$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/323430353a38303a31333a3a2f34382d3438203d3e20313436373732.roa File: 323430353a38303a31333a3a2f34382d3438203d3e20313436373732.roa (raw, json) Hash identifier: Gxt4Ykxs/NSO3oYxAyGpx1JRUm/GbqTBMNiXb0ZzAy0= Subject key identifier: 38:2E:04:5A:A1:7E:42:3F:5C:63:24:31:41:5D:D6:0C:A1:EA:DC:CC Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 54B779D2071558519B6DA4518A8934A4DE97EBC3 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/323430353a38303a31333a3a2f34382d3438203d3e20313436373732.roa Signing time: Thu 23 Apr 2026 02:13:31 +0000 ROA not before: Thu 23 Apr 2026 02:08:31 +0000 ROA not after: Thu 22 Apr 2027 02:13:31 +0000 asID: 146772 IP address blocks: 2405:80:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b7:79:d2:07:15:58:51:9b:6d:a4:51:8a:89:34:a4:de:97:eb:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 23 02:08:31 2026 GMT Not After : Apr 22 02:13:31 2027 GMT Subject: CN=382E045AA17E423F5C632431415DD60CA1EADCCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d5:64:ca:f1:39:95:5e:08:fa:9c:2a:7a:d8: 3a:5a:63:4d:ec:c3:3b:54:98:8c:89:9e:87:2c:fb: 90:00:47:76:b4:f8:de:f3:86:37:66:31:2f:bc:84: d9:3b:45:b9:41:2c:96:31:91:1b:f0:ef:30:86:92: 5b:b5:dc:ce:a8:9c:27:35:15:79:66:c6:3e:5f:89: b5:27:90:9f:e5:48:5b:cd:30:32:c9:4a:18:bf:27: 3a:c7:1f:1d:d3:46:2c:55:f8:63:5b:8b:16:ce:e2: 97:09:1d:b4:2b:6f:83:ee:f0:64:73:19:ca:8d:29: 58:29:0e:e7:73:ee:a9:39:be:9c:86:a9:d8:e8:de: 19:2d:35:62:64:1e:aa:6e:3f:77:e9:62:a8:30:1b: da:11:a9:16:dd:3e:6a:46:16:05:8a:91:3e:f1:7c: 7b:4e:cc:7d:d1:70:8c:09:13:2f:0a:80:a6:86:dd: 3d:04:04:43:19:10:e8:ed:b2:e3:a3:c6:88:b3:77: 90:b3:5f:da:e9:35:1b:e9:01:00:2a:05:4d:30:9d: 4b:16:a5:11:37:6b:88:68:6f:02:e0:dd:b9:20:95: 01:c0:5d:24:c8:2a:08:8d:8d:41:af:3b:51:41:fb: f7:f0:34:7d:40:ec:8c:e1:a5:e2:49:91:32:ce:56: e1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2E:04:5A:A1:7E:42:3F:5C:63:24:31:41:5D:D6:0C:A1:EA:DC:CC X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/323430353a38303a31333a3a2f34382d3438203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:80:13::/48 Signature Algorithm: sha256WithRSAEncryption 72:99:c3:5d:cb:f4:89:3a:5e:1f:3c:a1:07:ae:c5:88:b5:87: a2:41:8f:47:fe:40:64:9e:bd:df:cb:c7:60:7b:b4:ff:55:96: c7:dc:db:07:b5:fc:62:66:9a:bd:16:4e:0b:fd:d8:9f:5e:e1: 77:bf:5a:96:7b:9c:1e:73:ea:50:e9:1e:4c:1a:0a:02:63:a8: d4:3a:10:aa:16:c8:4f:ac:c6:83:19:95:0a:b4:8a:b8:46:65: 6d:6e:72:4e:d8:37:16:22:04:bf:65:db:aa:1a:bd:d8:f6:a6: 17:e7:2d:f5:dd:45:c4:b5:39:4f:b6:2a:1b:ee:8e:fb:69:0d: f8:dc:32:c5:a9:53:19:08:bf:99:a4:2e:89:27:91:97:16:7e: a5:7b:d4:c5:b5:1d:b5:c8:5c:d9:6c:5b:ef:66:71:2b:bf:39: 62:8c:3b:38:b3:b6:85:58:d0:c7:e7:3b:f6:17:c5:73:61:69: c4:a9:f2:94:92:10:f4:ec:f4:98:2a:2b:af:66:e1:78:b2:88: 87:a5:fb:a9:7a:44:40:d6:f9:55:e1:08:04:2b:1a:43:ad:79: f2:83:4d:71:ac:c6:6b:b7:1c:ce:19:f4:7e:d3:5d:06:73:3a: 28:0e:29:91:bd:f7:ba:5d:10:a6:22:5e:ff:ef:70:1a:1b:01: 3a:87:3c:a3 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUVLd50gcVWFGbbaRRiok0pN6X68MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjMwMjA4MzFaFw0yNzA0MjIwMjEzMzFaMDMxMTAvBgNV BAMTKDM4MkUwNDVBQTE3RTQyM0Y1QzYzMjQzMTQxNURENjBDQTFFQURDQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ1WTK8TmVXgj6nCp62DpaY03s wztUmIyJnocs+5AAR3a0+N7zhjdmMS+8hNk7RblBLJYxkRvw7zCGklu13M6onCc1 FXlmxj5fibUnkJ/lSFvNMDLJShi/JzrHHx3TRixV+GNbixbO4pcJHbQrb4Pu8GRz GcqNKVgpDudz7qk5vpyGqdjo3hktNWJkHqpuP3fpYqgwG9oRqRbdPmpGFgWKkT7x fHtOzH3RcIwJEy8KgKaG3T0EBEMZEOjtsuOjxoizd5CzX9rpNRvpAQAqBU0wnUsW pRE3a4hobwLg3bkglQHAXSTIKgiNjUGvO1FB+/fwNH1A7IzhpeJJkTLOVuFHAgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUOC4EWqF+Qj9cYyQxQV3WDKHq3MwwHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODUzODkyNjU0MjAyODkvMC8zMjM0MzAzNTNh MzgzMDNhMzEzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNjM3MzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQFAIAAEzANBgkqhkiG9w0BAQsFAAOCAQEAcpnDXcv0iTpeHzyh B67FiLWHokGPR/5AZJ6938vHYHu0/1WWx9zbB7X8YmaavRZOC/3Yn17hd79alnuc HnPqUOkeTBoKAmOo1DoQqhbIT6zGgxmVCrSKuEZlbW5yTtg3FiIEv2Xbqhq92Pam F+ct9d1FxLU5T7YqG+6O+2kN+NwyxalTGQi/maQuiSeRlxZ+pXvUxbUdtchc2Wxb 72ZxK785Yow7OLO2hVjQx+c79hfFc2FpxKnylJIQ9Oz0mCorr2bheLKIh6X7qXpE QNb5VeEIBCsaQ6158oNNcazGa7cczhn0ftNdBnM6KA4pkb33ul0QpiJe/+9wGhsB Ooc8ow== -----END CERTIFICATE-----Generated at Wed May 13 19:06:29 2026 by rpki-client