$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096993931276582914/0/323430313a633032303a31343a3a2f34382d3438203d3e20313531323736.roa File: 323430313a633032303a31343a3a2f34382d3438203d3e20313531323736.roa (raw, json) Hash identifier: mr0/gxeIKI22glZxYzHulN1c0VopTHKnK1KsfVxMuu0= Subject key identifier: 3A:60:D7:A7:99:42:B9:1B:93:71:3E:D8:47:8A:76:EA:2F:E6:42:28 Certificate issuer: /CN=D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682 Certificate serial: 454A0DCFECD21FCD74A2F4C41CC51183490E93D6 Authority key identifier: D0:8B:5F:D1:41:F6:E4:B4:E8:21:9F:F3:E8:D9:79:CA:4B:9A:D6:82 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/323430313a633032303a31343a3a2f34382d3438203d3e20313531323736.roa Signing time: Mon 20 Apr 2026 09:45:07 +0000 ROA not before: Mon 20 Apr 2026 09:40:07 +0000 ROA not after: Mon 19 Apr 2027 09:45:07 +0000 asID: 151276 IP address blocks: 2401:c020:14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.crl rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:4a:0d:cf:ec:d2:1f:cd:74:a2:f4:c4:1c:c5:11:83:49:0e:93:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682 Validity Not Before: Apr 20 09:40:07 2026 GMT Not After : Apr 19 09:45:07 2027 GMT Subject: CN=3A60D7A79942B91B93713ED8478A76EA2FE64228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:87:d9:f8:3f:81:41:90:1b:63:28:0b:96:32: 8b:07:2d:f8:88:5a:01:fa:b9:d7:ee:02:02:a9:26: f8:01:52:1b:65:0d:7b:40:17:dc:13:6d:ef:a1:c9: fb:35:d6:94:44:af:57:cc:ba:21:2a:86:a1:eb:d1: 02:e8:79:a5:f7:bb:ad:e1:4d:c5:2f:dd:e6:71:3c: 14:39:62:f1:bd:6b:ef:7c:2a:c3:93:36:60:df:c9: 83:2a:73:f8:76:10:13:4b:cc:fb:85:f2:23:65:8d: 36:47:af:55:25:eb:68:7b:0c:8c:29:fc:3a:d9:54: c2:f4:de:9c:a5:06:f4:3f:89:ca:94:42:ef:d6:e7: 53:28:8f:3f:32:56:13:47:0d:c7:95:34:10:af:0d: e9:99:2a:9d:61:90:6a:91:04:bf:5d:86:06:52:3d: f8:59:ed:91:37:4b:08:15:8e:00:06:65:f1:f9:7f: 76:2f:9b:38:52:96:48:dc:32:4b:92:6d:6a:29:d2: 7c:fe:4e:dd:20:27:e3:70:97:09:95:fc:89:43:03: 92:61:55:2c:28:af:28:11:68:2e:95:cb:a0:6b:76: 27:43:22:30:da:e0:8c:ab:09:01:5d:d5:3d:11:a7: a9:8b:10:a1:a8:bb:28:5a:ea:a7:17:af:5e:34:2a: 4f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:60:D7:A7:99:42:B9:1B:93:71:3E:D8:47:8A:76:EA:2F:E6:42:28 X509v3 Authority Key Identifier: keyid:D0:8B:5F:D1:41:F6:E4:B4:E8:21:9F:F3:E8:D9:79:CA:4B:9A:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/323430313a633032303a31343a3a2f34382d3438203d3e20313531323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:c020:14::/48 Signature Algorithm: sha256WithRSAEncryption 