$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a336438303a3a2f33322d3332203d3e203539303136.roa File: 323430313a336438303a3a2f33322d3332203d3e203539303136.roa (raw, json) Hash identifier: DbLTFeOIezLKCvvhDSZf0uP4appQbtTjeFlkdxoCVo4= Subject key identifier: A8:32:C0:15:0E:7A:47:58:99:D7:B5:59:1B:31:36:05:D2:55:C1:6C Certificate issuer: /CN=95325EDFAB899EDF9C6AE51432F897FFDF47DCD3 Certificate serial: 0F3CD06DC3FAE4E3780485A46FD0A9A4895ED10E Authority key identifier: 95:32:5E:DF:AB:89:9E:DF:9C:6A:E5:14:32:F8:97:FF:DF:47:DC:D3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a336438303a3a2f33322d3332203d3e203539303136.roa Signing time: Thu 21 May 2026 02:42:10 +0000 ROA not before: Thu 21 May 2026 02:37:10 +0000 ROA not after: Thu 20 May 2027 02:42:10 +0000 asID: 59016 IP address blocks: 2401:3d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.crl rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 08:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:3c:d0:6d:c3:fa:e4:e3:78:04:85:a4:6f:d0:a9:a4:89:5e:d1:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95325EDFAB899EDF9C6AE51432F897FFDF47DCD3 Validity Not Before: May 21 02:37:10 2026 GMT Not After : May 20 02:42:10 2027 GMT Subject: CN=A832C0150E7A475899D7B5591B313605D255C16C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e1:fa:6b:84:d7:e4:1b:a8:40:ca:0d:8b:78: 63:2d:80:89:8d:4d:4a:3f:a5:66:9c:38:b8:3f:b8: 52:a2:06:7c:e6:6d:1a:14:4e:1b:d1:e2:6b:6f:83: e4:38:65:7f:1b:1c:10:7d:fa:69:43:43:ea:7b:a2: de:82:fd:aa:cf:dd:ef:d0:6c:0f:f4:12:69:33:a8: 96:fc:84:3c:48:98:16:62:e5:00:f2:8c:3c:fe:1c: ea:1c:0b:51:72:b7:78:54:59:4b:dc:38:c6:26:80: 7e:ef:81:5e:20:32:f2:25:6c:b6:96:55:d5:42:21: 31:d7:9e:6c:3b:d8:d1:54:f7:e6:de:13:6e:33:73: d8:91:70:5a:27:27:2e:d7:d8:36:a0:a5:ec:3e:b5: 0f:17:40:44:ba:75:06:42:7d:ac:f9:ef:8a:dc:ec: 0a:a5:a8:41:6f:c6:2e:ef:da:bb:b0:12:22:69:16: 20:f4:40:3c:c6:9c:84:d6:99:3c:a6:6c:2b:b1:dd: a5:78:cf:e5:dd:36:47:f6:b5:73:b0:97:d8:25:d2: 3c:19:07:89:d4:f1:fc:2e:e5:41:a2:40:08:03:34: 19:da:8f:de:ea:c6:25:eb:a9:8d:10:a9:4c:47:70: b9:37:89:dd:51:64:f9:c9:fe:b0:6c:bd:88:d9:b1: 3b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:32:C0:15:0E:7A:47:58:99:D7:B5:59:1B:31:36:05:D2:55:C1:6C X509v3 Authority Key Identifier: keyid:95:32:5E:DF:AB:89:9E:DF:9C:6A:E5:14:32:F8:97:FF:DF:47:DC:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a336438303a3a2f33322d3332203d3e203539303136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:3d80::/32 Signature Algorithm: sha256WithRSAEncryption 