$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a6134303a3a2f33322d3332203d3e203633353930.roa File: 323430313a6134303a3a2f33322d3332203d3e203633353930.roa (raw, json) Hash identifier: 01hVO3Dhjs374qNWNOyuCZdB5R6MX/fdF8hWB/9VVAU= Subject key identifier: 92:4C:B0:B1:0B:7C:92:5B:D7:8B:1A:42:1B:0F:FA:B2:3C:02:5F:E4 Certificate issuer: /CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Certificate serial: 6DD346207B8555C182E21E93F62402CB553A3717 Authority key identifier: 22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a6134303a3a2f33322d3332203d3e203633353930.roa Signing time: Thu 23 Apr 2026 07:33:07 +0000 ROA not before: Thu 23 Apr 2026 07:28:07 +0000 ROA not after: Thu 22 Apr 2027 07:33:07 +0000 asID: 63590 IP address blocks: 2401:a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:d3:46:20:7b:85:55:c1:82:e2:1e:93:f6:24:02:cb:55:3a:37:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Validity Not Before: Apr 23 07:28:07 2026 GMT Not After : Apr 22 07:33:07 2027 GMT Subject: CN=924CB0B10B7C925BD78B1A421B0FFAB23C025FE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ba:8a:1e:55:c7:f7:1c:61:ed:02:69:e8:58: 5d:5a:58:f4:3d:b3:64:72:93:65:e6:3b:23:9e:a7: 14:9d:e0:e0:2e:e6:7c:1b:97:ad:eb:7d:29:b7:bf: 78:47:18:3d:39:30:4c:6f:a6:af:30:bd:66:b1:85: d0:13:46:dd:73:3c:a3:1a:97:dc:72:8d:71:89:f9: 65:1b:41:3f:90:34:31:64:34:0d:ea:d9:38:86:bc: 65:74:14:a9:f4:cb:fd:4c:cc:ff:b4:ff:1c:3b:bd: 17:97:9d:86:7d:36:ec:77:9b:36:a4:cf:b7:f7:7b: e0:c5:0f:b5:49:6b:c5:4d:bd:3d:f1:96:61:21:a4: b6:54:7e:4c:be:28:c9:62:51:8f:a6:5f:d3:93:59: 4f:50:04:87:44:d8:ce:64:19:25:60:07:01:50:b2: ea:80:aa:ca:fe:79:d3:51:67:10:13:cd:92:6f:81: 1c:19:7b:01:6e:ed:3a:b7:8c:5f:00:64:d9:b3:bf: 36:33:56:29:82:e0:76:a0:28:97:6d:87:6b:0e:53: cb:75:9e:9e:73:8c:2d:a8:fe:e0:9a:4b:8b:40:cb: 2f:80:19:91:c1:75:59:fc:53:16:d6:95:28:cd:d0: 87:03:f5:21:e6:2e:0f:6a:45:80:ef:ca:29:25:49: 1e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4C:B0:B1:0B:7C:92:5B:D7:8B:1A:42:1B:0F:FA:B2:3C:02:5F:E4 X509v3 Authority Key Identifier: keyid:22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a6134303a3a2f33322d3332203d3e203633353930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:a40::/32 Signature Algorithm: sha256WithRSAEncryption 57:9d:72:56:94:29:f4:2d:8f:d3:73:a9:91:d8:25:22:59:5d: 55:28:d0:ff:25:69:dd:15:ae:b9:59:8e:fc:7b:31:bd:84:c8: 5a:01:64:84:c6:04:3c:0e:3e:c6:58:6f:64:d9:e0:1e:34:c3: 83:4d:b5:b8:07:3d:94:16:68:8f:c8:e9:23:d3:a5:13:37:3f: e6:11:5c:a4:7c:e8:4d:ca:15:0d:d9:df:98:48:03:b3:57:8f: 69:1f:e5:00:71:3a:9c:74:b6:aa:48:7d:f5:23:16:18:62:0f: e6:91:66:e0:18:99:1e:e5:bc:a8:60:6c:cb:29:ce:d2:ee:b6: 22:05:df:cc:d6:02:b6:2e:8b:02:24:12:5e:c9:13:c2:12:31: 50:42:8a:81:35:d0:b7:6e:4e:b0:20:2a:df:bb:72:84:8a:c3: f9:c5:cc:49:9c:47:a8:41:fb:3a:74:63:33:49:67:c4:a6:a9: 01:5b:be:b3:93:40:a0:90:4d:32:d1:88:82:c9:74:1d:d8:79: 95:7a:b1:5e:79:c6:aa:76:7b:3f:9b:99:7f:87:4f:2f:21:d3: 48:83:5d:66:ba:64:d6:13:2e:4d:ba:b1:45:dd:d4:5c:3f:50: 6a:bd:ea:c0:97:c6:eb:db:cb:ca:8d:c4:17:16:d4:c3:1d:22: 16:38:fa:c2 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUbdNGIHuFVcGC4h6T9iQCy1U6NxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFC RjI3QjIwMjAeFw0yNjA0MjMwNzI4MDdaFw0yNzA0MjIwNzMzMDdaMDMxMTAvBgNV BAMTKDkyNENCMEIxMEI3QzkyNUJENzhCMUE0MjFCMEZGQUIyM0MwMjVGRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwuooeVcf3HGHtAmnoWF1aWPQ9 s2Ryk2XmOyOepxSd4OAu5nwbl63rfSm3v3hHGD05MExvpq8wvWaxhdATRt1zPKMa l9xyjXGJ+WUbQT+QNDFkNA3q2TiGvGV0FKn0y/1MzP+0/xw7vReXnYZ9Nux3mzak z7f3e+DFD7VJa8VNvT3xlmEhpLZUfky+KMliUY+mX9OTWU9QBIdE2M5kGSVgBwFQ suqAqsr+edNRZxATzZJvgRwZewFu7Tq3jF8AZNmzvzYzVimC4HagKJdth2sOU8t1 np5zjC2o/uCaS4tAyy+AGZHBdVn8UxbWlSjN0IcD9SHmLg9qRYDvyiklSR6vAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUkkywsQt8klvXixpCGw/6sjwCX+QwHwYDVR0j BBgwFoAUImXC6BvMzE6SKrEcWBreMb8nsgIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 OTA2MjE0MDkyMjI5ODM3MC8wLzIyNjVDMkU4MUJDQ0NDNEU5MjJBQjExQzU4MUFE RTMxQkYyN0IyMDIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFCRjI3QjIwMi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg5MDYyMTQwOTIyMjk4MzcwLzAvMzIzNDMwMzEzYTYx MzQzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDM2MzMzNTM5MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAQpAMA0GCSqGSIb3DQEBCwUAA4IBAQBXnXJWlCn0LY/Tc6mR2CUiWV1VKND/ JWndFa65WY78ezG9hMhaAWSExgQ8Dj7GWG9k2eAeNMODTbW4Bz2UFmiPyOkj06UT Nz/mEVykfOhNyhUN2d+YSAOzV49pH+UAcTqcdLaqSH31IxYYYg/mkWbgGJke5byo YGzLKc7S7rYiBd/M1gK2LosCJBJeyRPCEjFQQoqBNdC3bk6wICrfu3KEisP5xcxJ nEeoQfs6dGMzSWfEpqkBW76zk0CgkE0y0YiCyXQd2HmVerFeecaqdns/m5l/h08v IdNIg11mumTWEy5NurFF3dRcP1BqverAl8br28vKjcQXFtTDHSIWOPrC -----END CERTIFICATE-----Generated at Wed May 13 20:20:26 2026 by rpki-client