$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633934303a3a2f33322d3332203d3e2030.roa File: 323430303a633934303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: EimVigfqDDHv3tuE3W9QZLIDR9m5jd0I9IoOTqLuO0w= Subject key identifier: CD:07:37:C4:F9:46:9C:D8:89:69:88:7F:BB:98:D8:01:B1:86:54:64 Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 5399FE1701ABD2D67770AB8D161A400AEE8DECF3 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633934303a3a2f33322d3332203d3e2030.roa Signing time: Thu 23 Apr 2026 07:51:43 +0000 ROA not before: Thu 23 Apr 2026 07:46:43 +0000 ROA not after: Thu 22 Apr 2027 07:51:43 +0000 asID: 0 IP address blocks: 2400:c940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:99:fe:17:01:ab:d2:d6:77:70:ab:8d:16:1a:40:0a:ee:8d:ec:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:46:43 2026 GMT Not After : Apr 22 07:51:43 2027 GMT Subject: CN=CD0737C4F9469CD88969887FBB98D801B1865464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:db:6f:94:0f:88:ce:96:37:8d:56:15:65:9f: 48:8f:64:87:fa:0e:86:7b:e2:2d:50:26:5a:63:6a: ce:18:65:b6:8d:af:0a:71:35:19:66:16:7b:14:fc: 9e:a7:c5:02:cf:88:85:04:3e:2c:0c:67:46:3e:eb: 13:c0:57:99:35:2d:12:01:0d:13:c5:40:e7:86:79: 26:5d:6f:b3:41:5c:85:64:e6:f5:1b:b3:0a:84:e5: 89:85:b4:3c:77:6e:39:19:da:4c:d2:c6:61:86:a1: 77:70:30:fc:26:20:2c:3a:f7:70:16:cb:e9:d9:84: 32:df:9d:98:ed:a9:bf:50:5f:a6:f0:1a:a0:07:79: c9:72:58:09:2f:9c:b8:95:d0:52:25:43:ff:e1:7d: 5a:d0:de:70:1b:62:2c:20:ef:98:fc:2c:a9:30:85: 1f:6b:5e:18:63:50:62:dd:b1:90:3e:86:bd:65:0b: 23:af:01:a4:66:a3:3a:67:d6:2c:a1:f3:13:b5:35: 69:d2:51:ec:f6:58:28:9e:a8:d2:86:25:57:85:6a: fa:ca:99:c3:c0:b1:a7:65:d5:b4:ac:9d:13:35:61: ea:2a:e8:c4:cf:ff:a9:05:16:d5:e8:9c:d6:cc:c6: e0:d4:9d:20:31:fa:50:cb:7b:3e:fb:de:24:b3:d3: af:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:07:37:C4:F9:46:9C:D8:89:69:88:7F:BB:98:D8:01:B1:86:54:64 X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633934303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:c940::/32 Signature Algorithm: sha256WithRSAEncryption ec:25:b5:79:98:4f:87:f3:cd:3b:95:d7:e5:03:49:1f:2f:59: 7d:50:8c:cb:d5:9c:d1:2d:51:a1:a9:3b:4a:42:91:e6:30:63: bc:62:74:d0:fa:d0:bd:9b:0e:42:5a:50:04:13:b5:a2:0f:57: eb:24:3d:af:34:3a:ff:78:cf:d7:a9:e7:f2:45:c1:9e:5a:70: 23:08:43:5b:db:06:d7:b7:45:f0:81:44:67:9b:e7:5b:76:ec: c3:b0:8f:8f:a9:98:0e:86:07:8a:35:cf:24:ad:0f:56:8e:b1: 43:42:44:61:61:f4:db:17:78:12:88:71:94:cd:63:92:e2:bb: 5c:61:6d:52:a1:4d:24:f4:17:90:fc:94:c2:a6:1c:b1:10:13: e1:04:78:3d:34:d0:d5:0c:8f:0d:82:7c:1a:a7:74:b6:0f:49: d4:86:77:46:a8:a7:2d:4c:96:cd:81:11:77:f9:08:9f:75:80: 0f:0d:fb:15:58:9f:ac:91:90:22:df:be:97:e8:eb:dc:14:4c: 26:7e:66:b4:df:6c:55:24:93:a2:3f:07:a8:c8:aa:12:ab:8d: 71:f1:93:fe:53:3e:26:01:21:94:b4:3f:61:ab:3d:63:fa:0f: 18:8e:04:dc:4a:80:21:4e:bd:4c:9c:53:3e:34:33:b7:fa:d8: 9d:41:de:5b -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUU5n+FwGr0tZ3cKuNFhpACu6N7PMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ2NDNaFw0yNzA0MjIwNzUxNDNaMDMxMTAvBgNV BAMTKENEMDczN0M0Rjk0NjlDRDg4OTY5ODg3RkJCOThEODAxQjE4NjU0NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj22+UD4jOljeNVhVln0iPZIf6 DoZ74i1QJlpjas4YZbaNrwpxNRlmFnsU/J6nxQLPiIUEPiwMZ0Y+6xPAV5k1LRIB DRPFQOeGeSZdb7NBXIVk5vUbswqE5YmFtDx3bjkZ2kzSxmGGoXdwMPwmICw693AW y+nZhDLfnZjtqb9QX6bwGqAHeclyWAkvnLiV0FIlQ//hfVrQ3nAbYiwg75j8LKkw hR9rXhhjUGLdsZA+hr1lCyOvAaRmozpn1iyh8xO1NWnSUez2WCieqNKGJVeFavrK mcPAsadl1bSsnRM1Yeoq6MTP/6kFFtXonNbMxuDUnSAx+lDLez773iSz069VAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUzQc3xPlGnNiJaYh/u5jYAbGGVGQwHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzIzNDMwMzAzYTYz MzkzNDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAMlA MA0GCSqGSIb3DQEBCwUAA4IBAQDsJbV5mE+H8807ldflA0kfL1l9UIzL1ZzRLVGh qTtKQpHmMGO8YnTQ+tC9mw5CWlAEE7WiD1frJD2vNDr/eM/XqefyRcGeWnAjCENb 2wbXt0XwgURnm+dbduzDsI+PqZgOhgeKNc8krQ9WjrFDQkRhYfTbF3gSiHGUzWOS 4rtcYW1SoU0k9BeQ/JTCphyxEBPhBHg9NNDVDI8Ngnwap3S2D0nUhndGqKctTJbN gRF3+QifdYAPDfsVWJ+skZAi376X6OvcFEwmfma032xVJJOiPweoyKoSq41x8ZP+ Uz4mASGUtD9hqz1j+g8YjgTcSoAhTr1MnFM+NDO3+tidQd5b -----END CERTIFICATE-----Generated at Wed May 13 15:07:29 2026 by rpki-client