303a3a2f33322d3634203d3e2030.roa File: 323430303a626630303a3a2f33322d3634203d3e2030.roa (raw, json) Hash identifier: b8zI6D91Guisd2Zwj5/eJF7bgYI/GaGgO4oEeGNNR5I= Subject key identifier: F4:D2:4E:AC:BE:B0:68:9B:74:EF:9A:B1:F4:86:53:57:A4:3A:8F:C1 Certificate issuer: /CN=6F11CBDAAD63A7BBC986EFC70DD5C99BE32301D5 Certificate serial: 2F3F2A9E207A7A289E3B9E09C11F73E6F583CE32 Authority key identifier: 6F:11:CB:DA:AD:63:A7:BB:C9:86:EF:C7:0D:D5:C9:9B:E3:23:01:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6F11CBDAAD63A7BBC986EFC70DD5C99BE32301D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096985075804798979/0/323430303a626630303a3a2f33322d3634203d3e2030.roa Signing time: Thu 16 Apr 2026 02:42:11 +0000 ROA not before: Thu 16 Apr 2026 02:37:11 +0000 ROA not after: Thu 15 Apr 2027 02:42:11 +0000 asID: 0 IP address blocks: 2400:bf00::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096985075804798979/0/6F11CBDAAD63A7BBC986EFC70DD5C99BE32301D5.crl rsync://rpki-rps.cnnic.cn/repo/A1096985075804798979/0/6F11CBDAAD63A7BBC986EFC70DD5C99BE32301D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6F11CBDAAD63A7BBC986EFC70DD5C99BE32301D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 17:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:3f:2a:9e:20:7a:7a:28:9e:3b:9e:09:c1:1f:73:e6:f5:83:ce:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F11CBDAAD63A7BBC986EFC70DD5C99BE32301D5 Validity Not Before: Apr 16 02:37:11 2026 GMT Not After : Apr 15 02:42:11 2027 GMT Subject: CN=F4D24EACBEB0689B74EF9AB1F4865357A43A8FC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9f:fc:4f:92:f5:b3:f9:29:e8:9c:e7:2a:f9: 2e:54:ce:39:e3:ba:9b:7a:33:b8:96:f4:fc:4f:1d: 8f:9d:53:7c:81:a6:a8:f1:20:a0:f2:99:4c:b8:63: bc:4a:f0:78:95:58:30:6d:92:75:5b:55:93:20:39: df:ea:c2:3a:80:cd:11:a2:ad:0a:c7:7f:34:00:83: 5b:64:5e:82:f8:8d:76:1c:6b:5a:2f:fa:6b:dd:bf: 7e:45:f0:4c:e0:e6:d2:28:8c:3a:02:e3:00:61:c5: d9:b1:de:15:09:c6:05:47:59:97:0a:e8:95:e3:04: 3e:bd:24:a0:f8:bb:ad:d4:7c:ed:e2:9c:e5:02:a9: 68:ef:97:52:42:08:1e:2c:53:ae:14:ef:e0:57:77: 81:4e:6e:e9:fb:d4:cc:2f:a3:14:f4:d9:04:9b:c6: 71:b6:dd:42:b6:bf:db:f3:9a:9d:23:f8:5f:00:06: dc:5b:7e:d8:f7:2c:79:f8:de:59:02:5b:a8:5b:6e: d3:b1:46:63:d8:35:75:79:87:4a:df:b4:f6:0f:4e: 33:1a:11:75:be:53:56:b1:47:d1:c6:ed:fc:c0:d3: 73:6b:b7:b7:2e:2b:f1:be:c4:84:69:26:c5:15:c3: b7:84:2a:84:24:90:ca:20:4c:b1:b1:81:d8:21:71: ef:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D2:4E:AC:BE:B0:68:9B:74:EF:9A:B1:F4:86:53:57:A4:3A:8F:C1 X509v3 Authority Key Identifier: keyid:6F:11:CB:DA:AD:63:A7:BB:C9:86:EF:C7:0D:D5:C9:9B:E3:23:01:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096985075804798979/0/6F11CBDAAD63A7BBC986EFC70DD5C99BE32301D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/6F11CBDAAD63A7BBC986EFC70DD5C99BE32301D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096985075804798979/0/323430303a626630303a3a2f33322d3634203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:bf00::/32 