$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633834303a3a2f33322d3332203d3e2030.roa File: 323430303a633834303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: UtG1l9I3rD0Az/Rhus1pZ9tH21NUlJZDlZsnhfb6yUw= Subject key identifier: B1:A7:30:27:87:8F:84:46:FF:AC:1C:07:6C:80:D5:6F:36:6F:E0:E1 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 46D7F5DC03EE25228A7DA58EEE37E80F9DED0EF1 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633834303a3a2f33322d3332203d3e2030.roa Signing time: Thu 23 Apr 2026 07:51:43 +0000 ROA not before: Thu 23 Apr 2026 07:46:43 +0000 ROA not after: Thu 22 Apr 2027 07:51:43 +0000 asID: 0 IP address blocks: 2400:c840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:d7:f5:dc:03:ee:25:22:8a:7d:a5:8e:ee:37:e8:0f:9d:ed:0e:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:46:43 2026 GMT Not After : Apr 22 07:51:43 2027 GMT Subject: CN=B1A73027878F8446FFAC1C076C80D56F366FE0E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9f:36:fc:13:74:9e:55:77:a2:f2:6c:fa:d8: 53:6f:33:26:b9:a4:d1:93:39:bf:d1:17:86:5a:f1: 35:55:0d:9a:7c:64:7c:34:62:e4:9a:93:c3:1a:87: b4:e6:1c:7f:a0:e9:55:59:a6:19:9a:63:c2:3a:18: 8d:1a:33:fa:64:b1:2f:67:5a:91:b8:2f:a8:2c:20: b5:37:d8:4e:e0:01:28:03:bb:99:97:14:a9:60:1e: 73:20:7e:4b:c6:b0:2c:a6:95:ce:88:51:cb:a5:d1: 05:82:31:7b:8e:19:b7:7a:8a:38:ae:03:d4:56:c3: 0c:f7:eb:57:53:72:d4:b2:9c:51:a5:2e:e7:39:d8: b5:54:7e:07:95:08:6d:cd:70:67:79:9b:53:8e:eb: ca:f3:cc:c6:b6:dc:47:08:63:20:a5:1b:4e:2d:ca: 24:86:76:a7:1e:35:0c:57:d8:5b:bb:52:aa:35:36: 41:1b:d0:86:c0:7a:79:4b:bd:03:d5:37:67:6e:84: 77:7c:60:82:5e:3b:5c:7d:0d:d2:62:df:db:51:ec: 20:56:44:36:3a:37:cd:ac:cf:59:40:4b:13:89:96: 3c:9e:18:0a:a7:30:75:a7:b1:8d:aa:e1:db:b3:88: 1e:af:3d:7c:5a:09:5e:b1:ea:26:d8:14:d1:bd:77: f5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A7:30:27:87:8F:84:46:FF:AC:1C:07:6C:80:D5:6F:36:6F:E0:E1 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633834303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:c840::/32 Signature Algorithm: sha256WithRSAEncryption 29:f9:cb:31:61:86:ad:d4:31:b8:cf:91:27:12:18:0a:58:91: 70:16:8b:a6:31:d4:fa:2b:9e:86:e0:fa:7e:61:96:4e:4a:05: 51:95:30:c0:b9:11:04:bc:11:e6:c0:6d:d6:ee:28:2a:01:d8: d6:77:d9:3d:5d:45:4d:1d:f0:eb:5d:69:18:a0:0f:a6:c2:ef: 05:b3:a3:93:c3:cb:4a:cd:89:7f:f4:4e:87:f0:e0:6a:91:25: f6:70:ae:1a:58:89:6b:72:e8:74:67:d9:33:89:d8:3e:45:85: 73:ea:2d:c7:07:fb:cc:f9:ac:da:c9:02:2f:48:65:77:f0:19: f4:00:f2:71:9a:b2:7e:7d:b9:55:fb:80:6e:96:41:ea:08:3d: 50:ea:49:85:29:a7:a5:71:a3:dc:25:a2:36:77:b6:d8:ba:60: 99:d0:6d:f4:ae:10:ba:11:96:94:cf:b7:d7:c4:4b:04:72:a8: 66:54:8b:bb:cc:4a:4c:f2:f2:6d:45:d9:9e:b7:e8:a3:58:8d: 86:99:19:7f:3a:b8:00:cb:a1:87:03:11:75:bd:c2:88:16:c6: cc:a2:8a:eb:03:46:96:78:e7:f9:69:93:e2:4b:63:64:da:02: 64:ce:cd:c1:2e:88:b3:b6:9d:97:4f:b3:18:49:ec:7e:53:14: e0:ca:7e:08 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIURtf13APuJSKKfaWO7jfoD53tDvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ2NDNaFw0yNzA0MjIwNzUxNDNaMDMxMTAvBgNV BAMTKEIxQTczMDI3ODc4Rjg0NDZGRkFDMUMwNzZDODBENTZGMzY2RkUwRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgnzb8E3SeVXei8mz62FNvMya5 pNGTOb/RF4Za8TVVDZp8ZHw0YuSak8Mah7TmHH+g6VVZphmaY8I6GI0aM/pksS9n WpG4L6gsILU32E7gASgDu5mXFKlgHnMgfkvGsCymlc6IUcul0QWCMXuOGbd6ijiu A9RWwwz361dTctSynFGlLuc52LVUfgeVCG3NcGd5m1OO68rzzMa23EcIYyClG04t yiSGdqceNQxX2Fu7Uqo1NkEb0IbAenlLvQPVN2duhHd8YIJeO1x9DdJi39tR7CBW RDY6N82sz1lASxOJljyeGAqnMHWnsY2q4duziB6vPXxaCV6x6ibYFNG9d/VZAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUsacwJ4ePhEb/rBwHbIDVbzZv4OEwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzIzNDMwMzAzYTYz MzgzNDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAMhA MA0GCSqGSIb3DQEBCwUAA4IBAQAp+csxYYat1DG4z5EnEhgKWJFwFoumMdT6K56G 4Pp+YZZOSgVRlTDAuREEvBHmwG3W7igqAdjWd9k9XUVNHfDrXWkYoA+mwu8Fs6OT w8tKzYl/9E6H8OBqkSX2cK4aWIlrcuh0Z9kzidg+RYVz6i3HB/vM+azayQIvSGV3 8Bn0APJxmrJ+fblV+4BulkHqCD1Q6kmFKaelcaPcJaI2d7bYumCZ0G30rhC6EZaU z7fXxEsEcqhmVIu7zEpM8vJtRdmet+ijWI2GmRl/OrgAy6GHAxF1vcKIFsbMoorr A0aWeOf5aZPiS2Nk2gJkzs3BLoiztp2XT7MYSex+UxTgyn4I -----END CERTIFICATE-----Generated at Wed May 13 14:34:00 2026 by rpki-client