$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096740874986979330/0/323430353a663934303a3a2f33322d3332203d3e20313339313534.roa File: 323430353a663934303a3a2f33322d3332203d3e20313339313534.roa (raw, json) Hash identifier: lhgN0L9WHGTQkGTRCfQY8FavApS7jNFQ59DMwInIVKM= Subject key identifier: 33:D1:64:8E:BD:D3:FD:38:45:C6:B9:8E:46:0A:3C:F3:4D:47:7A:C1 Certificate issuer: /CN=48394F266C145173319F25807E0F7F0C02A6894A Certificate serial: 42C771A7359890B7C141B65187E07039EFF818D7 Authority key identifier: 48:39:4F:26:6C:14:51:73:31:9F:25:80:7E:0F:7F:0C:02:A6:89:4A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/48394F266C145173319F25807E0F7F0C02A6894A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096740874986979330/0/323430353a663934303a3a2f33322d3332203d3e20313339313534.roa Signing time: Fri 24 Apr 2026 09:36:30 +0000 ROA not before: Fri 24 Apr 2026 09:31:30 +0000 ROA not after: Fri 23 Apr 2027 09:36:30 +0000 asID: 139154 IP address blocks: 2405:f940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096740874986979330/0/48394F266C145173319F25807E0F7F0C02A6894A.crl rsync://rpki-rps.cnnic.cn/repo/A1096740874986979330/0/48394F266C145173319F25807E0F7F0C02A6894A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/48394F266C145173319F25807E0F7F0C02A6894A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:c7:71:a7:35:98:90:b7:c1:41:b6:51:87:e0:70:39:ef:f8:18:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48394F266C145173319F25807E0F7F0C02A6894A Validity Not Before: Apr 24 09:31:30 2026 GMT Not After : Apr 23 09:36:30 2027 GMT Subject: CN=33D1648EBDD3FD3845C6B98E460A3CF34D477AC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:23:aa:9d:5b:2c:76:e5:b2:ab:f1:dd:75:66: cd:9e:01:c0:63:b1:03:cf:e0:02:6f:7c:ed:0a:2c: fc:36:58:bf:fd:6a:eb:9f:0e:02:0c:d3:a3:61:43: 5c:79:7a:44:b7:34:4a:66:a9:70:dc:a9:92:26:45: 2b:20:36:6a:5d:7e:7b:1a:a7:39:5e:49:80:45:d4: 85:f5:1e:c4:f3:b9:78:04:b4:54:b6:9b:eb:c8:93: a8:3e:5d:71:28:d2:cb:41:4b:34:2b:42:6d:49:a7: 24:6c:b7:d6:e9:44:75:35:1c:b4:2a:b5:27:70:02: 3b:95:b8:ad:8d:02:e7:71:e6:dd:6f:7c:c4:ea:61: 14:e7:aa:cc:97:fd:bd:3a:76:28:76:44:08:1e:48: 05:87:f2:aa:0f:ee:e2:99:87:9c:66:40:ed:97:35: 55:a1:98:6d:86:a8:7d:d7:ed:44:82:7f:45:1b:58: 59:df:06:29:cd:ed:a1:68:d1:8c:23:ad:7b:f3:2d: 1f:fa:4c:c5:66:67:2c:14:aa:aa:ff:19:f4:96:3a: 99:3f:3b:b1:3b:45:42:d1:56:5c:de:26:dd:25:1e: 63:6a:90:08:8f:53:7b:b6:3f:43:df:2c:f6:fd:22: da:ae:6c:4e:74:67:50:bc:c2:fc:b4:54:8b:96:1e: 81:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D1:64:8E:BD:D3:FD:38:45:C6:B9:8E:46:0A:3C:F3:4D:47:7A:C1 X509v3 Authority Key Identifier: