$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313035303a3a2f34382d3438203d3e203233373234.roa File: 323430303a383963303a313035303a3a2f34382d3438203d3e203233373234.roa (raw, json) Hash identifier: nd0802gndbLVLfY0hMHGiFBZ0UHdVScWxEcw+v39vFo= Subject key identifier: 4E:01:C3:40:B3:3E:AC:7B:7F:41:0F:E8:56:61:52:E9:6A:0F:C5:53 Certificate issuer: /CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Certificate serial: 127AAFD705071C03E68E095651FF6B3EF13F1CA3 Authority key identifier: 3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313035303a3a2f34382d3438203d3e203233373234.roa Signing time: Fri 05 Jun 2026 07:21:39 +0000 ROA not before: Fri 05 Jun 2026 07:16:39 +0000 ROA not after: Fri 04 Jun 2027 07:21:39 +0000 asID: 23724 IP address blocks: 2400:89c0:1050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 09:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:7a:af:d7:05:07:1c:03:e6:8e:09:56:51:ff:6b:3e:f1:3f:1c:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Validity Not Before: Jun 5 07:16:39 2026 GMT Not After : Jun 4 07:21:39 2027 GMT Subject: CN=4E01C340B33EAC7B7F410FE8566152E96A0FC553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6f:30:ca:95:9a:76:e7:c8:45:d3:a5:2a:01: e5:9c:9c:8a:bd:d1:fc:71:2f:6d:8d:3c:25:1c:b6: 17:53:2b:d0:08:a3:35:88:76:97:ad:0c:ec:12:1f: e4:a0:eb:30:50:41:c1:4d:b6:50:f9:63:ca:84:9d: 90:84:14:93:58:aa:e2:43:41:cd:a3:65:12:7e:f0: 80:e4:73:74:b0:bc:44:ee:fd:c7:9d:4b:be:71:84: 56:bf:3e:51:13:ac:1a:f1:3a:7c:44:60:cd:e5:97: 03:8d:89:af:6e:fb:30:9d:95:09:0f:ee:f3:3d:5e: 26:97:b5:40:8f:e3:a3:ad:cd:e0:d1:28:51:d6:d7: ff:81:00:8a:df:5d:8e:50:9f:b2:bc:f8:5d:05:02: bf:b4:dd:2e:89:2d:b3:03:58:52:c1:b9:97:2f:8a: a5:7c:1d:2c:b4:7e:68:09:fa:5d:75:a9:5c:9d:cf: 74:f9:cd:55:a6:ab:26:0c:08:e8:ec:a4:e8:7b:e6: fa:79:98:32:25:d9:d0:b1:f8:6f:4e:2a:bf:fc:e6: 91:55:1e:09:83:f4:c6:a4:82:ff:35:7e:00:68:65: 74:f9:f1:a9:02:e6:4b:7c:45:7c:e2:f7:60:a1:b1: 69:b0:d9:57:f2:26:26:24:17:a8:8b:5f:26:9d:50: be:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:01:C3:40:B3:3E:AC:7B:7F:41:0F:E8:56:61:52:E9:6A:0F:C5:53 X509v3 Authority Key Identifier: keyid:3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313035303a3a2f34382d3438203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:89c0:1050::/48 Signature Algorithm: sha256WithRSAEncryption 05:cd:a6:2c:f7:89:df:0f:10:e5:15:ba:c4:0f:1b:ba:a7:0a: 35:16:db:64:33:4a:cf:fc:b3:86:21:32:8c:ca:57:bd:be:4e: 82:48:71:00:bb:fb:81:43:7f:9b:46:61:ed:91:23:e1:e6:49: bd:7c:14:d4:7a:59:b2:12:3f:27:75:a5:8e:47:26:6b:7c:ca: 76:2d:0e:5f:39:27:f3:5f:cd:69:9b:25:c2:df:2a:c2:ef:df: fc:30:b3:37:48:55:af:ea:ae:8c:28:61:d3:a5:97:8b:85:9c: 18:14:49:39:2a:21:cc:68:4e:58:1a:50:92:d3:83:0d:33:f9: 84:1c:6a:20:53:2d:d1:7d:a0:cc:27:0a:4d:71:36:48:0b:41: 7f:93:b4:47:c0:05:58:c1:61:36:51:0b:3a:17:85:93:4d:8b: 5c:72:d1:2e:40:40:97:3a:d1:a8:db:db:38:25:9b:ae:15:fe: fa:b3:5f:15:98:c2:6a:2a:35:eb:9c:1e:65:e7:99:f9:f1:b3: 45:5a:7b:c3:ac:91:aa:6b:31:fa:ef:00:0d:6d:a8:32:29:ec: 30:be:95:9e:bc:83:7f:7e:56:45:12:a1:27:ca:3b:c7:1e:81: e1:d2:d6:a0:24:93:69:61:a8:60:ff:bd:bb:73:eb:57:ec:9c: c9:65:0e:01 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUEnqv1wUHHAPmjglWUf9rPvE/HKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVC RkExOThENTAeFw0yNjA2MDUwNzE2MzlaFw0yNzA2MDQwNzIxMzlaMDMxMTAvBgNV BAMTKDRFMDFDMzQwQjMzRUFDN0I3RjQxMEZFODU2NjE1MkU5NkEwRkM1NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4bzDKlZp258hF06UqAeWcnIq9 0fxxL22NPCUcthdTK9AIozWIdpetDOwSH+Sg6zBQQcFNtlD5Y8qEnZCEFJNYquJD Qc2jZRJ+8IDkc3SwvETu/cedS75xhFa/PlETrBrxOnxEYM3llwONia9u+zCdlQkP 7vM9XiaXtUCP46OtzeDRKFHW1/+BAIrfXY5Qn7K8+F0FAr+03S6JLbMDWFLBuZcv iqV8HSy0fmgJ+l11qVydz3T5zVWmqyYMCOjspOh75vp5mDIl2dCx+G9OKr/85pFV HgmD9Makgv81fgBoZXT58akC5kt8RXzi92ChsWmw2VfyJiYkF6iLXyadUL5rAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUTgHDQLM+rHt/QQ/oVmFS6WoPxVMwHwYDVR0j BBgwFoAUPlmJ9y3KGXnR3ZZjxXXtFb+hmNUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzU2NDE2OTY0MjYzOTM3OS8wLzNFNTk4OUY3MkRDQTE5NzlEMUREOTY2M0M1NzVF RDE1QkZBMTk4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVCRkExOThENS5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA3NTY0MTY5NjQyNjM5Mzc5LzAvMzIzNDMwMzAz YTM4Mzk2MzMwM2EzMTMwMzUzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzMz NzMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAInAEFAwDQYJKoZIhvcNAQELBQADggEBAAXNpiz3 id8PEOUVusQPG7qnCjUW22QzSs/8s4YhMozKV72+ToJIcQC7+4FDf5tGYe2RI+Hm Sb18FNR6WbISPyd1pY5HJmt8ynYtDl85J/NfzWmbJcLfKsLv3/wwszdIVa/qrowo YdOll4uFnBgUSTkqIcxoTlgaUJLTgw0z+YQcaiBTLdF9oMwnCk1xNkgLQX+TtEfA BVjBYTZRCzoXhZNNi1xy0S5AQJc60ajb2zglm64V/vqzXxWYwmoqNeucHmXnmfnx s0Vae8OskaprMfrvAA1tqDIp7DC+lZ68g39+VkUSoSfKO8cegeHS1qAkk2lhqGD/ vbtz61fsnMllDgE= -----END CERTIFICATE-----Generated at Sun Jun 14 02:29:03 2026 by rpki-client