$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107106254473396241/0/323430313a313332303a3a2f33322d3332203d3e2039383038.roa File: 323430313a313332303a3a2f33322d3332203d3e2039383038.roa (raw, json) Hash identifier: gkXLtfsm57+1SLQOnZmPCOz2Uc/ydhDt+i+LwC+ujFg= Subject key identifier: B2:D2:85:4C:1D:30:C3:93:D0:26:02:B4:78:34:95:0B:C3:7F:76:AF Certificate issuer: /CN=D30F9089F9EA5836000B8AE4BE085A88276E9D0E Certificate serial: 25B304659549CAAA7F65AA274BE1E75EC52FADB3 Authority key identifier: D3:0F:90:89:F9:EA:58:36:00:0B:8A:E4:BE:08:5A:88:27:6E:9D:0E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D30F9089F9EA5836000B8AE4BE085A88276E9D0E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107106254473396241/0/323430313a313332303a3a2f33322d3332203d3e2039383038.roa Signing time: Thu 14 May 2026 01:11:18 +0000 ROA not before: Thu 14 May 2026 01:06:18 +0000 ROA not after: Thu 13 May 2027 01:11:18 +0000 asID: 9808 IP address blocks: 2401:1320::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107106254473396241/0/D30F9089F9EA5836000B8AE4BE085A88276E9D0E.crl rsync://rpki-rps.cnnic.cn/repo/A1107106254473396241/0/D30F9089F9EA5836000B8AE4BE085A88276E9D0E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D30F9089F9EA5836000B8AE4BE085A88276E9D0E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:b3:04:65:95:49:ca:aa:7f:65:aa:27:4b:e1:e7:5e:c5:2f:ad:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D30F9089F9EA5836000B8AE4BE085A88276E9D0E Validity Not Before: May 14 01:06:18 2026 GMT Not After : May 13 01:11:18 2027 GMT Subject: CN=B2D2854C1D30C393D02602B47834950BC37F76AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3f:94:b6:f7:8f:8d:ef:89:3e:ae:c4:01:79: df:a5:4c:76:35:4a:75:58:17:b0:46:70:5f:b5:2f: 97:40:21:e9:fc:17:cc:9c:1e:f4:25:b8:6f:4f:69: eb:44:b0:6b:a7:1e:90:a4:dc:9d:4f:aa:4e:8d:dc: c7:b9:fc:03:37:ae:cf:64:7e:6a:52:ce:92:92:aa: 1e:bb:6c:ef:98:d2:a7:3d:b3:31:10:e5:ee:44:13: 7d:95:b9:b7:7f:56:39:8e:7d:04:3c:91:6f:24:62: 6b:1f:5a:21:17:ff:5a:5f:1f:62:ee:ec:79:62:45: e5:c4:5c:13:b9:bd:27:be:4d:eb:3d:fb:ce:27:ad: 21:f9:da:1b:b2:55:6a:50:c6:31:ae:8f:cf:46:b0: 4a:81:66:37:ab:e1:9a:fc:12:d2:ad:65:4b:91:2d: 6f:2a:fc:66:d0:eb:7e:0d:74:1b:20:46:1f:74:ca: fa:d4:8a:38:2a:9e:8d:00:d0:30:54:2b:1f:e3:bf: 40:d0:59:57:e1:09:03:8f:66:77:ce:a1:4f:d1:78: 70:50:04:4b:8a:ff:44:0f:4c:b9:d7:cf:5e:ef:87: 8c:fd:a0:ff:22:ac:30:fd:78:ef:a6:2a:4d:cd:6f: b2:bd:5c:01:3d:a6:2d:72:a8:8f:41:87:2f:47:7a: b0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D2:85:4C:1D:30:C3:93:D0:26:02:B4:78:34:95:0B:C3:7F:76:AF X509v3 Authority Key Identifier: