$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1097368392639184898/0/323430353a653034303a3a2f33322d3332203d3e2030.roa File: 323430353a653034303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: DKLyV2KtLLJej+jvamj+qWgUgiE4opa5BOdT4u0VoM4= Subject key identifier: E0:C0:70:6A:CC:0B:8C:AB:E6:C5:0B:39:E0:BF:07:C4:AF:70:4D:85 Certificate issuer: /CN=BC0038FB81B8F669133DF399272C7BEEBC78A04E Certificate serial: 224BFB99E621A68985BF1728933B24AB5E07BD9B Authority key identifier: BC:00:38:FB:81:B8:F6:69:13:3D:F3:99:27:2C:7B:EE:BC:78:A0:4E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BC0038FB81B8F669133DF399272C7BEEBC78A04E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/323430353a653034303a3a2f33322d3332203d3e2030.roa Signing time: Mon 20 Apr 2026 06:08:30 +0000 ROA not before: Mon 20 Apr 2026 06:03:30 +0000 ROA not after: Mon 19 Apr 2027 06:08:30 +0000 asID: 0 IP address blocks: 2405:e040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/BC0038FB81B8F669133DF399272C7BEEBC78A04E.crl rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/BC0038FB81B8F669133DF399272C7BEEBC78A04E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BC0038FB81B8F669133DF399272C7BEEBC78A04E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 23:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4b:fb:99:e6:21:a6:89:85:bf:17:28:93:3b:24:ab:5e:07:bd:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC0038FB81B8F669133DF399272C7BEEBC78A04E Validity Not Before: Apr 20 06:03:30 2026 GMT Not After : Apr 19 06:08:30 2027 GMT Subject: CN=E0C0706ACC0B8CABE6C50B39E0BF07C4AF704D85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:40:1a:46:29:38:fc:36:ed:b5:3d:8c:d1:32: 92:33:50:65:0d:2d:22:68:8c:6d:17:da:61:00:98: 52:94:f5:36:e2:3c:88:da:cb:b0:05:0b:cd:7f:7f: b8:dd:0c:71:fa:d2:27:3b:02:20:d8:a5:d9:14:03: a4:6d:3b:55:d6:dd:71:46:6f:3e:0f:cd:08:6b:fa: e5:8a:07:0e:ec:b7:78:33:a9:0f:d0:62:50:de:f8: cf:8f:73:2d:1c:e2:4f:d3:dc:a6:31:e9:ab:51:90: 02:3a:9f:bd:d2:6d:5f:85:9b:d9:6b:72:dd:11:ef: ea:7a:2f:86:7f:27:c4:ce:62:a3:be:cb:f9:fa:8b: f1:fe:0a:a6:84:90:cc:02:3f:a4:2f:11:6a:82:c9: 97:d7:9e:fd:21:c8:4d:c5:7a:6a:8a:59:70:40:e4: c8:8f:49:c6:38:3d:93:7b:7d:a9:b8:d9:69:3f:ed: f4:86:d2:0a:5d:0f:a3:92:f4:ce:29:fe:c4:f6:17: 69:48:65:57:ab:ba:72:c7:25:9b:b8:9b:8a:1d:9b: c9:5b:15:57:fd:cd:b3:1e:aa:ef:30:f0:3a:93:cb: b1:b9:a0:26:20:e6:1f:a8:c0:2a:7f:67:b2:a2:d6: c0:79:57:85:a4:75:a8:07:51:54:3e:52:9c:c1:c6: 0b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C0:70:6A:CC:0B:8C:AB:E6:C5:0B:39:E0:BF:07:C4:AF:70:4D:85 X509v3 Authority Key Identifier: keyid:BC:00:38:FB:81:B8:F6:69:13:3D:F3:99:27:2C:7B:EE:BC:78:A0:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/BC0038FB81B8F669133DF399272C7BEEBC78A04E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/BC0038FB81B8F669133DF399272C7BEEBC78A04E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1097368392639184898/0/323430353a653034303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:e040::/32 Signature Algorithm: sha256WithRSAEncryption c7:f8:82:20:dc:41:9f:97:67:3a:ff:ff:63:ef:0a:1c:77:02: 90:7f:b3:77:63:4a:d4:a4:33:f2:28:24:5b:22:c7:2c:56:a6: 5a:39:18:f3:39:dc:89:ec:50:d1:4f:ad:8f:2b:68:d6:72:bf: 56:a1:26:ea:a0:5e:ba:b1:97:8f:67:c8:bf:e3:2a:e0:e7:79: 41:ed:9b:08:69:bd:90:3e:00:55:51:2a:0a:9b:9d:38:01:0b: 87:31:f8:f4:99:44:e9:29:10:7e:c0:b6:b2:3c:e1:84:69:14: fa:16:94:59:fd:ac:0f:41:4a:9b:2d:50:64:21:a4:0c:f2:76: b2:31:7d:c2:7c:3b:52:f0:29:b6:3d:bf:36:ac:5d:3f:1f:68: ae:c8:74:d0:c2:99:4d:a0:08:ab:83:58:83:7a:c3:6a:5b:82: ab:b9:15:d1:f8:ba:ef:32:9b:48:b1:cd:94:b6:80:8b:68:9f: ff:1f:de:67:84:76:5a:c7:14:38:57:13:68:d5:92:f2:88:95: 0a:52:c4:fa:02:ae:15:43:dc:31:c7:5e:de:84:f4:13:73:de: 4e:41:6b:a3:b3:38:c6:24:c2:68:a3:1a:06:17:31:ef:b3:df: 0d:0b:fe:ae:24:7e:66:53:91:bf:89:6c:91:12:bb:8e:84:65: af:8e:c7:64 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUIkv7meYhpomFvxcokzskq14HvZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMwMDM4RkI4MUI4RjY2OTEzM0RGMzk5MjcyQzdCRUVC Qzc4QTA0RTAeFw0yNjA0MjAwNjAzMzBaFw0yNzA0MTkwNjA4MzBaMDMxMTAvBgNV BAMTKEUwQzA3MDZBQ0MwQjhDQUJFNkM1MEIzOUUwQkYwN0M0QUY3MDREODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuQBpGKTj8Nu21PYzRMpIzUGUN LSJojG0X2mEAmFKU9TbiPIjay7AFC81/f7jdDHH60ic7AiDYpdkUA6RtO1XW3XFG bz4PzQhr+uWKBw7st3gzqQ/QYlDe+M+Pcy0c4k/T3KYx6atRkAI6n73SbV+Fm9lr ct0R7+p6L4Z/J8TOYqO+y/n6i/H+CqaEkMwCP6QvEWqCyZfXnv0hyE3FemqKWXBA 5MiPScY4PZN7fam42Wk/7fSG0gpdD6OS9M4p/sT2F2lIZVerunLHJZu4m4odm8lb FVf9zbMequ8w8DqTy7G5oCYg5h+owCp/Z7Ki1sB5V4WkdagHUVQ+UpzBxgsFAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQU4MBwaswLjKvmxQs54L8HxK9wTYUwHwYDVR0j BBgwFoAUvAA4+4G49mkTPfOZJyx77rx4oE4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 NzM2ODM5MjYzOTE4NDg5OC8wL0JDMDAzOEZCODFCOEY2NjkxMzNERjM5OTI3MkM3 QkVFQkM3OEEwNEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQkMwMDM4RkI4MUI4RjY2OTEzM0RGMzk5MjcyQzdCRUVCQzc4QTA0RS5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk3MzY4MzkyNjM5MTg0ODk4LzAvMzIzNDMwMzUzYTY1 MzAzNDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBeBA MA0GCSqGSIb3DQEBCwUAA4IBAQDH+IIg3EGfl2c6//9j7wocdwKQf7N3Y0rUpDPy KCRbIscsVqZaORjzOdyJ7FDRT62PK2jWcr9WoSbqoF66sZePZ8i/4yrg53lB7ZsI ab2QPgBVUSoKm504AQuHMfj0mUTpKRB+wLayPOGEaRT6FpRZ/awPQUqbLVBkIaQM 8nayMX3CfDtS8Cm2Pb82rF0/H2iuyHTQwplNoAirg1iDesNqW4KruRXR+LrvMptI sc2UtoCLaJ//H95nhHZaxxQ4VxNo1ZLyiJUKUsT6Aq4VQ9wxx17ehPQTc95OQWuj szjGJMJooxoGFzHvs98NC/6uJH5mU5G/iWyREruOhGWvjsdk -----END CERTIFICATE-----Generated at Wed May 13 13:51:04 2026 by rpki-client