51:ac:c5:79:90:ca:2d:65:b5:60:38:62:1a:62:be:f6:09:bf: f7:72:19:d1:4f:3d:b8:73:74:80:ea:55:9f:21:16:c5:1c:3b: 0b:e8:19:c2:73:69:8a:4f:56:9b:3f:cd:dc:f5:10:31:1e:5b: 50:f1:7b:b8:d4:33:27:50:66:03:66:75:3f:ff:8c:12:dd:72: 14:0f:89:77:91:85:d5:90:74:fa:13:60:49:c3:71:4f:c0:ba: a5:40:ae:7f:14:a8:38:8d:7f:c5:56:4e:93:0f:b9:c1:e8:d6: fa:81:31:8c:90:fd:7a:47:a6:84:1b:3d:8b:4e:e5:92:1c:5d: ed:53:47:8f:74:2f:06:64:30:12:8a:60:cb:d2:af:24:69:58: 29:eb:9e:58:ff:88:17:ce:b0:f4:06:80:a0:3e:f9:4d:0c:d6: e7:78:d2:75:b1:80:be:57:47:26:e4:5a:a3:4e:c1:fd:d7:38: a4:67:b1:2e:93:ab:30:2b:47:d7:4f:79:92:6d:13:e8:57:73: f9:c4:5a:1e:e9:1f:15:43:0e:a5:28:8e:36:c0:89:ad:ce:75: 72:5b:2b:4c:41:4b:57:af:b8:13:2d:98:ec:64:9e:00:3b:27: a4:ad:47:53:d5:19:93:fb:82:3f:65:7a:e0:73:58:02:17:5b: 4a:9f:6f:0f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUDzzQbcP65ON4BIWkb9CppIle0Q4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUzMjVFREZBQjg5OUVERjlDNkFFNTE0MzJGODk3RkZE RjQ3RENEMzAeFw0yNjA1MjEwMjM3MTBaFw0yNzA1MjAwMjQyMTBaMDMxMTAvBgNV BAMTKEE4MzJDMDE1MEU3QTQ3NTg5OUQ3QjU1OTFCMzEzNjA1RDI1NUMxNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH4fprhNfkG6hAyg2LeGMtgImN TUo/pWacOLg/uFKiBnzmbRoUThvR4mtvg+Q4ZX8bHBB9+mlDQ+p7ot6C/arP3e/Q bA/0EmkzqJb8hDxImBZi5QDyjDz+HOocC1Fyt3hUWUvcOMYmgH7vgV4gMvIlbLaW VdVCITHXnmw72NFU9+beE24zc9iRcFonJy7X2Dagpew+tQ8XQES6dQZCfaz574rc 7AqlqEFvxi7v2ruwEiJpFiD0QDzGnITWmTymbCux3aV4z+XdNkf2tXOwl9gl0jwZ B4nU8fwu5UGiQAgDNBnaj97qxiXrqY0QqUxHcLk3id1RZPnJ/rBsvYjZsTtzAgMB AAGjggISMIICDjAdBgNVHQ4EFgQUqDLAFQ56R1iZ17VZGzE2BdJVwWwwHwYDVR0j BBgwFoAUlTJe36uJnt+cauUUMviX/99H3NMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTY1NzYyOTI1ODQxNjE0OS8wLzk1MzI1RURGQUI4OTlFREY5QzZBRTUxNDMyRjg5 N0ZGREY0N0RDRDMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTUzMjVFREZBQjg5OUVERjlDNkFFNTE0MzJGODk3RkZERjQ3RENEMy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA5NjU3NjI5MjU4NDE2MTQ5LzAvMzIzNDMwMzEzYTMz NjQzODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzUzOTMwMzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQBPYAwDQYJKoZIhvcNAQELBQADggEBAFGsxXmQyi1ltWA4YhpivvYJv/dy GdFPPbhzdIDqVZ8hFsUcOwvoGcJzaYpPVps/zdz1EDEeW1Dxe7jUMydQZgNmdT// jBLdchQPiXeRhdWQdPoTYEnDcU/AuqVArn8UqDiNf8VWTpMPucHo1vqBMYyQ/XpH poQbPYtO5ZIcXe1TR490LwZkMBKKYMvSryRpWCnrnlj/iBfOsPQGgKA++U0M1ud4 0nWxgL5XRybkWqNOwf3XOKRnsS6TqzArR9dPeZJtE+hXc/nEWh7pHxVDDqUojjbA ia3OdXJbK0xBS1evuBMtmOxkngA7J6StR1PVGZP7gj9leuBzWAIXW0qfbw8= -----END CERTIFICATE-----Generated at Fri May 29 22:58:07 2026 by rpki-client