keyid:D3:0F:90:89:F9:EA:58:36:00:0B:8A:E4:BE:08:5A:88:27:6E:9D:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107106254473396241/0/D30F9089F9EA5836000B8AE4BE085A88276E9D0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D30F9089F9EA5836000B8AE4BE085A88276E9D0E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107106254473396241/0/323430313a313332303a3a2f33322d3332203d3e2039383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1320::/32 Signature Algorithm: sha256WithRSAEncryption 7d:1c:b1:7b:50:fe:92:b5:f4:18:87:12:e3:6e:5b:dc:68:ac: cb:d2:fc:d7:d8:3a:e0:24:35:87:99:4c:85:c7:79:5f:94:d9: ea:3c:d6:bd:2d:81:92:8a:4c:a8:12:75:5c:67:9b:59:2c:30: de:24:e6:e7:15:81:aa:3c:a2:dd:07:87:dc:79:b6:59:b4:31: c3:47:81:6a:b8:3c:87:95:e5:fc:ef:4d:1f:1a:e2:cc:32:b1: e7:34:b8:1c:5a:79:6b:79:db:10:e7:e7:4c:61:42:d4:16:2a: da:1e:46:c3:89:80:8b:6d:90:09:1e:0b:90:3d:fe:16:21:d8: a1:c7:ff:f9:01:b1:6c:7f:69:10:75:93:02:ff:c6:7d:d2:70: e9:ed:bf:ad:68:cf:fa:28:e2:5d:b1:6d:d9:39:a0:03:4e:e3: 5e:28:f3:db:e9:02:71:8b:b1:ed:bf:0e:14:2d:10:86:3b:4c: 06:33:ff:60:59:01:e6:ba:42:8d:db:e1:ac:88:40:42:65:af: ba:15:81:d9:7b:57:66:09:62:41:6d:7e:85:b8:b3:2a:04:4a: 3f:20:70:ef:24:80:e1:66:2b:84:09:53:2e:9b:d5:d8:47:9e: 70:a3:b7:6d:76:0a:16:b0:ae:70:17:e9:09:f9:34:11:23:85: 54:f2:cb:b3 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUJbMEZZVJyqp/ZaonS+HnXsUvrbMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDMwRjkwODlGOUVBNTgzNjAwMEI4QUU0QkUwODVBODgy NzZFOUQwRTAeFw0yNjA1MTQwMTA2MThaFw0yNzA1MTMwMTExMThaMDMxMTAvBgNV BAMTKEIyRDI4NTRDMUQzMEMzOTNEMDI2MDJCNDc4MzQ5NTBCQzM3Rjc2QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9P5S294+N74k+rsQBed+lTHY1 SnVYF7BGcF+1L5dAIen8F8ycHvQluG9PaetEsGunHpCk3J1Pqk6N3Me5/AM3rs9k fmpSzpKSqh67bO+Y0qc9szEQ5e5EE32Vubd/VjmOfQQ8kW8kYmsfWiEX/1pfH2Lu 7HliReXEXBO5vSe+Tes9+84nrSH52huyVWpQxjGuj89GsEqBZjer4Zr8EtKtZUuR LW8q/GbQ634NdBsgRh90yvrUijgqno0A0DBUKx/jv0DQWVfhCQOPZnfOoU/ReHBQ BEuK/0QPTLnXz17vh4z9oP8irDD9eO+mKk3Nb7K9XAE9pi1yqI9Bhy9HerAJAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUstKFTB0ww5PQJgK0eDSVC8N/dq8wHwYDVR0j BBgwFoAU0w+QifnqWDYAC4rkvghaiCdunQ4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzEwNjI1NDQ3MzM5NjI0MS8wL0QzMEY5MDg5RjlFQTU4MzYwMDBCOEFFNEJFMDg1 QTg4Mjc2RTlEMEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDMwRjkwODlGOUVBNTgzNjAwMEI4QUU0QkUwODVBODgyNzZFOUQwRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA3MTA2MjU0NDczMzk2MjQxLzAvMzIzNDMwMzEzYTMx MzMzMjMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzkzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkARMgMA0GCSqGSIb3DQEBCwUAA4IBAQB9HLF7UP6StfQYhxLjblvcaKzL0vzX 2DrgJDWHmUyFx3lflNnqPNa9LYGSikyoEnVcZ5tZLDDeJObnFYGqPKLdB4fcebZZ tDHDR4FquDyHleX8700fGuLMMrHnNLgcWnlredsQ5+dMYULUFiraHkbDiYCLbZAJ HguQPf4WIdihx//5AbFsf2kQdZMC/8Z90nDp7b+taM/6KOJdsW3ZOaADTuNeKPPb 6QJxi7Htvw4ULRCGO0wGM/9gWQHmukKN2+GsiEBCZa+6FYHZe1dmCWJBbX6FuLMq BEo/IHDvJIDhZiuECVMum9XYR55wo7dtdgoWsK5wF+kJ+TQRI4VU8suz -----END CERTIFICATE-----Generated at Fri May 29 23:54:26 2026 by rpki-client