$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097062473040723971/0/323430373a323834303a3a2f34382d3438203d3e203538383238.roa File: 323430373a323834303a3a2f34382d3438203d3e203538383238.roa (raw, json) Hash identifier: xgCFc2N/0CsJue4d/P/Q+7aRKdG0hdkuMXTcNRaPkXw= Subject key identifier: D2:10:C5:F5:09:DD:F1:E5:91:6E:8B:40:65:73:A8:86:8E:14:86:B2 Certificate issuer: /CN=429F1E5B18A7A7C936E7F2A5D6F48F41416C61CE Certificate serial: 245FD8D64195ED3FB45E25E4D171454108E56691 Authority key identifier: 42:9F:1E:5B:18:A7:A7:C9:36:E7:F2:A5:D6:F4:8F:41:41:6C:61:CE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/429F1E5B18A7A7C936E7F2A5D6F48F41416C61CE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097062473040723971/0/323430373a323834303a3a2f34382d3438203d3e203538383238.roa Signing time: Thu 16 Apr 2026 08:59:53 +0000 ROA not before: Thu 16 Apr 2026 08:54:53 +0000 ROA not after: Thu 15 Apr 2027 08:59:53 +0000 asID: 58828 IP address blocks: 2407:2840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097062473040723971/0/429F1E5B18A7A7C936E7F2A5D6F48F41416C61CE.crl rsync://rpki-rps.cnnic.cn/repo/A1097062473040723971/0/429F1E5B18A7A7C936E7F2A5D6F48F41416C61CE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/429F1E5B18A7A7C936E7F2A5D6F48F41416C61CE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 04:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:5f:d8:d6:41:95:ed:3f:b4:5e:25:e4:d1:71:45:41:08:e5:66:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=429F1E5B18A7A7C936E7F2A5D6F48F41416C61CE Validity Not Before: Apr 16 08:54:53 2026 GMT Not After : Apr 15 08:59:53 2027 GMT Subject: CN=D210C5F509DDF1E5916E8B406573A8868E1486B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:af:14:83:6c:be:f3:3b:21:57:34:cb:98: 24:48:c0:57:1f:59:a2:0a:1f:44:15:46:4d:2e:0c: 2f:e9:81:e5:17:88:48:03:78:ea:27:63:68:38:80: 3b:76:d1:51:4e:77:3a:c0:9f:2a:28:6d:64:03:8a: e8:1d:eb:2c:d2:c0:85:4c:39:28:2e:16:6e:8e:d2: 74:87:c5:ec:05:ec:b4:78:f5:0d:e0:20:ba:d4:d7: 95:b7:2f:4e:5c:6e:eb:1b:85:c9:94:8d:b9:d4:03: 32:be:a6:f1:77:65:c1:e3:09:cb:51:a5:6e:24:81: f2:a4:4e:ab:49:d9:65:7e:b7:96:39:5d:2a:9d:e6: 92:5d:92:54:9c:9e:dd:c1:f9:bb:12:e0:48:4b:65: 11:f2:82:87:93:dc:55:c4:17:0c:44:a8:7e:b0:4a: 23:38:9b:b4:c1:5c:d2:cb:be:65:81:e1:00:65:aa: 0c:98:b2:1f:e4:e3:a1:79:8f:d5:f0:e4:1a:1c:52: 59:e5:08:9f:65:d3:a4:3a:13:3d:20:da:aa:f4:08: 7c:f9:7f:e9:64:18:e0:d1:53:0f:5f:44:85:1e:a1: dd:ed:16:4e:0a:2c:72:13:fa:c7:47:11:47:92:9c: 7d:b3:f8:ce:44:8d:3f:a3:d1:a6:2b:87:cf:52:62: 24:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:10:C5:F5:09:DD:F1:E5:91:6E:8B:40:65:73:A8:86:8E:14:86:B2 X509v3 Authority Key Identifier: