$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a336638303a3a2f33322d3332203d3e203539303136.roa File: 323430313a336638303a3a2f33322d3332203d3e203539303136.roa (raw, json) Hash identifier: ucjz/dlhV3ok/6hDmWxU2mJ+pwi0UxkJY3B5u/KGHYU= Subject key identifier: 87:19:03:8A:FA:C0:6D:A4:00:B8:91:83:26:8F:D9:30:C8:B3:31:F3 Certificate issuer: /CN=95325EDFAB899EDF9C6AE51432F897FFDF47DCD3 Certificate serial: 423E28A22BFBD9D2B84DE34A2212ECC5E088F2F9 Authority key identifier: 95:32:5E:DF:AB:89:9E:DF:9C:6A:E5:14:32:F8:97:FF:DF:47:DC:D3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a336638303a3a2f33322d3332203d3e203539303136.roa Signing time: Thu 21 May 2026 02:42:10 +0000 ROA not before: Thu 21 May 2026 02:37:10 +0000 ROA not after: Thu 20 May 2027 02:42:10 +0000 asID: 59016 IP address blocks: 2401:3f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.crl rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 08:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:3e:28:a2:2b:fb:d9:d2:b8:4d:e3:4a:22:12:ec:c5:e0:88:f2:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95325EDFAB899EDF9C6AE51432F897FFDF47DCD3 Validity Not Before: May 21 02:37:10 2026 GMT Not After : May 20 02:42:10 2027 GMT Subject: CN=8719038AFAC06DA400B89183268FD930C8B331F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:00:d9:03:88:19:06:29:83:48:df:77:36:e9: be:f7:2f:e6:7c:1f:b8:ff:d8:58:66:7a:31:45:0d: 7f:00:84:83:e8:12:6a:1c:18:d1:d2:44:1a:ce:f7: 75:3a:5a:46:1e:9d:95:8c:de:e8:a3:c0:76:be:0d: 80:91:d0:53:03:7c:53:2a:3a:89:e2:30:27:3f:d8: be:82:b9:93:4a:b3:52:42:68:e3:f7:fc:5b:77:3e: a8:68:c5:88:25:0b:7e:7e:55:86:47:fd:91:e3:c6: d5:dc:da:1f:72:08:bb:3a:db:c2:4e:40:d9:34:da: 6b:8e:53:40:1d:dc:ea:14:bf:42:4c:f2:75:9f:43: 92:6d:5b:c0:68:1f:8b:00:d9:08:2c:2b:8f:3e:7b: 0a:b1:6d:ef:23:44:ec:f6:38:a8:ff:9f:a6:bd:15: f3:be:8b:89:eb:a8:7b:70:63:bb:4c:6c:bd:c0:84: a4:70:53:2f:26:ae:3c:7e:e1:5d:b3:a0:cf:48:6f: 32:ed:55:f9:bb:74:28:d9:74:4e:10:86:e7:6c:e1: 2d:98:a9:b3:0d:a1:12:7c:05:5c:68:cb:27:3b:ef: cd:75:30:18:4f:62:8d:53:a2:04:41:8b:51:61:0b: 97:98:14:9f:0b:ed:12:21:9d:b7:59:b2:d7:62:f2: 03:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:19:03:8A:FA:C0:6D:A4:00:B8:91:83:26:8F:D9:30:C8:B3:31:F3 X509v3 Authority Key Identifier: keyid:95:32:5E:DF:AB:89:9E:DF:9C:6A:E5:14:32:F8:97:FF:DF:47:DC:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a336638303a3a2f33322d3332203d3e203539303136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:3f80::/32 Signature Algorithm: sha256WithRSAEncryption 