$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094865295295643651/0/323430313a396130303a333a3a2f34382d3438203d3e203137343930.roa File: 323430313a396130303a333a3a2f34382d3438203d3e203137343930.roa (raw, json) Hash identifier: 3irNDoSEmVkY64rNTXFtoc+fz4qnZMnxycpbcc3Dd5k= Subject key identifier: 5B:9D:EC:70:35:41:2C:4E:31:F6:87:E6:77:BB:65:AB:06:A7:34:D3 Certificate issuer: /CN=5253565A27C06C800009631402F5A6EE85C46456 Certificate serial: 789B281C12A7CA784DD78B604BCDB9D3A2383479 Authority key identifier: 52:53:56:5A:27:C0:6C:80:00:09:63:14:02:F5:A6:EE:85:C4:64:56 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5253565A27C06C800009631402F5A6EE85C46456.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/323430313a396130303a333a3a2f34382d3438203d3e203137343930.roa Signing time: Mon 01 Jun 2026 02:14:49 +0000 ROA not before: Mon 01 Jun 2026 02:09:49 +0000 ROA not after: Mon 31 May 2027 02:14:49 +0000 asID: 17490 IP address blocks: 2401:9a00:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/5253565A27C06C800009631402F5A6EE85C46456.crl rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/5253565A27C06C800009631402F5A6EE85C46456.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5253565A27C06C800009631402F5A6EE85C46456.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 07:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:9b:28:1c:12:a7:ca:78:4d:d7:8b:60:4b:cd:b9:d3:a2:38:34:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5253565A27C06C800009631402F5A6EE85C46456 Validity Not Before: Jun 1 02:09:49 2026 GMT Not After : May 31 02:14:49 2027 GMT Subject: CN=5B9DEC7035412C4E31F687E677BB65AB06A734D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b9:da:7c:6d:5a:5c:99:47:56:4c:3d:61:4d: 98:0c:be:37:30:b6:f2:9e:19:44:1a:6d:08:fc:eb: 0b:fd:0e:8c:60:70:22:36:f0:bf:6d:7e:1b:19:f9: 6f:f1:d9:41:d3:98:2f:7f:c5:11:a5:8e:f7:97:9d: 51:2b:a5:25:6a:e3:59:63:bb:7c:ac:db:28:a9:e2: ce:fb:76:0d:c8:49:97:7f:6f:d5:ef:fa:89:6e:4e: 6a:86:3a:2c:01:a8:ee:e4:15:87:91:cd:42:2f:0b: 45:c1:f8:35:36:84:57:63:01:12:03:d5:53:e4:29: 33:76:42:26:b5:ec:c3:55:77:f9:c2:75:f1:b1:d2: 38:98:9b:cc:47:d6:de:df:bb:ef:88:b4:00:d8:97: d0:e0:3f:c8:62:af:d9:67:6a:4d:dc:62:14:fb:7e: 22:d5:aa:86:21:db:01:64:04:bc:d5:c8:67:73:b8: 6b:18:d9:26:98:90:a0:0b:63:fa:13:5b:e8:92:e9: 62:66:45:1b:7f:b1:20:98:d7:12:0e:ac:8a:ea:d5: 58:cf:86:75:58:a9:88:15:e0:c0:0b:b0:42:a7:bc: 76:36:48:04:1a:c6:d4:48:fd:8e:47:46:c0:d1:00: b6:a1:97:cf:55:ce:d6:9a:a1:ea:d2:0d:e2:4b:56: 21:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9D:EC:70:35:41:2C:4E:31:F6:87:E6:77:BB:65:AB:06:A7:34:D3 X509v3 Authority Key Identifier: keyid:52:53:56:5A:27:C0:6C:80:00:09:63:14:02:F5:A6:EE:85:C4:64:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/5253565A27C06C800009631402F5A6EE85C46456.