$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a343738303a3a2f33322d3332203d3e203539303136.roa File: 323430313a343738303a3a2f33322d3332203d3e203539303136.roa (raw, json) Hash identifier: Iyb1KGBqBHdVxysl3Ic3fe6dw60fKYWZn5LRMnbYIEg= Subject key identifier: 8B:90:81:E1:4A:2E:D1:5C:6F:1A:92:B0:5E:81:6F:5E:24:31:D9:F4 Certificate issuer: /CN=95325EDFAB899EDF9C6AE51432F897FFDF47DCD3 Certificate serial: 1834970F05E86367D9171E9E69D32BF1D67A0E84 Authority key identifier: 95:32:5E:DF:AB:89:9E:DF:9C:6A:E5:14:32:F8:97:FF:DF:47:DC:D3 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a343738303a3a2f33322d3332203d3e203539303136.roa Signing time: Thu 21 May 2026 02:43:03 +0000 ROA not before: Thu 21 May 2026 02:38:03 +0000 ROA not after: Thu 20 May 2027 02:43:03 +0000 asID: 59016 IP address blocks: 2401:4780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.crl rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 08:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:34:97:0f:05:e8:63:67:d9:17:1e:9e:69:d3:2b:f1:d6:7a:0e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95325EDFAB899EDF9C6AE51432F897FFDF47DCD3 Validity Not Before: May 21 02:38:03 2026 GMT Not After : May 20 02:43:03 2027 GMT Subject: CN=8B9081E14A2ED15C6F1A92B05E816F5E2431D9F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:5c:25:ad:79:ad:29:28:f6:28:ca:e7:1f: 78:6a:a7:70:38:ba:cd:2c:6e:9c:40:eb:f5:08:72: f3:8a:fe:c4:14:59:0c:01:2c:11:fc:a1:22:6e:d8: e5:d1:4d:0d:97:6f:02:23:d2:fc:e1:e3:39:37:74: 6c:73:7e:89:fb:f7:a9:0c:a0:a8:dd:13:86:94:17: e9:2c:4f:74:a5:d1:69:c8:02:d0:08:d6:db:52:47: 9a:6e:52:e1:48:f1:83:b6:e7:0c:32:51:99:31:39: f1:4d:10:84:db:d2:4a:29:f0:6f:ee:5b:c9:e5:72: 91:58:46:d7:c9:4d:c8:aa:18:83:f1:4b:7e:5f:db: 77:42:95:96:cf:df:6b:72:11:c2:8c:fb:72:fe:44: 25:41:12:bd:64:96:2d:d9:8c:fc:9c:80:32:67:ce: ea:63:fd:d1:05:22:b7:48:fc:ed:47:c7:a8:bc:55: f3:bc:54:af:d2:2b:99:e8:79:c9:a3:e1:b7:58:e4: 57:ed:05:25:15:0b:29:7e:21:a3:35:77:a6:e0:13: 21:34:63:7d:f0:69:e2:de:98:0f:2f:8c:10:76:4b: dd:48:6e:51:a4:a8:f1:7a:9b:3b:3e:92:67:55:03: d7:93:2e:a9:e1:0b:07:15:ae:26:a3:d6:39:14:1a: 46:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:90:81:E1:4A:2E:D1:5C:6F:1A:92:B0:5E:81:6F:5E:24:31:D9:F4 X509v3 Authority Key Identifier: keyid:95:32:5E:DF:AB:89:9E:DF:9C:6A:E5:14:32:F8:97:FF:DF:47:DC:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95325EDFAB899EDF9C6AE51432F897FFDF47DCD3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1109657629258416149/0/323430313a343738303a3a2f33322d3332203d3e203539303136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:4780::/32 