3e:de:da:94:5b:88:6e:0e:4e:79:81:52:81:09:e1:8c:89:3a: dc:d8:b5:6e:ca:9f:d6:ec:3d:77:73:45:2f:55:58:c0:54:49: 87:d0:2c:42:9a:f1:ce:7e:06:6b:02:ae:d3:ae:64:ab:a2:ce: 37:39:6c:47:ae:b5:82:25:b9:78:9e:bc:1e:c1:52:4d:a4:0f: f8:73:08:22:3c:a4:da:75:db:b3:a6:95:3e:2a:a0:e6:f9:18: 55:74:18:ff:81:f7:21:d0:2e:05:b2:8f:61:60:fd:08:3a:bf: f3:f9:7f:19:f7:37:76:eb:fb:5c:20:af:6b:cc:2d:8a:83:1d: b5:89:4e:e8:66:48:d9:cd:f0:16:7a:70:70:0f:da:40:c9:25: 18:63:39:08:c4:2b:82:6a:33:e0:80:5e:34:d7:ae:65:04:74: ea:69:28:25:ad:ab:72:90:1e:8c:ac:a1:6a:c2:b8:32:47:5a: 8e:35:46:43:34:06:9a:87:b0:b8:aa:23:09:92:85:d3:6e:14: ba:88:49:0b:a0:4e:c0:23:4a:6d:9c:8a:14:c9:1e:60:ac:13: aa:22:a9:5c:a1:11:13:11:6e:ce:13:a6:9c:2d:1a:48:d2:c7: 06:4e:b6:6a:f9:e6:24:58:b5:55:48:d6:2e:9d:84:87:f5:cd: 19:fd:63:07 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUQj4ooiv72dK4TeNKIhLsxeCI8vkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUzMjVFREZBQjg5OUVERjlDNkFFNTE0MzJGODk3RkZE RjQ3RENEMzAeFw0yNjA1MjEwMjM3MTBaFw0yNzA1MjAwMjQyMTBaMDMxMTAvBgNV BAMTKDg3MTkwMzhBRkFDMDZEQTQwMEI4OTE4MzI2OEZEOTMwQzhCMzMxRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNANkDiBkGKYNI33c26b73L+Z8 H7j/2FhmejFFDX8AhIPoEmocGNHSRBrO93U6WkYenZWM3uijwHa+DYCR0FMDfFMq OoniMCc/2L6CuZNKs1JCaOP3/Ft3PqhoxYglC35+VYZH/ZHjxtXc2h9yCLs628JO QNk02muOU0Ad3OoUv0JM8nWfQ5JtW8BoH4sA2QgsK48+ewqxbe8jROz2OKj/n6a9 FfO+i4nrqHtwY7tMbL3AhKRwUy8mrjx+4V2zoM9IbzLtVfm7dCjZdE4Qhuds4S2Y qbMNoRJ8BVxoyyc77811MBhPYo1TogRBi1FhC5eYFJ8L7RIhnbdZstdi8gP/AgMB AAGjggISMIICDjAdBgNVHQ4EFgQUhxkDivrAbaQAuJGDJo/ZMMizMfMwHwYDVR0j BBgwFoAUlTJe36uJnt+cauUUMviX/99H3NMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTY1NzYyOTI1ODQxNjE0OS8wLzk1MzI1RURGQUI4OTlFREY5QzZBRTUxNDMyRjg5 N0ZGREY0N0RDRDMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTUzMjVFREZBQjg5OUVERjlDNkFFNTE0MzJGODk3RkZERjQ3RENEMy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA5NjU3NjI5MjU4NDE2MTQ5LzAvMzIzNDMwMzEzYTMz NjYzODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzUzOTMwMzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQBP4AwDQYJKoZIhvcNAQELBQADggEBAD7e2pRbiG4OTnmBUoEJ4YyJOtzY tW7Kn9bsPXdzRS9VWMBUSYfQLEKa8c5+BmsCrtOuZKuizjc5bEeutYIluXievB7B Uk2kD/hzCCI8pNp127OmlT4qoOb5GFV0GP+B9yHQLgWyj2Fg/Qg6v/P5fxn3N3br +1wgr2vMLYqDHbWJTuhmSNnN8BZ6cHAP2kDJJRhjOQjEK4JqM+CAXjTXrmUEdOpp KCWtq3KQHoysoWrCuDJHWo41RkM0BpqHsLiqIwmShdNuFLqISQugTsAjSm2cihTJ HmCsE6oiqVyhERMRbs4TppwtGkjSxwZOtmr55iRYtVVI1i6dhIf1zRn9Ywc= -----END CERTIFICATE-----Generated at Fri May 29 23:56:59 2026 by rpki-client