$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109004796452405267/0/323030313a6463373a623a3a2f34382d3438203d3e203234313531.roa File: 323030313a6463373a623a3a2f34382d3438203d3e203234313531.roa (raw, json) Hash identifier: nCmmLKf7p/+gDBZjpiG7vY0+piKta/7HzgAV8Daoohw= Subject key identifier: E8:4D:B8:93:DE:EB:28:95:B6:7D:3A:C0:C6:E3:C9:67:C1:28:A4:91 Certificate issuer: /CN=CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4 Certificate serial: 7DE3346AB415D0874354D87B1346EF62370A3472 Authority key identifier: CE:AC:E6:7B:8C:6F:24:55:BF:EB:95:CA:97:F4:EF:CE:0D:10:DA:C4 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/323030313a6463373a623a3a2f34382d3438203d3e203234313531.roa Signing time: Tue 19 May 2026 06:33:16 +0000 ROA not before: Tue 19 May 2026 06:28:16 +0000 ROA not after: Tue 18 May 2027 06:33:16 +0000 asID: 24151 IP address blocks: 2001:dc7:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.crl rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 15:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e3:34:6a:b4:15:d0:87:43:54:d8:7b:13:46:ef:62:37:0a:34:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4 Validity Not Before: May 19 06:28:16 2026 GMT Not After : May 18 06:33:16 2027 GMT Subject: CN=E84DB893DEEB2895B67D3AC0C6E3C967C128A491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b1:3a:45:70:b8:1e:7a:90:af:10:b8:5a:31: 96:66:d2:d7:20:49:d1:a2:e8:c6:d7:70:f5:21:c6: de:aa:07:a3:27:00:d6:e3:00:52:42:f1:01:7a:5d: 79:43:92:89:81:4c:2e:2b:ea:88:cb:8b:41:d9:8d: 89:42:72:d2:f1:cb:0d:e2:8a:2a:7d:9f:72:62:c5: 79:06:b9:17:31:0f:b4:0a:c2:11:0b:1e:c9:66:24: 9a:ff:5e:67:38:34:f1:9d:e5:97:00:e6:b5:b5:eb: ba:1e:35:3b:89:e9:33:0b:56:9f:88:96:bd:1f:65: 8d:3e:32:83:50:4d:c8:1e:b5:79:57:a7:b8:b7:72: 13:4f:d7:1e:d8:f3:7c:60:d7:15:69:7e:87:e2:78: 63:79:34:93:95:2f:53:03:1a:f4:ae:96:b6:c1:55: 4c:b7:c3:75:6a:28:88:f5:20:19:04:19:bb:c1:2a: a5:d5:63:2f:d6:58:05:ce:9b:21:32:ea:d8:fb:b6: 30:f5:f0:3c:10:47:13:22:10:7e:67:71:60:9e:8c: 0d:e4:33:36:30:2f:1a:bc:d7:f3:3f:80:0c:78:96: 9f:a3:45:35:7c:e5:9a:19:62:bc:76:b5:e7:bd:7f: 91:50:7d:15:06:bb:f5:b1:1f:36:86:8b:c9:1b:a9: 2e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4D:B8:93:DE:EB:28:95:B6:7D:3A:C0:C6:E3:C9:67:C1:28:A4:91 X509v3 Authority Key Identifier: keyid:CE:AC:E6:7B:8C:6F:24:55:BF:EB:95:CA:97:F4:EF:CE:0D:10:DA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/CEACE67B8C6F2455BFEB95CA97F4EFCE0D10DAC4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109004796452405267/0/323030313a6463373a623a3a2f34382d3438203d3e203234313531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:dc7:b::/48 