$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383736633a313734303a3a2f34342d3434203d3e2034383337.roa File: 323430383a383736633a313734303a3a2f34342d3434203d3e2034383337.roa (raw, json) Hash identifier: ii4LWjMQi3QTxIdjybV79mVgrfX5Yqb6ECMTsRzBUaw= Subject key identifier: 1C:11:1A:A7:43:38:4B:37:ED:7B:7F:14:2B:69:85:98:8D:99:54:25 Certificate issuer: /CN=A9143CB30000/serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Certificate serial: 46027FDB3A0BEBDE10040E302CFFF56D909557F3 Authority key identifier: 8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383736633a313734303a3a2f34342d3434203d3e2034383337.roa Signing time: Wed 13 May 2026 02:50:08 +0000 ROA not before: Wed 13 May 2026 02:45:08 +0000 ROA not after: Wed 12 May 2027 02:50:08 +0000 asID: 4837 IP address blocks: 2408:876c:1740::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:02:7f:db:3a:0b:eb:de:10:04:0e:30:2c:ff:f5:6d:90:95:57:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB30000, serialNumber=8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925 Validity Not Before: May 13 02:45:08 2026 GMT Not After : May 12 02:50:08 2027 GMT Subject: CN=1C111AA743384B37ED7B7F142B6985988D995425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bc:b2:88:df:37:b8:a0:19:86:92:b5:68:44: 88:a3:c4:c1:08:77:5e:1e:45:8a:24:3d:38:52:96: 83:10:91:88:b2:9b:b7:c7:66:1d:1a:3c:b9:eb:18: a6:6f:44:eb:39:e9:ca:9a:69:bd:22:e7:a6:57:42: 97:eb:6f:f7:22:16:04:25:7f:a9:5b:20:a8:5c:e1: af:e8:a2:89:8e:90:7d:30:4a:a5:cc:21:06:21:9a: b9:b0:76:32:ef:27:99:3f:2c:31:de:a5:a5:b4:da: 39:16:60:54:5f:0e:e0:59:74:55:31:9a:d9:26:a0: 2b:f6:df:61:7c:1d:7c:b6:50:52:57:bf:52:24:1c: d0:fa:b5:8c:a5:8c:e1:eb:18:62:d4:c2:66:41:29: ee:0c:21:cc:ae:2f:d0:99:b5:ed:53:64:43:68:db: 8f:3c:7d:8d:90:8f:15:dd:50:f4:54:55:28:2a:9b: 00:0a:6c:b1:02:d3:d1:e1:64:93:cf:3c:96:45:6e: a8:ff:b3:1c:d2:39:cc:fb:89:94:2f:3d:96:dc:47: 10:5b:a2:8a:cc:87:b8:40:ae:2e:d4:6c:dc:d1:4b: 65:dc:a2:d9:89:5b:05:08:24:2e:d7:85:02:36:4a: 16:c8:0a:4f:d8:c4:10:51:a9:f7:9c:bd:c0:51:df: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:11:1A:A7:43:38:4B:37:ED:7B:7F:14:2B:69:85:98:8D:99:54:25 X509v3 Authority Key Identifier: keyid:8A:1B:4E:4A:63:29:5F:18:B4:F0:6F:FF:6A:D0:2C:31:65:BF:99:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/8A1B4E4A63295F18B4F06FFF6AD02C3165BF9925.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihtOSmMpXxi08G__atAsMWW_mSU.