$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1106505783899586577/0/323430303a373365303a383030303a3a2f33332d3333203d3e20313436383136.roa File: 323430303a373365303a383030303a3a2f33332d3333203d3e20313436383136.roa (raw, json) Hash identifier: ZWxdCtb8Xvi/p2unJ2mHQCYiEmf8lT8LOVcl0OEHQYU= Subject key identifier: 21:DC:FB:29:1A:BE:60:22:DE:EA:8E:51:DF:9A:57:AC:BE:5A:64:DB Certificate issuer: /CN=7D76059DBE0A9C077BDFFB873AEF8EC8B68C23AF Certificate serial: 5F90A5407F13597B793D3816C6D7A0B847B8221D Authority key identifier: 7D:76:05:9D:BE:0A:9C:07:7B:DF:FB:87:3A:EF:8E:C8:B6:8C:23:AF Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7D76059DBE0A9C077BDFFB873AEF8EC8B68C23AF.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1106505783899586577/0/323430303a373365303a383030303a3a2f33332d3333203d3e20313436383136.roa Signing time: Fri 15 May 2026 07:18:05 +0000 ROA not before: Fri 15 May 2026 07:13:05 +0000 ROA not after: Fri 14 May 2027 07:18:05 +0000 asID: 146816 IP address blocks: 2400:73e0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1106505783899586577/0/7D76059DBE0A9C077BDFFB873AEF8EC8B68C23AF.crl rsync://rpki-rps.cnnic.cn/repo/A1106505783899586577/0/7D76059DBE0A9C077BDFFB873AEF8EC8B68C23AF.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7D76059DBE0A9C077BDFFB873AEF8EC8B68C23AF.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:90:a5:40:7f:13:59:7b:79:3d:38:16:c6:d7:a0:b8:47:b8:22:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D76059DBE0A9C077BDFFB873AEF8EC8B68C23AF Validity Not Before: May 15 07:13:05 2026 GMT Not After : May 14 07:18:05 2027 GMT Subject: CN=21DCFB291ABE6022DEEA8E51DF9A57ACBE5A64DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9b:e2:13:d8:38:5e:42:9a:4a:5d:6b:74:41: b4:8f:74:5e:92:ca:bb:3f:f6:61:0e:03:96:6b:97: 85:e8:2a:89:b5:5a:66:30:2f:bf:a5:e7:4e:bd:33: 0b:8c:8d:84:2c:3c:e3:b8:31:94:0c:d0:37:70:db: 30:6d:e9:6f:53:05:e7:1b:74:87:de:6a:92:c4:cd: 70:2d:c8:4e:c3:f8:5e:bf:22:ec:61:eb:43:27:ec: 86:2f:2b:3b:42:a0:e6:63:3f:8d:bb:77:da:c9:e7: c7:59:b8:6e:0e:e9:5e:d0:e9:d0:da:4b:5a:ac:1f: e9:7a:93:c4:3f:1c:60:d9:eb:26:c1:a0:3d:37:e8: 65:c5:2e:0d:c6:a7:35:87:2a:ae:05:7a:bc:98:84: be:8c:bb:73:e5:fb:d7:d1:bf:b8:ce:07:ed:52:ca: 2c:a8:fe:30:3a:86:fb:9a:bd:2c:f8:b0:9b:c5:4f: 8b:cd:96:c6:d8:87:9b:96:ac:26:7f:6c:29:a1:0d: a5:25:9b:3b:e3:15:05:e4:5b:4f:71:80:7e:59:ca: 89:99:16:7e:ea:e0:7e:28:1e:cd:09:79:61:0f:6d: e3:e1:25:c7:51:65:60:56:e8:e5:be:7b:5f:4c:ad: eb:fb:f8:3b:3f:79:10:b7:d5:0d:b6:13:30:f1:b5: e8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DC:FB:29:1A:BE:60:22:DE:EA:8E:51:DF:9A:57:AC:BE:5A:64:DB X509v3 Authority Key Identifier: keyid:7D:76:05:9D:BE:0A:9C:07:7B:DF:FB:87:3A:EF:8E:C8:B6:8C:23:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1106505783899586577/0/7D76059DBE0A9C077BDFFB873AEF8EC8B68C23AF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7D76059DBE0A9C077BDFFB873AEF8EC8B68C23AF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1106505783899586577/0/323430303a373365303a383030303a3a2f33332d3333203d3e20313436383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:73e0:8000::/33 Signature Algorithm: sha256WithRSAEncryption bc:c6:53:b3:e2:14:d8:7f:8b:b2:7c:de:74:39:22:7a:95:45: 47:d5:db:f7:12:a4:27:3b:11:be:64:bb:0e:02:7a:94:8a:5a: 82:21:60:6b:14:50:2c:4a:a8:89:a7:00:09:c2:76:52:e0:35: 82:35:14:07:fa:4f:1d:0e:72:d2:20:de:7f:6b:de:78:e4:71: 3d:9c:ea:f5:eb:65:05:8f:d6:13:d6:3f:ab:56:4e:c4:ce:ae: 07:89:75:ff:e4:b1:ca:5d:2d:b8:da:92:23:2b:4d:d1:8d:b0: 82:3f:34:88:64:af:d8:42:59:0f:17:0c:0b:33:e0:f2:e2:c1: 28:e2:d8:19:01:c8:df:83:88:71:a7:5b:83:1c:9c:41:57:0c: e5:87:41:57:9f:ca:32:19:92:15:24:f4:f8:c0:70:a2:23:4d: 34:ed:61:45:5d:a4:63:44:90:9e:de:43:11:57:cf:9b:0c:83: fc:bf:c9:65:ae:44:15:9f:ef:e5:08:53:64:6d:9b:34:df:83: bd:df:bf:49:4a:8b:b8:f3:06:d4:4e:88:c4:b5:a3:dc:4e:1f: 49:78:19:cb:20:a8:1a:74:3b:ce:08:81:90:0a:34:7d:9b:b8: 20:a1:0b:22:90:51:9d:b6:31:94:ba:90:c2:19:c9:31:bf:3d: 0b:6c:0a:41 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgIUX5ClQH8TWXt5PTgWxteguEe4Ih0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q3NjA1OURCRTBBOUMwNzdCREZGQjg3M0FFRjhFQzhC NjhDMjNBRjAeFw0yNjA1MTUwNzEzMDVaFw0yNzA1MTQwNzE4MDVaMDMxMTAvBgNV BAMTKDIxRENGQjI5MUFCRTYwMjJERUVBOEU1MURGOUE1N0FDQkU1QTY0REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpm+IT2DheQppKXWt0QbSPdF6S yrs/9mEOA5Zrl4XoKom1WmYwL7+l5069MwuMjYQsPOO4MZQM0Ddw2zBt6W9TBecb dIfeapLEzXAtyE7D+F6/Iuxh60Mn7IYvKztCoOZjP427d9rJ58dZuG4O6V7Q6dDa S1qsH+l6k8Q/HGDZ6ybBoD036GXFLg3GpzWHKq4FeryYhL6Mu3Pl+9fRv7jOB+1S yiyo/jA6hvuavSz4sJvFT4vNlsbYh5uWrCZ/bCmhDaUlmzvjFQXkW09xgH5ZyomZ Fn7q4H4oHs0JeWEPbePhJcdRZWBW6OW+e19Mrev7+Ds/eRC31Q22EzDxteiDAgMB AAGjggIiMIICHjAdBgNVHQ4EFgQUIdz7KRq+YCLe6o5R35pXrL5aZNswHwYDVR0j BBgwFoAUfXYFnb4KnAd73/uHOu+OyLaMI68wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NjUwNTc4Mzg5OTU4NjU3Ny8wLzdENzYwNTlEQkUwQTlDMDc3QkRGRkI4NzNBRUY4 RUM4QjY4QzIzQUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvN0Q3NjA1OURCRTBBOUMwNzdCREZGQjg3M0FFRjhFQzhCNjhDMjNBRi5jZXIw gZkGCCsGAQUFBwELBIGMMIGJMIGGBggrBgEFBQcwC4Z6cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA2NTA1NzgzODk5NTg2NTc3LzAvMzIzNDMwMzAz YTM3MzM2NTMwM2EzODMwMzAzMDNhM2EyZjMzMzMyZDMzMzMyMDNkM2UyMDMxMzQz NjM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGByQAc+CAMA0GCSqGSIb3DQEBCwUAA4IBAQC8xlOz 4hTYf4uyfN50OSJ6lUVH1dv3EqQnOxG+ZLsOAnqUilqCIWBrFFAsSqiJpwAJwnZS 4DWCNRQH+k8dDnLSIN5/a9545HE9nOr162UFj9YT1j+rVk7Ezq4HiXX/5LHKXS24 2pIjK03RjbCCPzSIZK/YQlkPFwwLM+Dy4sEo4tgZAcjfg4hxp1uDHJxBVwzlh0FX n8oyGZIVJPT4wHCiI0007WFFXaRjRJCe3kMRV8+bDIP8v8llrkQVn+/lCFNkbZs0 34O9379JSou48wbUTojEtaPcTh9JeBnLIKgadDvOCIGQCjR9m7ggoQsikFGdtjGU upDCGckxvz0LbApB -----END CERTIFICATE-----Generated at Fri May 29 23:58:10 2026 by rpki-client