$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313035323a3a2f34382d3438203d3e203233373234.roa File: 323430303a383963303a313035323a3a2f34382d3438203d3e203233373234.roa (raw, json) Hash identifier: tgmurCNxE+FQOSRwFvKiy56vX/vujG+YIRLvu8zzkM4= Subject key identifier: CA:41:44:3B:1D:D9:DD:62:38:45:1B:AF:BB:47:79:5B:08:E8:04:4F Certificate issuer: /CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Certificate serial: 20D1B294BE74AAF91DBCDD292D90BB5CF925B00A Authority key identifier: 3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313035323a3a2f34382d3438203d3e203233373234.roa Signing time: Fri 05 Jun 2026 07:18:40 +0000 ROA not before: Fri 05 Jun 2026 07:13:40 +0000 ROA not after: Fri 04 Jun 2027 07:18:40 +0000 asID: 23724 IP address blocks: 2400:89c0:1052::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 09:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d1:b2:94:be:74:aa:f9:1d:bc:dd:29:2d:90:bb:5c:f9:25:b0:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Validity Not Before: Jun 5 07:13:40 2026 GMT Not After : Jun 4 07:18:40 2027 GMT Subject: CN=CA41443B1DD9DD6238451BAFBB47795B08E8044F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:15:06:93:d0:c3:9c:fb:4f:2c:b5:2e:91:e7: 02:b0:d9:e0:0e:12:a3:28:c6:15:40:e7:1a:cb:ac: 21:47:fa:78:fa:e0:25:52:64:84:d9:e2:4d:7d:98: 50:da:22:9b:43:40:1f:e2:47:da:4d:6e:4e:69:b4: 04:a0:10:8f:5b:bc:75:32:81:58:2e:1d:a7:54:6f: 10:be:75:70:c3:91:57:5e:d2:94:d0:8c:42:a3:a3: 33:46:3f:58:88:57:b7:fd:03:d9:3a:8e:3f:59:5e: ce:42:41:1b:49:00:e5:f0:49:8c:c2:07:5c:22:50: 36:b7:b0:41:e5:65:fe:1a:e5:76:00:df:ea:91:27: aa:f9:a6:d2:3a:29:50:b2:43:d8:4e:a0:6a:d0:bd: 18:01:70:55:74:be:12:27:f5:79:9e:55:4c:00:52: 9b:ed:2c:56:e3:42:0d:26:7b:13:b4:3d:b4:49:b1: ea:e1:62:0e:06:50:47:30:18:39:d6:74:fe:d2:b7: 25:20:6d:b6:a6:06:4c:59:1e:e8:a3:f8:7d:1d:d2: e7:ed:d3:a5:b8:52:f3:d1:04:ce:ff:2b:05:17:f9: 45:2a:7f:ae:ad:38:59:a9:57:b8:e8:fd:7d:9b:80: 67:05:64:b7:62:86:23:53:5a:1b:95:c8:93:d1:29: ee:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:41:44:3B:1D:D9:DD:62:38:45:1B:AF:BB:47:79:5B:08:E8:04:4F X509v3 Authority Key Identifier: keyid:3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a313035323a3a2f34382d3438203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:89c0:1052::/48 Signature Algorithm: sha256WithRSAEncryption 74:a9:87:28:7d:17:22:c5:99:dc:24:88:41:9f:07:12:e5:24: 64:6e:b7:8c:d4:83:17:73:78:c1:ff:f5:9e:a3:33:a9:b9:f8: 89:bf:f2:c8:61:dd:0b:ca:f6:e6:5e:11:ef:d0:65:f0:e0:f8: 84:bb:60:0b:b3:d2:96:a0:98:ef:6a:8f:ff:54:18:42:4e:87: 89:7f:56:f7:fc:84:54:d4:c3:44:09:0e:e4:57:82:05:90:83: 35:15:5f:bc:bb:38:c2:be:77:62:21:52:3d:2c:1d:f5:d1:84: d1:f5:42:7e:fe:6e:d9:51:a9:ff:a6:57:50:1d:33:57:86:b6: bf:fe:b6:25:d7:ce:db:db:af:bd:ef:5d:e4:27:c6:cb:7c:62: 65:21:ce:95:18:06:27:ee:72:e1:cc:da:d5:f4:58:c2:98:97: 39:2b:dd:ce:11:78:22:0e:fa:53:80:2d:21:64:94:b7:e9:bf: 80:0f:1c:fd:43:e1:52:bb:a9:a2:ca:6d:e0:78:9e:43:46:14: 10:c1:0a:0f:57:04:eb:bb:30:3d:5b:92:ae:01:00:08:2b:70: 11:00:9a:0e:14:35:3f:63:68:74:04:c6:41:0b:d0:8a:97:36: 8a:47:50:7a:9c:ce:a1:34:c9:30:f5:a8:db:2b:a6:83:f6:16: 3b:45:33:91 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUINGylL50qvkdvN0pLZC7XPklsAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVC RkExOThENTAeFw0yNjA2MDUwNzEzNDBaFw0yNzA2MDQwNzE4NDBaMDMxMTAvBgNV BAMTKENBNDE0NDNCMUREOURENjIzODQ1MUJBRkJCNDc3OTVCMDhFODA0NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoFQaT0MOc+08stS6R5wKw2eAO EqMoxhVA5xrLrCFH+nj64CVSZITZ4k19mFDaIptDQB/iR9pNbk5ptASgEI9bvHUy gVguHadUbxC+dXDDkVde0pTQjEKjozNGP1iIV7f9A9k6jj9ZXs5CQRtJAOXwSYzC B1wiUDa3sEHlZf4a5XYA3+qRJ6r5ptI6KVCyQ9hOoGrQvRgBcFV0vhIn9XmeVUwA UpvtLFbjQg0mexO0PbRJserhYg4GUEcwGDnWdP7StyUgbbamBkxZHuij+H0d0uft 06W4UvPRBM7/KwUX+UUqf66tOFmpV7jo/X2bgGcFZLdihiNTWhuVyJPRKe5ZAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUykFEOx3Z3WI4RRuvu0d5WwjoBE8wHwYDVR0j BBgwFoAUPlmJ9y3KGXnR3ZZjxXXtFb+hmNUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzU2NDE2OTY0MjYzOTM3OS8wLzNFNTk4OUY3MkRDQTE5NzlEMUREOTY2M0M1NzVF RDE1QkZBMTk4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVCRkExOThENS5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA3NTY0MTY5NjQyNjM5Mzc5LzAvMzIzNDMwMzAz YTM4Mzk2MzMwM2EzMTMwMzUzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzMz NzMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAInAEFIwDQYJKoZIhvcNAQELBQADggEBAHSphyh9 FyLFmdwkiEGfBxLlJGRut4zUgxdzeMH/9Z6jM6m5+Im/8shh3QvK9uZeEe/QZfDg +IS7YAuz0pagmO9qj/9UGEJOh4l/Vvf8hFTUw0QJDuRXggWQgzUVX7y7OMK+d2Ih Uj0sHfXRhNH1Qn7+btlRqf+mV1AdM1eGtr/+tiXXztvbr73vXeQnxst8YmUhzpUY BifucuHM2tX0WMKYlzkr3c4ReCIO+lOALSFklLfpv4APHP1D4VK7qaLKbeB4nkNG FBDBCg9XBOu7MD1bkq4BAAgrcBEAmg4UNT9jaHQExkEL0IqXNopHUHqczqE0yTD1 qNsrpoP2FjtFM5E= -----END CERTIFICATE-----Generated at Sun Jun 14 02:28:18 2026 by rpki-client