$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1095890985226862595/0/323430313a626530303a3a2f34382d3438203d3e203535363431.roa File: 323430313a626530303a3a2f34382d3438203d3e203535363431.roa (raw, json) Hash identifier: 4Kfz4pCOXEIKeqC0UDidUNOzkUxQpOciRTk67PPMXRY= Subject key identifier: 0D:2D:48:52:C9:83:48:B7:F6:2D:77:88:9C:D3:2F:CC:DE:D8:A8:D1 Certificate issuer: /CN=91C6B644DD6D84839ED120FBC00984D60495C8C4 Certificate serial: 611698447EA2B323DB8CE8BCDA6EB8D6EA8A4E3F Authority key identifier: 91:C6:B6:44:DD:6D:84:83:9E:D1:20:FB:C0:09:84:D6:04:95:C8:C4 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/323430313a626530303a3a2f34382d3438203d3e203535363431.roa Signing time: Tue 12 May 2026 07:09:27 +0000 ROA not before: Tue 12 May 2026 07:04:27 +0000 ROA not after: Tue 11 May 2027 07:09:27 +0000 asID: 55641 IP address blocks: 2401:be00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.crl rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:47:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:16:98:44:7e:a2:b3:23:db:8c:e8:bc:da:6e:b8:d6:ea:8a:4e:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91C6B644DD6D84839ED120FBC00984D60495C8C4 Validity Not Before: May 12 07:04:27 2026 GMT Not After : May 11 07:09:27 2027 GMT Subject: CN=0D2D4852C98348B7F62D77889CD32FCCDED8A8D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:79:87:05:0c:b5:b5:70:04:42:3e:88:d4:b6: 9f:65:85:c8:79:57:49:2e:4e:4d:d0:9b:01:65:df: e8:62:fd:7a:44:47:95:cd:cd:1a:69:0e:1b:81:32: 96:54:b4:28:10:4c:77:45:7a:64:8b:23:b9:ca:2d: bf:b4:3c:56:83:6f:a4:97:6f:62:61:0c:54:92:40: 3b:0a:0b:df:7a:01:42:c3:db:6a:3c:60:81:aa:98: c3:9c:ce:f5:fb:ab:b9:7b:73:d9:5c:7c:0d:9b:12: 7b:cc:96:2c:39:b9:eb:7f:e1:3b:59:13:d5:62:bd: 0c:1b:1d:ee:24:ce:da:35:f3:3e:5c:6b:d6:6e:c2: 24:b0:8a:5e:5d:a6:59:43:a2:16:58:72:6a:0b:43: ad:69:53:23:84:5b:7e:2f:2d:35:7d:f8:22:81:59: cb:ce:b0:46:4b:7c:fe:dd:59:8c:a0:1a:19:32:fd: 03:5c:f5:46:7d:c8:e5:bc:f2:d4:7e:d1:a4:75:d2: 4e:9d:f2:68:7a:14:2e:e2:47:78:64:3a:48:2d:d2: 6c:0b:5b:e5:a9:58:93:26:06:cc:b7:0f:13:c3:4d: e8:cc:05:a7:eb:b4:cc:a8:e1:7f:f6:da:7e:7d:ec: e8:d3:1c:94:5e:46:9b:08:2f:67:90:c4:c9:13:da: fa:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:2D:48:52:C9:83:48:B7:F6:2D:77:88:9C:D3:2F:CC:DE:D8:A8:D1 X509v3 Authority Key Identifier: keyid:91:C6:B6:44:DD:6D:84:83:9E:D1:20:FB:C0:09:84:D6:04:95:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/91C6B644DD6D84839ED120FBC00984D60495C8C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/91C6B644DD6D84839ED120FBC00984D60495C8C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1095890985226862595/0/323430313a626530303a3a2f34382d3438203d3e203535363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:be00::/48 