Signature Algorithm: sha256WithRSAEncryption ad:42:2a:e9:e4:26:2c:0f:74:17:b6:e0:0e:81:2f:e8:fd:02: d2:5d:25:1d:60:2a:e8:00:ec:17:93:86:07:ac:8b:1d:31:46: 24:8c:ec:19:e0:99:4f:4b:5f:27:da:67:5c:c9:67:c7:20:69: a9:d5:db:d4:e0:1c:24:fc:91:3f:d2:e8:c5:a2:c8:5a:cf:e5: 8f:47:a2:81:52:b6:cb:dd:23:e8:75:52:6e:1c:32:d1:54:78: 8a:0a:77:cd:b1:19:f7:01:55:82:34:13:3a:55:19:a9:7a:44: fd:52:02:12:45:f6:62:00:0d:2f:1e:03:4d:3b:8b:36:63:69: 51:e4:44:eb:1e:00:8e:63:3c:44:09:98:71:4f:ad:4d:a7:05: e5:35:08:c6:a3:6c:5d:14:7c:30:0d:d7:bf:0a:7d:c7:06:d5: 75:3b:b7:13:2c:ac:76:34:c4:6a:4f:58:84:b1:20:d9:34:42: bd:43:f2:75:07:5b:a9:b3:9f:91:1b:55:a7:5b:92:34:89:25: 36:5b:cd:7d:c5:d3:e6:53:52:96:14:b5:2a:ca:41:0f:dc:8e: e5:43:e0:ec:75:94:3f:b5:5a:90:3a:f6:84:5f:83:f2:81:40: ed:3e:74:be:c2:ce:8f:41:ca:1d:73:f1:80:4b:a3:ce:66:50: 64:60:dc:3d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUfeM0arQV0IdDVNh7E0bvYjcKNHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBQ0U2N0I4QzZGMjQ1NUJGRUI5NUNBOTdGNEVGQ0Uw RDEwREFDNDAeFw0yNjA1MTkwNjI4MTZaFw0yNzA1MTgwNjMzMTZaMDMxMTAvBgNV BAMTKEU4NERCODkzREVFQjI4OTVCNjdEM0FDMEM2RTNDOTY3QzEyOEE0OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHsTpFcLgeepCvELhaMZZm0tcg SdGi6MbXcPUhxt6qB6MnANbjAFJC8QF6XXlDkomBTC4r6ojLi0HZjYlCctLxyw3i iip9n3JixXkGuRcxD7QKwhELHslmJJr/Xmc4NPGd5ZcA5rW167oeNTuJ6TMLVp+I lr0fZY0+MoNQTcgetXlXp7i3chNP1x7Y83xg1xVpfofieGN5NJOVL1MDGvSulrbB VUy3w3VqKIj1IBkEGbvBKqXVYy/WWAXOmyEy6tj7tjD18DwQRxMiEH5ncWCejA3k MzYwLxq81/M/gAx4lp+jRTV85ZoZYrx2tee9f5FQfRUGu/WxHzaGi8kbqS41AgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU6E24k97rKJW2fTrAxuPJZ8EopJEwHwYDVR0j BBgwFoAUzqzme4xvJFW/65XKl/Tvzg0Q2sQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTAwNDc5NjQ1MjQwNTI2Ny8wL0NFQUNFNjdCOEM2RjI0NTVCRkVCOTVDQTk3RjRF RkNFMEQxMERBQzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQ0VBQ0U2N0I4QzZGMjQ1NUJGRUI5NUNBOTdGNEVGQ0UwRDEwREFDNC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTEwOTAwNDc5NjQ1MjQwNTI2Ny8wLzMyMzAzMDMxM2E2 NDYzMzczYTYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzNDMxMzUzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQC AAIwCQMHACABDccACzANBgkqhkiG9w0BAQsFAAOCAQEArUIq6eQmLA90F7bgDoEv 6P0C0l0lHWAq6ADsF5OGB6yLHTFGJIzsGeCZT0tfJ9pnXMlnxyBpqdXb1OAcJPyR P9LoxaLIWs/lj0eigVK2y90j6HVSbhwy0VR4igp3zbEZ9wFVgjQTOlUZqXpE/VIC EkX2YgANLx4DTTuLNmNpUeRE6x4AjmM8RAmYcU+tTacF5TUIxqNsXRR8MA3Xvwp9 xwbVdTu3EyysdjTEak9YhLEg2TRCvUPydQdbqbOfkRtVp1uSNIklNlvNfcXT5lNS lhS1KspBD9yO5UPg7HWUP7VakDr2hF+D8oFA7T50vsLOj0HKHXPxgEujzmZQZGDc PQ== -----END CERTIFICATE-----Generated at Fri May 29 23:53:22 2026 by rpki-client