$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a323230303a3a2f34382d3438203d3e203337393336.roa File: 323430303a383963303a323230303a3a2f34382d3438203d3e203337393336.roa (raw, json) Hash identifier: Vj1CUvt3oY0XkME6UkO/h4ktqrgU9Kzf9gJyM5XiFhg= Subject key identifier: F9:2A:18:37:4E:4E:33:28:9B:C5:C1:0D:58:62:A8:F7:2B:31:E7:F6 Certificate issuer: /CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Certificate serial: 38CDF88F5303D71356CAE63D133BA885C860A09D Authority key identifier: 3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a323230303a3a2f34382d3438203d3e203337393336.roa Signing time: Fri 05 Jun 2026 07:19:00 +0000 ROA not before: Fri 05 Jun 2026 07:14:00 +0000 ROA not after: Fri 04 Jun 2027 07:19:00 +0000 asID: 37936 IP address blocks: 2400:89c0:2200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 16:02:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:cd:f8:8f:53:03:d7:13:56:ca:e6:3d:13:3b:a8:85:c8:60:a0:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Validity Not Before: Jun 5 07:14:00 2026 GMT Not After : Jun 4 07:19:00 2027 GMT Subject: CN=F92A18374E4E33289BC5C10D5862A8F72B31E7F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c2:f7:bc:ae:ed:a4:a1:3c:10:5a:b5:e2:8d: 99:f3:46:3b:2f:ec:f4:88:d1:9c:0d:c4:cb:96:f8: c7:b4:92:c5:22:c7:a2:d6:a1:ab:2e:97:26:84:50: 1e:56:e9:90:2b:18:b8:f8:4f:aa:de:4a:6b:19:c9: 85:5f:6e:8f:05:d8:1d:7b:19:ab:d7:dd:42:c7:3b: fd:90:f5:8e:6e:04:20:42:42:5f:c0:80:35:ef:c9: 19:06:d4:13:dd:46:c8:42:b6:da:96:25:09:af:8a: 4d:e6:20:e9:e8:ee:c5:04:57:fd:ba:35:03:8b:e6: f3:ae:99:6c:28:ae:31:26:82:97:b7:62:a4:0c:76: 5e:b1:e1:9b:cc:7f:5c:1f:30:20:43:3c:13:b3:5a: 32:f6:15:bd:6c:ee:55:76:6b:90:3e:c9:d4:a5:06: ff:0a:aa:96:56:ef:54:5d:0e:50:0b:46:93:a4:13: 16:01:83:ad:d5:63:dd:21:99:94:63:10:13:5a:ad: a7:19:0d:9f:34:d9:8b:b1:77:1b:92:30:a3:f3:b5: a5:21:b6:25:2a:ba:ed:dd:7d:48:6f:eb:d4:aa:bb: 03:49:24:b1:f9:41:75:23:2d:1a:89:15:7e:2c:cc: 69:08:29:a0:fd:2d:65:1c:57:cf:d3:16:fc:36:01: ef:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:2A:18:37:4E:4E:33:28:9B:C5:C1:0D:58:62:A8:F7:2B:31:E7:F6 X509v3 Authority Key Identifier: keyid:3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a323230303a3a2f34382d3438203d3e203337393336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:89c0:2200::/48 Signature Algorithm: sha256WithRSAEncryption 28:ca:c0:fd:45:85:a8:69:e4:a5:9d:41:4c:83:41:4e:19:da: 90:16:06:7e:5d:e8:89:6c:c9:f3:17:82:73:e6:89:df:de:fa: f7:80:64:ef:2f:fd:fb:e0:42:59:76:58:3b:04:96:69:9e:a0: f2:34:0f:df:ef:61:da:18:a3:3a:b5:2b:ca:5b:33:98:b9:b3: 98:b5:36:47:f1:ab:72:e9:50:4b:49:7c:46:02:2b:99:07:1d: a4:12:02:ab:0b:0c:ce:b4:5d:e4:50:fe:21:c9:32:7e:90:79: 36:ee:ad:d0:0b:d1:80:27:d1:42:84:62:c9:0f:cf:dd:d6:4f: d8:af:7d:3c:de:c7:88:45:dc:17:94:74:aa:4a:d6:4c:fa:3d: d8:94:2b:74:88:ef:0b:2b:27:53:52:41:1b:78:8e:00:c7:c2: 72:e9:92:18:50:5a:40:93:3e:f6:85:5c:bf:72:43:23:9e:29: 7d:53:66:67:8b:61:20:6e:b1:0b:af:d5:51:6b:39:25:f4:20: ed:30:bd:e8:23:86:65:3e:46:80:07:de:59:82:ba:92:9a:b3: 84:6c:57:22:b5:3e:4a:57:ec:4d:40:2d:ec:86:51:25:29:bd: 6a:6c:5b:45:3a:61:89:f8:44:8b:d8:b8:1d:28:6c:b3:9a:b1: 50:55:24:8e -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUOM34j1MD1xNWyuY9EzuohchgoJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVC RkExOThENTAeFw0yNjA2MDUwNzE0MDBaFw0yNzA2MDQwNzE5MDBaMDMxMTAvBgNV BAMTKEY5MkExODM3NEU0RTMzMjg5QkM1QzEwRDU4NjJBOEY3MkIzMUU3RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSwve8ru2koTwQWrXijZnzRjsv 7PSI0ZwNxMuW+Me0ksUix6LWoasulyaEUB5W6ZArGLj4T6reSmsZyYVfbo8F2B17 GavX3ULHO/2Q9Y5uBCBCQl/AgDXvyRkG1BPdRshCttqWJQmvik3mIOno7sUEV/26 NQOL5vOumWworjEmgpe3YqQMdl6x4ZvMf1wfMCBDPBOzWjL2Fb1s7lV2a5A+ydSl Bv8KqpZW71RdDlALRpOkExYBg63VY90hmZRjEBNaracZDZ802YuxdxuSMKPztaUh tiUquu3dfUhv69SquwNJJLH5QXUjLRqJFX4szGkIKaD9LWUcV8/TFvw2Ae9bAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQU+SoYN05OMyibxcENWGKo9ysx5/YwHwYDVR0j BBgwFoAUPlmJ9y3KGXnR3ZZjxXXtFb+hmNUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzU2NDE2OTY0MjYzOTM3OS8wLzNFNTk4OUY3MkRDQTE5NzlEMUREOTY2M0M1NzVF RDE1QkZBMTk4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVCRkExOThENS5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA3NTY0MTY5NjQyNjM5Mzc5LzAvMzIzNDMwMzAz YTM4Mzk2MzMwM2EzMjMyMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMzMzcz OTMzMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAInAIgAwDQYJKoZIhvcNAQELBQADggEBACjKwP1F hahp5KWdQUyDQU4Z2pAWBn5d6IlsyfMXgnPmid/e+veAZO8v/fvgQll2WDsElmme oPI0D9/vYdoYozq1K8pbM5i5s5i1Nkfxq3LpUEtJfEYCK5kHHaQSAqsLDM60XeRQ /iHJMn6QeTburdAL0YAn0UKEYskPz93WT9ivfTzex4hF3BeUdKpK1kz6PdiUK3SI 7wsrJ1NSQRt4jgDHwnLpkhhQWkCTPvaFXL9yQyOeKX1TZmeLYSBusQuv1VFrOSX0 IO0wvegjhmU+RoAH3lmCupKas4RsVyK1PkpX7E1ALeyGUSUpvWpsW0U6YYn4RIvY uB0obLOasVBVJI4= -----END CERTIFICATE-----Generated at Sun Jun 14 04:58:01 2026 by rpki-client