$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a363030303a3a2f34382d3438203d3e203233373234.roa File: 323430303a383963303a363030303a3a2f34382d3438203d3e203233373234.roa (raw, json) Hash identifier: SNG88WS9V5ZFHbnimFVBoQwGwhn98tvtb1NOevht+UM= Subject key identifier: 85:5E:03:A0:FD:8D:98:58:48:6B:54:11:63:47:90:0C:80:35:F3:10 Certificate issuer: /CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Certificate serial: 34DFD2E62C5C92B628ADF74497BA72BAA4113A62 Authority key identifier: 3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a363030303a3a2f34382d3438203d3e203233373234.roa Signing time: Fri 05 Jun 2026 07:22:16 +0000 ROA not before: Fri 05 Jun 2026 07:17:16 +0000 ROA not after: Fri 04 Jun 2027 07:22:16 +0000 asID: 23724 IP address blocks: 2400:89c0:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 09:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:df:d2:e6:2c:5c:92:b6:28:ad:f7:44:97:ba:72:ba:a4:11:3a:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E5989F72DCA1979D1DD9663C575ED15BFA198D5 Validity Not Before: Jun 5 07:17:16 2026 GMT Not After : Jun 4 07:22:16 2027 GMT Subject: CN=855E03A0FD8D9858486B54116347900C8035F310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:32:d3:5b:7c:e4:1f:b6:d1:67:3a:69:df:1e: 33:45:cb:57:95:e5:e1:63:c5:87:95:03:7e:63:37: 90:93:54:f1:32:06:39:fb:83:cd:83:f7:da:0b:e1: fc:ab:60:f6:ea:10:29:c1:3c:39:66:4a:22:53:36: ff:4a:5f:bc:f0:89:1f:48:06:af:40:ba:75:48:3c: e9:17:d0:bf:2e:4b:f1:4a:8a:2e:c4:f1:51:0b:b7: b7:2f:3a:f7:15:66:e3:eb:8a:a9:06:90:94:63:ee: 58:b6:6b:6b:71:ed:ee:2e:af:e9:9f:31:93:0c:b6: 5a:df:59:1f:35:d5:c7:71:3a:fd:0f:d3:ce:c0:d2: 52:1e:e1:cc:12:0f:a9:0b:73:29:9a:dd:70:ef:31: 99:57:ab:04:6b:8f:06:73:2a:f8:4c:df:ba:fe:95: 82:bb:ae:48:c8:1e:ea:05:5d:80:de:07:d7:d7:c1: d4:44:d6:e2:c5:8e:44:2a:7a:1c:09:c6:25:53:8e: 35:4f:68:80:d4:19:b9:a0:7c:13:89:6e:8b:d1:52: 04:0c:67:49:b2:a5:9f:d6:26:0f:95:44:c4:e7:69: f8:b6:dc:60:b2:1d:05:0f:1d:55:89:bf:5f:44:b8: ae:4c:49:5a:f3:68:50:c1:ca:4d:6b:7c:b2:7e:51: b1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5E:03:A0:FD:8D:98:58:48:6B:54:11:63:47:90:0C:80:35:F3:10 X509v3 Authority Key Identifier: keyid:3E:59:89:F7:2D:CA:19:79:D1:DD:96:63:C5:75:ED:15:BF:A1:98:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/3E5989F72DCA1979D1DD9663C575ED15BFA198D5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1107564169642639379/0/323430303a383963303a363030303a3a2f34382d3438203d3e203233373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:89c0:6000::/48 Signature Algorithm: sha256WithRSAEncryption 7b:b0:f6:b7:69:5a:01:be:04:db:a0:e8:ee:05:86:fd:28:e8: 8d:b1:0a:7d:8f:3e:91:1e:81:fa:00:f8:61:f6:33:f7:98:74: 52:20:7c:0f:52:43:9e:16:0f:07:83:82:c0:14:f4:0b:10:ed: fe:6e:37:99:66:d8:82:9d:76:51:3c:08:61:ee:69:ca:95:ab: f1:ae:b2:66:a3:cd:6c:31:9b:03:07:f0:94:57:9f:96:5a:73: 87:41:ad:4c:ec:50:99:9c:61:fc:ff:15:73:c8:0d:fc:fe:84: 47:44:0b:82:6f:f7:e2:c4:a8:04:59:7d:2f:df:b5:32:04:d6: c9:03:03:10:fd:33:56:e7:3b:32:bd:4f:4f:4f:4a:e8:e9:02: 69:68:a3:c5:fc:bb:3c:ac:82:5b:97:c8:a7:6f:41:73:77:8f: 75:89:fe:5a:22:e5:75:da:f9:e8:1f:da:74:48:9b:11:4a:36: 4d:01:b6:ae:fe:8a:a8:3b:47:61:00:c4:aa:54:cd:24:d6:33: 6d:69:0d:f3:64:60:cd:af:6b:76:2c:87:10:35:88:e6:c8:ea: 29:5e:cc:01:b9:90:3d:44:c4:10:3f:61:7c:d8:f0:13:7b:3d: aa:cd:14:eb:82:03:f5:4a:61:03:23:3a:64:2b:c6:17:4d:ab: e8:b5:30:64 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIUNN/S5ixckrYorfdEl7pyuqQROmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVC RkExOThENTAeFw0yNjA2MDUwNzE3MTZaFw0yNzA2MDQwNzIyMTZaMDMxMTAvBgNV BAMTKDg1NUUwM0EwRkQ4RDk4NTg0ODZCNTQxMTYzNDc5MDBDODAzNUYzMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9MtNbfOQfttFnOmnfHjNFy1eV 5eFjxYeVA35jN5CTVPEyBjn7g82D99oL4fyrYPbqECnBPDlmSiJTNv9KX7zwiR9I Bq9AunVIPOkX0L8uS/FKii7E8VELt7cvOvcVZuPriqkGkJRj7li2a2tx7e4ur+mf MZMMtlrfWR811cdxOv0P087A0lIe4cwSD6kLcyma3XDvMZlXqwRrjwZzKvhM37r+ lYK7rkjIHuoFXYDeB9fXwdRE1uLFjkQqehwJxiVTjjVPaIDUGbmgfBOJbovRUgQM Z0mypZ/WJg+VRMTnafi23GCyHQUPHVWJv19EuK5MSVrzaFDByk1rfLJ+UbGhAgMB AAGjggIhMIICHTAdBgNVHQ4EFgQUhV4DoP2NmFhIa1QRY0eQDIA18xAwHwYDVR0j BBgwFoAUPlmJ9y3KGXnR3ZZjxXXtFb+hmNUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEw NzU2NDE2OTY0MjYzOTM3OS8wLzNFNTk4OUY3MkRDQTE5NzlEMUREOTY2M0M1NzVF RDE1QkZBMTk4RDUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvM0U1OTg5RjcyRENBMTk3OUQxREQ5NjYzQzU3NUVEMTVCRkExOThENS5jZXIw gZcGCCsGAQUFBwELBIGKMIGHMIGEBggrBgEFBQcwC4Z4cnN5bmM6Ly9ycGtpLXJw cy5jbm5pYy5jbi9yZXBvL0ExMTA3NTY0MTY5NjQyNjM5Mzc5LzAvMzIzNDMwMzAz YTM4Mzk2MzMwM2EzNjMwMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzMz NzMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAkAInAYAAwDQYJKoZIhvcNAQELBQADggEBAHuw9rdp WgG+BNug6O4Fhv0o6I2xCn2PPpEegfoA+GH2M/eYdFIgfA9SQ54WDweDgsAU9AsQ 7f5uN5lm2IKddlE8CGHuacqVq/GusmajzWwxmwMH8JRXn5Zac4dBrUzsUJmcYfz/ FXPIDfz+hEdEC4Jv9+LEqARZfS/ftTIE1skDAxD9M1bnOzK9T09PSujpAmloo8X8 uzysgluXyKdvQXN3j3WJ/loi5XXa+egf2nRImxFKNk0Btq7+iqg7R2EAxKpUzSTW M21pDfNkYM2va3YshxA1iObI6ilezAG5kD1ExBA/YXzY8BN7ParNFOuCA/VKYQMj OmQrxhdNq+i1MGQ= -----END CERTIFICATE-----Generated at Sun Jun 14 01:13:03 2026 by rpki-client