$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313135303a3a2f34382d3438203d3e20313431363739.roa File: 323430303a383963303a313135303a3a2f34382d3438203d3e20313431363739.roa (raw, json) Hash identifier: zoTsNiyI/bcUFhY1+0DqUGKjNHeoMRr8NrgakapPaS8= Subject key identifier: 5E:3B:40:95:FB:D3:45:46:ED:75:78:9E:74:B9:CD:17:17:1B:3E:D7 Certificate issuer: /CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Certificate serial: 714A43AA3AA4AF44ED9456C710FF2AAC8F3A5C57 Authority key identifier: 3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313135303a3a2f34382d3438203d3e20313431363739.roa Signing time: Fri 05 Jun 2026 07:21:57 +0000 ROA not before: Fri 05 Jun 2026 07:16:57 +0000 ROA not after: Fri 04 Jun 2027 07:21:57 +0000 asID: 141679 IP address blocks: 2400:89c0:1150::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:4a:43:aa:3a:a4:af:44:ed:94:56:c7:10:ff:2a:ac:8f:3a:5c:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Validity Not Before: Jun 5 07:16:57 2026 GMT Not After : Jun 4 07:21:57 2027 GMT Subject: CN=5E3B4095FBD34546ED75789E74B9CD17171B3ED7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:73:07:88:41:68:9d:ff:96:39:42:6c:52:4a: 82:1b:40:64:76:27:65:12:e8:1c:b8:d3:d2:c2:e6: 06:cb:f6:46:da:d9:f7:43:e8:f3:71:b7:6d:08:96: d9:93:c5:fe:8b:5e:85:54:3b:ea:13:bf:b6:3c:60: 8e:92:cd:e4:eb:fe:2c:51:62:2b:5c:e1:f2:5a:e0: 09:ad:47:89:29:66:75:de:56:84:c1:9c:96:1a:c7: 14:9d:73:82:79:47:bd:6b:7a:b4:30:7f:28:9c:03: bd:17:91:aa:de:4d:9a:e0:ce:04:be:81:a3:4f:7f: b2:35:85:c2:ec:28:7a:86:21:ed:96:b9:61:39:f5: 47:48:09:bb:a6:61:99:02:4d:55:f8:c4:ca:4c:bd: 3a:e7:15:ec:4a:86:8a:6d:38:a9:a9:8c:17:13:29: ba:32:5c:9b:09:e8:02:4e:61:b8:8b:91:9a:37:62: 1f:91:4e:f1:f7:a5:3f:a0:fc:6b:5b:85:e8:0a:fa: 70:8f:6f:54:6e:95:dc:8b:0a:93:f0:52:2d:97:62: be:05:fc:13:ed:39:c9:eb:54:8f:3b:0c:b1:2d:19: 72:57:aa:dc:ed:77:f2:6d:c9:84:e5:c9:30:fb:9c: 6a:3a:f6:54:2a:a5:fe:ad:61:30:1f:58:9e:15:93: 0e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:3B:40:95:FB:D3:45:46:ED:75:78:9E:74:B9:CD:17:17:1B:3E:D7 X509v3 Authority Key Identifier: keyid:3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313135303a3a2f34382d3438203d3e20313431363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:89c0:1150::/48 Signature Algorithm: sha256WithRSAEncryption 89:90:82:cd:45:2a:ba:ea:a3:ae:2a:43:ec:e3:6a:4e:40:72: 81:a7:8a:7e:60:7c:c5:6a:99:b7:59:9d:3a:f8:7a:17:5c:d7: