$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/323030313a343433383a3a2f33322d3332203d3e2030.roa File: 323030313a343433383a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: D2ZiSKBGSnVrE4Ke5K0eYaWLt3rZ9tiPNZ3zgSx7pDw= Subject key identifier: 49:59:E3:C4:88:9E:56:14:65:6D:01:C3:98:71:40:40:76:7D:67:68 Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 682401BBAD489F16E1FF55B8CB4635F0DA5ADBAE Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/323030313a343433383a3a2f33322d3332203d3e2030.roa Signing time: Tue 12 May 2026 05:36:25 +0000 ROA not before: Tue 12 May 2026 05:31:25 +0000 ROA not after: Tue 11 May 2027 05:36:25 +0000 asID: 0 IP address blocks: 2001:4438::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:24:01:bb:ad:48:9f:16:e1:ff:55:b8:cb:46:35:f0:da:5a:db:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 12 05:31:25 2026 GMT Not After : May 11 05:36:25 2027 GMT Subject: CN=4959E3C4889E5614656D01C398714040767D6768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:fd:da:fa:81:a8:8f:95:fc:27:78:7e:41:56: 51:da:2d:e2:98:da:8c:c2:d7:d4:76:8b:b9:d9:7a: 15:d6:82:88:82:41:5c:19:76:ec:1d:7e:e2:4b:f6: 84:34:bc:61:ab:9f:18:41:66:f3:15:29:c1:a1:52: a0:08:ec:c2:57:e0:65:3a:85:a4:2e:6c:a9:97:0a: 14:6f:b2:6c:33:c0:1d:e4:4d:19:13:b3:d0:9e:31: 3f:11:fd:8d:87:d5:61:cf:ab:c7:2a:6b:c9:0d:ce: 5e:47:ce:66:39:5c:f9:0e:30:52:84:6c:14:9b:cb: ea:02:10:81:59:80:75:27:b9:fe:a0:bd:01:6f:f5: ad:a7:cd:78:5f:42:d4:dc:70:f7:48:ff:eb:84:f8: e8:c2:e7:f9:e7:8b:7f:8f:29:d2:c9:23:98:a7:77: 8a:7d:36:ea:95:d4:89:da:1e:91:02:ed:68:a3:8c: e1:6e:2f:d6:ab:bf:6f:11:75:f5:d5:ed:98:8e:71: 06:ef:10:8c:9d:f9:ed:b9:fa:02:30:ff:26:96:c2: e0:f1:9f:ba:8d:40:48:0e:ba:74:4e:8f:84:87:80: ce:3f:4c:fa:db:f4:18:81:24:bb:60:6c:bc:46:d2: 2d:0e:b9:ea:bd:94:55:9a:15:06:62:7a:10:75:ac: 56:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:59:E3:C4:88:9E:56:14:65:6D:01:C3:98:71:40:40:76:7D:67:68 X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/323030313a343433383a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:4438::/32 Signature Algorithm: sha256WithRSAEncryption 0d:0b:0d:b8:e7:be:9e:39:cf:ce:b6:d0:cc:d9:75:43:02:c2: 9a:9c:1b:ba:a9:6a:f7:a8:51:16:b2:18:6f:f4:53:19:eb:bd: 02:d4:d3:0d:8a:26:3d:ca:c8:ec:de:0e:1a:3b:92:53:03:fb: 8e:00:e7:7c:47:49:ca:89:f7:40:a9:3c:32:8a:23:7d:a3:56: 09:74:de:24:63:2d:e3:78:b7:fd:29:81:cd:53:52:20:7f:d7: e4:33:b4:04:ce:e5:c2:05:ef:0d:a6:6c:ef:9d:7a:8a:25:c1: f7:91:dc:a7:39:7d:c4:49:23:d0:bb:15:fe:7b:11:a7:b3:f0: 0d:c7:9c:0f:3a:d0:c0:18:ce:77:38:56:c0:df:b8:83:3a:03: 00:3e:4a:25:c0:fc:6c:67:88:c9:24:ff:f8:01:08:ef:35:57: 5c:2f:48:d9:e7:5d:63:d6:c8:e2:d5:51:e9:6d:f1:8b:2f:30: 22:dc:e6:36:f7:d9:e4:07:11:ac:4f:f0:b9:01:0b:59:ef:09: fc:18:41:26:cc:4c:ad:76:85:bf:1d:bd:f1:5c:f4:d2:04:74: 80:02:a2:d6:43:b3:21:6c:90:81:b4:5a:e9:c9:ef:d4:9f:a1: 62:e4:0c:16:c7:b0:44:3c:13:32:36:e4:f8:12:dd:9c:04:8c: 9e:10:99:02 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUaCQBu61Inxbh/1W4y0Y18Npa264wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTIwNTMxMjVaFw0yNzA1MTEwNTM2MjVaMDMxMTAvBgNV BAMTKDQ5NTlFM0M0ODg5RTU2MTQ2NTZEMDFDMzk4NzE0MDQwNzY3RDY3NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCC/dr6gaiPlfwneH5BVlHaLeKY 2ozC19R2i7nZehXWgoiCQVwZduwdfuJL9oQ0vGGrnxhBZvMVKcGhUqAI7MJX4GU6 haQubKmXChRvsmwzwB3kTRkTs9CeMT8R/Y2H1WHPq8cqa8kNzl5HzmY5XPkOMFKE bBSby+oCEIFZgHUnuf6gvQFv9a2nzXhfQtTccPdI/+uE+OjC5/nni3+PKdLJI5in d4p9NuqV1InaHpEC7WijjOFuL9arv28RdfXV7ZiOcQbvEIyd+e25+gIw/yaWwuDx n7qNQEgOunROj4SHgM4/TPrb9BiBJLtgbLxG0i0Oueq9lFWaFQZiehB1rFaTAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUSVnjxIieVhRlbQHDmHFAQHZ9Z2gwHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzIzMDMwMzEzYTM0 MzQzMzM4M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAUQ4 MA0GCSqGSIb3DQEBCwUAA4IBAQANCw24576eOc/OttDM2XVDAsKanBu6qWr3qFEW shhv9FMZ670C1NMNiiY9ysjs3g4aO5JTA/uOAOd8R0nKifdAqTwyiiN9o1YJdN4k Yy3jeLf9KYHNU1Igf9fkM7QEzuXCBe8NpmzvnXqKJcH3kdynOX3ESSPQuxX+exGn s/ANx5wPOtDAGM53OFbA37iDOgMAPkolwPxsZ4jJJP/4AQjvNVdcL0jZ511j1sji 1VHpbfGLLzAi3OY299nkBxGsT/C5AQtZ7wn8GEEmzEytdoW/Hb3xXPTSBHSAAqLW Q7MhbJCBtFrpye/Un6Fi5AwWx7BEPBMyNuT4Et2cBIyeEJkC -----END CERTIFICATE-----Generated at Wed May 13 14:17:06 2026 by rpki-client