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5253565A27C06C800009631402F5A6EE85C46456.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094865295295643651/0/323430313a396130303a333a3a2f34382d3438203d3e203137343930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:9a00:3::/48 Signature Algorithm: sha256WithRSAEncryption d1:dc:7d:8f:a8:24:ac:2b:9c:cf:79:b8:bc:e9:45:30:3d:fc: ce:32:df:6e:71:41:a8:9c:56:5b:5c:c8:e4:d6:ee:cb:3a:61: 5f:86:f1:d7:38:e3:5e:f4:43:0c:8e:ac:54:8d:4b:37:a6:16: 73:9d:38:e0:a1:ae:f2:29:45:8d:9e:0a:da:3f:db:88:1f:85: 38:88:d5:25:6e:a9:96:2c:ee:c4:64:d5:70:38:d6:d5:b8:19: a8:7a:05:07:2f:15:e9:ac:36:c8:aa:af:5e:85:3b:2e:d3:3a: 45:79:63:b0:0d:05:03:f6:5e:26:8b:25:65:62:f4:63:00:6e: 39:57:f3:a9:91:ae:09:61:e8:78:89:4c:be:9e:39:b5:fd:fb: 25:fa:fd:66:29:74:17:ea:19:9d:a7:7d:45:62:d0:f5:6c:a1: 82:60:0a:49:1e:bb:89:dd:35:a8:cf:f0:ad:b3:5e:be:b6:4f: a4:07:f1:68:04:3b:53:c0:45:d4:30:97:8e:6c:fa:18:eb:60: e7:65:54:14:57:60:1c:93:f6:86:71:4f:bb:fe:73:39:89:a8: 36:24:7e:4e:25:b0:ae:c5:96:b8:6a:60:bd:76:ce:a3:d0:83: d4:80:63:99:09:98:43:94:48:fc:3f:c6:ab:90:42:46:58:1b: f5:24:bc:f2 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUeJsoHBKnynhN14tgS82506I4NHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI1MzU2NUEyN0MwNkM4MDAwMDk2MzE0MDJGNUE2RUU4 NUM0NjQ1NjAeFw0yNjA2MDEwMjA5NDlaFw0yNzA1MzEwMjE0NDlaMDMxMTAvBgNV BAMTKDVCOURFQzcwMzU0MTJDNEUzMUY2ODdFNjc3QkI2NUFCMDZBNzM0RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjudp8bVpcmUdWTD1hTZgMvjcw tvKeGUQabQj86wv9DoxgcCI28L9tfhsZ+W/x2UHTmC9/xRGljveXnVErpSVq41lj u3ys2yip4s77dg3ISZd/b9Xv+oluTmqGOiwBqO7kFYeRzUIvC0XB+DU2hFdjARID 1VPkKTN2Qia17MNVd/nCdfGx0jiYm8xH1t7fu++ItADYl9DgP8hir9lnak3cYhT7 fiLVqoYh2wFkBLzVyGdzuGsY2SaYkKALY/oTW+iS6WJmRRt/sSCY1xIOrIrq1VjP hnVYqYgV4MALsEKnvHY2SAQaxtRI/Y5HRsDRALahl89VztaaoerSDeJLViE/AgMB AAGjggIaMIICFjAdBgNVHQ4EFgQUW53scDVBLE4x9ofmd7tlqwanNNMwHwYDVR0j BBgwFoAUUlNWWifAbIAACWMUAvWm7oXEZFYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDg2NTI5NTI5NTY0MzY1MS8wLzUyNTM1NjVBMjdDMDZDODAwMDA5NjMxNDAyRjVB NkVFODVDNDY0NTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNTI1MzU2NUEyN0MwNkM4MDAwMDk2MzE0MDJGNUE2RUU4NUM0NjQ1Ni5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwOTQ4NjUyOTUyOTU2NDM2NTEvMC8zMjM0MzAzMTNh Mzk2MTMwMzAzYTMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNzM0MzkzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACQBmgAAAzANBgkqhkiG9w0BAQsFAAOCAQEA0dx9j6gkrCucz3m4 vOlFMD38zjLfbnFBqJxWW1zI5NbuyzphX4bx1zjjXvRDDI6sVI1LN6YWc5044KGu 8ilFjZ4K2j/biB+FOIjVJW6plizuxGTVcDjW1bgZqHoFBy8V6aw2yKqvXoU7LtM6 RXljsA0FA/ZeJoslZWL0YwBuOVfzqZGuCWHoeIlMvp45tf37Jfr9Zil0F+oZnad9 RWLQ9WyhgmAKSR67id01qM/wrbNevrZPpAfxaAQ7U8BF1DCXjmz6GOtg52VUFFdg HJP2hnFPu/5zOYmoNiR+TiWwrsWWuGpgvXbOo9CD1IBjmQmYQ5RI/D/Gq5BCRlgb 9SS88g== -----END CERTIFICATE-----Generated at Sun Jun 14 01:06:56 2026 by rpki-client