Signature Algorithm: sha256WithRSAEncryption 30:d1:d2:6e:68:6a:0c:ac:8d:48:d0:63:aa:87:93:3e:f7:48: 1c:11:a1:1e:1b:83:21:36:36:b5:75:6f:47:2a:49:74:6a:81: 5f:9f:05:f4:53:6f:6f:94:7b:52:c6:3c:8b:87:fe:29:55:1a: c8:22:96:2b:09:20:f3:e1:9e:7e:1e:2b:4f:8a:05:d1:44:fc: a5:3e:43:6e:d0:28:cc:48:49:e2:d2:05:cb:9c:12:37:fa:0b: ff:c5:6d:ac:ae:e4:19:bf:0f:42:e5:df:0f:7e:1b:1a:18:51: ed:9a:54:ae:f3:13:60:3c:c4:dc:71:29:83:73:dc:ea:8d:ae: ff:af:69:b4:99:43:d6:26:a8:c4:55:7a:cf:c1:eb:bc:f7:c2: 60:d0:f7:da:66:8f:43:a8:1d:93:61:13:fe:26:9e:be:1a:82: 55:89:c6:a2:4d:91:e9:25:55:7f:a8:38:2d:16:e9:78:a7:b1: 09:42:6f:06:51:91:6b:df:d2:50:33:3b:26:76:87:ac:35:87: 91:4b:87:93:6a:c5:10:1d:cc:12:68:77:53:04:d5:de:41:56: 6b:ac:83:2a:d4:08:42:27:a9:25:45:b1:d9:8f:e7:ff:7a:1a: 6d:f2:a5:89:5c:4b:8f:ba:c1:08:72:56:09:ae:d1:ea:26:dd: 05:60:9f:cb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUGDSXDwXoY2fZFx6eadMr8dZ6DoQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUzMjVFREZBQjg5OUVERjlDNkFFNTE0MzJGODk3RkZE RjQ3RENEMzAeFw0yNjA1MjEwMjM4MDNaFw0yNzA1MjAwMjQzMDNaMDMxMTAvBgNV BAMTKDhCOTA4MUUxNEEyRUQxNUM2RjFBOTJCMDVFODE2RjVFMjQzMUQ5RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4SlwlrXmtKSj2KMrnH3hqp3A4 us0sbpxA6/UIcvOK/sQUWQwBLBH8oSJu2OXRTQ2XbwIj0vzh4zk3dGxzfon796kM oKjdE4aUF+ksT3Sl0WnIAtAI1ttSR5puUuFI8YO25wwyUZkxOfFNEITb0kop8G/u W8nlcpFYRtfJTciqGIPxS35f23dClZbP32tyEcKM+3L+RCVBEr1kli3ZjPycgDJn zupj/dEFIrdI/O1Hx6i8VfO8VK/SK5noecmj4bdY5FftBSUVCyl+IaM1d6bgEyE0 Y33waeLemA8vjBB2S91IblGkqPF6mzs+kmdVA9eTLqnhCwcVriaj1jkUGkbjAgMB AAGjggISMIICDjAdBgNVHQ4EFgQUi5CB4Uou0VxvGpKwXoFvXiQx2fQwHwYDVR0j BBgwFoAUlTJe36uJnt+cauUUMviX/99H3NMwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw OTY1NzYyOTI1ODQxNjE0OS8wLzk1MzI1RURGQUI4OTlFREY5QzZBRTUxNDMyRjg5 N0ZGREY0N0RDRDMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTUzMjVFREZBQjg5OUVERjlDNkFFNTE0MzJGODk3RkZERjQ3RENEMy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTA5NjU3NjI5MjU4NDE2MTQ5LzAvMzIzNDMwMzEzYTM0 MzczODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzUzOTMwMzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQBR4AwDQYJKoZIhvcNAQELBQADggEBADDR0m5oagysjUjQY6qHkz73SBwR oR4bgyE2NrV1b0cqSXRqgV+fBfRTb2+Ue1LGPIuH/ilVGsgilisJIPPhnn4eK0+K BdFE/KU+Q27QKMxISeLSBcucEjf6C//Fbayu5Bm/D0Ll3w9+GxoYUe2aVK7zE2A8 xNxxKYNz3OqNrv+vabSZQ9YmqMRVes/B67z3wmDQ99pmj0OoHZNhE/4mnr4aglWJ xqJNkeklVX+oOC0W6XinsQlCbwZRkWvf0lAzOyZ2h6w1h5FLh5NqxRAdzBJod1ME 1d5BVmusgyrUCEInqSVFsdmP5/96Gm3ypYlcS4+6wQhyVgmu0eom3QVgn8s= -----END CERTIFICATE-----Generated at Fri May 29 23:56:50 2026 by rpki-client