$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096993931276582914/0/323430313a633032303a383a3a2f34382d3438203d3e20313531323736.roa File: 323430313a633032303a383a3a2f34382d3438203d3e20313531323736.roa (raw, json) Hash identifier: eVZvU/XBvUrHPOqvp05KEbICvOmQPEZy0GrpXcWtlJ0= Subject key identifier: E1:3B:A0:A8:FD:FE:35:1C:59:7C:31:76:74:18:E4:90:82:47:21:D9 Certificate issuer: /CN=D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682 Certificate serial: 03F674EBB2855FB25138C50C208E889102ED3C36 Authority key identifier: D0:8B:5F:D1:41:F6:E4:B4:E8:21:9F:F3:E8:D9:79:CA:4B:9A:D6:82 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/323430313a633032303a383a3a2f34382d3438203d3e20313531323736.roa Signing time: Mon 20 Apr 2026 09:44:36 +0000 ROA not before: Mon 20 Apr 2026 09:39:36 +0000 ROA not after: Mon 19 Apr 2027 09:44:36 +0000 asID: 151276 IP address blocks: 2401:c020:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.crl rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f6:74:eb:b2:85:5f:b2:51:38:c5:0c:20:8e:88:91:02:ed:3c:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682 Validity Not Before: Apr 20 09:39:36 2026 GMT Not After : Apr 19 09:44:36 2027 GMT Subject: CN=E13BA0A8FDFE351C597C31767418E490824721D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:29:bc:e3:1d:5f:bd:80:08:e9:4d:ac:ef:90: 93:5d:10:7d:df:11:14:c6:87:b4:5c:9a:04:e9:c8: 1e:28:24:dc:f9:d8:cf:7c:2f:98:70:11:08:b0:d9: 5f:04:81:88:e2:6a:b7:2c:fd:35:b8:47:c1:06:4b: 3a:96:5a:9a:15:cf:50:e0:f5:33:df:8f:a6:22:11: 0a:e8:de:41:75:34:8a:e5:18:7f:82:07:e0:78:2f: df:ee:56:d3:ef:d7:70:41:1d:c9:71:d6:a7:da:c3: 81:e3:3c:aa:16:27:32:6a:ba:cd:6c:e7:f4:4d:0a: 86:9d:b9:1d:3b:78:79:39:66:4c:6d:90:28:12:33: eb:ba:72:5f:38:22:14:f6:4e:43:cf:de:53:22:11: 8a:50:75:b7:7a:c5:d0:0c:9a:67:0f:f6:a5:3f:0c: 1e:9b:3d:ec:57:e4:10:65:0b:94:d1:b4:74:93:44: 2e:25:f0:2e:ee:00:16:ae:b4:bc:17:ea:2f:b7:0c: ad:99:bc:ac:1b:da:e9:ee:d3:47:0d:68:f2:ce:16: 4a:e2:5e:f0:67:78:72:4e:52:32:c5:71:18:d5:e4: 2d:e4:b0:c0:be:50:3c:e2:ea:db:76:f1:71:47:6f: fc:77:3d:4a:94:68:5d:1d:5f:cd:1d:84:de:1c:f9: e5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:3B:A0:A8:FD:FE:35:1C:59:7C:31:76:74:18:E4:90:82:47:21:D9 X509v3 Authority Key Identifier: keyid:D0:8B:5F:D1:41:F6:E4:B4:E8:21:9F:F3:E8:D9:79:CA:4B:9A:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D08B5FD141F6E4B4E8219FF3E8D979CA4B9AD682.