$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313031303a3a2f34342d3434203d3e2034383038.roa File: 323430303a383963303a313031303a3a2f34342d3434203d3e2034383038.roa (raw, json) Hash identifier: kp800BbbMOGmz9coK+t0Pm4/CPTPeGr9wVR/tMZ3VYg= Subject key identifier: F3:00:90:88:0B:27:47:37:F6:55:B2:05:56:61:2A:FD:6D:F0:61:B1 Certificate issuer: /CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Certificate serial: 624ADC56F0495C1E29D4134D8D5308ED8A58E7EA Authority key identifier: 3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313031303a3a2f34342d3434203d3e2034383038.roa Signing time: Fri 05 Jun 2026 07:19:20 +0000 ROA not before: Fri 05 Jun 2026 07:14:20 +0000 ROA not after: Fri 04 Jun 2027 07:19:20 +0000 asID: 4808 IP address blocks: 2400:89c0:1010::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:4a:dc:56:f0:49:5c:1e:29:d4:13:4d:8d:53:08:ed:8a:58:e7:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Validity Not Before: Jun 5 07:14:20 2026 GMT Not After : Jun 4 07:19:20 2027 GMT Subject: CN=F30090880B274737F655B20556612AFD6DF061B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:0a:8d:9e:5a:85:20:be:b4:7f:cf:61:7d:ce: 85:f2:94:fd:f1:54:6d:49:71:47:e7:99:0e:da:bd: fc:12:9e:bd:c6:2e:a6:02:99:72:4c:64:a8:87:6c: 9c:a1:70:54:b1:69:3f:cd:f1:7e:ef:74:d7:fa:b0: 3d:01:c2:14:6c:71:91:98:5e:8f:80:e5:18:10:f0: 63:dc:db:38:b6:6e:34:c2:40:da:5b:66:42:df:3f: ff:47:48:88:39:a2:bc:0f:bf:ad:d9:9b:69:85:9c: 84:24:c9:2d:f0:c7:8a:9a:3b:16:0c:f4:27:39:c7: 00:3b:59:dc:ca:0e:55:f7:f4:3a:8a:c5:2c:53:52: 60:da:cd:a6:e9:87:ae:8e:48:07:40:c4:55:50:a7: d0:cc:0d:25:9f:c1:4b:fe:c5:c3:98:f0:eb:b8:9b: 11:19:60:b8:cf:28:bd:89:91:e1:40:11:d6:bc:66: 3b:db:32:ae:1e:5c:0f:c8:62:c6:6a:99:27:88:77: c1:cd:e9:a2:17:7b:de:75:72:52:60:8f:ba:b2:f7: 5d:0e:0c:cd:16:0b:82:a3:cc:9c:71:62:bc:67:9d: 73:53:84:50:8a:ec:16:33:c5:7c:a6:cf:ea:0c:a5: 92:0c:d1:2f:53:9e:78:d7:fe:13:0a:e8:e2:88:75: e3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:00:90:88:0B:27:47:37:F6:55:B2:05:56:61:2A:FD:6D:F0:61:B1 X509v3 Authority Key Identifier: keyid:3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313031303a3a2f34342d3434203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:89c0:1010::/44 Signature Algorithm: sha256WithRSAEncryption 34:2c:a0:56:9b:e9:9a:d2:09:b4:a8:e5:fd:51:6b:03:eb:d3: 98:08:17:15:1f:0a:a5:d1:27:31:d4:b5:f4:d6:7f:91:50:15: bf:c5:db:a9:31:0c:a0:0d:37:6a:49:80:93:76:19:04:44:59: 55:ea:86:db:67:a7:9d:51:ae:5b:5a:56:50:78:80:9d:94:de: c3:72:fd:16:7d:b7:7e:c3:46:cd:11:20:14:fb:9a:34:ec:02: d9:d7:da:2b:0e:82:1d:cc:6d:05:10:7d:95:78:e3:0e:01:a0: 8b:22:59:b3:cb:45:30:7a:57:4d:1c:e5:ff:8d:16:ae:15:1e: 18:67:60:61:68:b1:04:25:0e:01:70:cc:37:07:72:2b:6e:37: 37:c6:f1:34:14:99:3b:79:bf:49:97:c1:8a:d2:e9:3e:5c:7b: c2:af:9d:5a:5c:e1:37:88:6a:53:3b:3e:45:9c:39:dc:40:48: 7a:73:bf:d2:dd:09:56:cf:f8:de:fc:a4:85:09:14:42:da:05: 9c:2e:f6:4b:90:69:a8:ff:27:31:5d:43:93:5f:bc:bb:55:9a: 3c:54:45:ed:5d:11:53:bf:11:70:30:60:fb:a9:ad:83:19:4c: b5:5d:0b:2c:4c:a7:15:b0:83:79:b4:4c:cb:91:b9:ce:4d:20: 52:bd:97:b6 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgIUYkrcVvBJXB4p1BNNjVMI7YpY5+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVC RkExOThENTAeFw0yNjA2MDUwNzE0MjBaFw0yNzA2MDQwNzE5MjBaMDMxMTAvBgNV BAMTKEYzMDA5MDg4MEIyNzQ3MzdGNjU1QjIwNTU2NjEyQUZENkRGMDYxQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyCo2eWoUgvrR/z2F9zoXylP3x VG1JcUfnmQ7avfwSnr3GLqYCmXJMZKiHbJyhcFSxaT/N8X7vdNf6sD0BwhRscZGY Xo+A5RgQ8GPc2zi2bjTCQNpbZkLfP/9HSIg5orwPv63Zm2mFnIQkyS3wx4qaOxYM 9Cc5xwA7WdzKDlX39DqKxSxTUmDazabph66OSAdAxFVQp9DMDSWfwUv+xcOY8Ou4 mxEZYLjPKL2JkeFAEda8ZjvbMq4eXA/IYsZqmSeId8HN6aIXe951clJgj7qy910O DM0WC4KjzJxxYrxnnXNThFCK7BYzxXymz+oMpZIM0S9TnnjX/hMK6OKIdeNHAgMB AAGjggIfMIICGzAdBgNVHQ4EFgQU8wCQiAsnRzf2VbIFVmEq/W3wYbEwHwYDVR0j BBgwFoAUPlmJ9y3KGXnR3ZZjxXXtFb+hmNUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzU2NDE2OTY0MjYzOTM3OS8wLzNFNTk4OUY3MkRDQTE5NzlEMUREOTY2M0M1NzVF RDE1QkZBMTk4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVCRkExOThENS5jZXIw gZUGCCsGAQUFBwELBIGIMIGFMIGCBggrBgEFBQcwC4Z2cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA3NTY0MTY5NjQyNjM5Mzc5LzAvMzIzNDMwMzAz YTM4Mzk2MzMwM2EzMTMwMzEzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDM0Mzgz MDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcEJACJwBAQMA0GCSqGSIb3DQEBCwUAA4IBAQA0LKBWm+ma 0gm0qOX9UWsD69OYCBcVHwql0Scx1LX01n+RUBW/xdupMQygDTdqSYCTdhkERFlV 6obbZ6edUa5bWlZQeICdlN7Dcv0Wfbd+w0bNESAU+5o07ALZ19orDoIdzG0FEH2V eOMOAaCLIlmzy0UweldNHOX/jRauFR4YZ2BhaLEEJQ4BcMw3B3Irbjc3xvE0FJk7 eb9Jl8GK0uk+XHvCr51aXOE3iGpTOz5FnDncQEh6c7/S3QlWz/je/KSFCRRC2gWc LvZLkGmo/ycxXUOTX7y7VZo8VEXtXRFTvxFwMGD7qa2DGUy1XQssTKcVsIN5tEzL kbnOTSBSvZe2 -----END CERTIFICATE-----Generated at Fri Jun 12 02:25:32 2026 by rpki-client