$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109314073968902163/0/323430303a353538303a3a2f33322d3332203d3e2030.roa File: 323430303a353538303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: WDe3fPz0Ru7oQ8lptrq7BUV2TKBOPhsKhVJ9oIcxGTU= Subject key identifier: 5B:6C:4C:91:CB:A2:89:75:4C:CA:8F:90:C1:7C:FE:6F:E1:9E:DC:29 Certificate issuer: /CN=C899967B95E32E37CCEAA11CF146FB57B51A7C49 Certificate serial: 74084D3B5604534299CC3CE5D247777F6318FB1A Authority key identifier: C8:99:96:7B:95:E3:2E:37:CC:EA:A1:1C:F1:46:FB:57:B5:1A:7C:49 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C899967B95E32E37CCEAA11CF146FB57B51A7C49.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109314073968902163/0/323430303a353538303a3a2f33322d3332203d3e2030.roa Signing time: Wed 20 May 2026 04:24:58 +0000 ROA not before: Wed 20 May 2026 04:19:58 +0000 ROA not after: Wed 19 May 2027 04:24:58 +0000 asID: 0 IP address blocks: 2400:5580::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109314073968902163/0/C899967B95E32E37CCEAA11CF146FB57B51A7C49.crl rsync://rpki-rps.cnnic.cn/repo/A1109314073968902163/0/C899967B95E32E37CCEAA11CF146FB57B51A7C49.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C899967B95E32E37CCEAA11CF146FB57B51A7C49.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 02:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:08:4d:3b:56:04:53:42:99:cc:3c:e5:d2:47:77:7f:63:18:fb:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C899967B95E32E37CCEAA11CF146FB57B51A7C49 Validity Not Before: May 20 04:19:58 2026 GMT Not After : May 19 04:24:58 2027 GMT Subject: CN=5B6C4C91CBA289754CCA8F90C17CFE6FE19EDC29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6c:c2:a5:1d:aa:c4:59:2e:a0:f8:4f:b0:d6: b0:53:2c:5f:e0:88:e9:38:c8:1b:34:8e:0c:45:4e: 9c:13:53:be:a6:8e:70:e5:d8:a6:7c:0e:54:2b:a0: 7e:95:a0:c1:59:11:f9:2f:87:fd:f7:ca:a2:ae:00: 52:3a:e0:ab:9c:7f:89:1b:85:5d:80:5f:63:b3:c4: f9:37:01:3e:92:d0:dc:e9:0c:57:4d:bf:08:69:30: b1:71:22:29:c4:e5:19:d8:52:35:3f:eb:6b:11:f2: 0d:08:8e:80:07:80:db:b8:62:a6:c3:bf:88:77:a1: 81:e9:d3:29:89:14:6b:b1:9a:1e:99:45:c1:9a:7c: d4:ab:6d:bf:37:aa:25:35:26:42:d9:9d:aa:44:3b: 29:b0:f7:79:cb:ba:5c:37:13:db:ab:45:32:0d:3c: d9:5f:a7:60:2b:a0:6f:4b:eb:03:b0:54:58:40:e3: 63:c6:f4:74:07:d5:07:17:5f:ee:23:8f:3c:e2:c6: ba:fb:78:2b:f0:ba:d6:56:72:df:03:ec:69:d9:f7: 97:fd:38:02:66:7d:05:25:e7:4d:b1:0b:4f:db:52: 1e:d9:18:a6:d7:ae:fa:90:b4:1f:16:ad:c2:2b:3b: 25:04:d5:35:04:f0:92:54:fb:53:39:37:82:05:e9: 6c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:6C:4C:91:CB:A2:89:75:4C:CA:8F:90:C1:7C:FE:6F:E1:9E:DC:29 X509v3 Authority Key Identifier: keyid:C8:99:96:7B:95:E3:2E:37:CC:EA:A1:1C:F1:46:FB:57:B5:1A:7C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109314073968902163/0/C899967B95E32E37CCEAA11CF146FB57B51A7C49.