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096993931276582914/0/323430313a633032303a383a3a2f34382d3438203d3e20313531323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:c020:8::/48 Signature Algorithm: sha256WithRSAEncryption 31:25:d7:8d:4e:6d:99:16:fa:ad:32:d3:ba:b6:b5:89:67:c3: 98:f5:ca:d5:49:c6:ce:55:c8:99:60:25:72:82:5d:92:97:8b: af:9d:78:9a:37:32:8a:91:9f:3b:49:76:ef:f7:fd:42:1e:aa: 16:9c:84:ff:90:7a:3a:60:2d:05:21:bb:a3:c7:71:88:6e:6b: 7e:eb:18:df:24:e2:94:03:f6:7e:5b:ca:91:e9:1a:18:5c:9c: e9:79:a2:fc:e1:85:25:42:9c:81:45:75:d8:5d:3c:d0:64:73: f6:8a:83:80:a4:ab:87:4c:ec:fa:63:e4:b3:ee:62:24:21:88: 14:7e:6b:dc:35:73:31:cc:93:ba:1c:1e:f3:eb:20:96:f4:0a: fc:d9:f6:ea:41:01:a7:ab:28:a2:41:04:d4:3f:9f:e0:1b:3f: bc:8c:d1:a1:c8:3f:1a:79:5d:9a:06:f2:a2:81:42:53:c4:fd: 2a:1c:c9:5a:8d:6b:03:29:29:0c:e2:72:52:a7:b2:fa:4c:55: 7e:09:18:68:17:98:0c:dd:9c:29:f7:db:ad:09:e7:60:c0:c9: d8:ee:b7:71:ff:f2:04:7d:a1:65:1d:13:d3:f0:c2:91:02:d5: ae:69:db:e6:80:50:81:f2:e0:f1:d9:6e:75:dd:10:bd:4a:a1: eb:33:43:96 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgIUA/Z067KFX7JROMUMII6IkQLtPDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDA4QjVGRDE0MUY2RTRCNEU4MjE5RkYzRThEOTc5Q0E0 QjlBRDY4MjAeFw0yNjA0MjAwOTM5MzZaFw0yNzA0MTkwOTQ0MzZaMDMxMTAvBgNV BAMTKEUxM0JBMEE4RkRGRTM1MUM1OTdDMzE3Njc0MThFNDkwODI0NzIxRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtKbzjHV+9gAjpTazvkJNdEH3f ERTGh7RcmgTpyB4oJNz52M98L5hwEQiw2V8EgYjiarcs/TW4R8EGSzqWWpoVz1Dg 9TPfj6YiEQro3kF1NIrlGH+CB+B4L9/uVtPv13BBHclx1qfaw4HjPKoWJzJqus1s 5/RNCoaduR07eHk5ZkxtkCgSM+u6cl84IhT2TkPP3lMiEYpQdbd6xdAMmmcP9qU/ DB6bPexX5BBlC5TRtHSTRC4l8C7uABautLwX6i+3DK2ZvKwb2unu00cNaPLOFkri XvBneHJOUjLFcRjV5C3ksMC+UDzi6tt28XFHb/x3PUqUaF0dX80dhN4c+eXFAgMB AAGjggIdMIICGTAdBgNVHQ4EFgQU4TugqP3+NRxZfDF2dBjkkIJHIdkwHwYDVR0j BBgwFoAU0Itf0UH25LToIZ/z6Nl5ykua1oIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 Njk5MzkzMTI3NjU4MjkxNC8wL0QwOEI1RkQxNDFGNkU0QjRFODIxOUZGM0U4RDk3 OUNBNEI5QUQ2ODIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDA4QjVGRDE0MUY2RTRCNEU4MjE5RkYzRThEOTc5Q0E0QjlBRDY4Mi5jZXIw gZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMDk2OTkzOTMxMjc2NTgyOTE0LzAvMzIzNDMwMzEz YTYzMzAzMjMwM2EzODNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTMyMzcz Ni5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACQBwCAACDANBgkqhkiG9w0BAQsFAAOCAQEAMSXXjU5tmRb6 rTLTura1iWfDmPXK1UnGzlXImWAlcoJdkpeLr514mjcyipGfO0l27/f9Qh6qFpyE /5B6OmAtBSG7o8dxiG5rfusY3yTilAP2flvKkekaGFyc6Xmi/OGFJUKcgUV12F08 0GRz9oqDgKSrh0zs+mPks+5iJCGIFH5r3DVzMcyTuhwe8+sglvQK/Nn26kEBp6so okEE1D+f4Bs/vIzRocg/GnldmgbyooFCU8T9KhzJWo1rAykpDOJyUqey+kxVfgkY aBeYDN2cKffbrQnnYMDJ2O63cf/yBH2hZR0T0/DCkQLVrmnb5oBQgfLg8dludd0Q vUqh6zNDlg== -----END CERTIFICATE-----Generated at Wed May 13 21:32:15 2026 by rpki-client