$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1094498863600893954/0/323430353a393838303a3a2f33322d3332203d3e2030.roa File: 323430353a393838303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: /XSBz2YauMRg8MSFkadncF+Xb/VKcdTSZjiZ3GisOqo= Subject key identifier: AD:40:EC:AD:6B:9C:65:CA:7F:60:AC:EC:76:0D:F2:1D:77:74:1A:83 Certificate issuer: /CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Certificate serial: 70E0A57D96E562F9E5563C684E0FD25EC9CE5FE2 Authority key identifier: 60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/323430353a393838303a3a2f33322d3332203d3e2030.roa Signing time: Wed 22 Apr 2026 07:04:14 +0000 ROA not before: Wed 22 Apr 2026 06:59:14 +0000 ROA not after: Wed 21 Apr 2027 07:04:14 +0000 asID: 0 IP address blocks: 2405:9880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:e0:a5:7d:96:e5:62:f9:e5:56:3c:68:4e:0f:d2:5e:c9:ce:5f:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E Validity Not Before: Apr 22 06:59:14 2026 GMT Not After : Apr 21 07:04:14 2027 GMT Subject: CN=AD40ECAD6B9C65CA7F60ACEC760DF21D77741A83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8f:bf:c9:70:67:4c:4d:90:09:28:9b:62:be: c9:dc:2d:3e:dc:6e:5c:d3:b7:0d:9a:bb:96:2a:e0: 7c:23:a2:6b:4e:4e:22:ca:09:4c:9b:c5:db:d7:46: d8:e8:92:11:aa:22:07:fd:8c:e9:eb:0d:32:27:41: 1b:41:19:7d:ba:5a:9f:8d:d0:81:0e:d6:1e:25:2a: 41:16:1d:ef:6b:43:2e:c3:d0:8f:6f:03:f2:8e:06: 64:9b:e6:ab:68:0c:fc:26:de:78:04:5d:b5:e9:d1: 8f:03:5c:d5:b9:c1:5e:38:49:d0:d2:cd:ed:08:1a: 36:88:54:0b:13:1c:dd:c8:32:8e:91:c0:1c:30:f8: dd:35:6e:bc:40:22:fa:d2:62:9c:7b:73:6c:45:57: ff:be:43:5d:e6:d8:a3:d1:d5:62:24:3a:81:e8:86: 08:3f:bc:6f:7d:65:ed:dc:39:4c:32:68:d1:37:31: 51:ed:a8:ad:0c:41:80:b9:25:45:e4:75:64:bf:c0: 65:89:0a:78:0c:43:f4:c0:1f:b6:75:0c:81:56:4a: 11:04:d1:26:0d:c5:a6:4a:60:9c:83:71:f0:23:91: 54:0c:30:f8:93:03:2f:cf:77:cc:e9:c8:ec:6a:49: 1e:9a:8f:65:b3:9c:20:2f:4c:51:96:c7:97:ae:bc: 8d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:40:EC:AD:6B:9C:65:CA:7F:60:AC:EC:76:0D:F2:1D:77:74:1A:83 X509v3 Authority Key Identifier: keyid:60:1A:9A:8A:3B:50:5A:5E:E2:28:32:43:F7:AB:E7:A6:F5:4E:DC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/601A9A8A3B505A5EE2283243F7ABE7A6F54EDC4E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1094498863600893954/0/323430353a393838303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:9880::/32 Signature Algorithm: sha256WithRSAEncryption 