$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a343638303a3a2f33322d3332203d3e203539303136.roa File: 323430313a343638303a3a2f33322d3332203d3e203539303136.roa (raw, json) Hash identifier: v55q9HAun0RdcyFLU8631U5FHjTmdXNRLzVCguNt9C8= Subject key identifier: 08:3E:32:BE:96:23:E6:5E:5F:B2:16:C8:B6:D3:2B:B5:75:8C:9F:FF Certificate issuer: /CN=95325EDFAB899EDF9C6AE51432F897FFDF47DCD3 Certificate serial: 20DCECB7F07A9E7985469EDF1323E3A096D95F29 Authority key identifier: 95:32:5E:DF:AB:89:9E:DF:9C:6A:E5:14:32:F8:97:FF:DF:47:DC:D3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a343638303a3a2f33322d3332203d3e203539303136.roa Signing time: Thu 21 May 2026 02:42:10 +0000 ROA not before: Thu 21 May 2026 02:37:10 +0000 ROA not after: Thu 20 May 2027 02:42:10 +0000 asID: 59016 IP address blocks: 2401:4680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.crl rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 08:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:dc:ec:b7:f0:7a:9e:79:85:46:9e:df:13:23:e3:a0:96:d9:5f:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95325EDFAB899EDF9C6AE51432F897FFDF47DCD3 Validity Not Before: May 21 02:37:10 2026 GMT Not After : May 20 02:42:10 2027 GMT Subject: CN=083E32BE9623E65E5FB216C8B6D32BB5758C9FFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:91:5e:49:1c:74:97:58:2d:47:4a:0d:10:88: c0:9f:e8:80:cb:09:70:13:40:30:4c:c6:4d:a8:0e: 5e:ed:c9:8b:ee:d3:3e:99:fa:9e:d0:77:28:59:de: 9a:b7:36:8f:7b:69:e6:72:6b:3b:0b:60:14:a8:fd: cf:26:84:4b:ea:19:f5:9b:d6:f4:00:5e:69:69:8f: d5:02:14:9d:91:b3:32:39:0c:4a:61:f3:9f:f3:f4: bb:32:00:db:29:90:58:18:fd:c4:07:ba:d6:6d:4c: 8e:95:38:ca:ad:29:b8:64:3a:31:9b:d3:a8:2a:5e: 98:45:a2:89:a4:1e:10:a5:87:a3:09:18:e9:25:b3: 4d:74:71:7b:0b:ae:9a:76:4d:8c:43:ec:b3:e7:1e: b1:9d:94:6c:7e:87:f0:4c:3a:52:ae:ff:10:22:8e: 65:c2:e1:7e:02:9b:c4:1a:08:b4:74:61:08:df:7c: 50:27:6e:5c:e3:ae:31:a4:c3:65:4b:02:f2:53:64: cf:5b:b5:a3:52:c9:9f:19:db:40:cb:70:3d:37:f7: a9:b6:1e:8e:68:4c:fa:02:79:32:10:3c:fe:bd:70: 48:b4:e2:5f:da:11:a1:40:6e:fd:a8:41:e4:df:b6: 54:e8:b6:d8:29:5b:e7:a0:14:b8:89:cc:0e:ce:87: 89:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:3E:32:BE:96:23:E6:5E:5F:B2:16:C8:B6:D3:2B:B5:75:8C:9F:FF X509v3 Authority Key Identifier: keyid:95:32:5E:DF:AB:89:9E:DF:9C:6A:E5:14:32:F8:97:FF:DF:47:DC:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a343638303a3a2f33322d3332203d3e203539303136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:4680::/32 Signature Algorithm: sha256WithRSAEncryption 