a3:f1:63:50:1e:6f:59:ee:b4:d5:a9:54:db:e9:05:7a:73:50: 90:30:ed:bf:b6:df:3c:fc:bf:de:62:f7:f2:66:12:bf:7b:29: 4d:b9:86:a2:1a:2c:04:1e:4a:f1:f9:17:86:4b:01:57:25:7b: 96:0e:04:ee:36:88:dd:d0:50:f6:60:b4:8b:e4:43:15:4b:33: 8c:2c:35:95:07:48:ce:96:42:a4:d6:3c:6d:0f:9c:83:a7:3b: 9c:23:95:8b:1a:5f:87:50:1b:75:da:4b:b7:f6:2c:96:5d:e5: bd:fa:c1:54:09:7d:b5:9a:26:fd:b9:28:52:62:3c:77:21:a8: c6:8e:c4:a0:33:fc:d8:57:5c:d5:7b:8a:42:4c:3c:30:1c:88: 3b:8a:00:a5:08:85:2d:52:49:ec:63:5a:63:66:27:a8:ee:f9: 58:0a:11:3d:a1:3a:b5:1a:7f:84:77:37:c0:a1:3e:fc:2c:39: 01:20:a5:25:f9:c2:f9:c2:b6:c0:b9:8d:95:a9:15:b1:1e:13: 85:de:77:7d:e6:f4:6e:e2:6d:c9:01:3e:78:e0:0e:79:58:75: fa:fb:bd:2b -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgIUcUpDqjqkr0TtlFbHEP8qrI86XFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVC RkExOThENTAeFw0yNjA2MDUwNzE2NTdaFw0yNzA2MDQwNzIxNTdaMDMxMTAvBgNV BAMTKDVFM0I0MDk1RkJEMzQ1NDZFRDc1Nzg5RTc0QjlDRDE3MTcxQjNFRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGcweIQWid/5Y5QmxSSoIbQGR2 J2US6By409LC5gbL9kba2fdD6PNxt20IltmTxf6LXoVUO+oTv7Y8YI6SzeTr/ixR Yitc4fJa4AmtR4kpZnXeVoTBnJYaxxSdc4J5R71rerQwfyicA70XkareTZrgzgS+ gaNPf7I1hcLsKHqGIe2WuWE59UdICbumYZkCTVX4xMpMvTrnFexKhoptOKmpjBcT KboyXJsJ6AJOYbiLkZo3Yh+RTvH3pT+g/GtbhegK+nCPb1RuldyLCpPwUi2XYr4F /BPtOcnrVI87DLEtGXJXqtztd/JtyYTlyTD7nGo69lQqpf6tYTAfWJ4Vkw5BAgMB AAGjggIjMIICHzAdBgNVHQ4EFgQUXjtAlfvTRUbtdXiedLnNFxcbPtcwHwYDVR0j BBgwFoAUPlmJ9y3KGXnR3ZZjxXXtFb+hmNUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzU2NDE2OTY0MjYzOTM3OS8wLzNFNTk4OUY3MkRDQTE5NzlEMUREOTY2M0M1NzVF RDE1QkZBMTk4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVCRkExOThENS5jZXIw gZkGCCsGAQUFBwELBIGMMIGJMIGGBggrBgEFBQcwC4Z6cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA3NTY0MTY5NjQyNjM5Mzc5LzAvMzIzNDMwMzAz YTM4Mzk2MzMwM2EzMTMxMzUzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQz MTM2MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACQAicARUDANBgkqhkiG9w0BAQsFAAOCAQEAiZCC zUUquuqjripD7ONqTkBygaeKfmB8xWqZt1mdOvh6F1zXo/FjUB5vWe601alU2+kF enNQkDDtv7bfPPy/3mL38mYSv3spTbmGohosBB5K8fkXhksBVyV7lg4E7jaI3dBQ 9mC0i+RDFUszjCw1lQdIzpZCpNY8bQ+cg6c7nCOVixpfh1AbddpLt/Ysll3lvfrB VAl9tZom/bkoUmI8dyGoxo7EoDP82Fdc1XuKQkw8MByIO4oApQiFLVJJ7GNaY2Yn qO75WAoRPaE6tRp/hHc3wKE+/Cw5ASClJfnC+cK2wLmNlakVsR4Thd53feb0buJt yQE+eOAOeVh1+vu9Kw== -----END CERTIFICATE-----Generated at Fri Jun 12 02:41:36 2026 by rpki-client