$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094498863600893954/0/323430353a393730303a3a2f33322d3332203d3e2030.roa File: 323430353a393730303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: b+fcHzb/W5/fimiES+nchVhDT38rC5UajNjNb4ZygPk= Subject key identifier: B0:D0:15:A5:91:D4:6D:20:7E:5A:8A:A1:40:E6:AE:30:26:B8:A5:5E Certificate issuer: /CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Certificate serial: 36A84ED6C20FE22423343F68D0CC84CEE8EB74D8 Authority key identifier: 60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/323430353a393730303a3a2f33322d3332203d3e2030.roa Signing time: Wed 22 Apr 2026 07:04:13 +0000 ROA not before: Wed 22 Apr 2026 06:59:13 +0000 ROA not after: Wed 21 Apr 2027 07:04:13 +0000 asID: 0 IP address blocks: 2405:9700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:a8:4e:d6:c2:0f:e2:24:23:34:3f:68:d0:cc:84:ce:e8:eb:74:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Validity Not Before: Apr 22 06:59:13 2026 GMT Not After : Apr 21 07:04:13 2027 GMT Subject: CN=B0D015A591D46D207E5A8AA140E6AE3026B8A55E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c2:fa:c8:ce:ef:f4:a2:68:90:e7:39:d2:60: 9b:65:be:22:80:0c:af:fd:88:5d:44:7c:f0:16:80: 3e:2a:9e:75:e4:d2:eb:09:ea:70:ce:28:ee:15:f0: 4d:ee:e6:96:bc:62:ec:f3:da:0b:dc:13:2f:03:f1: 28:8f:fa:f2:f1:27:bb:4d:fd:11:32:60:b9:ca:c8: a7:75:37:36:6a:90:4a:6e:c3:82:16:f3:b5:c5:4b: da:19:a3:48:54:cd:d5:b8:79:54:ca:ad:b6:66:71: e9:57:04:f3:1f:e2:2a:c4:77:bb:67:e1:b6:dc:05: 24:28:8f:1c:1a:7f:2c:5a:3f:6c:62:41:93:c7:5b: 0d:db:cc:61:5e:b5:43:43:f0:05:b4:a3:26:38:87: bc:9f:c8:5f:cd:13:64:63:46:1c:80:d5:50:b7:7e: b4:c7:2d:8b:2a:31:14:f8:2c:a4:99:29:fe:1a:8d: 09:93:40:95:39:a5:bc:cd:40:e9:53:60:65:66:1c: 1c:4a:49:ce:30:e6:00:52:3f:52:06:e2:d8:9b:4f: 48:45:d6:ba:e6:bb:f7:91:63:1d:dd:6c:b5:03:7e: 52:d2:6a:71:c8:99:6d:4f:4f:d7:59:8b:33:dd:e5: 14:a8:eb:37:24:5a:40:f0:b0:b3:2f:32:1c:34:c5: 4b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D0:15:A5:91:D4:6D:20:7E:5A:8A:A1:40:E6:AE:30:26:B8:A5:5E X509v3 Authority Key Identifier: keyid:60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/323430353a393730303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:9700::/32 Signature Algorithm: sha256WithRSAEncryption 3c:c7:f1:ae:ec:55:8d:f5:e5:c4:6d:77:fc:03:78:e8:58:ca: 02:4b:a7:f3:67:53:76:c8:ae:2b:7c:a6:d2:0f:07:bd:41:e5: bb:64:29:76:61:0e:e3:56:91:eb:0e:80:bc:6a:63:b5:08:d9: af:51:62:64:9f:75:c6:94:44:3f:10:2c:e1:f2:9a:6c:e5:6a: 42:1e:89:7f:49:56:9a:7a:1f:9e:a9:a6:e4:05:8c:38:81:cb: 51:4c:77:fe:35:11:9f:02:df:0d:91:fe:0c:58:b0:0b:e7:aa: cb:a3:ea:fd:31:b0:ca:60:b2:85:e9:a6:c5:5a:b1:b6:fa:c3: 81:57:72:45:a7:d4:88:c3:4a:bb:28:36:0d:a2:43:8c:30:17: 6e:1c:32:43:dc:fc:cf:27:9b:0f:b4:5c:da:be:13:cd:7f:1c: 0b:86:85:53:50:ff:33:8a:a9:fb:59:55:ba:94:29:aa:0c:0c: 5a:75:31:b2:be:41:44:ac:61:b1:ac:d4:ac:7f:7c:1f:d6:b1: 06:0c:45:11:10:76:0f:29:a4:17:c7:70:e5:19:34:a9:13:58: d8:2b:e5:1b:d5:21:10:06:bd:78:28:d4:2f:c0:62:d6:e7:d2: db:0e:dd:fe:5c:34:e4:39:bd:6a:5d:1f:62:a3:44:15:66:d2: f4:88:2d:60 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUNqhO1sIP4iQjND9o0MyEzujrdNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZG NTRFREM0RTAeFw0yNjA0MjIwNjU5MTNaFw0yNzA0MjEwNzA0MTNaMDMxMTAvBgNV BAMTKEIwRDAxNUE1OTFENDZEMjA3RTVBOEFBMTQwRTZBRTMwMjZCOEE1NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxwvrIzu/0omiQ5znSYJtlviKA DK/9iF1EfPAWgD4qnnXk0usJ6nDOKO4V8E3u5pa8Yuzz2gvcEy8D8SiP+vLxJ7tN /REyYLnKyKd1NzZqkEpuw4IW87XFS9oZo0hUzdW4eVTKrbZmcelXBPMf4irEd7tn 4bbcBSQojxwafyxaP2xiQZPHWw3bzGFetUND8AW0oyY4h7yfyF/NE2RjRhyA1VC3 frTHLYsqMRT4LKSZKf4ajQmTQJU5pbzNQOlTYGVmHBxKSc4w5gBSP1IG4tibT0hF 1rrmu/eRYx3dbLUDflLSanHImW1PT9dZizPd5RSo6zckWkDwsLMvMhw0xUtdAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUsNAVpZHUbSB+WoqhQOauMCa4pV4wHwYDVR0j BBgwFoAUYBqaijtQWl7iKDJD96vnpvVO3E4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQ5ODg2MzYwMDg5Mzk1NC8wLzYwMUE5QThBM0I1MDVBNUVFMjI4MzI0M0Y3QUJF N0E2RjU0RURDNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZGNTRFREM0RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0NDk4ODYzNjAwODkzOTU0LzAvMzIzNDMwMzUzYTM5 MzczMDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBZcA MA0GCSqGSIb3DQEBCwUAA4IBAQA8x/Gu7FWN9eXEbXf8A3joWMoCS6fzZ1N2yK4r fKbSDwe9QeW7ZCl2YQ7jVpHrDoC8amO1CNmvUWJkn3XGlEQ/ECzh8pps5WpCHol/ SVaaeh+eqabkBYw4gctRTHf+NRGfAt8Nkf4MWLAL56rLo+r9MbDKYLKF6abFWrG2 +sOBV3JFp9SIw0q7KDYNokOMMBduHDJD3PzPJ5sPtFzavhPNfxwLhoVTUP8ziqn7 WVW6lCmqDAxadTGyvkFErGGxrNSsf3wf1rEGDEUREHYPKaQXx3DlGTSpE1jYK+Ub 1SEQBr14KNQvwGLW59LbDt3+XDTkOb1qXR9io0QVZtL0iC1g -----END CERTIFICATE-----Generated at Wed May 13 15:37:02 2026 by rpki-client