7d:6d:2e:bb:6d:3b:17:a0:22:e9:13:f3:af:62:09:85:6c:32: c5:63:dd:02:b8:c6:ee:c4:24:1d:6c:c3:92:f5:40:88:75:ed: be:31:8c:ec:4d:15:f3:38:bf:59:2b:b6:97:46:1d:08:b1:d5: 01:84:2b:3f:93:fe:e0:81:6e:46:a7:04:de:76:83:63:a7:8f: e8:92:48:1c:6f:17:0f:d7:2d:9e:63:16:28:bb:6a:f6:4f:7b: be:67:0c:91:59:37:da:4c:03:dc:e5:db:6e:ca:46:4e:79:22: cc:0c:a4:a7:cf:4b:ca:9d:5c:3c:ec:4d:45:df:86:20:f2:cb: df:ba:f9:b2:a8:7e:c5:20:53:f7:26:0d:58:32:e9:7a:57:45: 41:6d:fc:6c:40:13:a1:e2:ae:1c:7b:c5:73:48:3b:23:4c:9f: 12:05:cc:08:9b:ee:6c:5f:bd:3d:b0:b3:8c:c7:51:1d:c2:b3: 8d:89:53:75:bb:a7:84:ca:f0:8e:73:1e:cf:61:b2:66:27:fe: fc:35:bb:54:e3:b8:e0:7a:f1:e6:ba:05:b0:f5:f7:f0:18:0d: 81:67:c1:10:8f:d2:36:c5:af:59:f5:84:0b:a6:50:eb:39:29: 5a:ba:ed:a5:e3:80:e5:36:45:50:e2:c0:c0:92:8f:5b:a0:68: 1e:78:da:76 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUINzst/B6nnmFRp7fEyPjoJbZXykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUzMjVFREZBQjg5OUVERjlDNkFFNTE0MzJGODk3RkZE RjQ3RENEMzAeFw0yNjA1MjEwMjM3MTBaFw0yNzA1MjAwMjQyMTBaMDMxMTAvBgNV BAMTKDA4M0UzMkJFOTYyM0U2NUU1RkIyMTZDOEI2RDMyQkI1NzU4QzlGRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTkV5JHHSXWC1HSg0QiMCf6IDL CXATQDBMxk2oDl7tyYvu0z6Z+p7QdyhZ3pq3No97aeZyazsLYBSo/c8mhEvqGfWb 1vQAXmlpj9UCFJ2RszI5DEph85/z9LsyANspkFgY/cQHutZtTI6VOMqtKbhkOjGb 06gqXphFoomkHhClh6MJGOkls010cXsLrpp2TYxD7LPnHrGdlGx+h/BMOlKu/xAi jmXC4X4Cm8QaCLR0YQjffFAnblzjrjGkw2VLAvJTZM9btaNSyZ8Z20DLcD0396m2 Ho5oTPoCeTIQPP69cEi04l/aEaFAbv2oQeTftlTottgpW+egFLiJzA7Oh4kVAgMB AAGjggISMIICDjAdBgNVHQ4EFgQUCD4yvpYj5l5fshbIttMrtXWMn/8wHwYDVR0j BBgwFoAUlTJe36uJnt+cauUUMviX/99H3NMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTY1NzYyOTI1ODQxNjE0OS8wLzk1MzI1RURGQUI4OTlFREY5QzZBRTUxNDMyRjg5 N0ZGREY0N0RDRDMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTUzMjVFREZBQjg5OUVERjlDNkFFNTE0MzJGODk3RkZERjQ3RENEMy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA5NjU3NjI5MjU4NDE2MTQ5LzAvMzIzNDMwMzEzYTM0 MzYzODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzUzOTMwMzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQBRoAwDQYJKoZIhvcNAQELBQADggEBAH1tLrttOxegIukT869iCYVsMsVj 3QK4xu7EJB1sw5L1QIh17b4xjOxNFfM4v1krtpdGHQix1QGEKz+T/uCBbkanBN52 g2Onj+iSSBxvFw/XLZ5jFii7avZPe75nDJFZN9pMA9zl227KRk55IswMpKfPS8qd XDzsTUXfhiDyy9+6+bKofsUgU/cmDVgy6XpXRUFt/GxAE6Hirhx7xXNIOyNMnxIF zAib7mxfvT2ws4zHUR3Cs42JU3W7p4TK8I5zHs9hsmYn/vw1u1TjuOB68ea6BbD1 9/AYDYFnwRCP0jbFr1n1hAumUOs5KVq67aXjgOU2RVDiwMCSj1ugaB542nY= -----END CERTIFICATE-----Generated at Fri May 29 23:56:52 2026 by rpki-client