$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1112724331735023633/0/323430363a343063303a3a2f33322d3634203d3e2030.roa File: 323430363a343063303a3a2f33322d3634203d3e2030.roa (raw, json) Hash identifier: BKrsuXUwiDUP/nY7go08XoYBB2iNGoeI0RPmqLHHZ8A= Subject key identifier: 3D:C9:6A:A0:3E:B4:C2:33:3F:89:A9:70:16:C9:22:59:D1:54:37:76 Certificate issuer: /CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Certificate serial: 574FB441E57A8690E8A5F03F7F42B3C0ADA9E0BA Authority key identifier: B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/323430363a343063303a3a2f33322d3634203d3e2030.roa Signing time: Thu 04 Jun 2026 09:24:47 +0000 ROA not before: Thu 04 Jun 2026 09:19:47 +0000 ROA not after: Thu 03 Jun 2027 09:24:47 +0000 asID: 0 IP address blocks: 2406:40c0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 14:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:4f:b4:41:e5:7a:86:90:e8:a5:f0:3f:7f:42:b3:c0:ad:a9:e0:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B28274A718A1FE9A74E76E477B0790607D2775C9 Validity Not Before: Jun 4 09:19:47 2026 GMT Not After : Jun 3 09:24:47 2027 GMT Subject: CN=3DC96AA03EB4C2333F89A97016C92259D1543776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:49:ed:e0:b2:65:ad:1b:65:d8:bd:62:c7:11: 19:3b:81:60:d2:3a:86:7a:7b:07:4d:03:55:ef:f0: 18:16:48:59:82:97:1c:1b:57:e7:95:cd:02:e5:0f: 8a:1d:83:05:92:2a:34:b2:d2:e3:11:3b:a5:73:59: 89:22:a1:c8:bf:1c:4b:3e:72:79:cc:63:b6:ba:1d: 23:3a:5c:73:d4:65:55:3b:82:87:a7:c1:a5:5e:c6: cf:33:4b:fa:58:99:46:fd:01:61:2b:e3:84:3e:ca: 74:6b:26:9c:d7:eb:57:2a:d3:2c:70:cb:fb:d0:2d: 2b:fa:48:f7:28:31:c7:72:39:5c:ad:c2:cb:8a:c3: 19:83:a1:6e:40:ca:6e:cd:d1:a1:13:b8:d7:e1:8e: 15:5e:a4:69:3a:d5:1c:6a:b0:8a:16:15:85:6d:9f: a4:1e:a3:90:1e:6e:94:c9:1b:a5:fb:fc:7f:a8:a6: fc:c2:33:54:64:77:f3:33:9c:c8:12:1c:1c:2a:f8: b5:8d:09:4c:a7:8c:2e:eb:f1:64:be:88:ea:04:0e: 11:0b:5c:dd:05:da:ce:4b:b4:c3:f7:67:a9:f8:4d: 05:5b:8d:44:1e:64:6d:a2:95:42:9d:90:43:a6:26: 15:94:41:15:8b:af:b6:67:db:d8:5e:1f:f7:b7:72: 2a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C9:6A:A0:3E:B4:C2:33:3F:89:A9:70:16:C9:22:59:D1:54:37:76 X509v3 Authority Key Identifier: keyid:B2:82:74:A7:18:A1:FE:9A:74:E7:6E:47:7B:07:90:60:7D:27:75:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/B28274A718A1FE9A74E76E477B0790607D2775C9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B28274A718A1FE9A74E76E477B0790607D2775C9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1112724331735023633/0/323430363a343063303a3a2f33322d3634203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:40c0::/32 