$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265420289/0/323430353a38303a313a3a2f34382d3438203d3e20313436373732.roa File: 323430353a38303a313a3a2f34382d3438203d3e20313436373732.roa (raw, json) Hash identifier: vlXgtjBVbJFOq7vuvdpiEzr6ie8jb0e5+nOu4Vmglas= Subject key identifier: 0E:D7:2C:B8:12:35:9F:88:1E:50:B6:E8:F6:0E:61:FE:6C:38:BF:B3 Certificate issuer: /CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Certificate serial: 0A4FB2CCF107FA006441672443EF6878A0531403 Authority key identifier: 3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/323430353a38303a313a3a2f34382d3438203d3e20313436373732.roa Signing time: Thu 23 Apr 2026 02:13:31 +0000 ROA not before: Thu 23 Apr 2026 02:08:31 +0000 ROA not after: Thu 22 Apr 2027 02:13:31 +0000 asID: 146772 IP address blocks: 2405:80:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4f:b2:cc:f1:07:fa:00:64:41:67:24:43:ef:68:78:a0:53:14:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D01CD6928DDE8D26AC96265F1F904C72F1A12B8 Validity Not Before: Apr 23 02:08:31 2026 GMT Not After : Apr 22 02:13:31 2027 GMT Subject: CN=0ED72CB812359F881E50B6E8F60E61FE6C38BFB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:51:f8:42:d7:2d:3d:be:a6:c5:d9:d2:f6:5d: 2a:b6:ba:a8:08:bd:fb:38:ef:2a:6b:bc:f0:7c:06: be:d2:54:7a:a9:78:41:1b:46:0e:b5:27:f2:d2:dd: 02:b1:dc:fe:78:90:f6:e6:81:dc:a8:d4:35:fe:05: 16:c8:cb:ac:cf:62:24:e6:26:c9:df:8b:a3:fb:16: 70:50:54:15:6c:26:6c:26:95:df:36:33:d7:e8:e8: 42:de:32:08:dc:a1:ee:7c:c4:22:4b:9c:01:04:58: 25:67:4c:4f:b2:c0:82:9b:dc:35:32:75:e2:68:a8: 39:27:cc:cd:ef:a8:e7:8e:33:d4:d6:12:c2:ca:e1: 0d:38:4e:1c:0d:bf:67:81:c3:7e:45:4b:9b:ed:20: 84:80:fc:bb:52:c2:51:b4:ba:ab:34:70:54:c0:16: 8b:4b:b4:90:7d:b9:3e:43:07:99:ea:50:8d:b0:51: a3:f1:bf:72:bd:17:1c:33:04:80:61:76:25:58:59: 04:1f:96:3c:04:e7:53:51:3c:60:ca:49:f0:47:bc: a8:2e:e4:f2:ec:c2:ef:c0:fd:d7:99:bf:b2:04:80: 28:eb:f2:ee:95:5e:d2:39:60:44:f5:b1:48:9b:15: bf:eb:2c:0e:33:8c:17:8f:03:18:1d:5a:c3:c4:d8: c8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D7:2C:B8:12:35:9F:88:1E:50:B6:E8:F6:0E:61:FE:6C:38:BF:B3 X509v3 Authority Key Identifier: keyid:3D:01:CD:69:28:DD:E8:D2:6A:C9:62:65:F1:F9:04:C7:2F:1A:12:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3D01CD6928DDE8D26AC96265F1F904C72F1A12B8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265420289/0/323430353a38303a313a3a2f34382d3438203d3e20313436373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:80:1::/48 Signature Algorithm: sha256WithRSAEncryption 