$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a323130303a3a2f34382d3438203d3e203337393336.roa File: 323430303a383963303a323130303a3a2f34382d3438203d3e203337393336.roa (raw, json) Hash identifier: r4ZIr5eVsqMwhhNxU3GYAxGO5X9dPGrR4ChVgB3aJUs= Subject key identifier: 67:9E:39:0D:6F:E9:51:7F:06:1D:A2:4E:C6:3B:B4:9F:F5:8F:AC:3D Certificate issuer: /CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Certificate serial: 2DF41611ABA9CD96B2E8C2EFC3CBA0DE873D0620 Authority key identifier: 3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a323130303a3a2f34382d3438203d3e203337393336.roa Signing time: Fri 05 Jun 2026 07:21:19 +0000 ROA not before: Fri 05 Jun 2026 07:16:19 +0000 ROA not after: Fri 04 Jun 2027 07:21:19 +0000 asID: 37936 IP address blocks: 2400:89c0:2100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:f4:16:11:ab:a9:cd:96:b2:e8:c2:ef:c3:cb:a0:de:87:3d:06:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Validity Not Before: Jun 5 07:16:19 2026 GMT Not After : Jun 4 07:21:19 2027 GMT Subject: CN=679E390D6FE9517F061DA24EC63BB49FF58FAC3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:99:0b:9f:89:c2:48:81:81:9a:b4:55:19:71: be:19:9a:e6:4f:5b:c7:1e:7d:9c:9e:60:d0:dc:e0: 6a:d1:1d:17:26:db:a9:ab:50:de:51:ac:41:d1:7d: cb:49:b8:20:cf:50:d9:80:43:a0:f8:1f:51:2d:5f: 56:1d:07:ff:70:1d:a1:6c:73:f7:1d:5c:8f:3c:21: 3f:5e:dc:9a:28:eb:26:11:d5:56:b1:7d:66:5a:60: ed:63:06:27:a6:7e:c2:f7:ac:21:54:6f:5f:98:ac: 58:f1:40:4d:02:49:1a:da:be:96:4e:c4:49:bd:d0: 1a:73:cd:5b:a3:2b:aa:20:8e:a3:2a:09:32:53:66: 3e:e0:1c:df:15:5e:49:93:86:17:6a:4c:fb:e0:fa: 9a:6c:11:47:1f:5a:6a:5e:cf:b3:05:45:0b:60:ea: f4:e2:52:a9:7c:04:8d:8e:3d:cf:e2:c5:2e:af:62: f9:33:68:c5:8b:ff:04:a9:fc:6e:95:50:28:11:f3: 0f:b6:11:ad:e8:63:ee:49:77:9b:cd:f6:e8:45:ae: c2:eb:c5:76:13:8c:e5:cf:07:a4:ed:56:27:8a:d6: f7:a0:5c:08:cc:c7:3d:60:3e:c9:7b:d3:f4:32:89: 27:85:63:9d:2c:60:39:20:ac:c0:59:8d:1a:5f:a6: 08:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:9E:39:0D:6F:E9:51:7F:06:1D:A2:4E:C6:3B:B4:9F:F5:8F:AC:3D X509v3 Authority Key Identifier: keyid:3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a323130303a3a2f34382d3438203d3e203337393336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:89c0:2100::/48 Signature Algorithm: sha256WithRSAEncryption a1:2b:3c:32:34:89:36:99:b6:e5:84:52:d2:38:9d:39:90:0f: 4b:73:2b:68:47:98:d9:9e:2c:db:8a:1a:cf:e4:12:90:33:33: ce:c9:56:23:a4:f2:4d:10:75:16:ff:3d:64:b1:cd:08:c8:68: 47:c2:e4:b2:af:68:fc:43:69:35:ed:cf:af:83:13:20:df:d1: f8:1f:ae:c9:ba:a2:69:ce:87:5b:9c:d9:61:86:f7:1f:d1:9c: 1f:67:c5:2e:16:dd:a5:3c:09:44:ab:36:c4:e9:7d:ff:10:e7: 55:2d:5a:3a:09:3d:52:28:79:8a:9d:02:be:e7:a3:be:93:ea: 6f:28:54:1f:c4:e8:01:23:88:95:2f:ad:35:42:b4:c7:0e:a9: 73:25:b0:f9:c6:2e:b3:1e:11:04:7e:65:c1:f5:e4:89:42:40: 7d:36:94:78:b5:17:72:e0:c5:cc:0b:a6:c7:57:60:b8:dd:10: aa:78:a2:ac:5d:0f:ae:35:2a:db:59:73:ad:f9:49:72:80:23: 29:31:12:8a:35:5d:f6:29:2d:b6:26:2f:61:9a:a2:9f:e3:30: 11:08:5f:6f:58:7c:38:c3:df:91:9d:83:6c:5f:af:bd:39:9d: 4b:47:40:02:20:74:6f:ca:34:2b:fc:51:25:c6:cc:54:aa:eb: 93:e7:53:cf -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIULfQWEaupzZay6MLvw8ug3oc9BiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVC RkExOThENTAeFw0yNjA2MDUwNzE2MTlaFw0yNzA2MDQwNzIxMTlaMDMxMTAvBgNV BAMTKDY3OUUzOTBENkZFOTUxN0YwNjFEQTI0RUM2M0JCNDlGRjU4RkFDM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0mQuficJIgYGatFUZcb4ZmuZP W8cefZyeYNDc4GrRHRcm26mrUN5RrEHRfctJuCDPUNmAQ6D4H1EtX1YdB/9wHaFs c/cdXI88IT9e3Joo6yYR1VaxfWZaYO1jBiemfsL3rCFUb1+YrFjxQE0CSRravpZO xEm90BpzzVujK6ogjqMqCTJTZj7gHN8VXkmThhdqTPvg+ppsEUcfWmpez7MFRQtg 6vTiUql8BI2OPc/ixS6vYvkzaMWL/wSp/G6VUCgR8w+2Ea3oY+5Jd5vN9uhFrsLr xXYTjOXPB6TtVieK1vegXAjMxz1gPsl70/QyiSeFY50sYDkgrMBZjRpfpghhAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUZ545DW/pUX8GHaJOxju0n/WPrD0wHwYDVR0j BBgwFoAUPlmJ9y3KGXnR3ZZjxXXtFb+hmNUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzU2NDE2OTY0MjYzOTM3OS8wLzNFNTk4OUY3MkRDQTE5NzlEMUREOTY2M0M1NzVF RDE1QkZBMTk4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVCRkExOThENS5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA3NTY0MTY5NjQyNjM5Mzc5LzAvMzIzNDMwMzAz YTM4Mzk2MzMwM2EzMjMxMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMzMzcz OTMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAInAIQAwDQYJKoZIhvcNAQELBQADggEBAKErPDI0 iTaZtuWEUtI4nTmQD0tzK2hHmNmeLNuKGs/kEpAzM87JViOk8k0QdRb/PWSxzQjI aEfC5LKvaPxDaTXtz6+DEyDf0fgfrsm6omnOh1uc2WGG9x/RnB9nxS4W3aU8CUSr NsTpff8Q51UtWjoJPVIoeYqdAr7no76T6m8oVB/E6AEjiJUvrTVCtMcOqXMlsPnG LrMeEQR+ZcH15IlCQH02lHi1F3LgxcwLpsdXYLjdEKp4oqxdD641KttZc635SXKA IykxEoo1XfYpLbYmL2Gaop/jMBEIX29YfDjD35Gdg2xfr705nUtHQAIgdG/KNCv8 USXGzFSq65PnU88= -----END CERTIFICATE-----Generated at Sun Jun 14 04:58:00 2026 by rpki-client