$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633963303a3a2f33322d3332203d3e2030.roa File: 323430303a633963303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: DdHmmLkPFTNFvnT+xoAW99J3beCag/ZqwQve/nKSfQY= Subject key identifier: 85:EA:40:0F:35:8A:BE:85:C1:C8:95:C2:78:F3:7E:25:00:CE:09:8A Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 43BD0EB7CC05EF350310E52139275E80AF13137B Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633963303a3a2f33322d3332203d3e2030.roa Signing time: Thu 23 Apr 2026 07:51:44 +0000 ROA not before: Thu 23 Apr 2026 07:46:44 +0000 ROA not after: Thu 22 Apr 2027 07:51:44 +0000 asID: 0 IP address blocks: 2400:c9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:bd:0e:b7:cc:05:ef:35:03:10:e5:21:39:27:5e:80:af:13:13:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:46:44 2026 GMT Not After : Apr 22 07:51:44 2027 GMT Subject: CN=85EA400F358ABE85C1C895C278F37E2500CE098A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:dd:09:26:14:a9:8d:3a:14:b6:14:5f:f8:24: 87:27:85:26:41:e3:fe:9e:58:9a:09:d1:8e:3e:98: 43:17:b0:0c:7b:97:c4:d4:8e:96:94:ec:c3:72:fe: 90:31:de:5f:0f:b2:11:f8:16:20:b3:17:7c:8e:3a: b8:65:11:48:f4:cc:5f:24:01:cc:46:d6:e8:58:63: b9:1e:54:24:d4:e9:be:85:03:40:c3:09:33:c2:7b: fa:5b:e8:70:57:e5:dc:c9:94:c7:b0:9f:71:de:f1: a3:ad:3e:ff:5f:39:71:c7:c4:4f:0d:15:73:73:a9: 5e:cf:a6:e3:95:bb:e9:1f:52:01:2a:38:f9:06:61: 7c:bf:b5:5a:61:f3:05:b7:9f:b0:48:ff:16:99:00: c0:73:e2:06:fc:a4:2f:3e:8c:d6:e6:13:3e:9b:bb: 14:9f:aa:5e:bd:da:81:63:7f:cb:98:fb:21:45:e4: 6a:29:27:95:0d:23:b4:89:14:14:40:e4:d9:7f:da: 8e:f9:cc:c0:ae:9f:52:0e:c0:79:a9:b2:3e:2e:28: d2:2b:08:2a:f8:ad:8c:f2:ff:47:e6:1f:45:14:5f: 6a:8c:2e:ca:6e:63:f6:ec:03:24:7e:78:48:07:a9: c4:fe:b5:48:ca:07:24:95:d8:d9:7b:f5:b5:02:69: bc:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:EA:40:0F:35:8A:BE:85:C1:C8:95:C2:78:F3:7E:25:00:CE:09:8A X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a633963303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:c9c0::/32 Signature Algorithm: sha256WithRSAEncryption 67:a8:08:da:2d:6c:34:9d:12:a4:16:7f:d2:55:88:44:84:73: cb:3f:ba:24:56:56:63:31:a0:cd:a4:f7:73:e2:11:b8:0e:69: c1:7b:3e:b6:33:db:64:3d:11:88:89:f8:ef:f8:da:f1:1c:03: e7:5a:19:4e:ed:df:b5:f7:53:dd:d0:11:39:0a:be:23:1c:78: 63:7d:48:14:06:6d:18:5d:3a:f5:bb:e3:5b:e9:01:91:e0:c5: 2d:f6:b4:0f:f7:83:05:f1:c7:07:16:46:e6:b1:81:f2:49:16: 54:48:96:6b:be:00:7d:03:45:20:a6:9e:b5:b5:4a:f9:d8:34: b2:cf:50:f2:ab:69:6e:18:e1:4b:0f:08:c9:d8:26:fe:c2:af: 76:3b:96:67:da:58:8f:95:5c:6f:a2:ea:af:a4:1d:15:83:60: f7:f8:3a:9d:81:14:4a:d5:87:d5:6a:cc:54:1a:74:f6:c8:0a: 42:76:35:5e:62:b2:35:4a:ea:08:d3:6f:a4:cf:81:ac:0e:04: ae:8c:5f:29:7d:a1:62:17:2b:dc:e6:bc:8c:df:56:ad:b9:fa: e8:48:e9:e2:d1:45:2b:b7:89:6f:70:06:8b:a1:aa:39:9b:67: 3a:a3:b2:6b:96:8d:a3:d8:07:4f:52:3c:8b:4b:4e:ec:8b:a4: 85:90:24:c9 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUQ70Ot8wF7zUDEOUhOSdegK8TE3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ2NDRaFw0yNzA0MjIwNzUxNDRaMDMxMTAvBgNV BAMTKDg1RUE0MDBGMzU4QUJFODVDMUM4OTVDMjc4RjM3RTI1MDBDRTA5OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV3QkmFKmNOhS2FF/4JIcnhSZB 4/6eWJoJ0Y4+mEMXsAx7l8TUjpaU7MNy/pAx3l8PshH4FiCzF3yOOrhlEUj0zF8k AcxG1uhYY7keVCTU6b6FA0DDCTPCe/pb6HBX5dzJlMewn3He8aOtPv9fOXHHxE8N FXNzqV7PpuOVu+kfUgEqOPkGYXy/tVph8wW3n7BI/xaZAMBz4gb8pC8+jNbmEz6b uxSfql692oFjf8uY+yFF5GopJ5UNI7SJFBRA5Nl/2o75zMCun1IOwHmpsj4uKNIr CCr4rYzy/0fmH0UUX2qMLspuY/bsAyR+eEgHqcT+tUjKBySV2Nl79bUCabyVAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUhepADzWKvoXByJXCePN+JQDOCYowHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzIzNDMwMzAzYTYz Mzk2MzMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAMnA MA0GCSqGSIb3DQEBCwUAA4IBAQBnqAjaLWw0nRKkFn/SVYhEhHPLP7okVlZjMaDN pPdz4hG4DmnBez62M9tkPRGIifjv+NrxHAPnWhlO7d+191Pd0BE5Cr4jHHhjfUgU Bm0YXTr1u+Nb6QGR4MUt9rQP94MF8ccHFkbmsYHySRZUSJZrvgB9A0Ugpp61tUr5 2DSyz1Dyq2luGOFLDwjJ2Cb+wq92O5Zn2liPlVxvouqvpB0Vg2D3+DqdgRRK1YfV asxUGnT2yApCdjVeYrI1SuoI02+kz4GsDgSujF8pfaFiFyvc5ryM31atufroSOni 0UUrt4lvcAaLoao5m2c6o7Jrlo2j2AdPUjyLS07si6SFkCTJ -----END CERTIFICATE-----Generated at Wed May 13 12:46:56 2026 by rpki-client