66:56:31:83:3d:c8:3f:39:9d:c0:fc:56:9e:70:47:0b:2c:7d: b7:a4:4f:71:b9:f7:ff:b1:9e:86:42:2c:8d:f1:89:89:35:9b: 54:d0:bf:af:36:dd:38:db:ec:94:40:f6:91:8c:c6:7c:4a:e6: 8f:c4:46:41:4c:db:3f:3e:ef:db:72:0c:15:dc:a2:45:e1:a5: f3:ef:5a:2c:f3:dc:37:10:8d:84:a1:21:d3:2f:fb:4f:cf:17: af:70:ca:ad:2a:69:90:c9:8c:b8:11:cb:02:ca:14:e4:c4:e5: 2e:73:df:68:70:f4:28:20:a5:49:33:16:66:fb:8a:1f:9b:92: 52:b9:91:42:b9:f6:8b:a1:3a:09:0e:11:a9:49:a2:d5:f8:67: 28:93:80:c5:b3:b4:5d:2d:b2:2d:06:de:b1:31:e8:44:75:ed: 16:15:eb:b8:33:31:82:7b:2b:8b:bb:f4:9f:03:06:44:b9:a0: 02:71:9e:7c:5d:8b:a4:fb:26:b8:a2:a1:a5:b9:85:82:54:df: 08:56:f6:1f:86:96:68:be:6b:51:c3:3d:15:bf:c3:b0:10:26: c7:59:0b:31:12:37:01:e0:53:48:16:86:ca:e8:d5:98:3a:f0: f0:d1:ba:5d:0b:5b:14:3e:6a:95:e8:e3:19:74:73:79:52:b2: 64:8a:9c:dc -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUCk+yzPEH+gBkQWckQ+9oeKBTFAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0Qzcy RjFBMTJCODAeFw0yNjA0MjMwMjA4MzFaFw0yNzA0MjIwMjEzMzFaMDMxMTAvBgNV BAMTKDBFRDcyQ0I4MTIzNTlGODgxRTUwQjZFOEY2MEU2MUZFNkMzOEJGQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZUfhC1y09vqbF2dL2XSq2uqgI vfs47yprvPB8Br7SVHqpeEEbRg61J/LS3QKx3P54kPbmgdyo1DX+BRbIy6zPYiTm Jsnfi6P7FnBQVBVsJmwmld82M9fo6ELeMgjcoe58xCJLnAEEWCVnTE+ywIKb3DUy deJoqDknzM3vqOeOM9TWEsLK4Q04ThwNv2eBw35FS5vtIISA/LtSwlG0uqs0cFTA FotLtJB9uT5DB5nqUI2wUaPxv3K9FxwzBIBhdiVYWQQfljwE51NRPGDKSfBHvKgu 5PLswu/A/deZv7IEgCjr8u6VXtI5YET1sUibFb/rLA4zjBePAxgdWsPE2MjZAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUDtcsuBI1n4geULbo9g5h/mw4v7MwHwYDVR0j BBgwFoAUPQHNaSjd6NJqyWJl8fkExy8aErgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQyMDI4OS8wLzNEMDFDRDY5MjhEREU4RDI2QUM5NjI2NUYxRjkw NEM3MkYxQTEyQjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0QwMUNENjkyOERERThEMjZBQzk2MjY1RjFGOTA0QzcyRjFBMTJCOC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4NTM4OTI2NTQyMDI4OS8wLzMyMzQzMDM1M2Ez ODMwM2EzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNjM3MzczMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACQFAIAAATANBgkqhkiG9w0BAQsFAAOCAQEAZlYxgz3IPzmdwPxWnnBH Cyx9t6RPcbn3/7GehkIsjfGJiTWbVNC/rzbdONvslED2kYzGfErmj8RGQUzbPz7v 23IMFdyiReGl8+9aLPPcNxCNhKEh0y/7T88Xr3DKrSppkMmMuBHLAsoU5MTlLnPf aHD0KCClSTMWZvuKH5uSUrmRQrn2i6E6CQ4RqUmi1fhnKJOAxbO0XS2yLQbesTHo RHXtFhXruDMxgnsri7v0nwMGRLmgAnGefF2LpPsmuKKhpbmFglTfCFb2H4aWaL5r UcM9Fb/DsBAmx1kLMRI3AeBTSBaGyujVmDrw8NG6XQtbFD5qlejjGXRzeVKyZIqc 3A== -----END CERTIFICATE-----Generated at Wed May 13 15:26:36 2026 by rpki-client