keyid:42:9F:1E:5B:18:A7:A7:C9:36:E7:F2:A5:D6:F4:8F:41:41:6C:61:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097062473040723971/0/429F1E5B18A7A7C936E7F2A5D6F48F41416C61CE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/429F1E5B18A7A7C936E7F2A5D6F48F41416C61CE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097062473040723971/0/323430373a323834303a3a2f34382d3438203d3e203538383238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:2840::/48 Signature Algorithm: sha256WithRSAEncryption 2d:2d:f5:cc:a8:9a:91:8c:0d:b6:87:6e:07:31:9a:63:08:49: 42:49:7a:17:d3:b9:06:c9:2e:d2:ff:12:ac:90:7f:48:21:29: 3d:a4:0d:3a:41:0a:c2:a2:af:43:36:e3:e7:15:0d:05:ad:fe: 5f:f0:c5:c2:5c:18:39:f9:91:bb:f4:ff:ae:80:cf:5a:eb:97: 40:4e:3f:3e:05:90:c3:73:53:db:6c:fe:76:5e:37:f3:59:20: bc:c7:1a:cb:eb:9f:5d:cc:d3:86:9e:45:a1:2b:6f:e1:fb:19: 20:1e:91:d0:7f:ed:75:79:02:fd:50:73:6d:56:52:43:e3:5f: 97:03:4a:9a:d7:8d:2b:be:12:ae:18:87:5d:2e:a0:de:ab:28: a7:95:86:c7:ca:b5:93:3d:42:15:9a:03:c6:83:3b:6d:25:ad: 0b:fc:f4:94:37:81:2e:90:db:6b:e0:9d:ca:ea:d2:9c:fc:f6: 45:f9:20:b7:82:ee:4c:4a:56:7e:ac:4a:f0:07:ce:fe:a3:76: d3:52:3a:d0:c8:fe:5a:8a:d9:d7:14:98:b0:11:25:9a:1f:8b: d8:5e:f3:9e:75:9a:75:9c:8b:bc:a5:1d:1b:f7:41:e9:db:ce: 83:18:17:be:15:f5:9f:f3:5c:e0:94:c5:8f:38:73:b8:63:ee: 14:d1:76:1d -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUJF/Y1kGV7T+0XiXk0XFFQQjlZpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI5RjFFNUIxOEE3QTdDOTM2RTdGMkE1RDZGNDhGNDE0 MTZDNjFDRTAeFw0yNjA0MTYwODU0NTNaFw0yNzA0MTUwODU5NTNaMDMxMTAvBgNV BAMTKEQyMTBDNUY1MDlEREYxRTU5MTZFOEI0MDY1NzNBODg2OEUxNDg2QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9l68Ug2y+8zshVzTLmCRIwFcf WaIKH0QVRk0uDC/pgeUXiEgDeOonY2g4gDt20VFOdzrAnyoobWQDiugd6yzSwIVM OSguFm6O0nSHxewF7LR49Q3gILrU15W3L05cbusbhcmUjbnUAzK+pvF3ZcHjCctR pW4kgfKkTqtJ2WV+t5Y5XSqd5pJdklScnt3B+bsS4EhLZRHygoeT3FXEFwxEqH6w SiM4m7TBXNLLvmWB4QBlqgyYsh/k46F5j9Xw5BocUlnlCJ9l06Q6Ez0g2qr0CHz5 f+lkGODRUw9fRIUeod3tFk4KLHIT+sdHEUeSnH2z+M5EjT+j0aYrh89SYiThAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU0hDF9Qnd8eWRbotAZXOoho4UhrIwHwYDVR0j BBgwFoAUQp8eWxinp8k25/Kl1vSPQUFsYc4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA2MjQ3MzA0MDcyMzk3MS8wLzQyOUYxRTVCMThBN0E3QzkzNkU3RjJBNUQ2RjQ4 RjQxNDE2QzYxQ0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDI5RjFFNUIxOEE3QTdDOTM2RTdGMkE1RDZGNDhGNDE0MTZDNjFDRS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDYyNDczMDQwNzIzOTcxLzAvMzIzNDMwMzczYTMy MzgzNDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODM4MzIzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACQHKEAAADANBgkqhkiG9w0BAQsFAAOCAQEALS31zKiakYwNtoduBzGaYwhJ Qkl6F9O5Bsku0v8SrJB/SCEpPaQNOkEKwqKvQzbj5xUNBa3+X/DFwlwYOfmRu/T/ roDPWuuXQE4/PgWQw3NT22z+dl4381kgvMcay+ufXczThp5FoStv4fsZIB6R0H/t dXkC/VBzbVZSQ+NflwNKmteNK74SrhiHXS6g3qsop5WGx8q1kz1CFZoDxoM7bSWt C/z0lDeBLpDba+CdyurSnPz2Rfkgt4LuTEpWfqxK8AfO/qN201I60Mj+WorZ1xSY sBElmh+L2F7znnWadZyLvKUdG/dB6dvOgxgXvhX1n/Nc4JTFjzhzuGPuFNF2HQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:43:24 2026 by rpki-client