$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097047430748176387/0/323430333a343238303a3a2f34382d3438203d3e203539303435.roa File: 323430333a343238303a3a2f34382d3438203d3e203539303435.roa (raw, json) Hash identifier: A9wLbcJvXASqzaeNLxcQMZsYx9mTSfRFmMcvE8+RJRg= Subject key identifier: 4D:CA:55:34:02:C1:37:C4:2F:8A:29:04:5F:7C:81:C3:5E:6B:1E:25 Certificate issuer: /CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Certificate serial: 30930C4D70532F195304654227508DAB5F51CB21 Authority key identifier: B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/323430333a343238303a3a2f34382d3438203d3e203539303435.roa Signing time: Wed 20 May 2026 02:54:59 +0000 ROA not before: Wed 20 May 2026 02:49:59 +0000 ROA not after: Wed 19 May 2027 02:54:59 +0000 asID: 59045 IP address blocks: 2403:4280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 20:18:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:93:0c:4d:70:53:2f:19:53:04:65:42:27:50:8d:ab:5f:51:cb:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B688E80F89CAEC6A8C84A7E51838424287ABCA89 Validity Not Before: May 20 02:49:59 2026 GMT Not After : May 19 02:54:59 2027 GMT Subject: CN=4DCA553402C137C42F8A29045F7C81C35E6B1E25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c5:fe:93:40:e1:49:62:47:ec:95:46:5f:da: 34:95:b1:50:91:b3:66:69:1a:b7:96:fd:b3:d0:c4: 00:02:fa:09:b9:4a:03:5d:9b:7b:51:71:94:14:79: c5:5b:c4:60:d8:fc:3c:44:90:ef:9a:f3:72:8a:0d: 27:22:c2:b2:b4:1d:46:80:cd:f2:e8:e8:a4:90:8a: e5:56:d6:65:8e:bb:d4:4a:6a:ab:0c:81:59:9d:e8: 46:1b:94:9b:14:9f:b3:fc:9c:dd:17:85:71:9d:b7: c1:17:98:d2:fb:3a:3b:2c:ac:94:e7:70:8f:5a:b8: 3c:5c:20:f0:fe:0b:a3:31:0f:2c:21:b5:33:2e:2e: 9e:43:1f:fa:48:19:2a:33:21:1d:7a:f9:5c:9a:28: 48:28:da:6e:1d:ff:71:8e:9b:52:31:0f:75:a7:5f: ba:b2:dd:81:8a:61:9a:84:8a:af:de:46:77:a4:9c: 68:75:25:1c:70:1e:43:a3:fa:26:e5:bb:26:47:0b: 14:17:33:32:58:3f:8e:b8:c2:89:3c:d3:01:e7:49: 1e:95:52:b2:2e:9e:6e:31:cc:26:5b:66:c7:37:7f: df:f5:c8:43:1b:5f:ae:be:fc:0a:97:af:97:00:8b: f3:c4:17:4c:fd:5e:f0:52:69:7c:08:58:dc:83:34: 06:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:CA:55:34:02:C1:37:C4:2F:8A:29:04:5F:7C:81:C3:5E:6B:1E:25 X509v3 Authority Key Identifier: keyid:B6:88:E8:0F:89:CA:EC:6A:8C:84:A7:E5:18:38:42:42:87:AB:CA:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/B688E80F89CAEC6A8C84A7E51838424287ABCA89.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B688E80F89CAEC6A8C84A7E51838424287ABCA89.