$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430303a373130303a3a2f33322d3332203d3e203633353930.roa File: 323430303a373130303a3a2f33322d3332203d3e203633353930.roa (raw, json) Hash identifier: KAEQc28Y+KwHxr7cwk9O/n6NViFo4hGPdby6zHQ8jDU= Subject key identifier: 95:7C:84:FA:7D:C9:AF:E0:A2:E0:55:F8:09:0A:01:2F:7A:D7:7B:F6 Certificate issuer: /CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Certificate serial: 675A1D9D28851E2E2F9F4D6B589425E9B8C743B6 Authority key identifier: 22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430303a373130303a3a2f33322d3332203d3e203633353930.roa Signing time: Thu 23 Apr 2026 07:33:07 +0000 ROA not before: Thu 23 Apr 2026 07:28:07 +0000 ROA not after: Thu 22 Apr 2027 07:33:07 +0000 asID: 63590 IP address blocks: 2400:7100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:5a:1d:9d:28:85:1e:2e:2f:9f:4d:6b:58:94:25:e9:b8:c7:43:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Validity Not Before: Apr 23 07:28:07 2026 GMT Not After : Apr 22 07:33:07 2027 GMT Subject: CN=957C84FA7DC9AFE0A2E055F8090A012F7AD77BF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:05:63:d4:9e:49:14:89:d1:49:7b:72:4b:bb: 42:da:be:29:cb:fa:a7:34:2e:83:69:32:75:cc:7a: 61:eb:42:40:db:fa:6e:7a:a1:1f:9d:79:14:26:59: aa:41:1f:77:ae:03:b0:50:79:3e:4f:53:ab:ae:21: a7:18:2d:e6:45:a3:15:9e:e9:fc:88:8e:9b:7a:25: 34:a4:87:16:3d:9b:59:4f:e4:01:fe:16:35:0d:8f: 31:1e:f3:46:14:35:dc:44:f1:cf:d6:f5:73:4b:51: fe:36:5b:39:30:66:4e:c0:54:1b:84:27:74:5c:f9: 6d:f8:9b:29:af:42:72:ee:35:43:9e:da:db:c3:75: f4:c5:44:c6:dc:01:10:59:b9:73:87:e1:5c:f2:63: b7:8a:30:51:d9:16:11:15:cb:bc:de:48:2a:85:d4: 73:72:10:3c:81:50:01:7b:c5:62:4d:fe:0e:e6:90: cb:53:82:16:cd:57:ae:43:e6:df:7f:44:df:6e:3c: 86:35:6a:97:77:94:10:a5:03:7c:b2:3c:ea:e0:f4: 42:11:9e:02:c0:e8:73:02:31:2b:bc:9f:21:5b:46: e3:a8:b2:d0:ae:27:20:56:6b:56:ee:b0:88:90:73: ad:ef:18:27:53:50:72:b0:64:00:b7:bf:f0:c0:72: 7e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7C:84:FA:7D:C9:AF:E0:A2:E0:55:F8:09:0A:01:2F:7A:D7:7B:F6 X509v3 Authority Key Identifier: keyid:22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430303a373130303a3a2f33322d3332203d3e203633353930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:7100::/32 Signature Algorithm: sha256WithRSAEncryption a2:8c:8b:0e:bc:10:75:d4:fd:aa:5b:a2:cb:d1:f0:cd:b2:b0: ee:fd:58:fd:66:10:af:7b:dc:9c:b8:13:ed:35:01:3c:2a:c1: c1:c1:03:f7:47:10:d0:5f:a3:61:35:eb:c5:4d:b2:f8:b1:01: e3:01:bf:1c:7e:4f:d0:de:31:3f:6a:5c:bc:3c:be:35:f5:46: 36:2a:db:11:ca:2c:c7:c8:3f:28:af:07:02:56:09:f0:3b:a1: 6e:c4:d6:d9:5d:66:a8:1d:f1:62:c2:98:3a:7f:c5:73:28:5f: 44:ba:f9:fa:c6:2a:27:0a:7d:1a:00:8f:8e:4e:a7:74:71:9a: 5b:fb:ae:78:4d:15:3f:a7:42:48:95:50:dd:04:5f:90:78:65: 1e:79:a3:03:33:cf:7d:2c:6e:83:e5:c8:b1:a8:0f:f5:ef:9e: 5c:6e:45:fe:d6:90:43:5d:8d:e2:25:20:91:90:cf:6e:38:a6: 90:df:a3:9d:24:e8:55:b4:48:4c:7c:84:ad:d8:17:45:5b:5f: 4c:c4:f1:14:ec:27:69:fb:0b:02:25:32:8a:9a:f1:63:25:45: 42:ac:2d:e0:dd:79:c2:3b:eb:64:2f:93:92:9b:90:2a:0f:06: 0b:86:ed:a0:6c:93:69:31:85:89:3c:8f:11:99:f8:0d:65:4f: 78:a0:e6:b7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUZ1odnSiFHi4vn01rWJQl6bjHQ7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFC RjI3QjIwMjAeFw0yNjA0MjMwNzI4MDdaFw0yNzA0MjIwNzMzMDdaMDMxMTAvBgNV BAMTKDk1N0M4NEZBN0RDOUFGRTBBMkUwNTVGODA5MEEwMTJGN0FENzdCRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBWPUnkkUidFJe3JLu0LavinL +qc0LoNpMnXMemHrQkDb+m56oR+deRQmWapBH3euA7BQeT5PU6uuIacYLeZFoxWe 6fyIjpt6JTSkhxY9m1lP5AH+FjUNjzEe80YUNdxE8c/W9XNLUf42WzkwZk7AVBuE J3Rc+W34mymvQnLuNUOe2tvDdfTFRMbcARBZuXOH4VzyY7eKMFHZFhEVy7zeSCqF 1HNyEDyBUAF7xWJN/g7mkMtTghbNV65D5t9/RN9uPIY1apd3lBClA3yyPOrg9EIR ngLA6HMCMSu8nyFbRuOostCuJyBWa1busIiQc63vGCdTUHKwZAC3v/DAcn6dAgMB AAGjggISMIICDjAdBgNVHQ4EFgQUlXyE+n3Jr+Ci4FX4CQoBL3rXe/YwHwYDVR0j BBgwFoAUImXC6BvMzE6SKrEcWBreMb8nsgIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 OTA2MjE0MDkyMjI5ODM3MC8wLzIyNjVDMkU4MUJDQ0NDNEU5MjJBQjExQzU4MUFE RTMxQkYyN0IyMDIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFCRjI3QjIwMi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg5MDYyMTQwOTIyMjk4MzcwLzAvMzIzNDMwMzAzYTM3 MzEzMDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzYzMzM1MzkzMC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQAcQAwDQYJKoZIhvcNAQELBQADggEBAKKMiw68EHXU/apbosvR8M2ysO79 WP1mEK973Jy4E+01ATwqwcHBA/dHENBfo2E168VNsvixAeMBvxx+T9DeMT9qXLw8 vjX1RjYq2xHKLMfIPyivBwJWCfA7oW7E1tldZqgd8WLCmDp/xXMoX0S6+frGKicK fRoAj45Op3Rxmlv7rnhNFT+nQkiVUN0EX5B4ZR55owMzz30sboPlyLGoD/Xvnlxu Rf7WkENdjeIlIJGQz244ppDfo50k6FW0SEx8hK3YF0VbX0zE8RTsJ2n7CwIlMoqa 8WMlRUKsLeDdecI762Qvk5KbkCoPBguG7aBsk2kxhYk8jxGZ+A1lT3ig5rc= -----END CERTIFICATE-----Generated at Wed May 13 20:20:26 2026 by rpki-client