$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383636633a3230303a3a2f34322d3432203d3e2034383337.roa File: 323430383a383636633a3230303a3a2f34322d3432203d3e2034383337.roa (raw, json) Hash identifier: XuzK6nn7Gii4blHLN+9v2KONmujUfW0Srji7iLJdSKw= Subject key identifier: A3:2A:C0:3A:9B:0D:73:A8:DD:3A:4B:24:32:5E:01:56:25:36:38:06 Certificate issuer: /CN=A9143CB30000/serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Certificate serial: 6CC12F465BD5666A0A925886BA1F281EA4C4CF33 Authority key identifier: 8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383636633a3230303a3a2f34322d3432203d3e2034383337.roa Signing time: Wed 13 May 2026 02:19:07 +0000 ROA not before: Wed 13 May 2026 02:14:07 +0000 ROA not after: Wed 12 May 2027 02:19:07 +0000 asID: 4837 IP address blocks: 2408:866c:200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:c1:2f:46:5b:d5:66:6a:0a:92:58:86:ba:1f:28:1e:a4:c4:cf:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Validity Not Before: May 13 02:14:07 2026 GMT Not After : May 12 02:19:07 2027 GMT Subject: CN=A32AC03A9B0D73A8DD3A4B24325E015625363806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4c:1d:4f:23:a4:4d:a6:6a:9b:3c:79:63:5e: 29:33:ee:d7:12:03:71:06:05:69:78:43:40:2d:17: 8f:a0:7d:c8:d8:b1:a1:63:78:c3:7c:e3:6c:7c:23: 60:f2:f6:a2:17:78:a6:ae:ed:9b:b7:52:bd:98:c5: 7b:74:a9:1b:5c:4c:5a:dc:ca:73:d3:68:9e:66:70: d2:3b:c7:53:84:79:3b:eb:22:d0:24:8d:7a:4c:78: 22:70:81:6c:f0:97:f4:15:16:ff:fc:bf:5e:b2:03: be:4b:ef:9a:15:5d:18:c8:2c:62:b9:43:a8:80:37: 12:aa:e9:ec:6d:ec:90:b3:ee:dd:4a:ec:60:2a:9d: b0:1a:4f:32:b5:42:04:d2:26:4e:45:ad:dd:4d:bb: 05:bf:cb:1f:a7:3e:99:ad:aa:a1:b0:fd:38:bc:d6: 24:f3:87:87:ff:8a:16:f2:61:d7:06:a8:d7:28:46: 1e:45:71:fe:e6:34:9d:cb:42:22:a2:79:e5:4f:3a: 6b:4c:1a:8b:4d:8e:99:5b:e4:af:4c:84:34:df:b5: ec:07:0f:a4:ef:b9:db:26:43:31:93:46:c0:23:ea: 46:e8:ed:ee:b0:18:93:28:b1:7c:4c:c0:09:26:5c: 32:d2:52:96:2c:81:80:3e:db:7e:65:12:bc:db:68: c6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:2A:C0:3A:9B:0D:73:A8:DD:3A:4B:24:32:5E:01:56:25:36:38:06 X509v3 Authority Key Identifier: keyid:8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383636633a3230303a3a2f34322d3432203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2408:866c:200::/42 Signature Algorithm: sha256WithRSAEncryption 7d:d4:6c:b2:ba:bf:25:00:4f:cd:66:ad:a7:46:59:ff:76:83: 1e:8c:7b:90:18:0e:d6:67:75:23:30:96:13:06:35:d7:42:72: cd:92:eb:75:39:62:07:fb:35:54:e6:c2:ac:db:d2:af:04:55: 75:f8:0e:8b:e2:8d:a3:fd:5c:10:b3:80:53:17:87:91:f1:79: 4b:a3:f1:03:33:1d:73:ec:87:4c:d2:d9:ad:21:a7:4e:58:e3: 74:a1:a4:70:ba:7b:06:de:5e:0b:d8:6d:53:4e:ed:7c:d3:89: c5:c8:8e:75:e5:c8:93:13:bf:25:78:35:05:b2:4a:11:64:32: f3:b3:a7:1f:a7:a1:5e:ec:12:4a:78:a9:b9:15:8b:5d:48:dd: 8d:55:cf:fc:f1:ea:ec:11:9f:dd:3c:38:85:d5:83:a7:50:45: c8:35:92:6f:1d:0d:1e:0f:be:1f:ea:4b:50:26:52:14:36:8a: 3d:ec:28:27:1c:17:fd:a4:42:9b:2b:38:ec:0a:90:31:46:aa: 76:f8:48:3a:b8:f9:8a:78:ce:f3:8f:b2:ae:21:cc:7b:eb:20: a2:76:72:4a:62:e2:8b:de:05:19:f7:43:35:8e:a7:c8:09:46: f7:4e:35:15:14:cd:9f:05:b1:86:37:59:fa:19:63:c3:e5:34: d1:fc:52:5d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbMEvRlvVZmoKkliGuh8oHqTEzzMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyg4QTFCNEU0QTYz Mjk1RjE4QjRGMDZGRkY2QUQwMkMzMTY1QkY5OTI1MB4XDTI2MDUxMzAyMTQwN1oX DTI3MDUxMjAyMTkwN1owMzExMC8GA1UEAxMoQTMyQUMwM0E5QjBENzNBOEREM0E0 QjI0MzI1RTAxNTYyNTM2MzgwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANFMHU8jpE2maps8eWNeKTPu1xIDcQYFaXhDQC0Xj6B9yNixoWN4w3zjbHwj YPL2ohd4pq7tm7dSvZjFe3SpG1xMWtzKc9NonmZw0jvHU4R5O+si0CSNekx4InCB bPCX9BUW//y/XrIDvkvvmhVdGMgsYrlDqIA3Eqrp7G3skLPu3UrsYCqdsBpPMrVC BNImTkWt3U27Bb/LH6c+ma2qobD9OLzWJPOHh/+KFvJh1wao1yhGHkVx/uY0nctC IqJ55U86a0wai02OmVvkr0yENN+17AcPpO+52yZDMZNGwCPqRujt7rAYkyixfEzA CSZcMtJSliyBgD7bfmUSvNtoxjUCAwEAAaOCAh0wggIZMB0GA1UdDgQWBBSjKsA6 mw1zqN06SyQyXgFWJTY4BjAfBgNVHSMEGDAWgBSKG05KYylfGLTwb/9q0CwxZb+Z JTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzEvOEExQjRF NEE2MzI5NUYxOEI0RjA2RkZGNkFEMDJDMzE2NUJGOTkyNS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvaWh0T1NtTXBY eGkwOEdfX2F0QXNNV1dfbVNVLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsG AQUFBzALhnRyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTY3MDQ1 OTM2OTUzNDI1OTMvMS8zMjM0MzAzODNhMzgzNjM2NjMzYTMyMzAzMDNhM2EyZjM0 MzIyZDM0MzIyMDNkM2UyMDM0MzgzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcGJAiGbAIAMA0GCSqG SIb3DQEBCwUAA4IBAQB91Gyyur8lAE/NZq2nRln/doMejHuQGA7WZ3UjMJYTBjXX QnLNkut1OWIH+zVU5sKs29KvBFV1+A6L4o2j/VwQs4BTF4eR8XlLo/EDMx1z7IdM 0tmtIadOWON0oaRwunsG3l4L2G1TTu1804nFyI515ciTE78leDUFskoRZDLzs6cf p6Fe7BJKeKm5FYtdSN2NVc/88ersEZ/dPDiF1YOnUEXINZJvHQ0eD74f6ktQJlIU Noo97CgnHBf9pEKbKzjsCpAxRqp2+Eg6uPmKeM7zj7KuIcx76yCidnJKYuKL3gUZ 90M1jqfICUb3TjUVFM2fBbGGN1n6GWPD5TTR/FJd -----END CERTIFICATE-----Generated at Wed May 13 14:03:28 2026 by rpki-client