Signature Algorithm: sha256WithRSAEncryption 46:e5:fc:eb:03:fa:ab:7b:61:3e:c8:00:0a:b7:17:c7:a2:ef: 5c:15:00:c6:2b:c3:2e:d7:5d:bb:bf:62:d2:c2:43:3f:d1:8f: 43:d3:c0:fd:08:8e:ac:b0:b9:2b:0c:10:83:03:5b:4e:f7:5b: d2:30:8a:38:7d:72:4a:9f:24:d4:61:37:2d:fb:8e:c1:82:c8: d2:a3:de:99:26:2d:25:e0:8f:d1:84:88:0a:a0:cc:02:84:a6: ca:eb:e3:99:dd:63:37:29:f2:c6:58:08:5a:20:88:ad:a1:c5: 2d:26:5b:ac:71:4f:01:30:8e:9d:bd:d7:10:7c:4c:57:98:df: d2:b4:44:b2:5a:1b:91:98:09:6b:0b:0c:37:ff:fa:3b:06:b2: 2c:48:57:70:9f:27:94:a8:55:db:0b:60:7b:e2:96:47:8f:ca: 4f:55:86:f0:82:b6:0f:19:0d:4b:ff:28:b3:1f:eb:a6:96:06: a9:be:09:a2:ca:b3:57:b2:b1:6a:39:69:b1:33:9a:71:ce:2a: 50:58:f9:34:14:fd:2a:13:4e:ad:85:a5:9a:bd:ea:b5:53:5e: 1c:6d:fa:2f:c1:62:11:39:4b:3a:99:fc:e7:8e:fe:33:8f:b2: 1a:b3:95:86:ef:a3:c4:ed:ce:21:2b:31:fd:86:ec:8c:37:9f: b1:89:ee:99 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYRaYRH6isyPbjOi82m641uqKTj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFDNkI2NDRERDZEODQ4MzlFRDEyMEZCQzAwOTg0RDYw NDk1QzhDNDAeFw0yNjA1MTIwNzA0MjdaFw0yNzA1MTEwNzA5MjdaMDMxMTAvBgNV BAMTKDBEMkQ0ODUyQzk4MzQ4QjdGNjJENzc4ODlDRDMyRkNDREVEOEE4RDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXeYcFDLW1cARCPojUtp9lhch5 V0kuTk3QmwFl3+hi/XpER5XNzRppDhuBMpZUtCgQTHdFemSLI7nKLb+0PFaDb6SX b2JhDFSSQDsKC996AULD22o8YIGqmMOczvX7q7l7c9lcfA2bEnvMliw5uet/4TtZ E9VivQwbHe4kzto18z5ca9ZuwiSwil5dpllDohZYcmoLQ61pUyOEW34vLTV9+CKB WcvOsEZLfP7dWYygGhky/QNc9UZ9yOW88tR+0aR10k6d8mh6FC7iR3hkOkgt0mwL W+WpWJMmBsy3DxPDTejMBafrtMyo4X/22n597OjTHJReRpsIL2eQxMkT2vpHAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUDS1IUsmDSLf2LXeInNMvzN7YqNEwHwYDVR0j BBgwFoAUkca2RN1thIOe0SD7wAmE1gSVyMQwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NTg5MDk4NTIyNjg2MjU5NS8wLzkxQzZCNjQ0REQ2RDg0ODM5RUQxMjBGQkMwMDk4 NEQ2MDQ5NUM4QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTFDNkI2NDRERDZEODQ4MzlFRDEyMEZCQzAwOTg0RDYwNDk1QzhDNC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk1ODkwOTg1MjI2ODYyNTk1LzAvMzIzNDMwMzEzYTYy NjUzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzQzMS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACQBvgAAADANBgkqhkiG9w0BAQsFAAOCAQEARuX86wP6q3thPsgACrcXx6Lv XBUAxivDLtddu79i0sJDP9GPQ9PA/QiOrLC5KwwQgwNbTvdb0jCKOH1ySp8k1GE3 LfuOwYLI0qPemSYtJeCP0YSICqDMAoSmyuvjmd1jNynyxlgIWiCIraHFLSZbrHFP ATCOnb3XEHxMV5jf0rREslobkZgJawsMN//6OwayLEhXcJ8nlKhV2wtge+KWR4/K T1WG8IK2DxkNS/8osx/rppYGqb4JosqzV7KxajlpsTOacc4qUFj5NBT9KhNOrYWl mr3qtVNeHG36L8FiETlLOpn8547+M4+yGrOVhu+jxO3OISsx/YbsjDefsYnumQ== -----END CERTIFICATE-----Generated at Wed May 13 15:59:10 2026 by rpki-client