6b:9f:e3:ef:2c:f7:55:9b:7c:ce:c6:db:10:b4:0d:ea:a7:f1: e7:b4:47:11:75:47:dd:e0:b7:fb:fa:c3:04:38:fb:08:81:47: ba:b1:91:ae:f2:5e:9d:fa:0a:95:5b:81:f6:7e:6c:31:53:2c: e7:31:f7:70:39:47:55:13:7a:81:15:c6:d2:b0:e0:77:e7:30: 0c:03:20:3e:d5:9f:bb:2d:ef:35:ac:62:05:95:e9:38:48:ce: ea:de:91:54:e4:61:49:37:6f:02:77:57:30:88:26:0b:46:2c: 1f:04:95:c2:81:1b:c6:e1:59:e9:2f:f2:1e:2e:9b:4b:24:b7: 7b:7d:d2:f1:49:21:a7:e4:c3:34:ff:b9:4e:8d:78:5a:a1:cb: df:84:10:4c:ff:43:42:51:31:40:b2:b9:64:8f:ca:fd:6c:c6: a5:88:8f:59:3e:35:02:4f:e1:99:11:6a:33:66:58:ea:27:3b: b8:e3:eb:a9:e9:23:41:3e:e7:28:03:9e:c2:b0:4e:63:2c:33: d1:a5:2b:9d:2d:b3:61:55:f5:a2:65:83:40:8f:16:36:4a:1e: af:dd:8b:fd:2b:98:ce:a0:51:a6:63:7d:ea:bf:17:d1:9e:be: 4c:b3:b1:b8:69:84:09:53:eb:ab:75:8c:b0:eb:09:b9:1f:25: 64:44:59:ff -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgIURUoNz+zSH810ovTEHMURg0kOk9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA4QjVGRDE0MUY2RTRCNEU4MjE5RkYzRThEOTc5Q0E0 QjlBRDY4MjAeFw0yNjA0MjAwOTQwMDdaFw0yNzA0MTkwOTQ1MDdaMDMxMTAvBgNV BAMTKDNBNjBEN0E3OTk0MkI5MUI5MzcxM0VEODQ3OEE3NkVBMkZFNjQyMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmh9n4P4FBkBtjKAuWMosHLfiI WgH6udfuAgKpJvgBUhtlDXtAF9wTbe+hyfs11pREr1fMuiEqhqHr0QLoeaX3u63h TcUv3eZxPBQ5YvG9a+98KsOTNmDfyYMqc/h2EBNLzPuF8iNljTZHr1Ul62h7DIwp /DrZVML03pylBvQ/icqUQu/W51Mojz8yVhNHDceVNBCvDemZKp1hkGqRBL9dhgZS PfhZ7ZE3SwgVjgAGZfH5f3YvmzhSlkjcMkuSbWop0nz+Tt0gJ+NwlwmV/IlDA5Jh VSworygRaC6Vy6BrdidDIjDa4IyrCQFd1T0Rp6mLEKGouyha6qcXr140Kk+9AgMB AAGjggIfMIICGzAdBgNVHQ4EFgQUOmDXp5lCuRuTcT7YR4p26i/mQigwHwYDVR0j BBgwFoAU0Itf0UH25LToIZ/z6Nl5ykua1oIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 Njk5MzkzMTI3NjU4MjkxNC8wL0QwOEI1RkQxNDFGNkU0QjRFODIxOUZGM0U4RDk3 OUNBNEI5QUQ2ODIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDA4QjVGRDE0MUY2RTRCNEU4MjE5RkYzRThEOTc5Q0E0QjlBRDY4Mi5jZXIw gZUGCCsGAQUFBwELBIGIMIGFMIGCBggrBgEFBQcwC4Z2cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk2OTkzOTMxMjc2NTgyOTE0LzAvMzIzNDMwMzEz YTYzMzAzMjMwM2EzMTM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMxMzIz NzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAJAHAIAAUMA0GCSqGSIb3DQEBCwUAA4IBAQBrn+PvLPdV m3zOxtsQtA3qp/HntEcRdUfd4Lf7+sMEOPsIgUe6sZGu8l6d+gqVW4H2fmwxUyzn MfdwOUdVE3qBFcbSsOB35zAMAyA+1Z+7Le81rGIFlek4SM7q3pFU5GFJN28Cd1cw iCYLRiwfBJXCgRvG4VnpL/IeLptLJLd7fdLxSSGn5MM0/7lOjXhaocvfhBBM/0NC UTFAsrlkj8r9bMaliI9ZPjUCT+GZEWozZljqJzu44+up6SNBPucoA57CsE5jLDPR pSudLbNhVfWiZYNAjxY2Sh6v3Yv9K5jOoFGmY33qvxfRnr5Ms7G4aYQJU+urdYyw 6wm5HyVkRFn/ -----END CERTIFICATE-----Generated at Wed May 13 21:32:14 2026 by rpki-client