$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591195721793537/0/AS24400.roa File: AS24400.roa (raw, json) Hash identifier: 0+o85fkYpiIFCFMQljowAFtrY9bNhD+dDhNiB6TrxOw= Subject key identifier: 2B:2F:FB:7E:AD:F3:9D:45:E1:5F:26:65:B3:88:AA:96:B7:9D:BE:42 Certificate issuer: /CN=845BB307E2A1100E89FA0C939A9389686796F0F6 Certificate serial: 605E5F1D3EECB3965311952C9B40D9EBB775053A Authority key identifier: 84:5B:B3:07:E2:A1:10:0E:89:FA:0C:93:9A:93:89:68:67:96:F0:F6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/845BB307E2A1100E89FA0C939A9389686796F0F6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591195721793537/0/AS24400.roa Signing time: Thu 04 Jun 2026 09:07:07 +0000 ROA not before: Thu 04 Jun 2026 09:02:07 +0000 ROA not after: Thu 03 Jun 2027 09:07:07 +0000 asID: 24400 IP address blocks: 240a:40c1:8000::/44 maxlen: 48 240a:40c1:8010::/44 maxlen: 48 240a:429e::/31 maxlen: 31 240a:42a2::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591195721793537/0/845BB307E2A1100E89FA0C939A9389686796F0F6.crl rsync://rpki-rps.cnnic.cn/repo/A1065591195721793537/0/845BB307E2A1100E89FA0C939A9389686796F0F6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/845BB307E2A1100E89FA0C939A9389686796F0F6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 08:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:5e:5f:1d:3e:ec:b3:96:53:11:95:2c:9b:40:d9:eb:b7:75:05:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=845BB307E2A1100E89FA0C939A9389686796F0F6 Validity Not Before: Jun 4 09:02:07 2026 GMT Not After : Jun 3 09:07:07 2027 GMT Subject: CN=2B2FFB7EADF39D45E15F2665B388AA96B79DBE42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bb:b5:a6:9a:96:50:fb:ea:49:41:56:b4:e1: c0:44:40:dc:5d:e8:f1:70:9b:93:63:2c:36:27:9c: 31:31:0d:8e:c7:8e:46:59:ec:7f:32:93:60:dc:59: d4:30:ca:f8:2d:a0:3f:8c:e9:ae:9b:a9:e6:cb:b7: b3:e8:51:e0:8d:4e:57:b6:1e:8d:8e:27:b9:64:ba: 8e:b8:db:9a:c0:a6:d9:4f:e0:43:50:9b:b5:fa:1d: bc:d2:cd:f7:ee:d5:bc:94:60:3c:98:f9:b1:6d:26: e5:22:1f:d3:71:81:3e:70:bb:96:92:65:7f:35:af: 94:6d:a9:27:cd:d5:80:b2:2e:91:15:6e:d4:70:ae: 74:fd:0a:ee:9d:6b:af:78:44:b7:d5:b9:0a:cd:cf: 39:98:52:5a:b9:3b:79:60:2a:e5:20:df:a6:3b:b1: 42:f4:bd:f3:a4:da:11:55:37:b7:6a:8b:2e:99:32: 0c:a1:d7:07:11:b6:0a:66:65:35:fd:40:69:8a:c7: 3e:10:8a:a2:27:a8:a7:75:7a:06:c5:79:24:fd:35: 36:51:de:71:15:39:d6:7c:33:a5:84:6e:ca:fc:5e: 92:4d:ea:e0:39:28:9b:36:38:d7:09:2a:ab:38:f4: 1a:8e:d4:a9:c9:91:0c:31:ba:b6:b6:38:eb:72:93: 9d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2F:FB:7E:AD:F3:9D:45:E1:5F:26:65:B3:88:AA:96:B7:9D:BE:42 X509v3 Authority Key Identifier: keyid:84:5B:B3:07:E2:A1:10:0E:89:FA:0C:93:9A:93:89:68:67:96:F0:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721793537/0/845BB307E2A1100E89FA0C939A9389686796F0F6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/845BB307E2A1100E89FA0C939A9389686796F0F6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591195721793537/0/AS24400.