$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1102157690253082631/0/323430313a313030303a3a2f33322d3332203d3e2037363430.roa File: 323430313a313030303a3a2f33322d3332203d3e2037363430.roa (raw, json) Hash identifier: zAaAPOY8JgjZ5yQFoHRvVaNJ/n7fbcAqptOZFbs0UYU= Subject key identifier: 38:C5:48:9C:16:D5:EB:2E:C5:76:7D:59:A1:22:BA:D1:81:C6:F3:80 Certificate issuer: /CN=A4CF7F709E062849E6BF84E14474A0320EAB780E Certificate serial: 5486F7A1A1E5C046E3962073440675240FD37C6A Authority key identifier: A4:CF:7F:70:9E:06:28:49:E6:BF:84:E1:44:74:A0:32:0E:AB:78:0E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A4CF7F709E062849E6BF84E14474A0320EAB780E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1102157690253082631/0/323430313a313030303a3a2f33322d3332203d3e2037363430.roa Signing time: Mon 25 May 2026 03:12:20 +0000 ROA not before: Mon 25 May 2026 03:07:20 +0000 ROA not after: Mon 24 May 2027 03:12:20 +0000 asID: 7640 IP address blocks: 2401:1000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1102157690253082631/0/A4CF7F709E062849E6BF84E14474A0320EAB780E.crl rsync://rpki-rps.cnnic.cn/repo/A1102157690253082631/0/A4CF7F709E062849E6BF84E14474A0320EAB780E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A4CF7F709E062849E6BF84E14474A0320EAB780E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:86:f7:a1:a1:e5:c0:46:e3:96:20:73:44:06:75:24:0f:d3:7c:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4CF7F709E062849E6BF84E14474A0320EAB780E Validity Not Before: May 25 03:07:20 2026 GMT Not After : May 24 03:12:20 2027 GMT Subject: CN=38C5489C16D5EB2EC5767D59A122BAD181C6F380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b1:e1:c7:25:2a:23:6a:ab:d5:d1:9f:f9:34: a3:4e:c6:5f:e6:38:f7:55:48:ad:5a:34:d3:69:fb: 8c:ba:c9:2b:93:a4:ac:c2:f4:c3:f5:70:8d:a3:bb: b1:ba:cb:93:d6:0f:98:55:d0:5b:4b:37:21:d3:2d: e6:00:8c:cc:12:35:cf:12:b6:f7:52:14:31:9b:57: 1b:70:b2:eb:b5:75:5a:c5:65:4d:fd:cd:92:58:f4: 66:c1:89:b1:d5:ed:d9:1f:c7:e7:be:54:3c:2d:0a: a8:cd:b4:c4:df:9f:4e:fd:11:99:8f:a4:c1:3b:70: f1:65:ff:0a:e4:db:75:3b:f9:7f:e0:71:a0:5c:30: 26:0b:9d:71:c5:06:80:9c:df:30:6c:18:37:8b:b8: 2e:50:5d:21:67:85:d2:76:cb:3c:0a:2e:bc:8d:4d: eb:da:40:70:04:df:de:33:cf:6b:c1:e0:0a:79:3f: 49:7d:ed:e9:98:24:1a:4f:19:85:2a:76:30:b5:e9: 83:e4:01:ed:0d:1c:5f:86:9f:80:57:39:64:ea:63: 22:c4:1f:9c:43:00:92:4a:75:31:10:fe:09:48:f7: ee:a1:44:bf:1c:82:01:8e:5a:3c:3c:89:01:a7:d6: 14:2e:7c:9f:46:b4:e2:ca:3b:ca:ca:eb:70:65:27: 2f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C5:48:9C:16:D5:EB:2E:C5:76:7D:59:A1:22:BA:D1:81:C6:F3:80 X509v3 Authority Key Identifier: keyid:A4:CF:7F:70:9E:06:28:49:E6:BF:84:E1:44:74:A0:32:0E:AB:78:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1102157690253082631/0/A4CF7F709E062849E6BF84E14474A0320EAB780E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A4CF7F709E062849E6BF84E14474A0320EAB780E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1102157690253082631/0/323430313a313030303a3a2f33322d3332203d3e2037363430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1000::/32 Signature Algorithm: sha256WithRSAEncryption 10:d7:6b:20:82:0e:d9:b0:05:d1:73:b6:70:c7:86:e6:2b:6f: 8a:3f:0e:6f:4e:fa:d7:92:3e:cf:4b:ad:0d:75:3c:b6:72:f2: 30:4a:77:a1:bc:41:1e:6e:67:ea:a0:4a:a2:39:57:ed:66:72: a4:a6:52:61:b4:96:b3:b8:a1:3f:ed:8a:ca:07:7d:3c:d7:e5: 77:67:b7:76:19:57:b5:23:56:35:52:d8:82:93:f2:e9:77:eb: 4d:c4:c5:4d:7d:36:03:a4:80:c7:c5:c2:b8:5c:aa:28:ac:fc: 16:53:fa:68:ea:47:23:ca:23:fb:7c:6f:b8:cd:f8:9a:5b:e5: b4:c7:c0:86:09:90:72:2d:e7:79:2f:12:8f:00:69:26:3c:1e: 10:58:37:57:b2:4d:af:5c:20:ce:83:f1:cc:09:56:92:71:b1: 63:aa:5e:a3:3d:19:dd:3e:b0:c4:b3:d3:f2:1b:4d:dc:6c:59: b2:44:d1:98:3f:24:0c:c5:89:97:3e:79:89:17:33:57:fd:b7: 65:03:63:de:91:78:9b:0f:69:dc:25:0e:15:a0:bf:a2:00:bd: e1:16:1a:47:15:0f:1d:f9:a4:de:ca:c2:06:fd:9e:29:9d:c4: ed:48:ef:9c:77:97:fa:14:6d:86:08:41:13:67:fb:b3:31:2f: 80:74:5e:ee -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUVIb3oaHlwEbjliBzRAZ1JA/TfGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTRDRjdGNzA5RTA2Mjg0OUU2QkY4NEUxNDQ3NEEwMzIw RUFCNzgwRTAeFw0yNjA1MjUwMzA3MjBaFw0yNzA1MjQwMzEyMjBaMDMxMTAvBgNV BAMTKDM4QzU0ODlDMTZENUVCMkVDNTc2N0Q1OUExMjJCQUQxODFDNkYzODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwseHHJSojaqvV0Z/5NKNOxl/m OPdVSK1aNNNp+4y6ySuTpKzC9MP1cI2ju7G6y5PWD5hV0FtLNyHTLeYAjMwSNc8S tvdSFDGbVxtwsuu1dVrFZU39zZJY9GbBibHV7dkfx+e+VDwtCqjNtMTfn079EZmP pME7cPFl/wrk23U7+X/gcaBcMCYLnXHFBoCc3zBsGDeLuC5QXSFnhdJ2yzwKLryN TevaQHAE394zz2vB4Ap5P0l97emYJBpPGYUqdjC16YPkAe0NHF+Gn4BXOWTqYyLE H5xDAJJKdTEQ/glI9+6hRL8cggGOWjw8iQGn1hQufJ9GtOLKO8rK63BlJy9zAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUOMVInBbV6y7Fdn1ZoSK60YHG84AwHwYDVR0j BBgwFoAUpM9/cJ4GKEnmv4ThRHSgMg6reA4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw MjE1NzY5MDI1MzA4MjYzMS8wL0E0Q0Y3RjcwOUUwNjI4NDlFNkJGODRFMTQ0NzRB MDMyMEVBQjc4MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTRDRjdGNzA5RTA2Mjg0OUU2QkY4NEUxNDQ3NEEwMzIwRUFCNzgwRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTAyMTU3NjkwMjUzMDgyNjMxLzAvMzIzNDMwMzEzYTMx MzAzMDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzczNjM0MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkARAAMA0GCSqGSIb3DQEBCwUAA4IBAQAQ12sggg7ZsAXRc7Zwx4bmK2+KPw5v TvrXkj7PS60NdTy2cvIwSnehvEEebmfqoEqiOVftZnKkplJhtJazuKE/7YrKB308 1+V3Z7d2GVe1I1Y1UtiCk/Lpd+tNxMVNfTYDpIDHxcK4XKoorPwWU/po6kcjyiP7 fG+4zfiaW+W0x8CGCZByLed5LxKPAGkmPB4QWDdXsk2vXCDOg/HMCVaScbFjql6j PRndPrDEs9PyG03cbFmyRNGYPyQMxYmXPnmJFzNX/bdlA2PekXibD2ncJQ4VoL+i AL3hFhpHFQ8d+aTeysIG/Z4pncTtSO+cd5f6FG2GCEETZ/uzMS+AdF7u -----END CERTIFICATE-----Generated at Fri May 29 22:58:25 2026 by rpki-client