$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383636633a666630303a3a2f34382d3438203d3e2039393239.roa File: 323430383a383636633a666630303a3a2f34382d3438203d3e2039393239.roa (raw, json) Hash identifier: v43e2JlOQC8deUmQZH7ieMHLzxBEVPeJlrmg+uF/6Co= Subject key identifier: E9:0B:08:92:64:84:15:21:A5:1F:5E:70:E0:7A:39:95:36:13:1E:D4 Certificate issuer: /CN=A9143CB30000/serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Certificate serial: 4594CE8D5819AC6423FD586B1746B644991FAFB2 Authority key identifier: 8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383636633a666630303a3a2f34382d3438203d3e2039393239.roa Signing time: Wed 13 May 2026 02:19:07 +0000 ROA not before: Wed 13 May 2026 02:14:07 +0000 ROA not after: Wed 12 May 2027 02:19:07 +0000 asID: 9929 IP address blocks: 2408:866c:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:94:ce:8d:58:19:ac:64:23:fd:58:6b:17:46:b6:44:99:1f:af:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Validity Not Before: May 13 02:14:07 2026 GMT Not After : May 12 02:19:07 2027 GMT Subject: CN=E90B089264841521A51F5E70E07A399536131ED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:14:42:9d:d3:a2:86:23:85:54:e6:58:2a:3f: 5c:81:5e:cf:64:d4:07:29:04:fc:8f:66:f9:c7:c7: 01:3b:80:fa:30:58:63:66:09:f7:f4:c4:eb:e1:b4: ac:37:60:ff:b9:1b:86:2b:3e:1f:88:c0:54:e8:95: 98:ae:18:f4:33:42:72:b3:ff:09:41:15:2f:0a:51: 88:c6:ec:26:6c:a2:66:bf:29:da:76:2a:45:58:48: 7f:03:cc:c1:e3:df:ae:cb:9f:38:06:5d:d5:83:09: 8f:21:05:5a:af:4b:01:ae:15:48:ba:4a:1e:f4:91: 7a:73:22:20:41:7b:75:35:d9:45:22:f6:ba:0c:64: d3:79:0a:77:59:40:58:ed:ac:af:06:ea:2e:8c:f6: b6:17:fd:74:92:c4:f8:53:56:dd:85:1a:df:8f:46: 2c:b7:33:9d:27:0f:82:cb:e9:55:39:f8:e8:a8:86: 87:2a:73:22:07:0c:05:a3:d2:45:d0:33:05:b0:a9: ff:3b:09:d5:b7:ba:13:d0:a6:5b:af:35:cc:7d:76: 92:9a:1b:dc:ef:9c:65:3a:49:fc:5d:96:22:3e:85: 09:17:6c:e0:50:1a:e6:55:cc:c5:96:81:1c:5d:d1: cb:30:69:52:fe:e1:1e:5a:dd:5e:a4:60:31:d5:19: ac:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0B:08:92:64:84:15:21:A5:1F:5E:70:E0:7A:39:95:36:13:1E:D4 X509v3 Authority Key Identifier: keyid:8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383636633a666630303a3a2f34382d3438203d3e2039393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2408:866c:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 7b:f6:e9:b9:a5:ba:f7:b2:6e:2d:fa:85:ac:5d:e2:b3:a5:25: 8b:16:1f:3e:62:0d:36:7c:05:a1:24:67:58:23:47:c1:69:8a: d7:6f:db:4e:53:7b:74:51:c6:5a:bc:84:7e:f2:84:7f:30:bb: fc:cd:3c:90:85:82:7b:c4:a8:b3:e5:0c:3d:f6:93:e3:f2:2e: 4b:cd:f2:18:77:86:04:0e:ae:ad:9f:40:7f:7e:d3:8c:99:90: 67:b8:5d:bc:69:bc:26:0e:d6:5d:03:2e:c6:ca:51:f0:27:cd: 91:0c:38:70:ee:64:7f:1b:21:dc:e9:67:2f:01:de:d8:8d:54: 8d:3b:43:fc:db:7d:50:a9:98:57:c1:b8:b2:8a:a1:e3:8a:ea: 80:d8:06:14:12:73:54:fb:1a:03:41:cb:f5:56:c5:4a:b0:fc: 16:e1:59:61:97:9e:e0:51:9e:96:af:f0:49:b8:71:e6:47:2d: fc:a6:c4:0a:ff:eb:8c:86:92:b6:3e:fb:d1:81:bf:48:cf:e9: 73:b9:79:5c:6e:1a:80:3f:c6:07:05:aa:d8:99:98:af:3b:6b: 6c:94:cf:80:f6:ce:97:f7:93:86:77:3f:45:f4:ab:10:de:f1: b7:ce:0b:6a:58:26:6b:bf:e6:64:dd:38:be:cb:87:c8:14:27: 91:9a:cd:e0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURZTOjVgZrGQj/VhrF0a2RJkfr7IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyg4QTFCNEU0QTYz Mjk1RjE4QjRGMDZGRkY2QUQwMkMzMTY1QkY5OTI1MB4XDTI2MDUxMzAyMTQwN1oX DTI3MDUxMjAyMTkwN1owMzExMC8GA1UEAxMoRTkwQjA4OTI2NDg0MTUyMUE1MUY1 RTcwRTA3QTM5OTUzNjEzMUVENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOYUQp3TooYjhVTmWCo/XIFez2TUBykE/I9m+cfHATuA+jBYY2YJ9/TE6+G0 rDdg/7kbhis+H4jAVOiVmK4Y9DNCcrP/CUEVLwpRiMbsJmyiZr8p2nYqRVhIfwPM wePfrsufOAZd1YMJjyEFWq9LAa4VSLpKHvSRenMiIEF7dTXZRSL2ugxk03kKd1lA WO2srwbqLoz2thf9dJLE+FNW3YUa349GLLcznScPgsvpVTn46KiGhypzIgcMBaPS RdAzBbCp/zsJ1be6E9CmW681zH12kpob3O+cZTpJ/F2WIj6FCRds4FAa5lXMxZaB HF3RyzBpUv7hHlrdXqRgMdUZrO0CAwEAAaOCAh8wggIbMB0GA1UdDgQWBBTpCwiS ZIQVIaUfXnDgejmVNhMe1DAfBgNVHSMEGDAWgBSKG05KYylfGLTwb/9q0CwxZb+Z JTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzEvOEExQjRF NEE2MzI5NUYxOEI0RjA2RkZGNkFEMDJDMzE2NUJGOTkyNS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvaWh0T1NtTXBY eGkwOEdfX2F0QXNNV1dfbVNVLmNlcjCBlQYIKwYBBQUHAQsEgYgwgYUwgYIGCCsG AQUFBzALhnZyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTY3MDQ1 OTM2OTUzNDI1OTMvMS8zMjM0MzAzODNhMzgzNjM2NjMzYTY2NjYzMDMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzkzOTMyMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkCIZs/wAwDQYJ KoZIhvcNAQELBQADggEBAHv26bmluveybi36haxd4rOlJYsWHz5iDTZ8BaEkZ1gj R8Fpitdv205Te3RRxlq8hH7yhH8wu/zNPJCFgnvEqLPlDD32k+PyLkvN8hh3hgQO rq2fQH9+04yZkGe4XbxpvCYO1l0DLsbKUfAnzZEMOHDuZH8bIdzpZy8B3tiNVI07 Q/zbfVCpmFfBuLKKoeOK6oDYBhQSc1T7GgNBy/VWxUqw/BbhWWGXnuBRnpav8Em4 ceZHLfymxAr/64yGkrY++9GBv0jP6XO5eVxuGoA/xgcFqtiZmK87a2yUz4D2zpf3 k4Z3P0X0qxDe8bfOC2pYJmu/5mTdOL7Lh8gUJ5GazeA= -----END CERTIFICATE-----Generated at Wed May 13 16:19:25 2026 by rpki-client