$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636134303a3a2f33322d3332203d3e2030.roa File: 323430303a636134303a3a2f33322d3332203d3e2030.roa (raw, json) Hash identifier: nUfOQwSZhdpJMpY0MET8NNTjwNcitIo8XlOe3qlR2+A= Subject key identifier: 24:B0:C6:5E:FB:F7:5D:69:48:F8:1F:63:DA:E2:E1:AF:78:ED:19:0D Certificate issuer: /CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Certificate serial: 4B03D8B397B5DD68243255F2DD68A84BB7DE52D9 Authority key identifier: 16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636134303a3a2f33322d3332203d3e2030.roa Signing time: Thu 23 Apr 2026 07:51:43 +0000 ROA not before: Thu 23 Apr 2026 07:46:43 +0000 ROA not after: Thu 22 Apr 2027 07:51:43 +0000 asID: 0 IP address blocks: 2400:ca40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 02:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:03:d8:b3:97:b5:dd:68:24:32:55:f2:dd:68:a8:4b:b7:de:52:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16576756F0B03BF75ECD6BC449A3BEF7A7D14B40 Validity Not Before: Apr 23 07:46:43 2026 GMT Not After : Apr 22 07:51:43 2027 GMT Subject: CN=24B0C65EFBF75D6948F81F63DAE2E1AF78ED190D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4e:f0:a0:a3:b5:0e:75:83:cd:7c:12:17:6f: d6:43:60:91:25:e1:28:12:73:5c:5e:1b:d4:eb:bd: 32:e4:69:6a:b5:7e:78:a0:07:a9:be:31:e4:d8:71: d3:f4:5d:6f:0a:83:c2:5a:85:cc:0f:56:d9:c6:03: a1:ce:19:83:1c:ec:1e:56:f2:89:08:99:eb:97:b4: a9:38:84:4a:78:5f:25:15:e3:b4:77:82:5f:f5:b0: 95:c5:40:be:6c:c6:1c:82:53:66:4b:03:67:2b:93: 5b:da:6b:b0:f7:45:10:b9:dd:50:8d:86:53:e4:7f: 91:ad:1f:21:27:72:d0:1b:35:26:91:0d:35:45:b8: 44:c6:3c:e0:75:2a:9f:57:14:89:3b:aa:20:81:9c: 79:70:30:e2:ce:2d:f3:2b:f4:0c:f2:0e:bf:64:0c: 7f:a1:2e:9b:36:1e:29:e4:23:56:74:3d:3b:9f:27: 4d:0b:d5:05:f7:bd:d6:0c:02:59:d3:f0:06:fa:ef: 42:5e:e3:07:04:04:82:d8:26:59:35:65:d2:cb:c7: 9f:d2:cc:d9:c6:d3:2d:64:c7:49:84:ba:59:7a:8e: 9e:aa:bd:b6:9a:19:76:3b:5e:11:06:7b:4b:8b:45: ee:47:12:c1:3d:ab:ee:21:a2:92:9a:f2:2a:c7:8e: 12:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B0:C6:5E:FB:F7:5D:69:48:F8:1F:63:DA:E2:E1:AF:78:ED:19:0D X509v3 Authority Key Identifier: keyid:16:57:67:56:F0:B0:3B:F7:5E:CD:6B:C4:49:A3:BE:F7:A7:D1:4B:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/16576756F0B03BF75ECD6BC449A3BEF7A7D14B40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1099602636367200259/0/323430303a636134303a3a2f33322d3332203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:ca40::/32 Signature Algorithm: sha256WithRSAEncryption 59:f1:29:b0:e1:fa:71:f2:46:58:fc:23:e7:cd:07:7f:4b:b1: 44:52:86:33:8a:15:c3:9b:fe:dc:e1:86:c8:ae:e3:74:0d:a1: 3d:41:ef:2c:1c:db:49:85:06:79:60:99:8b:05:86:f9:0b:d2: 77:06:f9:e4:a6:12:b1:ed:79:a8:ae:12:09:05:2e:a5:10:c9: 31:f5:2c:70:27:79:f3:25:0f:f6:be:55:2e:80:26:b8:24:3a: 85:e2:80:f2:39:67:15:8e:0d:74:23:2e:5c:b9:3a:b9:93:74: f3:ee:03:cb:e1:30:eb:4b:9d:8c:b9:1b:f5:b3:7b:33:a0:64: 55:63:c0:1e:3c:0f:1f:84:85:ac:77:ea:b9:e7:e7:16:0f:bc: 9a:11:e7:9f:64:d0:5f:eb:fe:54:44:7c:cb:d0:cc:46:50:8b: 12:72:d9:d8:86:aa:1a:d6:3b:37:41:fe:e5:93:98:d7:f0:bc: 25:91:3f:9e:36:f8:62:e3:db:c2:8e:56:62:cc:93:a8:f9:d9: 0b:ef:ba:5c:7f:f0:b8:3f:e6:ab:0d:61:b9:87:d5:d6:ef:31: 81:62:b6:8f:e4:c4:38:e1:e1:13:91:b9:c3:9b:32:ee:55:05: 12:de:4b:1d:48:a0:22:72:cf:fb:f6:9f:7f:69:bb:98:b6:d8: 38:54:d6:c3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIUSwPYs5e13WgkMlXy3WioS7feUtkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdB N0QxNEI0MDAeFw0yNjA0MjMwNzQ2NDNaFw0yNzA0MjIwNzUxNDNaMDMxMTAvBgNV BAMTKDI0QjBDNjVFRkJGNzVENjk0OEY4MUY2M0RBRTJFMUFGNzhFRDE5MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7TvCgo7UOdYPNfBIXb9ZDYJEl 4SgSc1xeG9TrvTLkaWq1fnigB6m+MeTYcdP0XW8Kg8JahcwPVtnGA6HOGYMc7B5W 8okImeuXtKk4hEp4XyUV47R3gl/1sJXFQL5sxhyCU2ZLA2crk1vaa7D3RRC53VCN hlPkf5GtHyEnctAbNSaRDTVFuETGPOB1Kp9XFIk7qiCBnHlwMOLOLfMr9AzyDr9k DH+hLps2HinkI1Z0PTufJ00L1QX3vdYMAlnT8Ab670Je4wcEBILYJlk1ZdLLx5/S zNnG0y1kx0mEull6jp6qvbaaGXY7XhEGe0uLRe5HEsE9q+4hopKa8irHjhLhAgMB AAGjggIKMIICBjAdBgNVHQ4EFgQUJLDGXvv3XWlI+B9j2uLhr3jtGQ0wHwYDVR0j BBgwFoAUFldnVvCwO/dezWvESaO+96fRS0AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA5 OTYwMjYzNjM2NzIwMDI1OS8wLzE2NTc2NzU2RjBCMDNCRjc1RUNENkJDNDQ5QTNC RUY3QTdEMTRCNDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMTY1NzY3NTZGMEIwM0JGNzVFQ0Q2QkM0NDlBM0JFRjdBN0QxNEI0MC5jZXIw gYIGCCsGAQUFBwELBHYwdDByBggrBgEFBQcwC4ZmcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDk5NjAyNjM2MzY3MjAwMjU5LzAvMzIzNDMwMzAzYTYz NjEzNDMwM2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAMpA MA0GCSqGSIb3DQEBCwUAA4IBAQBZ8Smw4fpx8kZY/CPnzQd/S7FEUoYzihXDm/7c 4YbIruN0DaE9Qe8sHNtJhQZ5YJmLBYb5C9J3BvnkphKx7XmorhIJBS6lEMkx9Sxw J3nzJQ/2vlUugCa4JDqF4oDyOWcVjg10Iy5cuTq5k3Tz7gPL4TDrS52MuRv1s3sz oGRVY8AePA8fhIWsd+q55+cWD7yaEeefZNBf6/5URHzL0MxGUIsSctnYhqoa1js3 Qf7lk5jX8LwlkT+eNvhi49vCjlZizJOo+dkL77pcf/C4P+arDWG5h9XW7zGBYraP 5MQ44eETkbnDmzLuVQUS3ksdSKAics/79p9/abuYttg4VNbD -----END CERTIFICATE-----Generated at Wed May 13 13:24:25 2026 by rpki-client