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/C899967B95E32E37CCEAA11CF146FB57B51A7C49.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109314073968902163/0/323430303a353538303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:5580::/32 Signature Algorithm: sha256WithRSAEncryption 94:6d:48:44:32:7c:79:d4:c8:0f:cd:fd:e4:46:fc:e6:04:f5: 65:42:d7:10:ef:99:cc:b5:84:fc:91:3a:91:99:29:c7:d7:ae: 15:7a:72:b6:d7:b2:13:82:49:23:ca:98:c5:18:97:06:db:ff: 2e:8c:2a:73:a9:15:94:09:14:9d:26:6e:63:63:2b:5f:7d:c2: 2a:42:c0:69:b4:14:d8:74:b0:4f:82:af:29:ce:6b:5c:49:85: 38:75:ca:45:db:2a:a9:e7:ea:e6:fd:df:85:73:a7:47:7d:29: 86:4d:07:31:fd:d7:d7:56:41:9a:3e:63:24:ce:fa:38:c7:0b: a8:15:0d:fd:08:8d:3b:b6:77:ef:10:b3:ee:11:a1:6a:41:45: 65:14:46:d9:84:f2:14:b5:a0:e3:85:fb:11:bb:1e:f5:6a:07: 25:7f:a5:7a:8f:f8:ad:ed:5c:9d:47:74:4b:21:29:4f:47:92: 56:0d:99:1a:92:ad:08:8e:c0:fb:7a:64:cd:14:97:b2:39:a4: 5e:41:12:fa:a0:6b:ac:77:f1:79:1c:0b:72:2b:84:fa:40:89: 64:78:89:60:59:36:45:ec:f9:50:3c:fc:a6:b9:35:3c:a0:29: 15:57:36:0d:23:a1:93:b6:87:48:03:3b:b5:6c:3b:4e:8c:ea: 42:06:d9:79 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUdAhNO1YEU0KZzDzl0kd3f2MY+xowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg5OTk2N0I5NUUzMkUzN0NDRUFBMTFDRjE0NkZCNTdC NTFBN0M0OTAeFw0yNjA1MjAwNDE5NThaFw0yNzA1MTkwNDI0NThaMDMxMTAvBgNV BAMTKDVCNkM0QzkxQ0JBMjg5NzU0Q0NBOEY5MEMxN0NGRTZGRTE5RURDMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3bMKlHarEWS6g+E+w1rBTLF/g iOk4yBs0jgxFTpwTU76mjnDl2KZ8DlQroH6VoMFZEfkvh/33yqKuAFI64Kucf4kb hV2AX2OzxPk3AT6S0NzpDFdNvwhpMLFxIinE5RnYUjU/62sR8g0IjoAHgNu4YqbD v4h3oYHp0ymJFGuxmh6ZRcGafNSrbb83qiU1JkLZnapEOymw93nLulw3E9urRTIN PNlfp2AroG9L6wOwVFhA42PG9HQH1QcXX+4jjzzixrr7eCvwutZWct8D7GnZ95f9 OAJmfQUl502xC0/bUh7ZGKbXrvqQtB8WrcIrOyUE1TUE8JJU+1M5N4IF6WzfAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUW2xMkcuiiXVMyo+QwXz+b+Ge3CkwHwYDVR0j BBgwFoAUyJmWe5XjLjfM6qEc8Ub7V7UafEkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTMxNDA3Mzk2ODkwMjE2My8wL0M4OTk5NjdCOTVFMzJFMzdDQ0VBQTExQ0YxNDZG QjU3QjUxQTdDNDkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQzg5OTk2N0I5NUUzMkUzN0NDRUFBMTFDRjE0NkZCNTdCNTFBN0M0OS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA5MzE0MDczOTY4OTAyMTYzLzAvMzIzNDMwMzAzYTM1 MzUzODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAFWA MA0GCSqGSIb3DQEBCwUAA4IBAQCUbUhEMnx51MgPzf3kRvzmBPVlQtcQ75nMtYT8 kTqRmSnH164VenK217ITgkkjypjFGJcG2/8ujCpzqRWUCRSdJm5jYytffcIqQsBp tBTYdLBPgq8pzmtcSYU4dcpF2yqp5+rm/d+Fc6dHfSmGTQcx/dfXVkGaPmMkzvo4 xwuoFQ39CI07tnfvELPuEaFqQUVlFEbZhPIUtaDjhfsRux71agclf6V6j/it7Vyd R3RLISlPR5JWDZkakq0IjsD7emTNFJeyOaReQRL6oGusd/F5HAtyK4T6QIlkeIlg WTZF7PlQPPymuTU8oCkVVzYNI6GTtodIAzu1bDtOjOpCBtl5 -----END CERTIFICATE-----Generated at Sat May 23 03:04:30 2026 by rpki-client