$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096693899595874305/0/323430323a353832303a3a2f33322d3438203d3e203535393939.roa File: 323430323a353832303a3a2f33322d3438203d3e203535393939.roa (raw, json) Hash identifier: TkMoNhxqxanWVebdWp3tiOB/dRJMGnbvd0EVuiJe5eM= Subject key identifier: CD:F7:D2:70:CB:30:F6:5C:14:E7:8F:60:73:08:B3:95:06:56:CE:5E Certificate issuer: /CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Certificate serial: 4A33EEB0020373D083ACE1930451572061668D55 Authority key identifier: 28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/323430323a353832303a3a2f33322d3438203d3e203535393939.roa Signing time: Fri 08 May 2026 15:29:42 +0000 ROA not before: Fri 08 May 2026 15:24:42 +0000 ROA not after: Fri 07 May 2027 15:29:42 +0000 asID: 55999 IP address blocks: 2402:5820::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:33:ee:b0:02:03:73:d0:83:ac:e1:93:04:51:57:20:61:66:8d:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289BA9CBEB71D9603BED963E3B60B1790E8F78A2 Validity Not Before: May 8 15:24:42 2026 GMT Not After : May 7 15:29:42 2027 GMT Subject: CN=CDF7D270CB30F65C14E78F607308B3950656CE5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:9c:fc:53:12:ae:a6:20:47:8e:55:4d:6a: d0:83:c1:13:cd:e0:c7:b6:a2:ba:04:ad:4f:4b:97: 8c:ff:b2:b6:65:49:5e:a7:dc:38:0b:33:65:b1:fe: a7:41:e3:31:a1:05:e3:55:65:7a:16:95:43:fb:07: d0:72:7a:6a:f4:e2:ec:9e:dc:40:85:4b:be:13:a7: 46:3a:8a:cd:16:85:8f:5a:d9:0f:3e:b0:8a:44:b7: 3c:d4:38:31:9c:64:72:fa:ae:78:4a:1a:41:94:2c: 95:f8:1c:f8:c9:c9:4a:22:dc:92:92:03:f3:76:b1: ec:c3:16:5b:f5:ac:8e:7d:7b:7a:00:20:eb:d9:13: f6:80:76:1e:a4:67:50:81:a0:4a:76:c8:f4:a4:9d: a3:fc:a4:b8:67:c7:d3:a5:da:0e:00:66:e6:b8:4d: 37:a6:6d:58:f8:2b:96:c7:5a:35:2a:f8:16:d8:29: a2:49:4a:c6:9a:84:d7:7f:95:0f:af:57:c2:ba:40: c7:a2:c5:e9:45:ca:ea:0c:57:62:dd:fc:fb:75:a0: 47:2d:16:2c:19:f2:8f:3b:2d:b8:00:8a:ed:39:8a: 6e:58:60:ae:60:c1:5a:8c:49:1b:b1:63:04:f2:98: c3:cf:cc:a3:4d:2a:64:59:86:ee:ea:e3:4e:6a:d4: c7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F7:D2:70:CB:30:F6:5C:14:E7:8F:60:73:08:B3:95:06:56:CE:5E X509v3 Authority Key Identifier: keyid:28:9B:A9:CB:EB:71:D9:60:3B:ED:96:3E:3B:60:B1:79:0E:8F:78:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/289BA9CBEB71D9603BED963E3B60B1790E8F78A2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096693899595874305/0/323430323a353832303a3a2f33322d3438203d3e203535393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5820::/32 Signature Algorithm: sha256WithRSAEncryption 9f:23:48:83:e2:54:85:47:88:4e:c6:34:f7:e1:10:4a:ce:1f: 2f:c3:50:ff:20:41:8f:b4:f2:25:b1:38:98:7e:1d:eb:ff:bc: 7a:be:d5:4a:eb:c4:b8:7c:ae:10:3e:fd:f6:23:0d:02:09:cc: 0b:a4:cd:46:8e:ca:f0:c3:d5:7e:6b:1a:4d:1d:8f:ae:78:3b: 40:bf:fa:ee:c4:0b:cb:df:ba:e5:53:c6:ac:9a:87:64:6a:b2: af:ce:2d:3c:2d:04:ff:ab:c1:0d:22:86:02:11:ba:8d:53:bb: 94:53:33:e9:b7:a4:3d:66:5c:8d:c3:d1:b7:e3:3b:91:e7:aa: b3:c0:3e:fe:49:d2:30:f9:aa:31:25:8e:20:60:52:0a:ba:67: be:ea:f4:67:4a:ef:74:9e:68:56:17:73:a8:f8:04:68:bd:3e: 03:f8:e0:68:f0:dd:2f:aa:47:95:ff:7f:d7:19:35:cf:12:c5: d2:cc:73:30:e6:51:39:db:48:a6:22:0d:b7:a8:1f:62:19:ad: 76:6d:c4:75:36:35:15:e7:29:5e:2d:c9:c1:d4:9f:e9:3c:57: f4:61:48:2a:34:16:dd:81:d7:cd:70:06:7e:ce:66:8b:f7:36: 40:2a:ad:a8:f0:3e:fb:73:02:4a:6a:db:7e:4b:b3:f9:d8:ae: 81:c6:24:fa -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUSjPusAIDc9CDrOGTBFFXIGFmjVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkw RThGNzhBMjAeFw0yNjA1MDgxNTI0NDJaFw0yNzA1MDcxNTI5NDJaMDMxMTAvBgNV BAMTKENERjdEMjcwQ0IzMEY2NUMxNEU3OEY2MDczMDhCMzk1MDY1NkNFNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGApz8UxKupiBHjlVNatCDwRPN 4Me2oroErU9Ll4z/srZlSV6n3DgLM2Wx/qdB4zGhBeNVZXoWlUP7B9Byemr04uye 3ECFS74Tp0Y6is0WhY9a2Q8+sIpEtzzUODGcZHL6rnhKGkGULJX4HPjJyUoi3JKS A/N2sezDFlv1rI59e3oAIOvZE/aAdh6kZ1CBoEp2yPSknaP8pLhnx9Ol2g4AZua4 TTembVj4K5bHWjUq+BbYKaJJSsaahNd/lQ+vV8K6QMeixelFyuoMV2Ld/Pt1oEct FiwZ8o87LbgAiu05im5YYK5gwVqMSRuxYwTymMPPzKNNKmRZhu7q405q1MfrAgMB AAGjggISMIICDjAdBgNVHQ4EFgQUzffScMsw9lwU549gcwizlQZWzl4wHwYDVR0j BBgwFoAUKJupy+tx2WA77ZY+O2CxeQ6PeKIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NjY5Mzg5OTU5NTg3NDMwNS8wLzI4OUJBOUNCRUI3MUQ5NjAzQkVEOTYzRTNCNjBC MTc5MEU4Rjc4QTIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjg5QkE5Q0JFQjcxRDk2MDNCRUQ5NjNFM0I2MEIxNzkwRThGNzhBMi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk2NjkzODk5NTk1ODc0MzA1LzAvMzIzNDMwMzIzYTM1 MzgzMjMwM2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzUzNTM5MzkzOS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQCWCAwDQYJKoZIhvcNAQELBQADggEBAJ8jSIPiVIVHiE7GNPfhEErOHy/D UP8gQY+08iWxOJh+Hev/vHq+1UrrxLh8rhA+/fYjDQIJzAukzUaOyvDD1X5rGk0d j654O0C/+u7EC8vfuuVTxqyah2Rqsq/OLTwtBP+rwQ0ihgIRuo1Tu5RTM+m3pD1m XI3D0bfjO5HnqrPAPv5J0jD5qjEljiBgUgq6Z77q9GdK73SeaFYXc6j4BGi9PgP4 4Gjw3S+qR5X/f9cZNc8SxdLMczDmUTnbSKYiDbeoH2IZrXZtxHU2NRXnKV4tycHU n+k8V/RhSCo0Ft2B181wBn7OZov3NkAqrajwPvtzAkpq235Ls/nYroHGJPo= -----END CERTIFICATE-----Generated at Wed May 13 21:32:16 2026 by rpki-client