$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a6163303a3a2f33322d3332203d3e203633353930.roa File: 323430313a6163303a3a2f33322d3332203d3e203633353930.roa (raw, json) Hash identifier: P/VGbDyt9NeeD07D9ZJr7dosUhUQcWIVOqgmzR6B+fM= Subject key identifier: 54:92:02:B7:00:94:CD:C5:D0:71:E0:6B:41:08:A4:D2:4C:97:90:A5 Certificate issuer: /CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Certificate serial: 6679F6D30DB9C37F48B1705588D85D93E1E743C7 Authority key identifier: 22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a6163303a3a2f33322d3332203d3e203633353930.roa Signing time: Thu 23 Apr 2026 07:33:07 +0000 ROA not before: Thu 23 Apr 2026 07:28:07 +0000 ROA not after: Thu 22 Apr 2027 07:33:07 +0000 asID: 63590 IP address blocks: 2401:ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:79:f6:d3:0d:b9:c3:7f:48:b1:70:55:88:d8:5d:93:e1:e7:43:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Validity Not Before: Apr 23 07:28:07 2026 GMT Not After : Apr 22 07:33:07 2027 GMT Subject: CN=549202B70094CDC5D071E06B4108A4D24C9790A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4b:8f:03:d4:65:a9:7b:67:29:e7:04:2a:f5: 64:f7:8b:65:4b:36:8d:6d:b0:45:ca:ed:10:b0:59: 12:63:ae:81:9d:6a:a8:13:84:c9:a5:09:b7:8a:2c: c4:8e:bb:03:b6:3a:00:91:63:85:e0:6f:f9:26:2a: c3:46:71:3a:fb:03:f8:32:b6:74:aa:1a:9c:b5:2d: 99:2c:49:56:6a:a2:b1:c7:f7:af:92:e3:7e:90:8a: 49:73:d1:f8:21:7a:d4:74:e5:30:92:05:2b:bf:dd: fa:09:2e:eb:53:7d:30:0c:91:f9:af:42:97:28:7b: ac:6c:e7:db:52:c0:f5:cf:cd:d5:a3:44:8e:ca:52: ec:ff:16:df:4c:cd:ff:6b:35:f3:5a:3d:41:2d:d7: 6a:ad:51:5f:83:8f:21:87:5e:95:e5:09:1b:49:82: 95:fb:37:18:46:6a:1e:ca:5a:ca:ed:7b:9c:0a:56: 8a:89:d1:b4:70:19:da:66:08:a8:a1:a7:21:a7:aa: b4:b3:3a:1b:37:53:f8:cd:ef:2c:fa:ef:2e:ab:b8: f2:d2:a4:1e:44:1b:7d:00:ff:47:fa:fd:bf:dc:17: d5:06:b7:ed:d8:a5:27:87:64:18:97:63:9f:59:5e: a3:4a:de:41:84:b0:ce:00:e6:c3:9d:a2:22:cb:08: 30:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:92:02:B7:00:94:CD:C5:D0:71:E0:6B:41:08:A4:D2:4C:97:90:A5 X509v3 Authority Key Identifier: keyid:22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a6163303a3a2f33322d3332203d3e203633353930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ac0::/32 Signature Algorithm: sha256WithRSAEncryption 61:22:a6:a0:c2:32:78:a7:1d:5c:fc:3a:57:73:5d:82:e0:91: 10:29:fb:95:c4:15:89:ca:83:54:38:b3:ba:07:d7:54:7f:de: 1b:05:f4:2b:78:95:9b:cf:e1:72:f4:78:c3:e3:cb:cf:0f:8d: 22:ee:13:f5:5e:ba:dd:33:d0:ad:d3:4d:65:7f:1b:48:5e:e6: 3e:55:f7:6a:60:29:21:9a:1c:76:6b:62:6c:76:e6:d3:89:8d: cd:95:b5:98:94:3b:76:51:5a:c6:d5:fc:6f:a0:72:b7:05:7f: 84:04:a0:b3:c6:e6:5e:20:fd:27:c4:9c:d9:fa:72:f1:57:32: 2d:cb:25:2e:cd:c1:9b:11:cc:d0:7f:80:77:6c:66:a3:15:b6: 62:07:39:65:f7:40:75:dd:4f:86:27:45:3b:ad:68:35:d8:de: f8:e8:91:1e:3d:2f:62:8f:44:da:a4:5b:fd:fc:e3:fc:0e:8d: b3:06:35:8b:54:c7:e5:85:89:63:69:3d:01:e8:5e:ec:1c:37: 3a:7d:b5:d7:18:0d:cb:13:63:16:54:db:28:a5:1c:9e:b1:a9: f2:53:29:2f:f5:b9:c3:7b:c0:49:26:2c:28:df:c3:ae:d6:38: f1:f5:f5:c2:92:e3:96:52:b9:dd:96:50:5f:da:6f:d1:2e:54: f8:ba:e7:8a -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUZnn20w25w39IsXBViNhdk+HnQ8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFC RjI3QjIwMjAeFw0yNjA0MjMwNzI4MDdaFw0yNzA0MjIwNzMzMDdaMDMxMTAvBgNV BAMTKDU0OTIwMkI3MDA5NENEQzVEMDcxRTA2QjQxMDhBNEQyNEM5NzkwQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWS48D1GWpe2cp5wQq9WT3i2VL No1tsEXK7RCwWRJjroGdaqgThMmlCbeKLMSOuwO2OgCRY4Xgb/kmKsNGcTr7A/gy tnSqGpy1LZksSVZqorHH96+S436Qiklz0fghetR05TCSBSu/3foJLutTfTAMkfmv Qpcoe6xs59tSwPXPzdWjRI7KUuz/Ft9Mzf9rNfNaPUEt12qtUV+DjyGHXpXlCRtJ gpX7NxhGah7KWsrte5wKVoqJ0bRwGdpmCKihpyGnqrSzOhs3U/jN7yz67y6ruPLS pB5EG30A/0f6/b/cF9UGt+3YpSeHZBiXY59ZXqNK3kGEsM4A5sOdoiLLCDAlAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUVJICtwCUzcXQceBrQQik0kyXkKUwHwYDVR0j BBgwFoAUImXC6BvMzE6SKrEcWBreMb8nsgIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 OTA2MjE0MDkyMjI5ODM3MC8wLzIyNjVDMkU4MUJDQ0NDNEU5MjJBQjExQzU4MUFE RTMxQkYyN0IyMDIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFCRjI3QjIwMi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg5MDYyMTQwOTIyMjk4MzcwLzAvMzIzNDMwMzEzYTYx NjMzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDM2MzMzNTM5MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAQrAMA0GCSqGSIb3DQEBCwUAA4IBAQBhIqagwjJ4px1c/DpXc12C4JEQKfuV xBWJyoNUOLO6B9dUf94bBfQreJWbz+Fy9HjD48vPD40i7hP1XrrdM9Ct001lfxtI XuY+VfdqYCkhmhx2a2JsdubTiY3NlbWYlDt2UVrG1fxvoHK3BX+EBKCzxuZeIP0n xJzZ+nLxVzItyyUuzcGbEczQf4B3bGajFbZiBzll90B13U+GJ0U7rWg12N746JEe PS9ij0TapFv9/OP8Do2zBjWLVMflhYljaT0B6F7sHDc6fbXXGA3LE2MWVNsopRye sanyUykv9bnDe8BJJiwo38Ou1jjx9fXCkuOWUrndllBf2m/RLlT4uueK -----END CERTIFICATE-----Generated at Wed May 13 20:20:25 2026 by rpki-client