60:9f:52:36:f2:88:84:a0:bb:5e:94:b3:b6:41:b8:ef:ea:39: 6e:ad:b4:85:38:3a:52:a5:0e:45:8d:a2:70:11:d5:39:9b:5a: f6:f0:31:70:18:b4:d8:0f:8c:f1:ef:c9:39:98:af:6f:c1:b7: 24:e9:b6:c8:75:19:49:b2:25:60:2d:fb:b6:78:b9:d4:0b:81: 48:fc:b7:ee:8e:10:3d:a8:ca:02:9b:d5:5d:20:7f:e6:95:d2: d4:71:1c:d4:5d:e6:f0:55:ba:c0:47:6f:43:62:07:21:6b:9c: 8c:1e:5a:fe:18:0d:88:55:5a:bd:b0:27:f3:28:10:9d:68:11: 1d:34:7e:77:bc:85:2c:25:b6:62:3f:56:e5:dc:04:29:49:78: 7d:8d:4b:6e:2a:bf:99:d3:79:aa:ae:fc:48:68:e1:41:e7:b6: c7:6b:7e:c8:9c:80:01:8b:47:6d:94:cc:99:36:af:d8:c7:07: df:96:21:e1:70:d6:fd:1e:e8:ce:28:f3:29:ea:88:32:33:af: 44:f1:62:a3:10:92:da:7a:8b:ad:be:80:01:2a:57:d9:82:7b: 5b:c4:84:8c:9f:6a:e1:86:4f:72:9d:4e:cf:45:d5:cd:41:de: 12:3d:2c:e0:fd:42:01:bb:21:e0:4a:27:ca:83:8c:b8:9e:d8: 9a:c1:e3:a2 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUcOClfZblYvnlVjxoTg/SXsnOX+IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZG NTRFREM0RTAeFw0yNjA0MjIwNjU5MTRaFw0yNzA0MjEwNzA0MTRaMDMxMTAvBgNV BAMTKEFENDBFQ0FENkI5QzY1Q0E3RjYwQUNFQzc2MERGMjFENzc3NDFBODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOj7/JcGdMTZAJKJtivsncLT7c blzTtw2au5Yq4HwjomtOTiLKCUybxdvXRtjokhGqIgf9jOnrDTInQRtBGX26Wp+N 0IEO1h4lKkEWHe9rQy7D0I9vA/KOBmSb5qtoDPwm3ngEXbXp0Y8DXNW5wV44SdDS ze0IGjaIVAsTHN3IMo6RwBww+N01brxAIvrSYpx7c2xFV/++Q13m2KPR1WIkOoHo hgg/vG99Ze3cOUwyaNE3MVHtqK0MQYC5JUXkdWS/wGWJCngMQ/TAH7Z1DIFWShEE 0SYNxaZKYJyDcfAjkVQMMPiTAy/Pd8zpyOxqSR6aj2WznCAvTFGWx5euvI0NAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUrUDsrWucZcp/YKzsdg3yHXd0GoMwHwYDVR0j BBgwFoAUYBqaijtQWl7iKDJD96vnpvVO3E4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NDQ5ODg2MzYwMDg5Mzk1NC8wLzYwMUE5QThBM0I1MDVBNUVFMjI4MzI0M0Y3QUJF N0E2RjU0RURDNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjAxQTlBOEEzQjUwNUE1RUUyMjgzMjQzRjdBQkU3QTZGNTRFREM0RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk0NDk4ODYzNjAwODkzOTU0LzAvMzIzNDMwMzUzYTM5 MzgzODMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBZiA MA0GCSqGSIb3DQEBCwUAA4IBAQBgn1I28oiEoLtelLO2Qbjv6jlurbSFODpSpQ5F jaJwEdU5m1r28DFwGLTYD4zx78k5mK9vwbck6bbIdRlJsiVgLfu2eLnUC4FI/Lfu jhA9qMoCm9VdIH/mldLUcRzUXebwVbrAR29DYgcha5yMHlr+GA2IVVq9sCfzKBCd aBEdNH53vIUsJbZiP1bl3AQpSXh9jUtuKr+Z03mqrvxIaOFB57bHa37InIABi0dt lMyZNq/YxwffliHhcNb9HujOKPMp6ogyM69E8WKjEJLaeoutvoABKlfZgntbxISM n2rhhk9ynU7PRdXNQd4SPSzg/UIBuyHgSifKg4y4ntiaweOi -----END CERTIFICATE-----Generated at Wed May 13 14:10:34 2026 by rpki-client