Signature Algorithm: sha256WithRSAEncryption 37:59:76:31:39:d1:86:e5:09:db:93:ca:cb:2d:aa:38:e5:a4: f6:04:7e:30:32:f8:10:49:56:5b:43:3a:ee:52:9e:ec:c4:46: c9:cc:a9:1c:02:e2:62:f4:c7:24:41:f8:63:00:93:1e:8e:c1: b4:d4:43:75:08:c1:86:3f:77:56:20:fe:f7:74:69:0e:7f:5b: 6c:66:69:b8:93:e5:54:3e:47:df:67:ff:12:78:1b:ce:33:e2: c2:aa:9b:96:69:5a:7e:84:72:3f:d2:46:c7:9d:73:d6:d4:c1: 69:59:b0:a3:1e:f2:5c:69:4a:d6:a6:90:2a:ca:75:cf:8a:3e: 67:ec:ad:6e:25:7b:02:88:9a:f5:f3:3e:a5:66:9d:31:77:65: d9:9e:80:c9:cc:4d:ce:8a:93:4e:5a:82:25:a0:4c:d8:4d:67: f0:66:13:03:5a:bf:3d:db:62:40:d9:20:a5:0b:c2:db:6c:8a: 40:56:fa:6c:8c:f8:bc:d4:08:60:a4:a0:68:1a:8d:3b:3f:b8: b7:01:53:b1:c5:39:00:43:48:db:54:f6:10:e1:b0:70:f9:e1: 35:d5:0a:01:76:78:c7:72:90:04:87:2a:6d:78:c6:0d:c8:f8: aa:94:23:29:f7:79:a0:3b:93:16:ff:19:92:ab:ed:e0:7d:58: c6:5a:ec:0a -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIULz8qniB6eiieO54JwR9z5vWDzjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkYxMUNCREFBRDYzQTdCQkM5ODZFRkM3MERENUM5OUJF MzIzMDFENTAeFw0yNjA0MTYwMjM3MTFaFw0yNzA0MTUwMjQyMTFaMDMxMTAvBgNV BAMTKEY0RDI0RUFDQkVCMDY4OUI3NEVGOUFCMUY0ODY1MzU3QTQzQThGQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNn/xPkvWz+SnonOcq+S5Uzjnj upt6M7iW9PxPHY+dU3yBpqjxIKDymUy4Y7xK8HiVWDBtknVbVZMgOd/qwjqAzRGi rQrHfzQAg1tkXoL4jXYca1ov+mvdv35F8Ezg5tIojDoC4wBhxdmx3hUJxgVHWZcK 6JXjBD69JKD4u63UfO3inOUCqWjvl1JCCB4sU64U7+BXd4FObun71MwvoxT02QSb xnG23UK2v9vzmp0j+F8ABtxbftj3LHn43lkCW6hbbtOxRmPYNXV5h0rftPYPTjMa EXW+U1axR9HG7fzA03Nrt7cuK/G+xIRpJsUVw7eEKoQkkMogTLGxgdghce+tAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQU9NJOrL6waJt075qx9IZTV6Q6j8EwHwYDVR0j BBgwFoAUbxHL2q1jp7vJhu/HDdXJm+MjAdUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 Njk4NTA3NTgwNDc5ODk3OS8wLzZGMTFDQkRBQUQ2M0E3QkJDOTg2RUZDNzBERDVD OTlCRTMyMzAxRDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNkYxMUNCREFBRDYzQTdCQkM5ODZFRkM3MERENUM5OUJFMzIzMDFENS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2OTg1MDc1ODA0Nzk4OTc5LzAvMzIzNDMwMzAzYTYy NjYzMDMwM2EzYTJmMzMzMjJkMzYzNDIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAL8A MA0GCSqGSIb3DQEBCwUAA4IBAQA3WXYxOdGG5Qnbk8rLLao45aT2BH4wMvgQSVZb QzruUp7sxEbJzKkcAuJi9MckQfhjAJMejsG01EN1CMGGP3dWIP73dGkOf1tsZmm4 k+VUPkffZ/8SeBvOM+LCqpuWaVp+hHI/0kbHnXPW1MFpWbCjHvJcaUrWppAqynXP ij5n7K1uJXsCiJr18z6lZp0xd2XZnoDJzE3OipNOWoIloEzYTWfwZhMDWr8922JA 2SClC8LbbIpAVvpsjPi81AhgpKBoGo07P7i3AVOxxTkAQ0jbVPYQ4bBw+eE11QoB dnjHcpAEhypteMYNyPiqlCMp93mgO5MW/xmSq+3gfVjGWuwK -----END CERTIFICATE-----Generated at Thu Apr 16 22:36:05 2026 by rpki-client