Signature Algorithm: sha256WithRSAEncryption 68:66:f6:2c:e9:ec:27:17:fb:11:af:b6:e0:81:65:58:d1:16: 42:12:d1:8f:c3:27:37:83:49:ee:a4:a6:38:07:7c:4d:0f:f5: ac:ea:bb:86:ae:04:7d:c5:08:96:97:9c:28:4f:fe:2e:6f:06: b8:71:40:2d:ea:51:ce:25:6b:8b:63:b9:03:42:4f:91:0a:4e: 5f:64:9f:b2:03:cb:a6:74:a3:02:2a:0d:fb:a6:a4:e9:32:2b: ef:e9:da:cf:6d:83:3f:ba:b9:4d:3a:d1:08:9d:16:90:37:92: bf:be:2e:e2:0a:27:92:06:4b:35:20:cc:27:e1:ce:cd:3b:d0: 92:41:99:32:ff:15:f2:cb:01:d7:73:57:da:2f:f4:63:cf:69: aa:be:90:6e:9f:7e:3e:9f:95:a2:ca:3a:df:a2:37:dd:b7:83: 48:7e:2a:ec:bb:44:8d:89:d2:9a:ac:90:5e:7a:a7:2b:7a:58: b9:49:3d:55:e9:33:c0:c7:5e:14:57:83:01:e0:92:99:2d:1a: a5:77:d6:60:04:4c:2b:3b:eb:a2:ff:a1:4a:bd:d7:06:e2:7b: 50:9c:84:d2:4a:c0:7d:a7:21:f1:75:3f:f8:84:48:27:bb:38: ef:b0:9a:57:9a:06:20:c3:b8:61:47:0f:c1:44:5c:5c:30:1a: c0:fa:71:17 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUV0+0QeV6hpDopfA/f0KzwK2p4LowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3 RDI3NzVDOTAeFw0yNjA2MDQwOTE5NDdaFw0yNzA2MDMwOTI0NDdaMDMxMTAvBgNV BAMTKDNEQzk2QUEwM0VCNEMyMzMzRjg5QTk3MDE2QzkyMjU5RDE1NDM3NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQSe3gsmWtG2XYvWLHERk7gWDS OoZ6ewdNA1Xv8BgWSFmClxwbV+eVzQLlD4odgwWSKjSy0uMRO6VzWYkioci/HEs+ cnnMY7a6HSM6XHPUZVU7goenwaVexs8zS/pYmUb9AWEr44Q+ynRrJpzX61cq0yxw y/vQLSv6SPcoMcdyOVytwsuKwxmDoW5Aym7N0aETuNfhjhVepGk61RxqsIoWFYVt n6Qeo5AebpTJG6X7/H+opvzCM1Rkd/MznMgSHBwq+LWNCUynjC7r8WS+iOoEDhEL XN0F2s5LtMP3Z6n4TQVbjUQeZG2ilUKdkEOmJhWUQRWLr7Zn29heH/e3ciq9AgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUPclqoD60wjM/ialwFskiWdFUN3YwHwYDVR0j BBgwFoAUsoJ0pxih/pp0525HeweQYH0ndckwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTEx MjcyNDMzMTczNTAyMzYzMy8wL0IyODI3NEE3MThBMUZFOUE3NEU3NkU0NzdCMDc5 MDYwN0QyNzc1QzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjI4Mjc0QTcxOEExRkU5QTc0RTc2RTQ3N0IwNzkwNjA3RDI3NzVDOS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMTEyNzI0MzMxNzM1MDIzNjMzLzAvMzIzNDMwMzYzYTM0 MzA2MzMwM2EzYTJmMzMzMjJkMzYzNDIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBkDA MA0GCSqGSIb3DQEBCwUAA4IBAQBoZvYs6ewnF/sRr7bggWVY0RZCEtGPwyc3g0nu pKY4B3xND/Ws6ruGrgR9xQiWl5woT/4ubwa4cUAt6lHOJWuLY7kDQk+RCk5fZJ+y A8umdKMCKg37pqTpMivv6drPbYM/urlNOtEInRaQN5K/vi7iCieSBks1IMwn4c7N O9CSQZky/xXyywHXc1faL/Rjz2mqvpBun34+n5Wiyjrfojfdt4NIfirsu0SNidKa rJBeeqcreli5ST1V6TPAx14UV4MB4JKZLRqld9ZgBEwrO+ui/6FKvdcG4ntQnITS SsB9pyHxdT/4hEgnuzjvsJpXmgYgw7hhRw/BRFxcMBrA+nEX -----END CERTIFICATE-----Generated at Sun Jun 14 00:17:44 2026 by rpki-client