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097047430748176387/0/323430333a343238303a3a2f34382d3438203d3e203539303435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:4280::/48 Signature Algorithm: sha256WithRSAEncryption a7:36:06:60:09:fb:58:22:32:b6:1c:c5:3e:2a:0b:4d:a8:67: ba:93:25:bf:b4:3e:cc:08:17:88:3f:f4:3f:aa:d9:44:43:e6: a7:ea:72:5b:8e:08:30:4e:3f:e3:cf:e4:da:68:20:d1:33:88: 84:6f:fc:13:92:1c:87:fa:1a:c6:72:ac:f6:cd:60:f1:70:d4: 0a:e2:a9:5b:bd:db:67:71:28:8a:79:e7:c9:45:25:0f:51:f3: d2:d3:1a:da:61:94:ee:c7:0a:8d:81:71:a2:2c:60:6c:ea:a2: cb:73:67:51:05:0f:85:39:90:21:2b:d0:c5:4b:da:4a:e9:a1: 15:80:3b:a3:fa:fe:e3:97:16:cf:a4:f6:c6:c8:00:ba:dc:d9: 8b:7f:75:1d:fd:7f:d7:f6:8d:f1:79:9f:6c:2c:04:53:29:9a: bc:cd:3f:9b:f1:77:87:a9:fa:5d:ec:41:0d:e2:de:66:9c:54: 32:b8:a0:a2:46:d7:36:e4:9e:86:da:a4:ee:0d:5b:6e:08:6a: ef:99:2c:97:c0:d2:eb:2d:42:27:b7:8f:8b:39:cb:ce:b4:3b: 58:b5:31:c7:97:d6:9e:f9:7f:6b:c7:7b:9b:b2:72:87:47:cb: 5c:3d:14:40:71:46:af:e6:68:ef:48:e0:14:ee:e2:a4:27:53: bb:4e:4a:6e -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUMJMMTXBTLxlTBGVCJ1CNq19RyyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4 N0FCQ0E4OTAeFw0yNjA1MjAwMjQ5NTlaFw0yNzA1MTkwMjU0NTlaMDMxMTAvBgNV BAMTKDREQ0E1NTM0MDJDMTM3QzQyRjhBMjkwNDVGN0M4MUMzNUU2QjFFMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7xf6TQOFJYkfslUZf2jSVsVCR s2ZpGreW/bPQxAAC+gm5SgNdm3tRcZQUecVbxGDY/DxEkO+a83KKDSciwrK0HUaA zfLo6KSQiuVW1mWOu9RKaqsMgVmd6EYblJsUn7P8nN0XhXGdt8EXmNL7OjssrJTn cI9auDxcIPD+C6MxDywhtTMuLp5DH/pIGSozIR16+VyaKEgo2m4d/3GOm1IxD3Wn X7qy3YGKYZqEiq/eRneknGh1JRxwHkOj+ibluyZHCxQXMzJYP464wok80wHnSR6V UrIunm4xzCZbZsc3f9/1yEMbX66+/AqXr5cAi/PEF0z9XvBSaXwIWNyDNAZtAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUTcpVNALBN8QviikEX3yBw15rHiUwHwYDVR0j BBgwFoAUtojoD4nK7GqMhKflGDhCQoeryokwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzA0NzQzMDc0ODE3NjM4Ny8wL0I2ODhFODBGODlDQUVDNkE4Qzg0QTdFNTE4Mzg0 MjQyODdBQkNBODkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjY4OEU4MEY4OUNBRUM2QThDODRBN0U1MTgzODQyNDI4N0FCQ0E4OS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MDQ3NDMwNzQ4MTc2Mzg3LzAvMzIzNDMwMzMzYTM0 MzIzODMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMwMzQzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACQDQoAAADANBgkqhkiG9w0BAQsFAAOCAQEApzYGYAn7WCIythzFPioLTahn upMlv7Q+zAgXiD/0P6rZREPmp+pyW44IME4/48/k2mgg0TOIhG/8E5Ich/oaxnKs 9s1g8XDUCuKpW73bZ3EoinnnyUUlD1Hz0tMa2mGU7scKjYFxoixgbOqiy3NnUQUP hTmQISvQxUvaSumhFYA7o/r+45cWz6T2xsgAutzZi391Hf1/1/aN8XmfbCwEUyma vM0/m/F3h6n6XexBDeLeZpxUMrigokbXNuSehtqk7g1bbghq75ksl8DS6y1CJ7eP iznLzrQ7WLUxx5fWnvl/a8d7m7Jyh0fLXD0UQHFGr+Zo70jgFO7ipCdTu05Kbg== -----END CERTIFICATE-----Generated at Fri Jun 12 04:48:58 2026 by rpki-client