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:40c1:8000::/43 240a:429e::/31 240a:42a2::/31 Signature Algorithm: sha256WithRSAEncryption 4d:9b:c4:7b:f9:f1:75:11:e5:7d:29:80:42:b5:7c:d9:6d:36: 1d:05:c0:1e:be:0a:0e:31:53:c1:3d:b3:7e:0c:cb:4c:c3:37: 03:77:0d:bd:fa:ee:25:58:da:d6:75:e2:37:9a:6f:0e:1b:1a: 80:ee:ac:17:23:ff:f3:57:32:48:94:93:de:12:e0:06:bb:55: c3:ff:fa:d1:c5:ab:45:82:ef:12:55:9b:48:5c:47:8d:15:f9: f5:2f:e1:81:02:d4:c0:52:4b:92:d6:94:3a:08:27:c3:08:ef: 6e:2c:7e:f9:93:91:52:46:f4:fe:70:f3:2a:87:27:59:a0:0c: 5e:5b:6b:d1:ee:62:d6:54:d6:bc:89:fd:d9:31:70:4c:8b:e0: b6:0d:35:ff:e1:5e:48:d3:fd:86:d6:21:3d:00:c9:96:94:f9: c7:8b:05:6a:5d:51:e5:e0:7d:a3:9d:52:f1:b6:26:ef:10:26: e3:4a:d5:6a:bc:cb:ae:b5:57:37:f9:21:3f:7d:b5:74:a1:8a: 25:76:ae:27:3e:83:59:04:e3:b6:70:f4:24:70:ca:74:99:00: 3c:7f:38:f6:7d:9e:d3:f4:a7:03:45:b0:7f:9d:42:fe:9d:50: af:ce:81:c5:a5:e0:97:4a:12:3d:b0:4c:10:13:2e:ce:9d:46: a8:6e:ab:01 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYF5fHT7ss5ZTEZUsm0DZ67d1BTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1QkIzMDdFMkExMTAwRTg5RkEwQzkzOUE5Mzg5Njg2 Nzk2RjBGNjAeFw0yNjA2MDQwOTAyMDdaFw0yNzA2MDMwOTA3MDdaMDMxMTAvBgNV BAMTKDJCMkZGQjdFQURGMzlENDVFMTVGMjY2NUIzODhBQTk2Qjc5REJFNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUu7WmmpZQ++pJQVa04cBEQNxd 6PFwm5NjLDYnnDExDY7HjkZZ7H8yk2DcWdQwyvgtoD+M6a6bqebLt7PoUeCNTle2 Ho2OJ7lkuo6425rAptlP4ENQm7X6HbzSzffu1byUYDyY+bFtJuUiH9NxgT5wu5aS ZX81r5RtqSfN1YCyLpEVbtRwrnT9Cu6da694RLfVuQrNzzmYUlq5O3lgKuUg36Y7 sUL0vfOk2hFVN7dqiy6ZMgyh1wcRtgpmZTX9QGmKxz4QiqInqKd1egbFeST9NTZR 3nEVOdZ8M6WEbsr8XpJN6uA5KJs2ONcJKqs49BqO1KnJkQwxura2OOtyk52lAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUKy/7fq3znUXhXyZls4iqlredvkIwHwYDVR0j BBgwFoAUhFuzB+KhEA6J+gyTmpOJaGeW8PYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTE5NTcyMTc5MzUzNy8wLzg0NUJCMzA3RTJBMTEwMEU4OUZBMEM5MzlBOTM4 OTY4Njc5NkYwRjYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvODQ1QkIzMDdFMkExMTAwRTg5RkEwQzkzOUE5Mzg5Njg2Nzk2RjBGNi5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1OTExOTU3MjE3OTM1MzcvMC9BUzI0NDAwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAdBAIA AjAXAwcFJApAwYAAAwUBJApCngMFASQKQqIwDQYJKoZIhvcNAQELBQADggEBAE2b xHv58XUR5X0pgEK1fNltNh0FwB6+Cg4xU8E9s34My0zDNwN3Db367iVY2tZ14jea bw4bGoDurBcj//NXMkiUk94S4Aa7VcP/+tHFq0WC7xJVm0hcR40V+fUv4YEC1MBS S5LWlDoIJ8MI724sfvmTkVJG9P5w8yqHJ1mgDF5ba9HuYtZU1ryJ/dkxcEyL4LYN Nf/hXkjT/YbWIT0AyZaU+ceLBWpdUeXgfaOdUvG2Ju8QJuNK1Wq8y661Vzf5IT99 tXShiiV2ric+g1kE47Zw9CRwynSZADx/OPZ9ntP0pwNFsH+dQv6dUK/OgcWl4JdK Ej2wTBATLs6dRqhuqwE= -----END CERTIFICATE-----Generated at Sat Jun 13 19:57:45 2026 by rpki-client