keyid:48:39:4F:26:6C:14:51:73:31:9F:25:80:7E:0F:7F:0C:02:A6:89:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096740874986979330/0/48394F266C145173319F25807E0F7F0C02A6894A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/48394F266C145173319F25807E0F7F0C02A6894A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096740874986979330/0/323430353a663934303a3a2f33322d3332203d3e20313339313534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:f940::/32 Signature Algorithm: sha256WithRSAEncryption 3b:1a:0f:d2:cd:ae:27:32:3f:bf:7e:0e:6c:a2:ce:fe:6f:2e: f1:50:17:45:ce:3f:23:b4:be:32:33:91:b4:27:bb:fd:73:f4: 8a:11:cb:b0:ba:df:28:7a:2d:ca:88:72:15:03:b5:5d:94:65: 2c:5b:93:2f:e3:5a:35:66:de:1d:7f:17:16:2a:64:8f:cd:c2: 89:57:56:cd:b2:84:04:72:4f:0e:77:f1:f3:28:da:38:3b:b5: 99:40:0e:9a:3c:ab:18:d2:e8:c5:56:fa:3b:fa:bc:d6:e6:c6: ad:11:93:09:2d:da:8d:78:f4:8b:0b:d3:71:2a:20:23:61:91: bf:f2:e5:d5:af:77:4b:55:6f:4f:65:30:e9:5c:4a:3e:39:1c: 0e:19:cd:c9:15:22:7c:ff:ae:b7:02:da:cb:49:81:f8:99:4c: f4:cf:f3:96:1a:e2:e6:54:09:f3:e1:aa:59:e4:1e:23:7c:4d: 53:64:f1:70:ef:ba:ac:06:5e:a3:3e:20:c3:f3:09:e0:1c:e5: f0:6c:e4:59:d5:a4:ee:47:cf:97:ca:3f:55:29:76:0b:34:d0: a2:eb:4f:3d:ee:27:24:f4:e5:88:5d:f3:ef:b4:0c:ba:83:d6: 9e:93:08:87:ef:f0:85:bc:44:e0:cf:5f:b9:25:38:6c:bb:63: 3b:ed:6b:ca -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUQsdxpzWYkLfBQbZRh+BwOe/4GNcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgzOTRGMjY2QzE0NTE3MzMxOUYyNTgwN0UwRjdGMEMw MkE2ODk0QTAeFw0yNjA0MjQwOTMxMzBaFw0yNzA0MjMwOTM2MzBaMDMxMTAvBgNV BAMTKDMzRDE2NDhFQkREM0ZEMzg0NUM2Qjk4RTQ2MEEzQ0YzNEQ0NzdBQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuI6qdWyx25bKr8d11Zs2eAcBj sQPP4AJvfO0KLPw2WL/9auufDgIM06NhQ1x5ekS3NEpmqXDcqZImRSsgNmpdfnsa pzleSYBF1IX1HsTzuXgEtFS2m+vIk6g+XXEo0stBSzQrQm1JpyRst9bpRHU1HLQq tSdwAjuVuK2NAudx5t1vfMTqYRTnqsyX/b06dih2RAgeSAWH8qoP7uKZh5xmQO2X NVWhmG2GqH3X7USCf0UbWFnfBinN7aFo0YwjrXvzLR/6TMVmZywUqqr/GfSWOpk/ O7E7RULRVlzeJt0lHmNqkAiPU3u2P0PfLPb9ItqubE50Z1C8wvy0VIuWHoHnAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUM9Fkjr3T/ThFxrmORgo8801HesEwHwYDVR0j BBgwFoAUSDlPJmwUUXMxnyWAfg9/DAKmiUowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 Njc0MDg3NDk4Njk3OTMzMC8wLzQ4Mzk0RjI2NkMxNDUxNzMzMTlGMjU4MDdFMEY3 RjBDMDJBNjg5NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNDgzOTRGMjY2QzE0NTE3MzMxOUYyNTgwN0UwRjdGMEMwMkE2ODk0QS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA5Njc0MDg3NDk4Njk3OTMzMC8wLzMyMzQzMDM1M2E2 NjM5MzQzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzMzOTMxMzUzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQF+UAwDQYJKoZIhvcNAQELBQADggEBADsaD9LNricyP79+Dmyizv5v LvFQF0XOPyO0vjIzkbQnu/1z9IoRy7C63yh6LcqIchUDtV2UZSxbky/jWjVm3h1/ FxYqZI/NwolXVs2yhARyTw538fMo2jg7tZlADpo8qxjS6MVW+jv6vNbmxq0Rkwkt 2o149IsL03EqICNhkb/y5dWvd0tVb09lMOlcSj45HA4ZzckVInz/rrcC2stJgfiZ TPTP85Ya4uZUCfPhqlnkHiN8TVNk8XDvuqwGXqM+IMPzCeAc5fBs5FnVpO5Hz5fK P1Updgs00KLrTz3uJyT05Yhd8++0DLqD1p6TCIfv8IW8RODPX7klOGy7Yzvta8o= -----END CERTIFICATE-----Generated at Wed May 13 21:32:15 2026 by rpki-client