$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1110017641860300821/0/323430363a653363303a3a2f33322d3332203d3e20313334373733.roa File: 323430363a653363303a3a2f33322d3332203d3e20313334373733.roa (raw, json) Hash identifier: r2mlC4GthxxDvprtfPMIptLo1apDgBMcOFdGeuOZ7GA= Subject key identifier: 45:CE:64:D3:89:AF:40:BF:0E:33:3E:B5:37:36:C3:D7:0A:A6:7C:A9 Certificate issuer: /CN=08C7DE894A4A88622BA78BC9E41DFA5CC6E3034F Certificate serial: 2F84657AFA31D8C7EC88481BA56490A6ECFE88F2 Authority key identifier: 08:C7:DE:89:4A:4A:88:62:2B:A7:8B:C9:E4:1D:FA:5C:C6:E3:03:4F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/08C7DE894A4A88622BA78BC9E41DFA5CC6E3034F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1110017641860300821/0/323430363a653363303a3a2f33322d3332203d3e20313334373733.roa Signing time: Fri 22 May 2026 01:38:36 +0000 ROA not before: Fri 22 May 2026 01:33:36 +0000 ROA not after: Fri 21 May 2027 01:38:36 +0000 asID: 134773 IP address blocks: 2406:e3c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1110017641860300821/0/08C7DE894A4A88622BA78BC9E41DFA5CC6E3034F.crl rsync://rpki-rps.cnnic.cn/repo/A1110017641860300821/0/08C7DE894A4A88622BA78BC9E41DFA5CC6E3034F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/08C7DE894A4A88622BA78BC9E41DFA5CC6E3034F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 12:08:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:84:65:7a:fa:31:d8:c7:ec:88:48:1b:a5:64:90:a6:ec:fe:88:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08C7DE894A4A88622BA78BC9E41DFA5CC6E3034F Validity Not Before: May 22 01:33:36 2026 GMT Not After : May 21 01:38:36 2027 GMT Subject: CN=45CE64D389AF40BF0E333EB53736C3D70AA67CA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d2:73:81:c4:bb:dc:d7:aa:69:77:db:1c:c9: a3:88:e3:9e:2e:48:6b:2e:a9:21:75:30:7e:9e:7a: 2e:c4:dd:5c:04:1c:6c:8d:90:32:f6:c2:81:9d:e6: 32:c1:14:1b:8c:6b:04:f7:a1:11:66:5c:9f:e3:ac: 78:16:82:e3:e2:11:fe:db:46:e4:1e:90:84:64:3d: 88:ef:dc:f8:3a:d8:c9:bb:ab:0d:6b:d5:24:c6:bb: aa:1b:26:b2:c3:fc:79:29:34:a5:35:66:4a:fe:b9: 34:04:48:19:a6:7d:17:53:03:76:42:e7:73:b1:db: 31:2b:17:3c:f3:59:39:9e:5f:74:f6:88:e3:c8:18: 9f:82:46:8c:18:51:17:15:af:b5:52:e2:39:8a:f0: fa:62:94:8c:df:76:5a:16:7e:a9:06:26:c9:7e:e2: ce:fd:53:23:91:b2:fa:ae:1e:1f:91:41:56:90:fd: c0:1b:93:7b:9d:3a:e9:6b:53:5c:39:e4:0b:cc:56: af:9e:29:41:e7:b8:dd:36:43:af:aa:14:b9:b2:2c: 6b:2f:78:cd:e8:58:72:47:49:9b:fa:c8:4a:5f:39: 70:1a:e9:b1:c6:c6:69:8a:45:f0:55:80:41:78:17: 92:c0:2e:3b:bb:96:09:3d:e5:2c:a2:bb:05:4b:e3: e9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CE:64:D3:89:AF:40:BF:0E:33:3E:B5:37:36:C3:D7:0A:A6:7C:A9 X509v3 Authority Key Identifier: keyid:08:C7:DE:89:4A:4A:88:62:2B:A7:8B:C9:E4:1D:FA:5C:C6:E3:03:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1110017641860300821/0/08C7DE894A4A88622BA78BC9E41DFA5CC6E3034F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/08C7DE894A4A88622BA78BC9E41DFA5CC6E3034F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1110017641860300821/0/323430363a653363303a3a2f33322d3332203d3e20313334373733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:e3c0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:14:2f:40:9d:b1:9c:4d:12:83:de:b1:19:c8:fd:56:04:0f: 82:e5:32:f9:43:97:61:b9:26:b9:c0:ad:34:cf:f2:4f:cc:d2: de:de:f1:ba:1a:e4:8e:32:77:c6:07:ea:5a:4f:d9:82:2a:b4: 07:16:07:79:b0:21:9c:10:cc:b6:a9:b6:dd:7d:bc:e8:a7:50: a0:c5:1a:33:c8:24:92:16:9a:a1:2a:35:a0:b6:5e:74:b5:09: c0:0c:8f:af:d8:61:b1:56:e4:34:17:10:33:88:4c:64:b1:2c: 6a:77:50:00:ec:7c:4a:a5:1b:cb:50:bb:15:3f:1f:8b:e2:6b: e1:28:85:38:79:f1:24:5a:8b:67:05:c7:df:2b:c4:42:ca:46: 10:ca:55:f2:2a:89:a0:12:2d:46:e7:65:08:d5:41:42:76:ff: 9c:7f:d7:53:99:16:79:46:3a:b4:8a:a5:1c:d2:f8:39:3f:d0: 79:b1:22:b8:48:be:0d:c2:68:8a:76:0a:ef:aa:34:77:56:df: bc:d4:7d:cf:67:15:b6:73:c6:c7:2c:5e:e0:e1:52:2d:c2:11: d7:91:e7:9c:d3:de:ca:b6:9e:26:6b:90:6d:b0:6c:d4:17:0f: 7a:a2:0b:27:23:9f:bc:6b:48:32:44:5d:c5:76:f1:6e:4d:0b: d5:c2:d2:b5 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUL4Rlevox2MfsiEgbpWSQpuz+iPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhDN0RFODk0QTRBODg2MjJCQTc4QkM5RTQxREZBNUND NkUzMDM0RjAeFw0yNjA1MjIwMTMzMzZaFw0yNzA1MjEwMTM4MzZaMDMxMTAvBgNV BAMTKDQ1Q0U2NEQzODlBRjQwQkYwRTMzM0VCNTM3MzZDM0Q3MEFBNjdDQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ0nOBxLvc16ppd9scyaOI454u SGsuqSF1MH6eei7E3VwEHGyNkDL2woGd5jLBFBuMawT3oRFmXJ/jrHgWguPiEf7b RuQekIRkPYjv3Pg62Mm7qw1r1STGu6obJrLD/HkpNKU1Zkr+uTQESBmmfRdTA3ZC 53Ox2zErFzzzWTmeX3T2iOPIGJ+CRowYURcVr7VS4jmK8PpilIzfdloWfqkGJsl+ 4s79UyORsvquHh+RQVaQ/cAbk3udOulrU1w55AvMVq+eKUHnuN02Q6+qFLmyLGsv eM3oWHJHSZv6yEpfOXAa6bHGxmmKRfBVgEF4F5LALju7lgk95SyiuwVL4+mfAgMB AAGjggIVMIICETAdBgNVHQ4EFgQURc5k04mvQL8OMz61NzbD1wqmfKkwHwYDVR0j BBgwFoAUCMfeiUpKiGIrp4vJ5B36XMbjA08wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MDAxNzY0MTg2MDMwMDgyMS8wLzA4QzdERTg5NEE0QTg4NjIyQkE3OEJDOUU0MURG QTVDQzZFMzAzNEYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMDhDN0RFODk0QTRBODg2MjJCQTc4QkM5RTQxREZBNUNDNkUzMDM0Ri5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTExMDAxNzY0MTg2MDMwMDgyMS8wLzMyMzQzMDM2M2E2 NTMzNjMzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzMzNDM3MzczMy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQG48AwDQYJKoZIhvcNAQELBQADggEBAEoUL0CdsZxNEoPesRnI/VYE D4LlMvlDl2G5JrnArTTP8k/M0t7e8boa5I4yd8YH6lpP2YIqtAcWB3mwIZwQzLap tt19vOinUKDFGjPIJJIWmqEqNaC2XnS1CcAMj6/YYbFW5DQXEDOITGSxLGp3UADs fEqlG8tQuxU/H4via+EohTh58SRai2cFx98rxELKRhDKVfIqiaASLUbnZQjVQUJ2 /5x/11OZFnlGOrSKpRzS+Dk/0HmxIrhIvg3CaIp2Cu+qNHdW37zUfc9nFbZzxscs XuDhUi3CEdeR55zT3sq2niZrkG2wbNQXD3qiCycjn7xrSDJEXcV28W5NC9XC0rU= -----END CERTIFICATE-----Generated at Fri May 29 23:53:22 2026 by rpki-client