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1096704593695342593/1/323430383a383736633a313734303a3a2f34342d3434203d3e2034383337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2408:876c:1740::/44 Signature Algorithm: sha256WithRSAEncryption bd:d8:fd:e0:9e:f8:b0:28:a0:c3:11:fa:f6:ce:b3:63:41:a9: 02:23:ee:17:48:d0:b3:47:e4:33:ac:f7:b0:21:8f:00:25:9b: fe:98:4a:02:f3:da:e4:40:a8:8f:28:9c:b9:c1:06:c8:1d:e4: fd:a8:97:fb:af:bf:20:1d:96:f5:e3:24:47:74:2a:64:dd:c9: 47:27:40:5e:b7:e2:48:4f:c4:09:f7:5d:66:6e:55:2f:b8:8c: 73:dd:e3:22:02:f0:09:d9:a2:db:1f:cb:eb:61:d4:91:5f:0b: 91:48:ab:5e:0d:d7:b5:7b:e4:cd:56:f6:39:7a:3c:73:7e:b4: 14:2f:6d:3e:91:66:63:fe:de:fa:0f:66:a1:e4:e4:c2:e3:22: d5:70:3d:40:5f:c3:45:cd:4e:3f:69:bb:0e:ed:dc:06:f3:9e: a4:ad:4f:f4:0e:18:73:7b:e0:57:e5:72:b6:18:74:c8:67:16: 36:3d:e5:7c:61:a3:9e:3c:02:da:18:b9:74:8b:52:10:82:13: 8f:55:3c:3e:6a:f3:0d:17:b0:b5:b1:46:fd:d5:21:ad:aa:d9: 22:bd:fe:80:0e:d6:e3:8d:d9:5a:b7:f5:fb:a6:d9:a0:ec:16: 7d:1d:d8:32:ff:bc:38:1d:f2:da:94:6e:10:48:2f:6e:40:81: 7a:dc:38:41 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURgJ/2zoL694QBA4wLP/1bZCVV/MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDNDQjMwMDAwMTEwLwYDVQQFEyg4QTFCNEU0QTYz Mjk1RjE4QjRGMDZGRkY2QUQwMkMzMTY1QkY5OTI1MB4XDTI2MDUxMzAyNDUwOFoX DTI3MDUxMjAyNTAwOFowMzExMC8GA1UEAxMoMUMxMTFBQTc0MzM4NEIzN0VEN0I3 RjE0MkI2OTg1OTg4RDk5NTQyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKS8sojfN7igGYaStWhEiKPEwQh3Xh5FiiQ9OFKWgxCRiLKbt8dmHRo8uesY pm9E6znpypppvSLnpldCl+tv9yIWBCV/qVsgqFzhr+iiiY6QfTBKpcwhBiGaubB2 Mu8nmT8sMd6lpbTaORZgVF8O4Fl0VTGa2SagK/bfYXwdfLZQUle/UiQc0Pq1jKWM 4esYYtTCZkEp7gwhzK4v0Jm17VNkQ2jbjzx9jZCPFd1Q9FRVKCqbAApssQLT0eFk k888lkVuqP+zHNI5zPuJlC89ltxHEFuiisyHuECuLtRs3NFLZdyi2YlbBQgkLteF AjZKFsgKT9jEEFGp95y9wFHfheUCAwEAAaOCAh8wggIbMB0GA1UdDgQWBBQcERqn QzhLN+17fxQraYWYjZlUJTAfBgNVHSMEGDAWgBSKG05KYylfGLTwb/9q0CwxZb+Z JTAOBgNVHQ8BAf8EBAMCB4AwcwYDVR0fBGwwajBooGagZIZicnN5bmM6Ly9ycGtp LXJwcy5jbm5pYy5jbi9yZXBvL0ExMDk2NzA0NTkzNjk1MzQyNTkzLzEvOEExQjRF NEE2MzI5NUYxOEI0RjA2RkZGNkFEMDJDMzE2NUJGOTkyNS5jcmwwfgYIKwYBBQUH AQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9z aXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvaWh0T1NtTXBY eGkwOEdfX2F0QXNNV1dfbVNVLmNlcjCBlQYIKwYBBQUHAQsEgYgwgYUwgYIGCCsG AQUFBzALhnZyc3luYzovL3Jwa2ktcnBzLmNubmljLmNuL3JlcG8vQTEwOTY3MDQ1 OTM2OTUzNDI1OTMvMS8zMjM0MzAzODNhMzgzNzM2NjMzYTMxMzczNDMwM2EzYTJm MzQzNDJkMzQzNDIwM2QzZTIwMzQzODMzMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkCIdsF0AwDQYJ KoZIhvcNAQELBQADggEBAL3Y/eCe+LAooMMR+vbOs2NBqQIj7hdI0LNH5DOs97Ah jwAlm/6YSgLz2uRAqI8onLnBBsgd5P2ol/uvvyAdlvXjJEd0KmTdyUcnQF634khP xAn3XWZuVS+4jHPd4yIC8AnZotsfy+th1JFfC5FIq14N17V75M1W9jl6PHN+tBQv bT6RZmP+3voPZqHk5MLjItVwPUBfw0XNTj9puw7t3AbznqStT/QOGHN74FflcrYY dMhnFjY95Xxho548AtoYuXSLUhCCE49VPD5q8w0XsLWxRv3VIa2q2SK9/oAO1uON 2Vq39fum2aDsFn0d2DL/vDgd8tqUbhBIL25AgXrcOEE= -----END CERTIFICATE-----Generated at Wed May 13 15:37:07 2026 by rpki-client